This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/XfmMZ0oDUAwJDxSQEiuis-Gr-vc.roa File: XfmMZ0oDUAwJDxSQEiuis-Gr-vc.roa (raw, json) Hash identifier: kULJfAR/H2C5tYjK8edBq2EIZUqAdDfvi749QUzxPA8= Subject key identifier: 5D:F9:8C:67:4A:03:50:0C:09:0F:14:90:12:2B:A2:B3:E1:AB:FA:F7 Certificate issuer: /CN=893a2a4019a28177cdf806599f1ab5d51d17b8dc Certificate serial: 019B7F15B97EA1A4B6A630140F7380F3B24F Authority key identifier: 89:3A:2A:40:19:A2:81:77:CD:F8:06:59:9F:1A:B5:D5:1D:17:B8:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iToqQBmigXfN-AZZnxq11R0XuNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/XfmMZ0oDUAwJDxSQEiuis-Gr-vc.roa Signing time: Fri 02 Jan 2026 14:21:28 +0000 ROA not before: Fri 02 Jan 2026 14:21:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202625 IP address blocks: 185.158.196.0/22 maxlen: 22 2a07:af00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/iToqQBmigXfN-AZZnxq11R0XuNw.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/iToqQBmigXfN-AZZnxq11R0XuNw.mft rsync://rpki.ripe.net/repository/DEFAULT/iToqQBmigXfN-AZZnxq11R0XuNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b9:7e:a1:a4:b6:a6:30:14:0f:73:80:f3:b2:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893a2a4019a28177cdf806599f1ab5d51d17b8dc Validity Not Before: Jan 2 14:21:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5df98c674a03500c090f1490122ba2b3e1abfaf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a4:70:56:54:88:af:8d:99:7e:3d:a6:24:3a: 6e:5e:ed:f0:9a:29:02:ff:a9:b4:3c:1a:6f:2e:b7: aa:c7:cf:8f:75:ad:39:1d:d5:6d:3c:41:93:71:ee: 54:8a:3e:f1:1c:21:ec:d8:ec:8a:99:84:46:be:60: 41:0e:55:1f:df:0c:51:55:ae:01:ee:92:97:18:6f: 22:c8:6b:cb:d5:58:41:45:6b:c4:00:b7:f0:be:91: 91:69:7d:ef:03:ea:5d:dd:d4:87:2a:1e:48:ce:f8: 1d:03:d8:89:02:8b:23:8e:75:5b:f5:30:88:2d:b9: 87:b6:79:2e:24:92:51:71:77:12:7e:4c:ae:e8:41: ca:bf:8d:70:8e:a4:d7:27:ab:91:c8:17:38:12:1e: 4d:9f:19:4e:a7:4d:96:72:6d:ee:d1:d4:12:ce:f9: ed:54:48:84:44:d7:1f:eb:4a:cf:94:50:9f:c3:89: 54:36:4d:a3:2b:84:62:30:4e:e7:f7:1f:23:ce:44: 04:1b:d0:c7:a1:96:b4:78:ac:e0:9c:8d:68:29:27: f5:db:56:07:0a:51:77:07:67:4e:62:cb:e4:32:e4: 0f:b0:2f:48:21:84:c4:2b:55:8d:d5:5b:36:17:98: da:46:43:bf:e8:c3:de:16:90:76:97:d1:28:fe:d8: 5e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F9:8C:67:4A:03:50:0C:09:0F:14:90:12:2B:A2:B3:E1:AB:FA:F7 X509v3 Authority Key Identifier: keyid:89:3A:2A:40:19:A2:81:77:CD:F8:06:59:9F:1A:B5:D5:1D:17:B8:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iToqQBmigXfN-AZZnxq11R0XuNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/XfmMZ0oDUAwJDxSQEiuis-Gr-vc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/63b3de-8975-434c-96da-361786f17a05/1/iToqQBmigXfN-AZZnxq11R0XuNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.158.196.0/22 