This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/XCJhrSPpZucqjPgaRc-yq5mBolo.roa File: XCJhrSPpZucqjPgaRc-yq5mBolo.roa (raw, json) Hash identifier: aP3PkSYJUsN1jhJkS9fDL4Ew5pUSNdbtYk5nVTNSpag= Subject key identifier: 5C:22:61:AD:23:E9:66:E7:2A:8C:F8:1A:45:CF:B2:AB:99:81:A2:5A Certificate issuer: /CN=2cf022ce4dc81f03b3b30730a6c23eaf342ecc5e Certificate serial: 019B77C7628DF5A7656D717EA549FD7020F5 Authority key identifier: 2C:F0:22:CE:4D:C8:1F:03:B3:B3:07:30:A6:C2:3E:AF:34:2E:CC:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/XCJhrSPpZucqjPgaRc-yq5mBolo.roa Signing time: Thu 01 Jan 2026 04:18:34 +0000 ROA not before: Thu 01 Jan 2026 04:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47472 IP address blocks: 195.242.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.mft rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 16:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:62:8d:f5:a7:65:6d:71:7e:a5:49:fd:70:20:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cf022ce4dc81f03b3b30730a6c23eaf342ecc5e Validity Not Before: Jan 1 04:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c2261ad23e966e72a8cf81a45cfb2ab9981a25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:59:31:24:6a:b8:41:7f:f6:74:37:a1:22: 0c:c4:f0:1e:4e:23:9a:b3:b3:4c:c4:5a:61:5d:91: fc:1a:94:f9:71:48:3b:95:b2:a9:92:71:19:61:be: 80:bb:da:72:c9:b5:af:3e:7d:a4:7c:76:cd:00:dc: 36:6d:61:7f:4d:62:6c:e9:27:6b:fb:e7:be:ed:7b: 72:5b:5f:12:f8:e7:51:93:30:ca:96:0c:c2:92:ca: 26:61:06:c4:ac:57:62:44:af:6c:47:45:b7:2f:25: 54:d0:51:99:a1:34:c1:b8:75:47:36:b1:1d:ba:7b: 51:ed:e8:bd:a9:23:9a:90:6e:00:58:94:5f:a4:92: 94:9d:90:4b:01:ff:fd:f6:e1:f3:f1:ee:96:0d:8a: 88:48:0c:3c:0f:40:ba:c7:5f:c8:ae:80:94:62:cd: 26:ba:d9:1d:dc:3c:30:93:f2:8a:e3:9c:6d:65:63: 51:ed:f5:4b:3e:a8:9d:1f:a9:5f:3d:89:42:62:55: cb:f6:8f:17:52:29:98:df:73:99:54:5e:c3:78:b3: fc:d3:28:cd:ec:8f:81:0b:a5:52:d7:d7:34:6f:29: a9:7b:b5:3a:a6:23:60:8d:d1:18:6b:3c:4f:2c:72: f6:a7:c5:1c:ed:f9:2d:bf:44:ed:81:e0:05:ec:c7: d8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:61:AD:23:E9:66:E7:2A:8C:F8:1A:45:CF:B2:AB:99:81:A2:5A X509v3 Authority Key Identifier: keyid:2C:F0:22:CE:4D:C8:1F:03:B3:B3:07:30:A6:C2:3E:AF:34:2E:CC:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/XCJhrSPpZucqjPgaRc-yq5mBolo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.242.180.0/24 Signature Algorithm: sha256WithRSAEncryption b2:48:46:9e:d5:eb:3b:a6:79:48:07:e1:96:1a:39:28:8b:a4: 