This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/xBPcvMY04Iz5pO7ag4j4JzJy6d8.roa File: xBPcvMY04Iz5pO7ag4j4JzJy6d8.roa (raw, json) Hash identifier: hrIC3ZE6aLAF8bOv2982lAad+AAEAjlPEsc9wTm6AZ4= Subject key identifier: C4:13:DC:BC:C6:34:E0:8C:F9:A4:EE:DA:83:88:F8:27:32:72:E9:DF Certificate issuer: /CN=992c6e09c192c5580a4a1d294150d6237ab8925d Certificate serial: 019B7BA3C9C52F2FC1613E3401288430AC10 Authority key identifier: 99:2C:6E:09:C1:92:C5:58:0A:4A:1D:29:41:50:D6:23:7A:B8:92:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSxuCcGSxVgKSh0pQVDWI3q4kl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/xBPcvMY04Iz5pO7ag4j4JzJy6d8.roa Signing time: Thu 01 Jan 2026 22:18:10 +0000 ROA not before: Thu 01 Jan 2026 22:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15439 IP address blocks: 91.195.152.0/23 maxlen: 23 91.195.152.0/24 maxlen: 24 91.195.153.0/24 maxlen: 24 91.200.20.0/22 maxlen: 22 91.200.20.0/23 maxlen: 23 91.200.22.0/23 maxlen: 23 193.58.70.0/23 maxlen: 23 193.58.70.0/24 maxlen: 24 193.58.71.0/24 maxlen: 24 195.66.158.0/23 maxlen: 23 195.66.158.0/24 maxlen: 24 195.66.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/mSxuCcGSxVgKSh0pQVDWI3q4kl0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/mSxuCcGSxVgKSh0pQVDWI3q4kl0.mft rsync://rpki.ripe.net/repository/DEFAULT/mSxuCcGSxVgKSh0pQVDWI3q4kl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:c9:c5:2f:2f:c1:61:3e:34:01:28:84:30:ac:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=992c6e09c192c5580a4a1d294150d6237ab8925d Validity Not Before: Jan 1 22:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c413dcbcc634e08cf9a4eeda8388f8273272e9df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:90:c4:d9:88:ef:62:3e:5b:e9:76:49:ea:77: 4e:81:69:b9:cf:88:25:1e:3f:37:4a:ca:f6:5f:37: be:21:b5:8c:2f:df:82:0e:a3:b0:bb:ca:f6:f0:ea: ed:cd:76:d6:ae:0f:b0:47:c3:79:cb:2f:e3:ba:71: 43:9e:d3:6e:c0:c8:4e:eb:8c:4d:ff:72:ae:66:8a: 17:ed:67:45:d7:ad:ef:23:1c:51:f9:09:b1:e1:5d: 99:f1:1d:65:e7:5b:9c:6b:8e:6c:2c:de:75:b3:29: 82:05:7f:e7:a3:45:fc:0f:ca:d8:d0:6d:ab:a5:b3: 07:5f:9e:37:ad:bc:23:2d:44:9d:45:2c:69:0b:d4: 87:1b:23:06:92:c4:ba:e2:66:26:6a:e4:3d:7f:0e: 2f:df:ee:09:84:3f:e2:7d:4e:b5:40:0e:2e:92:57: 64:92:4a:c9:33:69:8d:82:1d:0c:3d:51:77:31:48: 8c:0d:12:52:37:b7:71:da:70:09:21:ce:e8:c5:7e: 42:ae:df:29:bb:54:4f:3a:33:c7:24:b3:34:e9:ce: 28:61:f8:55:d2:72:02:11:bc:5b:31:f8:a4:47:8c: bf:e0:00:56:85:7e:92:ab:aa:23:25:2a:3a:0c:fa: ef:19:b8:48:d5:36:e7:38:3b:bd:e4:da:a4:2d:30: 62:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:13:DC:BC:C6:34:E0:8C:F9:A4:EE:DA:83:88:F8:27:32:72:E9:DF X509v3 Authority Key Identifier: