This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/XXDs_1WF8xAupVE6WOS_dNf9osM.roa File: XXDs_1WF8xAupVE6WOS_dNf9osM.roa (raw, json) Hash identifier: 20X1/QsaSj3DVDtfhjJ7nUqhCYkTj6/5wZfHSwDpBiU= Subject key identifier: 5D:70:EC:FF:55:85:F3:10:2E:A5:51:3A:58:E4:BF:74:D7:FD:A2:C3 Certificate issuer: /CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9 Certificate serial: 019C551877F36FE09392D9F213CA7CFB6329 Authority key identifier: B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/XXDs_1WF8xAupVE6WOS_dNf9osM.roa Signing time: Fri 13 Feb 2026 03:43:12 +0000 ROA not before: Fri 13 Feb 2026 03:43:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35941 IP address blocks: 185.125.184.0/22 maxlen: 24 2a06:bc40::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Feb 2026 03:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:55:18:77:f3:6f:e0:93:92:d9:f2:13:ca:7c:fb:63:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9 Validity Not Before: Feb 13 03:43:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d70ecff5585f3102ea5513a58e4bf74d7fda2c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:06:68:24:c7:a8:fc:94:60:3d:d8:74:a3:0d: 4c:67:06:f7:e1:c2:6f:98:7e:09:7b:7f:50:38:9a: 99:71:1b:e3:97:f4:4f:6c:0e:43:71:07:9e:bc:a0: de:78:de:14:3e:d5:cb:a2:39:96:e2:b5:9b:cc:de: 61:fa:9b:34:f3:1c:d8:86:3e:28:cb:2c:74:37:3e: 7b:ba:7d:bc:d2:57:a7:24:ea:0c:a6:80:9e:3c:15: 4e:70:62:12:bd:8e:b3:7b:ac:a7:a5:26:c5:73:01: ee:01:ca:2e:e7:a2:d8:af:a5:e8:d4:bb:d7:30:1a: 25:99:86:8f:fa:53:fe:43:52:63:82:c9:a9:d6:72: 09:aa:4f:96:34:28:7b:e1:84:d9:7e:4c:e8:f6:b8: a9:60:04:4e:a1:b1:cf:26:53:24:20:37:5d:ae:aa: bb:8a:ba:91:78:d8:1b:19:e3:fc:cf:53:a5:e9:1d: e7:b2:02:5a:d2:10:f5:39:2a:f2:01:01:16:c3:22: d6:65:8f:bc:34:d4:d9:a7:0e:b8:f3:d4:4f:83:19: 94:35:b0:93:b3:70:b8:9a:3b:84:8d:42:96:54:60: d7:36:17:1e:27:1d:e2:b8:0f:b0:e5:66:89:7e:34: cc:45:30:17:1f:fb:66:c5:d4:10:a6:ae:ca:e7:88: e4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:70:EC:FF:55:85:F3:10:2E:A5:51:3A:58:E4:BF:74:D7:FD:A2:C3 X509v3 Authority Key Identifier: keyid:B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/XXDs_1WF8xAupVE6WOS_dNf9osM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.125.184.0/22 IPv6: 2a06:bc40::/29 Signature Algorithm: sha256WithRSAEncryption 1e:64:1f:da:02:dc:3d:ea:52:1b:07:30:34:b2:de:1e:67:4f: c0:6f:29:ee:9d:b2:9e:99:c8:62:09:f1:6e:9a:8f:2b:3c:47: