This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/XT_1jof6p0-6Rq9yGMKNddmG5gc.roa File: XT_1jof6p0-6Rq9yGMKNddmG5gc.roa (raw, json) Hash identifier: zoD4X0KwRY+rISekdKuEzTq6itAQw0dp7xwB+9IQQEU= Subject key identifier: 5D:3F:F5:8E:87:FA:A7:4F:BA:46:AF:72:18:C2:8D:75:D9:86:E6:07 Certificate issuer: /CN=e122e2b58233a193d1f72778565d6c98d76163a7 Certificate serial: 019B78A303E15368166954D0AAAE6990AC61 Authority key identifier: E1:22:E2:B5:82:33:A1:93:D1:F7:27:78:56:5D:6C:98:D7:61:63:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SLitYIzoZPR9yd4Vl1smNdhY6c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/XT_1jof6p0-6Rq9yGMKNddmG5gc.roa Signing time: Thu 01 Jan 2026 08:18:27 +0000 ROA not before: Thu 01 Jan 2026 08:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211757 IP address blocks: 31.43.172.0/23 maxlen: 24 31.43.172.0/24 maxlen: 24 31.43.173.0/24 maxlen: 24 141.138.152.0/21 maxlen: 24 141.138.152.0/24 maxlen: 24 141.138.153.0/24 maxlen: 24 141.138.154.0/24 maxlen: 24 141.138.155.0/24 maxlen: 24 141.138.156.0/24 maxlen: 24 141.138.157.0/24 maxlen: 24 141.138.158.0/24 maxlen: 24 141.138.159.0/24 maxlen: 24 185.242.186.0/24 maxlen: 24 2a10:9840::/29 maxlen: 48 2a10:9840:1::/48 maxlen: 48 2a10:9840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/4SLitYIzoZPR9yd4Vl1smNdhY6c.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/4SLitYIzoZPR9yd4Vl1smNdhY6c.mft rsync://rpki.ripe.net/repository/DEFAULT/4SLitYIzoZPR9yd4Vl1smNdhY6c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:03:e1:53:68:16:69:54:d0:aa:ae:69:90:ac:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e122e2b58233a193d1f72778565d6c98d76163a7 Validity Not Before: Jan 1 08:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5d3ff58e87faa74fba46af7218c28d75d986e607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:ee:c9:b2:16:dd:df:25:79:fb:73:c5:c7: 3d:b9:92:03:7b:e4:b7:33:01:e9:f5:d0:eb:f1:a7: 59:04:b3:83:f5:c5:1b:dd:6f:d3:4b:1a:46:63:f3: 5c:76:1d:fc:11:95:14:c2:ee:02:0b:10:ed:6f:18: 2c:df:d7:0a:22:2f:3a:66:c7:6d:25:dc:a6:f5:e9: f2:e1:f2:57:5c:db:e9:ff:1e:3f:ca:e3:50:2d:56: 98:c9:b8:ae:bb:85:64:e9:b5:c6:94:63:9b:62:2c: 4b:f9:01:2d:2d:0b:46:05:0c:c7:53:c7:6f:0d:9b: 43:54:c2:d9:25:23:b0:f0:84:1b:dc:39:23:e4:5d: d0:9f:9d:11:f3:9d:f8:5e:ca:ff:37:11:c2:12:a2: 06:86:65:cd:75:c9:e3:a8:8a:3d:3e:9c:f6:d8:29: 27:16:20:46:8b:09:20:ec:16:1b:27:82:4e:65:27: af:1e:73:34:18:26:b3:7a:a1:af:56:97:f4:e0:5a: 5d:5a:62:62:8c:fb:ae:af:83:6c:9b:ad:1f:1f:04: 09:5a:65:52:3b:d5:4e:39:ab:7c:21:7d:bf:d8:14: 52:d3:24:8e:d0:b8:db:e3:74:da:f2:a8:85:1f:76: f7:96:b6:cb:e7:78:7e:29:1c:d3:fa:ce:eb:6d:2d: 08:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3F:F5:8E:87:FA:A7:4F:BA:46:AF:72:18:C2:8D:75:D9:86:E6:07 X509v3 Authority Key Identifier: