This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/Xhfwll5qzBdYOfcH7sdtSZRD6CY.roa File: Xhfwll5qzBdYOfcH7sdtSZRD6CY.roa (raw, json) Hash identifier: dBSrIB5LILMeGbKYxJ0D2gUZb3pLhSoSBLpMIfDMmlo= Subject key identifier: 5E:17:F0:96:5E:6A:CC:17:58:39:F7:07:EE:C7:6D:49:94:43:E8:26 Certificate issuer: /CN=b8c15fe1e19cb81cb3469fcaa5c6023a6c5c45a3 Certificate serial: 019B7910FA1AD30F571BD577B3D211A3ADC5 Authority key identifier: B8:C1:5F:E1:E1:9C:B8:1C:B3:46:9F:CA:A5:C6:02:3A:6C:5C:45:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMFf4eGcuByzRp_KpcYCOmxcRaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/Xhfwll5qzBdYOfcH7sdtSZRD6CY.roa Signing time: Thu 01 Jan 2026 10:18:34 +0000 ROA not before: Thu 01 Jan 2026 10:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42162 IP address blocks: 85.31.152.0/21 maxlen: 21 185.70.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/uMFf4eGcuByzRp_KpcYCOmxcRaM.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/uMFf4eGcuByzRp_KpcYCOmxcRaM.mft rsync://rpki.ripe.net/repository/DEFAULT/uMFf4eGcuByzRp_KpcYCOmxcRaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:fa:1a:d3:0f:57:1b:d5:77:b3:d2:11:a3:ad:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8c15fe1e19cb81cb3469fcaa5c6023a6c5c45a3 Validity Not Before: Jan 1 10:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5e17f0965e6acc175839f707eec76d499443e826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:1b:39:d0:f4:79:98:ea:1f:e8:3d:2d:0d: 8a:e9:8f:c4:e1:7a:0d:e3:7f:32:83:a8:3f:b8:68: 42:11:db:7d:7b:3a:8d:b7:65:43:a4:1e:ea:54:d8: 7b:e7:10:d5:c8:a1:96:26:59:0f:8e:d7:17:f1:b8: 65:98:f6:bb:a0:f3:9d:50:92:cf:8c:19:1e:70:bc: a9:40:49:94:63:51:3f:39:77:59:5d:57:7d:0d:b2: ab:60:10:aa:01:1d:eb:e9:09:b1:88:a4:2b:b5:0a: a5:44:ad:c6:71:37:54:e9:97:2c:a0:fe:aa:25:ff: 78:5c:55:48:3c:fa:c6:67:75:ee:1c:ca:2a:56:64: e4:02:08:28:a1:4d:ed:ba:40:95:6d:f5:78:c0:a9: d2:c4:d3:a8:d4:40:81:f2:8d:2e:2d:0b:27:7f:4b: e3:a4:27:ac:db:84:04:f0:34:a0:c8:bd:d3:c0:4c: af:4f:1a:db:32:43:13:b9:76:86:5e:d1:1d:9b:03: 19:89:23:9d:46:61:fe:58:c5:ad:c4:87:52:d0:63: 24:11:6c:00:20:39:e7:64:73:21:27:38:1b:b4:6a: 75:20:d7:e2:f4:79:92:e8:73:7c:85:41:9a:3e:ca: 28:ee:d1:0d:a0:17:f3:30:60:19:03:e3:fb:e8:53: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:17:F0:96:5E:6A:CC:17:58:39:F7:07:EE:C7:6D:49:94:43:E8:26 X509v3 Authority Key Identifier: keyid:B8:C1:5F:E1:E1:9C:B8:1C:B3:46:9F:CA:A5:C6:02:3A:6C:5C:45:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMFf4eGcuByzRp_KpcYCOmxcRaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/Xhfwll5qzBdYOfcH7sdtSZRD6CY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74192f-e7f4-48c0-84c9-f258c11ce77e/1/uMFf4eGcuByzRp_KpcYCOmxcRaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.31.152.0/21 185.70.80.