f8:ea:56:2f:ff:ff:57:d5:f9:70:72:19:8f:8a:b3:b1:c8:32: 6f:6a:32:04:19:b8:a3:2b:80:35:99:f8:96:bb:f9:a8:57:dc: 77:bc:bb:90:8e:f2:c1:bb:8c:5f:d6:42:b8:4a:b6:e0:70:e4: 9a:3f:8b:d7:4b:2b:21:9e:10:fa:b3:41:16:78:78:dd:85:41: c7:47:0e:61:5e:44:b2:c7:97:99:d8:0c:92:ee:54:f6:3d:29: e1:3e:9c:50:6d:b5:27:ae:ef:8d:8a:cb:43:c8:8a:5b:df:16: a6:1b:ec:e2:f2:f9:cf:e5:4d:f0:53:0a:f9:c3:98:57:99:ec: 65:87:7b:ed:94:d4:6e:4d:5e:17:00:21:e5:e6:b5:37:ee:e2: 31:83:51:fd:8f:b7:e1:02:e9:9b:28:9f:f1:d8:41:4c:1c:5a: d8:f3:8f:4f:a3:58:f6:b6:20:5b:75:b5:1e:4e:f1:d7:f6:28: f2:17:c4:95:63:fd:bd:02:41:bc:07:a9:51:70:93:89:84:98: db:37:48:7d:e4:d9:69:cd:42:74:cc:94:8f:aa:38:7f:3c:e4: 99:43:46:70 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZxVGHfzb+CTktnyE8p8+2MpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YWUyODhhOWRkYjBlZjUwYTI5NGIzY2FlOTYzZTE0N2M5 YzdkYzkwHhcNMjYwMjEzMDM0MzEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDcwZWNmZjU1ODVmMzEwMmVhNTUxM2E1OGU0YmY3NGQ3ZmRhMmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogZoJMeo/JRgPdh0ow1MZwb34cJv mH4Je39QOJqZcRvjl/RPbA5DcQeevKDeeN4UPtXLojmW4rWbzN5h+ps08xzYhj4o yyx0Nz57un280lenJOoMpoCePBVOcGISvY6ze6ynpSbFcwHuAcou56LYr6Xo1LvX MBolmYaP+lP+Q1Jjgsmp1nIJqk+WNCh74YTZfkzo9ripYAROobHPJlMkIDddrqq7 irqReNgbGeP8z1Ol6R3nsgJa0hD1OSryAQEWwyLWZY+8NNTZpw6489RPgxmUNbCT s3C4mjuEjUKWVGDXNhceJx3iuA+w5WaJfjTMRTAXH/tmxdQQpq7K54jkLwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFF1w7P9VhfMQLqVROljkv3TX/aLDMB8GA1UdIwQY MBaAFLSuKIqd2w71CilLPK6WPhR8nH3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEs0b2lwM2JEdlVLS1VzOHJwWS1GSHljZmNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy80NTdmMmQtMDEzNy00ZDYxLTg1MDAt MzAwNDI2Y2UzMmUyLzEvWFhEc18xV0Y4eEF1cFZFNldPU19kTmY5b3NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy80NTdmMmQtMDEzNy00ZDYxLTg1MDAtMzAwNDI2Y2UzMmUy LzEvdEs0b2lwM2JEdlVLS1VzOHJwWS1GSHljZmNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuX24MA0E AgACMAcDBQMqBrxAMA0GCSqGSIb3DQEBCwUAA4IBAQAeZB/aAtw96lIbBzA0st4e Z0/AbynunbKemchiCfFumo8rPEf46lYv//9X1flwchmPirOxyDJvajIEGbijK4A1 mfiWu/moV9x3vLuQjvLBu4xf1kK4SrbgcOSaP4vXSyshnhD6s0EWeHjdhUHHRw5h XkSyx5eZ2AyS7lT2PSnhPpxQbbUnru+NistDyIpb3xamG+zi8vnP5U3wUwr5w5hX mexlh3vtlNRuTV4XACHl5rU37uIxg1H9j7fhAumbKJ/x2EFMHFrY849Po1j2tiBb dbUeTvHX9ijyF8SVY/29AkG8B6lRcJOJhJjbN0h95NlpzUJ0zJSPqjh/POSZQ0Zw -----END CERTIFICATE-----Generated at Fri Feb 13 11:09:04 2026 by rpki-client