keyid:E1:22:E2:B5:82:33:A1:93:D1:F7:27:78:56:5D:6C:98:D7:61:63:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SLitYIzoZPR9yd4Vl1smNdhY6c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/XT_1jof6p0-6Rq9yGMKNddmG5gc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d815fd-cfab-4a4a-9595-4166b75b08af/1/4SLitYIzoZPR9yd4Vl1smNdhY6c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.43.172.0/23 141.138.152.0/21 185.242.186.0/24 IPv6: 2a10:9840::/29 Signature Algorithm: sha256WithRSAEncryption 71:cc:81:64:d0:2a:53:75:58:cf:20:8a:22:ce:da:95:5f:7e: be:e5:54:ef:8b:16:51:40:90:82:74:2b:71:fc:5e:bc:5f:9b: e8:94:4c:c9:c2:9b:2a:7f:9d:d6:29:b4:da:5b:90:c3:e4:61: a9:30:d0:15:9d:b1:e3:e2:30:fa:12:34:a6:f0:0e:9a:14:1d: bc:38:07:87:17:bf:e3:29:bc:9f:a5:f5:96:4d:81:88:2b:db: fa:14:7f:e3:d6:ab:ed:ed:1c:b7:a8:1f:40:b6:6c:bd:41:b8: f8:43:d3:26:c0:14:07:e1:37:10:c2:4f:2e:d1:1b:55:df:31: 5e:4b:c1:ea:6b:69:9a:c4:ac:c4:c5:45:98:a5:48:e7:2d:0d: fa:e3:21:22:cd:83:93:f5:49:84:d3:e6:80:a7:11:52:73:73: c5:77:26:19:1e:7f:f1:14:39:04:4d:24:a0:9d:9e:1d:2a:66: a8:4d:09:db:2d:4c:36:5d:f5:83:fe:55:65:de:43:ac:5e:53: 93:d6:54:c8:95:50:8e:17:8c:61:94:a1:ed:d2:e3:82:19:29: 5a:67:84:2f:9b:f7:cd:0a:a5:54:02:a2:19:7d:08:b8:8c:c8: ea:09:f4:77:c4:b6:52:e4:f5:8c:b1:e9:0c:18:9d:ca:a0:7d: c3:68:b3:dd -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt4owPhU2gWaVTQqq5pkKxhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxMjJlMmI1ODIzM2ExOTNkMWY3Mjc3ODU2NWQ2Yzk4ZDc2 MTYzYTcwHhcNMjYwMTAxMDgxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDNmZjU4ZTg3ZmFhNzRmYmE0NmFmNzIxOGMyOGQ3NWQ5ODZlNjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYfuybIW3d8leftzxcc9uZIDe+S3 MwHp9dDr8adZBLOD9cUb3W/TSxpGY/Ncdh38EZUUwu4CCxDtbxgs39cKIi86Zsdt Jdym9eny4fJXXNvp/x4/yuNQLVaYybiuu4Vk6bXGlGObYixL+QEtLQtGBQzHU8dv DZtDVMLZJSOw8IQb3Dkj5F3Qn50R8534Xsr/NxHCEqIGhmXNdcnjqIo9Ppz22Ckn FiBGiwkg7BYbJ4JOZSevHnM0GCazeqGvVpf04FpdWmJijPuur4Nsm60fHwQJWmVS O9VOOat8IX2/2BRS0ySO0Ljb43Ta8qiFH3b3lrbL53h+KRzT+s7rbS0ImQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFF0/9Y6H+qdPukavchjCjXXZhuYHMB8GA1UdIwQY MBaAFOEi4rWCM6GT0fcneFZdbJjXYWOnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFNMaXRZSXpvWlBSOXlkNFZsMXNtTmRoWTZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kODE1ZmQtY2ZhYi00YTRhLTk1OTUt NDE2NmI3NWIwOGFmLzEvWFRfMWpvZjZwMC02UnE5eUdNS05kZG1HNWdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9kODE1ZmQtY2ZhYi00YTRhLTk1OTUtNDE2NmI3NWIwOGFm LzEvNFNMaXRZSXpvWlBSOXlkNFZsMXNtTmRoWTZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBHyusAwQD jYqYAwQAufK6MA0EAgACMAcDBQMqEJhAMA0GCSqGSIb3DQEBCwUAA4IBAQBxzIFk 0CpTdVjPIIoiztqVX36+5VTvixZRQJCCdCtx/F68X5volEzJwpsqf53WKbTaW5DD 5GGpMNAVnbHj4jD6EjSm8A6aFB28OAeHF7/jKbyfpfWWTYGIK9v6FH/j1qvt7Ry3 qB9Atmy9Qbj4Q9MmwBQH4TcQwk8u0RtV3zFeS8Hqa2maxKzExUWYpUjnLQ364yEi zYOT9UmE0+aApxFSc3PFdyYZHn/xFDkETSSgnZ4dKmaoTQnbLUw2XfWD/lVl3kOs XlOT1lTIlVCOF4xhlKHt0uOCGSlaZ4Qvm/fNCqVUAqIZfQi4jMjqCfR3xLZS5PWM sekMGJ3KoH3DaLPd -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:52 2026 by rpki-client