This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xSlSopVrA7ar-AzHU43kvDoRkZo.roa File: xSlSopVrA7ar-AzHU43kvDoRkZo.roa (raw, json) Hash identifier: EIL/MjiMscFzU/GPSjw2hRcZh5VxPz7Q7L9p0rCpFC0= Subject key identifier: C5:29:52:A2:95:6B:03:B6:AB:F8:0C:C7:53:8D:E4:BC:3A:11:91:9A Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019B7D5CCA82F1271F425B18AA959EB0CD89 Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xSlSopVrA7ar-AzHU43kvDoRkZo.roa Signing time: Fri 02 Jan 2026 06:19:51 +0000 ROA not before: Fri 02 Jan 2026 06:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47550 IP address blocks: 89.23.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ca:82:f1:27:1f:42:5b:18:aa:95:9e:b0:cd:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Jan 2 06:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c52952a2956b03b6abf80cc7538de4bc3a11919a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ba:42:b6:04:68:a9:65:e5:64:be:bc:e9:25: 11:cf:4a:5c:1a:91:49:25:63:11:a5:2e:19:0e:14: db:03:7b:93:e7:22:51:47:bf:77:fd:72:3f:8b:2e: df:17:4c:1d:a4:43:3c:e5:6f:7d:98:9a:8a:76:d5: 0e:10:52:34:be:ee:43:20:e7:98:04:8d:86:55:c6: 00:7e:42:55:7d:6d:32:4b:34:df:f5:b0:78:ab:3b: 89:24:cf:2d:47:6d:e1:24:16:31:4e:4a:d6:80:f4: 7e:26:e1:9d:1b:df:e9:d3:d5:88:bb:fd:d4:b5:ba: dd:ba:8e:06:20:60:03:f4:91:d7:4e:d0:6c:df:15: b7:5d:c8:84:e7:ec:7c:38:f0:c8:a1:ec:d4:14:8f: f0:30:78:e1:0d:ce:89:b2:5d:5a:6b:34:a3:75:f6: 12:d3:6f:fb:66:e9:2d:73:48:ec:36:a5:ef:25:66: 76:1f:5c:8f:f5:8a:32:84:08:6e:54:bf:77:d6:17: 79:6b:38:99:71:10:86:97:1f:3c:89:82:4b:70:12: 75:6a:7c:7d:7a:f7:fb:4f:9e:af:e2:be:3e:6b:93: c6:0d:a6:57:28:d1:93:77:0f:10:cf:6d:dc:01:61: 57:0e:96:69:3c:29:69:97:df:fb:39:a7:29:a8:ec: 99:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:29:52:A2:95:6B:03:B6:AB:F8:0C:C7:53:8D:E4:BC:3A:11:91:9A X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xSlSopVrA7ar-AzHU43kvDoRkZo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.23.111.0/24 Signature Algorithm: sha256WithRSAEncryption a6:fd:41:bd:fd:4f:ef:eb:5d:8b:53:4f:d5:5f:d4:ca:19:32: e3:d6:c4:d3:ce:7d:02:fd:51:05:1b:0d:d7:2a:09:0b:28:a2: 51:06:08:9f:d7:20:8e:6e:94:7c:76:2e:f3:a8:9e:ed:29:23: a5:b2:d7:4e:d5:cf:65:e6:a9:0a:68:67:b8:ee:96:24:0f:25: 99:4c:e7:00:3b:94:01:81:7a:57:05:3a:b7:d2:34:f8:e1:3f: 12:a7:47:cb:f6:48:b6:4b:05:aa:28:d0:03:b5:39:26:3e:cd: b6:7e:fd:4a:a6:1e:2b:89:63:f5:5d:b2:61:c0:5c:48:1e:c5: 08:f9:0c:85:6f:e5:c0:c7:54:47:fa:3e:74:5c:6c:05:84:e6: 39:2e:64:78:7b:ed:33:b7:29:dd:59:13:88:46:f5:4b:64:16: f3:0a:e9:e2:78:c0:dc:aa:43:fa:84:85:5f:f0:20:e1:4a:3f: 84:eb:e8:93:58:58:68:6c:72:11:10:7c:8c:7f:34:5c:46:64: 1e:62:1a:aa:9f:0c:88:10:ac:ed:74:2b:56:89:1c:94:ec:1a: 9f:46:8a:50:35:d2:fd:d1:bc:e6:6c:79:89:0d:a1:64:38:e0: 79:22:99:cd:8a:38:31:db:3a:86:8d:86:0d:9a:c0:05:30:05: 9f:c1:22:8a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XMqC8ScfQlsYqpWesM2JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjYwMTAyMDYxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNTI5NTJhMjk1NmIwM2I2YWJmODBjYzc1MzhkZTRiYzNhMTE5MTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLpCtgRoqWXlZL686SURz0pcGpFJ JWMRpS4ZDhTbA3uT5yJRR793/XI/iy7fF0wdpEM85W99mJqKdtUOEFI0vu5DIOeY BI2GVcYAfkJVfW0ySzTf9bB4qzuJJM8tR23hJBYxTkrWgPR+JuGdG9/p09WIu/3U tbrduo4GIGAD9JHXTtBs3xW3XciE5+x8OPDIoezUFI/wMHjhDc6Jsl1aazSjdfYS 02/7Zuktc0jsNqXvJWZ2H1yP9YoyhAhuVL931hd5aziZcRCGlx88iYJLcBJ1anx9 evf7T56v4r4+a5PGDaZXKNGTdw8Qz23cAWFXDpZpPClpl9/7OacpqOyZhwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMUpUqKVawO2q/gMx1ON5Lw6EZGaMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEveFNsU29wVnJBN2FyLUF6SFU0M2t2RG9Sa1pvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRdvMA0G CSqGSIb3DQEBCwUAA4IBAQCm/UG9/U/v612LU0/VX9TKGTLj1sTTzn0C/VEFGw3X KgkLKKJRBgif1yCObpR8di7zqJ7tKSOlstdO1c9l5qkKaGe47pYkDyWZTOcAO5QB gXpXBTq30jT44T8Sp0fL9ki2SwWqKNADtTkmPs22fv1Kph4riWP1XbJhwFxIHsUI +QyFb+XAx1RH+j50XGwFhOY5LmR4e+0ztyndWROIRvVLZBbzCunieMDcqkP6hIVf 8CDhSj+E6+iTWFhobHIREHyMfzRcRmQeYhqqnwyIEKztdCtWiRyU7BqfRopQNdL9 0bzmbHmJDaFkOOB5IpnNijgx2zqGjYYNmsAFMAWfwSKK -----END CERTIFICATE-----Generated at Mon Jan 19 19:56:29 2026 by rpki-client