This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/682230-b4cd-4595-bd1e-32a41ba3e3c5/1/XC4XfUnYUHL3GWJtIhpSMk_2aEg.roa File: XC4XfUnYUHL3GWJtIhpSMk_2aEg.roa (raw, json) Hash identifier: nZn5ZWsX+2jr8MBM7c6IGtv9xGRydCTv/MbUPDW32YI= Subject key identifier: 5C:2E:17:7D:49:D8:50:72:F7:19:62:6D:22:1A:52:32:4F:F6:68:48 Certificate issuer: /CN=fa7cfac6af108660d94e2fced61e61ff219c0a56 Certificate serial: 019B7D5CC64BC1F411F4A830D48E1133266D Authority key identifier: FA:7C:FA:C6:AF:10:86:60:D9:4E:2F:CE:D6:1E:61:FF:21:9C:0A:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-nz6xq8QhmDZTi_O1h5h_yGcClY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/682230-b4cd-4595-bd1e-32a41ba3e3c5/1/XC4XfUnYUHL3GWJtIhpSMk_2aEg.roa Signing time: Fri 02 Jan 2026 06:19:50 +0000 ROA not before: Fri 02 Jan 2026 06:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51377 IP address blocks: 185.210.176.0/22 maxlen: 22 193.221.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/682230-b4cd-4595-bd1e-32a41ba3e3c5/1/1-nz6xq8QhmDZTi_O1h5h_yGcClY.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/682230-b4cd-4595-bd1e-32a41ba3e3c5/1/1-nz6xq8QhmDZTi_O1h5h_yGcClY.mft rsync://rpki.ripe.net/repository/DEFAULT/1-nz6xq8QhmDZTi_O1h5h_yGcClY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 15:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c6:4b:c1:f4:11:f4:a8:30:d4:8e:11:33:26:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa7cfac6af108660d94e2fced61e61ff219c0a56 Validity Not Before: Jan 2 06:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c2e177d49d85072f719626d221a52324ff66848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1d:68:fc:88:8b:8e:f2:66:c7:94:c9:b6:c9: 45:ef:c0:ae:b4:d3:d9:4b:9e:83:1c:f6:59:13:92: 51:cb:59:55:50:7b:17:83:58:09:59:74:fe:89:5a: 82:bd:f4:5a:17:a2:db:f0:e9:e4:35:18:7d:15:19: c0:9d:78:e9:24:b0:57:9a:77:05:8a:22:c8:9b:30: c7:df:e3:37:31:87:e0:27:17:62:31:bd:c9:a6:a7: c5:11:da:a7:81:56:a2:fc:e4:58:13:a0:df:07:c2: c4:8b:43:5e:af:88:6a:00:d8:30:aa:0f:7e:51:cd: 84:0a:41:ae:ad:e6:a6:e4:bb:49:7d:05:b1:cc:e4: ca:31:20:19:a2:79:f3:3a:16:1a:82:0d:bf:e0:bf: f4:62:e3:fc:99:9b:a1:d8:e8:3b:ca:47:f9:21:20: 4e:8b:79:0a:88:24:16:2c:78:b8:80:24:eb:8b:bc: f7:2d:e2:d1:49:07:db:c0:d0:7c:29:d0:aa:89:41: 65:03:d1:6a:32:7f:50:6a:47:6e:4b:10:82:bb:d3: 9b:ca:13:9d:4d:bd:b2:3e:6a:b2:9f:dc:e9:f4:a7: 49:fe:25:11:6a:2e:16:3c:09:bb:86:40:20:ae:fb: e8:1a:1c:d7:57:c5:ea:88:3f:0c:c9:64:35:3e:9b: 80:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2E:17:7D:49:D8:50:72:F7:19:62:6D:22:1A:52:32:4F:F6:68:48 X509v3 Authority Key Identifier: keyid:FA:7C:FA:C6:AF:10:86:60:D9:4E:2F:CE:D6:1E:61:FF:21:9C:0A:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-nz6xq8QhmDZTi_O1h5h_yGcClY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/682230-b4cd-4595-bd1e-32a41ba3e3c5/1/XC4XfUnYUHL3GWJtIhpSMk_2aEg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/682230-b4cd-4595-bd1e-32a41ba3e3c5/1/1-nz6xq8QhmDZTi_O1h5h_yGcClY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.210.176.0/22 193.221.124.