IPv6: 2a07:af00::/29 Signature Algorithm: sha256WithRSAEncryption 1b:3b:0d:a5:4b:d7:0c:32:2b:ac:b3:f4:cc:ad:53:8b:37:68: 9c:21:42:ff:1b:d8:6d:c0:f1:f9:e6:97:03:0a:ce:7b:7c:65: 7c:2a:f9:cd:b9:13:3f:ff:e0:b4:fc:84:ea:4e:d2:40:5c:c5: 20:28:9b:f7:29:a4:b8:9c:20:d8:3d:1c:7b:10:a3:37:73:47: 57:5d:2b:f1:b1:16:6c:31:45:cc:ba:90:6d:7a:4d:d2:ff:e6: 55:67:e6:55:8a:8a:c0:3b:cc:38:9c:ba:d4:1e:10:46:4a:2c: 20:f4:f6:01:df:24:73:0f:04:d4:ab:92:ce:90:40:46:db:1a: 33:e7:e1:87:aa:c5:97:78:83:3f:95:c7:1f:e0:37:a5:47:9a: 46:41:dd:b8:1f:04:17:2c:d3:5c:72:e4:38:3f:b0:88:31:e5: 82:e6:87:76:c6:f6:01:97:c4:cc:08:50:fa:48:f6:50:e1:b7: 94:8e:f8:c4:d7:f6:d7:50:f7:d8:b5:fd:a5:5a:dc:71:c8:2d: 88:b4:c9:79:ca:fa:9a:25:75:54:b7:5a:0a:61:3a:8f:22:cf: 0c:9b:a5:35:ad:3a:fc:dd:f7:d0:08:01:5a:65:02:20:fb:bd: c6:ff:10:6d:5f:25:3d:b2:db:66:11:56:ad:91:06:22:e1:1a: 26:38:25:73 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/Fbl+oaS2pjAUD3OA87JPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5M2EyYTQwMTlhMjgxNzdjZGY4MDY1OTlmMWFiNWQ1MWQx N2I4ZGMwHhcNMjYwMTAyMTQyMTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZGY5OGM2NzRhMDM1MDBjMDkwZjE0OTAxMjJiYTJiM2UxYWJmYWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaRwVlSIr42Zfj2mJDpuXu3wmikC /6m0PBpvLreqx8+Pda05HdVtPEGTce5Uij7xHCHs2OyKmYRGvmBBDlUf3wxRVa4B 7pKXGG8iyGvL1VhBRWvEALfwvpGRaX3vA+pd3dSHKh5IzvgdA9iJAosjjnVb9TCI LbmHtnkuJJJRcXcSfkyu6EHKv41wjqTXJ6uRyBc4Eh5NnxlOp02Wcm3u0dQSzvnt VEiERNcf60rPlFCfw4lUNk2jK4RiME7n9x8jzkQEG9DHoZa0eKzgnI1oKSf121YH ClF3B2dOYsvkMuQPsC9IIYTEK1WN1Vs2F5jaRkO/6MPeFpB2l9Eo/theWQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFF35jGdKA1AMCQ8UkBIrorPhq/r3MB8GA1UdIwQY MBaAFIk6KkAZooF3zfgGWZ8atdUdF7jcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVRvcVFCbWlnWGZOLUFaWm54cTExUjBYdU53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS82M2IzZGUtODk3NS00MzRjLTk2ZGEt MzYxNzg2ZjE3YTA1LzEvWGZtTVowb0RVQXdKRHhTUUVpdWlzLUdyLXZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS82M2IzZGUtODk3NS00MzRjLTk2ZGEtMzYxNzg2ZjE3YTA1 LzEvaVRvcVFCbWlnWGZOLUFaWm54cTExUjBYdU53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZ7EMA0E AgACMAcDBQMqB68AMA0GCSqGSIb3DQEBCwUAA4IBAQAbOw2lS9cMMiuss/TMrVOL N2icIUL/G9htwPH55pcDCs57fGV8KvnNuRM//+C0/ITqTtJAXMUgKJv3KaS4nCDY PRx7EKM3c0dXXSvxsRZsMUXMupBtek3S/+ZVZ+ZViorAO8w4nLrUHhBGSiwg9PYB 3yRzDwTUq5LOkEBG2xoz5+GHqsWXeIM/lccf4DelR5pGQd24HwQXLNNccuQ4P7CI MeWC5od2xvYBl8TMCFD6SPZQ4beUjvjE1/bXUPfYtf2lWtxxyC2ItMl5yvqaJXVU t1oKYTqPIs8Mm6U1rTr83ffQCAFaZQIg+73G/xBtXyU9sttmEVatkQYi4RomOCVz -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:37 2026 by rpki-client