This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/XS46VDgJy0IpkMv_mAk6kiYR64Q.roa File: XS46VDgJy0IpkMv_mAk6kiYR64Q.roa (raw, json) Hash identifier: NjRGNJyDi7JXjX7bqeTNuVu8F0dNnfoYqiJ5z0av0uE= Subject key identifier: 5D:2E:3A:54:38:09:CB:42:29:90:CB:FF:98:09:3A:92:26:11:EB:84 Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Certificate serial: 019B29E0627211DB781CE740CB0337D34D15 Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/XS46VDgJy0IpkMv_mAk6kiYR64Q.roa Signing time: Wed 17 Dec 2025 01:15:29 +0000 ROA not before: Wed 17 Dec 2025 01:15:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 211462 IP address blocks: 93.120.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 17:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:e0:62:72:11:db:78:1c:e7:40:cb:03:37:d3:4d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Validity Not Before: Dec 17 01:15:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5d2e3a543809cb422990cbff98093a922611eb84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a8:0a:82:42:41:b7:a7:48:de:21:5d:d9:a9: c9:57:44:a4:ff:30:7e:94:24:ca:8a:e6:02:c7:e1: fb:0e:a7:38:22:b0:b9:f7:97:f0:58:77:58:bf:15: 78:18:ff:99:e5:02:ff:d9:ae:04:a6:f0:bb:bd:f9: 1c:f5:f3:8c:92:6a:c4:f6:38:9e:f5:9a:2c:43:3a: c6:f5:25:c0:2c:cc:d3:88:98:8d:3f:60:e5:9d:03: aa:6d:2c:d5:86:0d:0c:cb:a1:86:7b:e2:bc:6f:83: fd:5b:3d:4d:9f:d5:8d:03:9d:c2:ab:7c:c6:2c:ab: c5:3a:5e:b9:52:17:c1:6b:1c:1b:41:8f:1c:3d:33: fe:f7:11:c1:f8:db:3c:5d:f2:6e:38:d2:29:aa:a4: 00:c1:ab:e1:87:05:9b:86:66:22:f9:18:e6:29:27: 30:3a:92:5f:f6:08:77:1d:c9:f5:b2:67:a3:1b:ae: fd:d8:ab:c0:ac:41:5e:35:df:80:47:6b:82:0d:81: d4:71:40:d7:55:28:77:95:51:07:3f:db:95:1f:4c: 46:b3:a5:05:6e:76:9e:0d:b7:bd:b4:cb:0e:cb:e8: 92:0e:e9:8f:b7:fc:c9:f9:cd:e3:c0:aa:23:72:7e: 71:02:a6:ae:73:6f:8a:67:93:f9:2b:4e:a7:1f:92: 2c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2E:3A:54:38:09:CB:42:29:90:CB:FF:98:09:3A:92:26:11:EB:84 X509v3 Authority Key Identifier: keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/XS46VDgJy0IpkMv_mAk6kiYR64Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.120.84.0/24 Signature Algorithm: sha256WithRSAEncryption 86:8a:51:be:68:13:7f:43:b7:18:7c:4e:c1:32:f3:c5:f3:0e: 93:78:ff:45:11:ef:46:6c:0d:38:9c:76:a0:56:e5:6a:21:11: 52:c0:f1:56:4c:94:72:ac:42:46:f5:12:a2:4f:00:ea:13:20: 7e:50:8d:ea:2b:cf:dd:1c:b7:2b:ca:08:1a:56:e8:c7:b9:a9: bf:88:e7:01:d6:5b:70:77:23:e7:31:d7:10:53:f4:b5:b4:c0: d7:8c:b4:df:3f:5a:11:00:a7:d0:46:89:3e:62:0a:ee:a2:f1: 6b:8a:26:ec:7c:53:b7:17:41:14:33:82:d2:40:80:64:cd:42: 04:8d:25:b6:a0:a7:d7:12:22:3d:f2:7c:e2:55:ce:23:5b:a0: 03:87:e8:31:22:b3:40:b6:f8:19:68:ff:ef:15:59:de:01:65: 15:10:59:7b:50:b2:cc:7b:15:c2:05:c8:02:25:3f:3e:0e:10: ec:58:ce:67:c1:3d:21:1e:5c:ba:68:b6:4c:77:dc:db:89:93: f5:20:15:62:7e:ed:24:dc:fd:5e:c7:d1:02:40:74:d9:7b:d6: 02:d1:e3:14:fe:83:a0:6a:61:94:92:7a:ce:e6:b1:ba:11:e6: ac:f0:6f:a5:b5:ce:ae:e9:74:92:f9:53:53:53:f4:13:d2:b3: b6:1d:56:06 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsp4GJyEdt4HOdAywM3000VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy MjRkYWEwHhcNMjUxMjE3MDExNTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZDJlM2E1NDM4MDljYjQyMjk5MGNiZmY5ODA5M2E5MjI2MTFlYjg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA66gKgkJBt6dI3iFd2anJV0Sk/zB+ lCTKiuYCx+H7Dqc4IrC595fwWHdYvxV4GP+Z5QL/2a4EpvC7vfkc9fOMkmrE9jie 9ZosQzrG9SXALMzTiJiNP2DlnQOqbSzVhg0My6GGe+K8b4P9Wz1Nn9WNA53Cq3zG LKvFOl65UhfBaxwbQY8cPTP+9xHB+Ns8XfJuONIpqqQAwavhhwWbhmYi+RjmKScw OpJf9gh3Hcn1smejG6792KvArEFeNd+AR2uCDYHUcUDXVSh3lVEHP9uVH0xGs6UF bnaeDbe9tMsOy+iSDumPt/zJ+c3jwKojcn5xAqauc2+KZ5P5K06nH5IstQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF0uOlQ4CctCKZDL/5gJOpImEeuEMB8GA1UdIwQY MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt ZGMwNmRkODA1OTYwLzEvWFM0NlZEZ0p5MElwa012X21BazZraVlSNjRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXXhUMA0G CSqGSIb3DQEBCwUAA4IBAQCGilG+aBN/Q7cYfE7BMvPF8w6TeP9FEe9GbA04nHag VuVqIRFSwPFWTJRyrEJG9RKiTwDqEyB+UI3qK8/dHLcryggaVujHuam/iOcB1ltw dyPnMdcQU/S1tMDXjLTfP1oRAKfQRok+YgruovFriibsfFO3F0EUM4LSQIBkzUIE jSW2oKfXEiI98nziVc4jW6ADh+gxIrNAtvgZaP/vFVneAWUVEFl7ULLMexXCBcgC JT8+DhDsWM5nwT0hHly6aLZMd9zbiZP1IBVifu0k3P1ex9ECQHTZe9YC0eMU/oOg amGUknrO5rG6Eeas8G+ltc6u6XSS+VNTU/QT0rO2HVYG -----END CERTIFICATE-----Generated at Sat Dec 20 02:52:06 2025 by rpki-client