This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/r11e6BGvSYclCDRsl-btea70b3g.roa File: r11e6BGvSYclCDRsl-btea70b3g.roa (raw, json) Hash identifier: lOFxWyREC47CcnbuwLaWzVKKTVQx2YrU/8xx/65QVks= Subject key identifier: AF:5D:5E:E8:11:AF:49:87:25:08:34:6C:97:E6:ED:79:AE:F4:6F:78 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA7570F664F672C18094DCA1938CA3E Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/r11e6BGvSYclCDRsl-btea70b3g.roa Signing time: Fri 02 Jan 2026 12:20:54 +0000 ROA not before: Fri 02 Jan 2026 12:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8568 IP address blocks: 195.166.160.0/22 maxlen: 24 195.166.160.0/24 maxlen: 24 195.166.163.0/24 maxlen: 24 195.166.168.0/21 maxlen: 24 195.166.176.0/21 maxlen: 24 195.166.176.0/23 maxlen: 24 195.166.176.0/24 maxlen: 24 195.166.180.0/22 maxlen: 24 195.166.184.0/21 maxlen: 24 195.166.184.0/22 maxlen: 24 195.166.188.0/24 maxlen: 24 195.166.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:57:0f:66:4f:67:2c:18:09:4d:ca:19:38:ca:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af5d5ee811af49872508346c97e6ed79aef46f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ca:e7:e3:36:f1:4c:0f:3a:8e:84:08:90:dd: d0:15:54:c9:21:03:c5:05:da:46:c3:19:ce:65:7d: c8:4a:b5:e0:f9:b4:7b:c7:50:20:fd:8a:3c:29:46: 52:c6:88:a5:53:c2:4a:a3:37:80:2c:85:7a:7d:14: 4a:84:b8:31:cc:d9:95:b4:93:17:b0:c3:1c:ee:c8: af:93:ba:48:fb:17:c0:f1:be:67:70:66:d0:ec:75: b4:66:b5:c1:65:36:fb:3e:30:a5:11:5b:85:fe:f0: cd:d1:48:3f:3a:1c:3c:d7:75:83:88:d8:09:d2:d4: 45:76:49:54:59:0b:d8:40:0a:1a:6f:7f:3f:df:9c: e4:30:ab:56:f6:ab:f9:9a:33:85:3e:cd:9b:5b:45: 30:69:f3:29:f9:1f:be:b9:f5:44:f9:49:de:a2:0f: 65:f8:cb:5c:bf:2d:fd:15:9f:5d:57:a2:85:3c:ea: cd:4c:12:0b:5b:6f:d3:de:39:cd:71:4d:32:1d:25: 9c:fc:8a:84:50:74:c8:b1:83:da:74:ac:0a:40:71: be:2e:8f:f1:39:1a:2e:29:ad:41:8c:53:47:f4:2b: f1:4a:24:4a:e4:1a:e4:7d:4f:e1:99:dc:3e:ac:02: 06:ad:04:ca:36:fd:22:48:c1:19:03:10:66:41:7b: 65:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5D:5E:E8:11:AF:49:87:25:08:34:6C:97:E6:ED:79:AE:F4:6F:78 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/r11e6BGvSYclCDRsl-btea70b3g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.166.160.0/22 195.166.168.0-195.166.191.255 Signature Algorithm: sha256WithRSAEncryption 5c:d6:c5:87:66:ed:2b:98:b8:3d:9b:70:8b:c3:15:30:10:a2: 50:05:d4:d1:88:ae:9a:3f:ff:1f:8d:a4:74:c9:f0:7f:d6:d4: d8:d2:d0:ad:72:b1:8a:86:3b:02:15:48:45:42:90:0a:49:37: e5:76:7c:6b:27:65:7f:0c:15:b5:dc:2d:2a:25:1c:9c:fc:ba: 3a:c2:1d:9d:ce:54:e5:62:49:d2:85:23:89:25:93:a4:f3:09: 7e:c3:60:87:7f:ba:91:aa:c9:e2:5f:86:16:0b:f4:12:85:b7: 9c:58:88:9a:9f:98:b4:ed:69:b1:2d:28:99:9a:f8:ab:07:c4: 18:97:cc:4b:55:ef:84:b2:32:bd:87:83:8a:9d:83:cc:b1:d4: fa:ac:33:c6:f1:3d:7f:07:e0:5e:90:8a:c5:b7:5b:f1:fe:bc: a0:0a:82:ea:89:fd:68:9f:52:52:70:e0:2d:23:12:da:03:dc: f9:4c:48:a1:69:eb:93:e2:6d:7b:4a:61:6d:f2:ab:00:1c:49: 36:e0:88:bd:af:0e:95:f2:e3:2b:c6:b8:07:53:d8:76:d0:92: d2:83:b2:42:62:d7:0f:c9:fe:69:b6:dc:16:98:ac:f0:20:c2: d6:1a:0b:47:88:78:1d:e5:a9:8e:76:e3:3a:b7:8f:2d:bb:ff: 6c:79:0b:74 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt+p1cPZk9nLBgJTcoZOMo+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjVkNWVlODExYWY0OTg3MjUwODM0NmM5N2U2ZWQ3OWFlZjQ2Zjc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMrn4zbxTA86joQIkN3QFVTJIQPF BdpGwxnOZX3ISrXg+bR7x1Ag/Yo8KUZSxoilU8JKozeALIV6fRRKhLgxzNmVtJMX sMMc7sivk7pI+xfA8b5ncGbQ7HW0ZrXBZTb7PjClEVuF/vDN0Ug/Ohw813WDiNgJ 0tRFdklUWQvYQAoab38/35zkMKtW9qv5mjOFPs2bW0UwafMp+R++ufVE+Uneog9l +Mtcvy39FZ9dV6KFPOrNTBILW2/T3jnNcU0yHSWc/IqEUHTIsYPadKwKQHG+Lo/x ORouKa1BjFNH9CvxSiRK5BrkfU/hmdw+rAIGrQTKNv0iSMEZAxBmQXtl3wIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFK9dXugRr0mHJQg0bJfm7Xmu9G94MB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvcjExZTZCR3ZTWWNsQ0RSc2wtYnRlYTcwYjNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCw6agMAwD BAPDpqgDBAbDpoAwDQYJKoZIhvcNAQELBQADggEBAFzWxYdm7SuYuD2bcIvDFTAQ olAF1NGIrpo//x+NpHTJ8H/W1NjS0K1ysYqGOwIVSEVCkApJN+V2fGsnZX8MFbXc LSolHJz8ujrCHZ3OVOViSdKFI4klk6TzCX7DYId/upGqyeJfhhYL9BKFt5xYiJqf mLTtabEtKJma+KsHxBiXzEtV74SyMr2Hg4qdg8yx1PqsM8bxPX8H4F6QisW3W/H+ vKAKguqJ/WifUlJw4C0jEtoD3PlMSKFp65PibXtKYW3yqwAcSTbgiL2vDpXy4yvG uAdT2HbQktKDskJi1w/J/mm23BaYrPAgwtYaC0eIeB3lqY524zq3jy27/2x5C3Q= -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:40 2026 by rpki-client