This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Xuqx5oGqcGji8i6eRxh5BEu5LZ8.roa File: Xuqx5oGqcGji8i6eRxh5BEu5LZ8.roa (raw, json) Hash identifier: FzmK5Vp8CaSv6xG3M6XIDAgAasDprb9CAyV3YNNYDt4= Subject key identifier: 5E:EA:B1:E6:81:AA:70:68:E2:F2:2E:9E:47:18:79:04:4B:B9:2D:9F Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370 Certificate serial: 019B7F15C9211368C53BEA6ABF8087E60815 Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Xuqx5oGqcGji8i6eRxh5BEu5LZ8.roa Signing time: Fri 02 Jan 2026 14:21:32 +0000 ROA not before: Fri 02 Jan 2026 14:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21100 IP address blocks: 2a0d:5a80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.mft rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c9:21:13:68:c5:3b:ea:6a:bf:80:87:e6:08:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370 Validity Not Before: Jan 2 14:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5eeab1e681aa7068e2f22e9e471879044bb92d9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:0c:82:e8:73:e6:5a:c6:57:e1:2b:26:ed: 57:36:65:29:f0:86:65:60:73:c3:67:2d:8c:87:4f: b1:f8:8a:e7:ce:3b:c1:c7:22:1d:b3:9a:cc:b4:8c: d2:1a:bc:da:c0:ff:23:ae:bf:82:11:4c:0d:ca:22: fb:26:3a:f8:ea:a5:63:e0:05:26:fd:9f:64:54:f3: 9e:70:b7:95:0b:9c:ca:d0:5c:1c:f3:13:98:6d:c8: 1c:c5:db:03:bf:b7:b4:f6:f7:47:e1:fb:a1:ad:33: 5d:79:30:35:de:c5:6a:77:99:25:a0:de:e0:90:c9: 57:e7:a4:9b:df:d7:8f:8a:69:68:bd:1f:09:30:9a: f0:ee:34:15:d9:b3:c2:22:b1:b8:84:ae:4e:1b:95: 35:f9:5f:2f:af:c4:d1:5f:2d:91:b4:7e:a1:f6:56: be:53:cb:be:f6:1f:f5:4b:da:99:65:e7:3a:7f:e1: ad:c3:8a:0a:4d:1a:c5:70:d0:f9:0a:2b:bb:0d:46: 43:62:32:6f:ed:48:d7:49:6b:1b:d1:9a:87:63:74: d7:ba:6c:4f:31:8c:81:57:4c:db:64:14:85:73:92: fe:50:11:91:bd:61:d4:8f:21:07:10:6d:c8:f1:5c: 60:4a:71:6a:cb:58:6a:c2:4b:e8:88:5a:48:5f:75: eb:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EA:B1:E6:81:AA:70:68:E2:F2:2E:9E:47:18:79:04:4B:B9:2D:9F X509v3 Authority Key Identifier: keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Xuqx5oGqcGji8i6eRxh5BEu5LZ8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:5a80::/29 Signature Algorithm: sha256WithRSAEncryption 83:1c:0e:4f:8e:e7:d2:3a:a6:24:53:1a:75:d3:5b:82:a2:31: bc:99:22:e6:72:a4:24:bd:c7:ce:4f:bd:a5:36:5f:2a:cf:68: b9:bd:47:ab:11:91:af:ea:31:22:0c:8f:a1:ff:2d:9d:a3:63: b7:46:71:11:0d:5b:9e:da:0e:fa:52:33:c0:62:a6:50:fc:12: c3:dd:65:1e:c7:2b:98:89:dc:c0:23:d0:46:ad:85:95:05:3c: 51:b9:b1:ba:2e:b9:e6:38:20:67:7a:29:81:69:f0:e5:9f:5f: 8f:30:11:aa:c4:d1:e1:4d:52:67:3a:04:0a:1a:25:db:e6:bf: b3:32:32:ff:6b:09:89:9a:bf:17:74:7f:19:87:4e:0c:fd:70: be:8f:a4:76:62:29:91:c4:57:99:f6:95:5f:44:ff:60:50:68: e4:8a:4a:de:c9:28:3f:7b:22:d6:72:59:bb:f6:10:ed:18:dc: 6c:a9:bc:f5:15:1b:db:e3:29:87:21:f1:f6:ba:39:9b:ea:9f: bf:0f:16:55:df:6c:49:ab:c3:db:7f:d5:c0:a9:15:03:14:2b: 8b:d6:c7:ab:f9:ae:ae:89:e1:0f:f5:05:86:3a:ed:77:00:9b: c1:52:9f:78:f6:db:4c:f3:7e:c8:8c:70:12:cf:18:2d:f1:7b: 22:a1:a5:d5 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/FckhE2jFO+pqv4CH5ggVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmOGFlYTJmMDI1ZjQ5NWJlYWNlZTdjZTVhODgyMDUxOWRk YTEzNzAwHhcNMjYwMTAyMTQyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWVhYjFlNjgxYWE3MDY4ZTJmMjJlOWU0NzE4NzkwNDRiYjkyZDlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMgMguhz5lrGV+ErJu1XNmUp8IZl YHPDZy2Mh0+x+IrnzjvBxyIds5rMtIzSGrzawP8jrr+CEUwNyiL7Jjr46qVj4AUm /Z9kVPOecLeVC5zK0Fwc8xOYbcgcxdsDv7e09vdH4fuhrTNdeTA13sVqd5kloN7g kMlX56Sb39ePimlovR8JMJrw7jQV2bPCIrG4hK5OG5U1+V8vr8TRXy2RtH6h9la+ U8u+9h/1S9qZZec6f+Gtw4oKTRrFcND5Ciu7DUZDYjJv7UjXSWsb0ZqHY3TXumxP MYyBV0zbZBSFc5L+UBGRvWHUjyEHEG3I8VxgSnFqy1hqwkvoiFpIX3XrFwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFF7qseaBqnBo4vIunkcYeQRLuS2fMB8GA1UdIwQY MBaAFE+K6i8CX0lb6s7nzlqIIFGd2hNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUt NjA4MDk1MmYwZTA0LzEvWHVxeDVvR3FjR2ppOGk2ZVJ4aDVCRXU1TFo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUtNjA4MDk1MmYwZTA0 LzEvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg1agDAN BgkqhkiG9w0BAQsFAAOCAQEAgxwOT47n0jqmJFMaddNbgqIxvJki5nKkJL3Hzk+9 pTZfKs9oub1HqxGRr+oxIgyPof8tnaNjt0ZxEQ1bntoO+lIzwGKmUPwSw91lHscr mIncwCPQRq2FlQU8Ubmxui655jggZ3opgWnw5Z9fjzARqsTR4U1SZzoEChol2+a/ szIy/2sJiZq/F3R/GYdODP1wvo+kdmIpkcRXmfaVX0T/YFBo5IpK3skoP3si1nJZ u/YQ7RjcbKm89RUb2+MphyHx9ro5m+qfvw8WVd9sSavD23/VwKkVAxQri9bHq/mu ronhD/UFhjrtdwCbwVKfePbbTPN+yIxwEs8YLfF7IqGl1Q== -----END CERTIFICATE-----Generated at Tue Jan 20 02:49:06 2026 by rpki-client