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:f2:e5:4d:f2:6e:13:cf:bb:9b:ab:0d:05:75:a2:64:8d:82: 43:e1:30:81:96:d5:71:ce:1e:1c:24:fc:fc:c9:30:cb:29:2f: c7:ef:39:f6:c0:c1:94:fa:ba:7e:bf:8b:c1:23:e5:90:84:43: 7e:4a:f5:bc:8c:6a:e3:f3:f0:f7:d0:1a:6f:32:ed:70:4c:9e: 00:0e:86:b3:3d:c0:09:0f:86:7c:89:88:ab:02:fb:93:e1:10: bc:35:6a:27:22:58:7c:13:b7:09:e3:ad:68:84:82:76:64:a1: 63:4b:e2:ef:21:14:ac:b2:5c:73:db:47:db:d2:7e:2d:be:12: 30:e8:66:ae:e5:b4:76:5a:38:a7:f3:db:70:84:ee:e1:c0:1b: 75:c3:aa:a4:7c:7e:f8:6d:1a:d9:36:00:89:4d:f4:ae:b2:75: ff:35:b7:fa:0a:d7:ed:7f:47:41:25:0e:15:4d:ff:54:e5:54: c0:bf:05:9e:df:57:bf:37:b5:db:19:f7:c9:d9:a6:a5:25:7a: ca:29:7b:05:ec:d8:57:16:74:27:4c:93:ef:ef:7b:7b:d5:c1: a8:cd:62:0e:4f:9b:44:b1:26:2a:a7:9e:b5:b8:a9:1c:9f:8a: 59:2d:27:e6:18:b8:13:3d:ce:45:03:36:ac:9e:ff:88:9c:26: e5:d5:73:f0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EPoa0w9XG9V3s9IRo63FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YzE1ZmUxZTE5Y2I4MWNiMzQ2OWZjYWE1YzYwMjNhNmM1 YzQ1YTMwHhcNMjYwMTAxMTAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZTE3ZjA5NjVlNmFjYzE3NTgzOWY3MDdlZWM3NmQ0OTk0NDNlODI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhobOdD0eZjqH+g9LQ2K6Y/E4XoN 438yg6g/uGhCEdt9ezqNt2VDpB7qVNh75xDVyKGWJlkPjtcX8bhlmPa7oPOdUJLP jBkecLypQEmUY1E/OXdZXVd9DbKrYBCqAR3r6QmxiKQrtQqlRK3GcTdU6ZcsoP6q Jf94XFVIPPrGZ3XuHMoqVmTkAggooU3tukCVbfV4wKnSxNOo1ECB8o0uLQsnf0vj pCes24QE8DSgyL3TwEyvTxrbMkMTuXaGXtEdmwMZiSOdRmH+WMWtxIdS0GMkEWwA IDnnZHMhJzgbtGp1INfi9HmS6HN8hUGaPsoo7tENoBfzMGAZA+P76FMxSwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFF4X8JZeaswXWDn3B+7HbUmUQ+gmMB8GA1UdIwQY MBaAFLjBX+HhnLgcs0afyqXGAjpsXEWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU1GZjRlR2N1Qnl6UnBfS3BjWUNPbXhjUmFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS83NDE5MmYtZTdmNC00OGMwLTg0Yzkt ZjI1OGMxMWNlNzdlLzEvWGhmd2xsNXF6QmRZT2ZjSDdzZHRTWlJENkNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS83NDE5MmYtZTdmNC00OGMwLTg0YzktZjI1OGMxMWNlNzdl LzEvdU1GZjRlR2N1Qnl6UnBfS3BjWUNPbXhjUmFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDVR+YAwQC uUZQMA0GCSqGSIb3DQEBCwUAA4IBAQAs8uVN8m4Tz7ubqw0FdaJkjYJD4TCBltVx zh4cJPz8yTDLKS/H7zn2wMGU+rp+v4vBI+WQhEN+SvW8jGrj8/D30BpvMu1wTJ4A DoazPcAJD4Z8iYirAvuT4RC8NWonIlh8E7cJ461ohIJ2ZKFjS+LvIRSsslxz20fb 0n4tvhIw6Gau5bR2Wjin89twhO7hwBt1w6qkfH74bRrZNgCJTfSusnX/Nbf6Ctft f0dBJQ4VTf9U5VTAvwWe31e/N7XbGffJ2aalJXrKKXsF7NhXFnQnTJPv73t71cGo zWIOT5tEsSYqp561uKkcn4pZLSfmGLgTPc5FAzasnv+InCbl1XPw -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:07 2026 by rpki-client