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:a3:b4:59:e7:81:67:35:9c:56:5e:3b:d4:2f:9f:62:40:1e: 07:ed:10:4a:2e:9b:b5:16:75:c6:0e:a0:1d:42:55:78:ed:97: b2:94:38:54:60:48:5e:89:5d:e1:d1:05:e6:2d:53:f0:8c:0e: 06:b6:6b:59:b9:f2:02:09:80:2a:7b:b3:d1:31:68:4d:79:b0: 1c:67:42:38:69:55:2e:fb:82:25:aa:3e:dc:dc:00:ae:5d:c7: 3a:c3:49:11:00:59:b2:9c:8b:7f:2c:6d:7f:e5:b9:14:4d:62: 18:39:92:e9:9d:af:72:df:32:5b:48:de:c9:94:eb:94:95:b8: 65:3f:1c:31:ef:19:8f:4b:e1:85:97:92:ba:d2:0d:f5:2b:20: a8:ac:e6:fe:2b:5e:af:86:c0:19:d2:84:96:b1:78:ee:63:1d: 95:d0:72:4b:d5:3a:c2:a2:22:a2:a5:1e:c3:b0:60:0c:15:3c: 0f:8a:3f:92:cc:2a:02:4d:26:54:bd:7a:7b:4e:95:91:ac:39: d1:3c:80:f6:77:55:bc:61:cb:75:0d:fb:dc:4b:6d:9d:e1:fb: 92:0f:60:19:50:62:2d:1c:70:c8:0e:d9:a9:c1:ba:8b:9d:cc: 29:44:d9:59:d1:bd:09:04:67:2b:b6:4d:2d:9b:29:cc:e6:ad: 25:e8:26:f7 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt9XMZLwfQR9Kgw1I4RMyZtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhN2NmYWM2YWYxMDg2NjBkOTRlMmZjZWQ2MWU2MWZmMjE5 YzBhNTYwHhcNMjYwMTAyMDYxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzJlMTc3ZDQ5ZDg1MDcyZjcxOTYyNmQyMjFhNTIzMjRmZjY2ODQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApx1o/IiLjvJmx5TJtslF78CutNPZ S56DHPZZE5JRy1lVUHsXg1gJWXT+iVqCvfRaF6Lb8OnkNRh9FRnAnXjpJLBXmncF iiLImzDH3+M3MYfgJxdiMb3JpqfFEdqngVai/ORYE6DfB8LEi0Ner4hqANgwqg9+ Uc2ECkGuream5LtJfQWxzOTKMSAZonnzOhYagg2/4L/0YuP8mZuh2Og7ykf5ISBO i3kKiCQWLHi4gCTri7z3LeLRSQfbwNB8KdCqiUFlA9FqMn9QakduSxCCu9ObyhOd Tb2yPmqyn9zp9KdJ/iURai4WPAm7hkAgrvvoGhzXV8XqiD8MyWQ1PpuAZQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFFwuF31J2FBy9xlibSIaUjJP9mhIMB8GA1UdIwQY MBaAFPp8+savEIZg2U4vztYeYf8hnApWMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1uejZ4cThRaG1EWlRpX08xaDVoX3lHY0NsWS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvNjgyMjMwLWI0Y2QtNDU5NS1iZDFl LTMyYTQxYmEzZTNjNS8xL1hDNFhmVW5ZVUhMM0dXSnRJaHBTTWtfMmFFZy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNmQvNjgyMjMwLWI0Y2QtNDU5NS1iZDFlLTMyYTQxYmEzZTNj NS8xLzEtbno2eHE4UWhtRFpUaV9PMWg1aF95R2NDbFkuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAK50rAD BADB3XwwDQYJKoZIhvcNAQELBQADggEBAEujtFnngWc1nFZeO9Qvn2JAHgftEEou m7UWdcYOoB1CVXjtl7KUOFRgSF6JXeHRBeYtU/CMDga2a1m58gIJgCp7s9ExaE15 sBxnQjhpVS77giWqPtzcAK5dxzrDSREAWbKci38sbX/luRRNYhg5kumdr3LfMltI 3smU65SVuGU/HDHvGY9L4YWXkrrSDfUrIKis5v4rXq+GwBnShJaxeO5jHZXQckvV OsKiIqKlHsOwYAwVPA+KP5LMKgJNJlS9entOlZGsOdE8gPZ3Vbxhy3UN+9xLbZ3h +5IPYBlQYi0ccMgO2anBuoudzClE2VnRvQkEZyu2TS2bKczmrSXoJvc= -----END CERTIFICATE-----Generated at Mon Jan 12 01:33:28 2026 by rpki-client