This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/XD0135OLbU1MsihvHCBsqEpljiQ.roa File: XD0135OLbU1MsihvHCBsqEpljiQ.roa (raw, json) Hash identifier: xITQ+MYgOUCl2D5t+Xx1i1PqibkzsWUv4Xrgs7uGxqE= Subject key identifier: 5C:3D:35:DF:93:8B:6D:4D:4C:B2:28:6F:1C:20:6C:A8:4A:65:8E:24 Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Certificate serial: 019B7AC8473EB60474D83EAD9DB2297D140C Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/XD0135OLbU1MsihvHCBsqEpljiQ.roa Signing time: Thu 01 Jan 2026 18:18:24 +0000 ROA not before: Thu 01 Jan 2026 18:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6939 IP address blocks: 89.106.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:47:3e:b6:04:74:d8:3e:ad:9d:b2:29:7d:14:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Validity Not Before: Jan 1 18:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c3d35df938b6d4d4cb2286f1c206ca84a658e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c0:8c:b0:76:e1:ba:96:bc:8b:18:15:01:b7: 76:4c:2d:ad:5f:5b:ce:b4:7b:cf:ae:1c:53:74:7b: 3a:e5:81:80:b2:8c:8d:de:5e:8b:39:9b:a5:3f:28: 54:0f:31:36:17:4a:b4:0c:74:24:90:98:00:4a:2a: 6e:39:e0:97:76:41:05:b0:55:5a:1f:9d:4f:9d:2e: fd:71:4d:df:4f:43:6b:23:d0:99:aa:9b:00:ae:e0: f5:8b:ab:b1:b1:a0:c3:0d:b9:15:e7:11:68:28:75: b4:e4:fb:54:0c:d4:63:cd:87:9b:1e:a6:ee:28:0d: 08:03:da:81:ed:08:28:f9:0d:f5:bc:8a:b9:ce:d0: ec:97:7a:54:f5:e4:79:bc:6b:cc:dd:c4:3a:be:db: c2:b1:ca:cd:64:1f:c6:71:9e:79:da:e2:e1:c0:fe: b2:a1:56:46:a6:95:6e:53:43:ce:9b:c0:c3:e4:f9: ad:c2:87:b6:77:31:b2:c6:cb:b1:36:4d:75:b3:96: ba:fe:a3:62:e9:c0:e2:3f:9f:29:c7:90:24:97:35: 57:a6:03:ef:8e:d4:e6:56:0d:fd:a7:30:33:95:78: dd:c2:9c:98:e4:27:d4:29:7c:8d:0c:e4:62:95:d6: 98:27:35:e5:02:eb:46:89:bb:29:a1:d3:43:75:d1: 2b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:3D:35:DF:93:8B:6D:4D:4C:B2:28:6F:1C:20:6C:A8:4A:65:8E:24 X509v3 Authority Key Identifier: keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/XD0135OLbU1MsihvHCBsqEpljiQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.106.0.0/24 Signature Algorithm: sha256WithRSAEncryption 75:a2:8e:7e:f4:96:c8:e7:d0:de:f9:a2:ac:34:51:3c:46:64: 0f:c2:46:79:d6:48:aa:0f:95:b3:51:8d:05:71:3a:90:ac:2e: 8c:5a:5a:2e:be:79:83:da:8c:41:52:43:15:5d:d3:c3:52:c9: 55:93:8c:05:95:1d:da:0e:6a:8b:ce:fb:02:27:da:3f:1a:a3: c2:f3:0b:48:0e:b1:4b:6f:fa:f0:fd:3d:4a:fb:17:a5:7f:a4: fe:b6:6b:41:bc:9e:c4:66:fb:0d:04:45:71:ee:88:4d:27:6b: 6c:79:83:e9:86:e4:b9:e5:bc:64:28:23:ba:bf:56:4b:24:a7: 11:b8:69:9f:ab:c3:95:e2:62:10:17:14:b5:dd:92:57:0c:eb: be:2a:a6:f5:1c:d7:78:91:ed:62:5d:db:af:59:dc:2b:f9:29: 2a:ff:78:f0:d6:61:87:1b:a6:a8:94:ea:49:21:89:45:88:08: 24:58:78:0e:c9:eb:a8:fb:6f:dd:75:2e:78:2b:5d:4a:7f:d8: 24:5e:74:50:56:cb:a4:a3:22:e1:52:8c:98:7e:bd:3d:d8:d6: 4c:29:ea:fc:7c:c0:62:34:30:fc:c9:de:bf:bb:c1:8c:32:11: c1:10:93:de:c8:92:fe:73:01:f0:a7:41:6d:8b:b6:02:c6:75: 86:cb:12:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yEc+tgR02D6tnbIpfRQMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz MGNiNjMwHhcNMjYwMTAxMTgxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzNkMzVkZjkzOGI2ZDRkNGNiMjI4NmYxYzIwNmNhODRhNjU4ZTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMCMsHbhupa8ixgVAbd2TC2tX1vO tHvPrhxTdHs65YGAsoyN3l6LOZulPyhUDzE2F0q0DHQkkJgASipuOeCXdkEFsFVa H51PnS79cU3fT0NrI9CZqpsAruD1i6uxsaDDDbkV5xFoKHW05PtUDNRjzYebHqbu KA0IA9qB7Qgo+Q31vIq5ztDsl3pU9eR5vGvM3cQ6vtvCscrNZB/GcZ552uLhwP6y oVZGppVuU0POm8DD5Pmtwoe2dzGyxsuxNk11s5a6/qNi6cDiP58px5AklzVXpgPv jtTmVg39pzAzlXjdwpyY5CfUKXyNDORildaYJzXlAutGibspodNDddErIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFw9Nd+Ti21NTLIobxwgbKhKZY4kMB8GA1UdIwQY MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt YjRiOGRiMjBiMWZiLzEvWEQwMTM1T0xiVTFNc2lodkhDQnNxRXBsamlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWWoAMA0G CSqGSIb3DQEBCwUAA4IBAQB1oo5+9JbI59De+aKsNFE8RmQPwkZ51kiqD5WzUY0F cTqQrC6MWlouvnmD2oxBUkMVXdPDUslVk4wFlR3aDmqLzvsCJ9o/GqPC8wtIDrFL b/rw/T1K+xelf6T+tmtBvJ7EZvsNBEVx7ohNJ2tseYPphuS55bxkKCO6v1ZLJKcR uGmfq8OV4mIQFxS13ZJXDOu+Kqb1HNd4ke1iXduvWdwr+Skq/3jw1mGHG6aolOpJ IYlFiAgkWHgOyeuo+2/ddS54K11Kf9gkXnRQVsukoyLhUoyYfr092NZMKer8fMBi NDD8yd6/u8GMMhHBEJPeyJL+cwHwp0Fti7YCxnWGyxLh -----END CERTIFICATE-----Generated at Sat Jan 17 08:18:59 2026 by rpki-client