keyid:99:2C:6E:09:C1:92:C5:58:0A:4A:1D:29:41:50:D6:23:7A:B8:92:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSxuCcGSxVgKSh0pQVDWI3q4kl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/xBPcvMY04Iz5pO7ag4j4JzJy6d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/93dd43-9933-42ca-afc2-2c1891cacac7/1/mSxuCcGSxVgKSh0pQVDWI3q4kl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.195.152.0/23 91.200.20.0/22 193.58.70.0/23 195.66.158.0/23 Signature Algorithm: sha256WithRSAEncryption 81:1b:92:d0:74:e4:39:41:d5:67:c5:5b:35:f8:1e:49:f5:0c: 17:85:ff:e5:1f:9c:2d:02:b5:93:b8:eb:5c:d5:5f:a8:d5:9e: 13:1d:f0:bd:e9:66:26:54:c4:f4:61:9b:5d:fa:b6:7a:36:73: 86:5a:5a:77:f7:c2:29:92:d0:01:57:53:9b:7a:40:6b:c9:4e: 81:9b:86:c5:10:28:9a:b3:86:22:cc:ef:4e:39:5e:09:17:74: c1:a1:30:b3:f5:46:d2:f7:a5:40:59:96:d7:7a:36:71:f1:de: 73:27:62:99:d7:dd:5b:0d:d4:39:9f:6d:4f:b8:33:14:c5:f3: ca:31:d6:82:63:0a:e7:aa:58:8b:14:0f:30:df:23:7b:7d:11: ec:dc:d9:98:a0:b7:e3:d4:b2:d1:05:ac:05:9d:72:25:60:96: 32:d0:b6:df:f5:1e:b5:8a:15:d5:0d:15:cc:1d:8e:66:9a:33: 79:6a:aa:5a:a7:93:d5:04:2e:cb:83:66:d4:2d:1c:e2:aa:52: 02:03:63:f7:06:7c:76:f1:ca:fa:08:8e:4a:0e:e2:29:98:eb: 45:8e:df:fe:9a:b2:1c:f6:ed:65:8c:95:da:36:ad:b7:91:02: 67:c3:32:0a:b0:b9:20:ff:68:98:36:31:7a:74:b7:d3:e7:b8: 9e:d7:25:93 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt7o8nFLy/BYT40ASiEMKwQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MmM2ZTA5YzE5MmM1NTgwYTRhMWQyOTQxNTBkNjIzN2Fi ODkyNWQwHhcNMjYwMTAxMjIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDEzZGNiY2M2MzRlMDhjZjlhNGVlZGE4Mzg4ZjgyNzMyNzJlOWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5DE2YjvYj5b6XZJ6ndOgWm5z4gl Hj83Ssr2Xze+IbWML9+CDqOwu8r28OrtzXbWrg+wR8N5yy/junFDntNuwMhO64xN /3KuZooX7WdF163vIxxR+Qmx4V2Z8R1l51uca45sLN51symCBX/no0X8D8rY0G2r pbMHX543rbwjLUSdRSxpC9SHGyMGksS64mYmauQ9fw4v3+4JhD/ifU61QA4ukldk kkrJM2mNgh0MPVF3MUiMDRJSN7dx2nAJIc7oxX5Crt8pu1RPOjPHJLM06c4oYfhV 0nICEbxbMfikR4y/4ABWhX6Sq6ojJSo6DPrvGbhI1TbnODu95NqkLTBiRwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFMQT3LzGNOCM+aTu2oOI+CcycunfMB8GA1UdIwQY MBaAFJksbgnBksVYCkodKUFQ1iN6uJJdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVN4dUNjR1N4VmdLU2gwcFFWRFdJM3E0a2wwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC85M2RkNDMtOTkzMy00MmNhLWFmYzIt MmMxODkxY2FjYWM3LzEveEJQY3ZNWTA0SXo1cE83YWc0ajRKekp5NmQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC85M2RkNDMtOTkzMy00MmNhLWFmYzItMmMxODkxY2FjYWM3 LzEvbVN4dUNjR1N4VmdLU2gwcFFWRFdJM3E0a2wwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBW8OYAwQC W8gUAwQBwTpGAwQBw0KeMA0GCSqGSIb3DQEBCwUAA4IBAQCBG5LQdOQ5QdVnxVs1 +B5J9QwXhf/lH5wtArWTuOtc1V+o1Z4THfC96WYmVMT0YZtd+rZ6NnOGWlp398Ip ktABV1ObekBryU6Bm4bFECias4YizO9OOV4JF3TBoTCz9UbS96VAWZbXejZx8d5z J2KZ191bDdQ5n21PuDMUxfPKMdaCYwrnqliLFA8w3yN7fRHs3NmYoLfj1LLRBawF nXIlYJYy0Lbf9R61ihXVDRXMHY5mmjN5aqpap5PVBC7Lg2bULRziqlICA2P3Bnx2 8cr6CI5KDuIpmOtFjt/+mrIc9u1ljJXaNq23kQJnwzIKsLkg/2iYNjF6dLfT57ie 1yWT -----END CERTIFICATE-----Generated at Wed Jan 7 06:55:50 2026 by rpki-client