56:b8:b6:bb:ad:55:ee:df:ca:20:e3:cb:04:d8:e2:0a:eb:9a: 8c:6d:92:09:45:f2:b9:7f:c5:42:d8:c4:a1:ae:b9:ac:d4:37: 5d:c5:64:4a:f6:bd:9e:bc:74:20:86:38:e8:48:72:1a:27:37: d2:a0:cb:a5:27:77:10:d8:a6:33:fe:ab:42:ca:e1:83:d2:c9: 35:04:a5:8a:8d:10:4a:5d:72:8b:5e:e4:f4:cf:59:74:84:1e: a3:d7:04:36:4f:ff:58:ba:9a:d1:f3:6f:50:48:df:20:be:9a: 03:15:2f:30:5e:27:a3:59:30:49:b7:97:b0:66:90:7e:a6:64: e6:66:42:62:a1:4f:d7:1b:11:e0:06:04:b2:d5:5c:b0:7a:6d: 9f:63:65:6e:58:52:a8:68:b0:d6:2a:02:fb:85:38:88:12:68: 81:f3:06:56:17:b1:6f:aa:4e:7c:0d:a5:9c:c3:6d:a7:89:18: b3:87:dc:09:bc:cd:74:f0:12:b9:00:55:8a:31:2b:13:2e:cc: 6d:30:a9:8f:ab:36:19:a9:27:b2:26:6e:cd:5f:17:fa:a8:86: 04:a3:13:42:92:e4:e4:a1:48:2c:3a:ef:45:3e:eb:68:40:b2: f3:98:ac:74 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x2KN9adlbXF+pUn9cCD1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjZjAyMmNlNGRjODFmMDNiM2IzMDczMGE2YzIzZWFmMzQy ZWNjNWUwHhcNMjYwMTAxMDQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzIyNjFhZDIzZTk2NmU3MmE4Y2Y4MWE0NWNmYjJhYjk5ODFhMjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfdZMSRquEF/9nQ3oSIMxPAeTiOa s7NMxFphXZH8GpT5cUg7lbKpknEZYb6Au9pyybWvPn2kfHbNANw2bWF/TWJs6Sdr ++e+7XtyW18S+OdRkzDKlgzCksomYQbErFdiRK9sR0W3LyVU0FGZoTTBuHVHNrEd untR7ei9qSOakG4AWJRfpJKUnZBLAf/99uHz8e6WDYqISAw8D0C6x1/IroCUYs0m utkd3Dwwk/KK45xtZWNR7fVLPqidH6lfPYlCYlXL9o8XUimY33OZVF7DeLP80yjN 7I+BC6VS19c0bympe7U6piNgjdEYazxPLHL2p8Uc7fktv0TtgeAF7MfY+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFwiYa0j6WbnKoz4GkXPsquZgaJaMB8GA1UdIwQY MBaAFCzwIs5NyB8Ds7MHMKbCPq80LsxeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFBBaXprM0lId096c3djd3BzSS1yelF1ekY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC85MzA3ZjYtMTQ1OC00MzJmLTk5MTUt Y2E0ZWQ4MDk3OTcwLzEvWENKaHJTUHBadWNxalBnYVJjLXlxNW1Cb2xvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC85MzA3ZjYtMTQ1OC00MzJmLTk5MTUtY2E0ZWQ4MDk3OTcw LzEvTFBBaXprM0lId096c3djd3BzSS1yelF1ekY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/K0MA0G CSqGSIb3DQEBCwUAA4IBAQCySEae1es7pnlIB+GWGjkoi6RWuLa7rVXu38og48sE 2OIK65qMbZIJRfK5f8VC2MShrrms1DddxWRK9r2evHQghjjoSHIaJzfSoMulJ3cQ 2KYz/qtCyuGD0sk1BKWKjRBKXXKLXuT0z1l0hB6j1wQ2T/9YuprR829QSN8gvpoD FS8wXiejWTBJt5ewZpB+pmTmZkJioU/XGxHgBgSy1Vywem2fY2VuWFKoaLDWKgL7 hTiIEmiB8wZWF7Fvqk58DaWcw22niRizh9wJvM108BK5AFWKMSsTLsxtMKmPqzYZ qSeyJm7NXxf6qIYEoxNCkuTkoUgsOu9FPutoQLLzmKx0 -----END CERTIFICATE-----Generated at Mon Jan 12 01:33:55 2026 by rpki-client