This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/xedrbfhupLPmqrs2cnazcNbuQ6s.roa File: xedrbfhupLPmqrs2cnazcNbuQ6s.roa (raw, json) Hash identifier: Y/EDgTZimwkgVMZ0kvboCaG04PSLtb5uHoL17HArkIQ= Subject key identifier: C5:E7:6B:6D:F8:6E:A4:B3:E6:AA:BB:36:72:76:B3:70:D6:EE:43:AB Certificate issuer: /CN=c2d82ccf0c8dea7d7f6ad72e8e62462d7be20d56 Certificate serial: 019B7834886EF96E53B883C39ED5292C94D1 Authority key identifier: C2:D8:2C:CF:0C:8D:EA:7D:7F:6A:D7:2E:8E:62:46:2D:7B:E2:0D:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtgszwyN6n1_atcujmJGLXviDVY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/xedrbfhupLPmqrs2cnazcNbuQ6s.roa Signing time: Thu 01 Jan 2026 06:17:47 +0000 ROA not before: Thu 01 Jan 2026 06:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49810 IP address blocks: 45.84.147.0/24 maxlen: 24 2a04:d202::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/wtgszwyN6n1_atcujmJGLXviDVY.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/wtgszwyN6n1_atcujmJGLXviDVY.mft rsync://rpki.ripe.net/repository/DEFAULT/wtgszwyN6n1_atcujmJGLXviDVY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:88:6e:f9:6e:53:b8:83:c3:9e:d5:29:2c:94:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2d82ccf0c8dea7d7f6ad72e8e62462d7be20d56 Validity Not Before: Jan 1 06:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c5e76b6df86ea4b3e6aabb367276b370d6ee43ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:55:36:cf:5f:93:ca:d5:24:3b:29:60:01:32: 8c:e9:fe:73:67:98:a4:a0:b8:77:7a:d3:af:f8:4b: f1:25:ad:b2:bf:47:e1:cc:80:33:dc:0b:77:cd:52: 4b:af:64:64:e6:bf:43:b5:82:c9:3f:43:c9:95:14: a8:5c:1c:a0:ec:cf:ad:6c:fe:1e:08:3a:78:37:e6: 0c:48:41:08:9d:70:4b:1c:dc:8d:c6:26:39:c1:f5: 92:94:a5:fd:3d:44:0d:f3:9d:21:d2:c9:44:d2:a7: d7:fd:d6:39:d6:84:5a:13:f6:c4:91:89:0b:7c:30: 7d:1c:82:f1:67:75:03:5a:79:da:3d:c0:67:66:e4: c2:1c:81:00:2c:76:bf:a1:56:04:9d:f6:87:5a:b6: 83:6d:a1:6d:0a:13:9d:98:ad:24:0a:3f:ec:68:64: 7a:f6:71:76:e3:74:cb:7d:84:fe:69:93:ae:d2:e6: 85:c4:ec:7d:a8:12:36:3b:e5:ef:21:f3:55:82:a2: 70:21:bc:11:4d:1a:ad:f6:94:84:98:09:06:cd:55: 47:17:e9:8c:a1:63:0e:ab:5c:3e:b2:14:86:33:3e: 76:fb:24:a8:15:c5:78:a6:d8:5f:e6:2c:c4:bb:36: 32:17:9a:31:8c:93:b8:10:4e:a5:43:61:3e:cd:d2: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E7:6B:6D:F8:6E:A4:B3:E6:AA:BB:36:72:76:B3:70:D6:EE:43:AB X509v3 Authority Key Identifier: keyid:C2:D8:2C:CF:0C:8D:EA:7D:7F:6A:D7:2E:8E:62:46:2D:7B:E2:0D:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtgszwyN6n1_atcujmJGLXviDVY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/xedrbfhupLPmqrs2cnazcNbuQ6s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/327952-4c66-4b95-b6de-43118e496d40/1/wtgszwyN6n1_atcujmJGLXviDVY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.147.0/24 IPv6: 2a04:d202::/32 Signature Algorithm: sha256WithRSAEncryption b2:68:00:a7:57:46:e6:8b:91:85:43:d5:2a:9f:69:07:17:98: 8f:9a:58:90:42:1f:f7:96:e9:ab:81:35:83:5a:4e:4f:a6:33: 5d:17:9b:e6:35:98:1a:99:39:f0:fc:8d:8a:b5:df:7c:56:e0: 43:d2:ea:b4:e5:27:5f:f8:9f:a5:2e:10:3c:93:53:63:b2:89: 82:3b:54:6e:5f:ed:c2:9b:7b:b6:b8:15:30:e3:da:26:b5:89: 86:4e:71:d4:7f:ef:2c:1d:78:9e:c9:63:ad:e1:ba:2f:38:e6: d8:f3:42:25:12:3a:cd:e1:6a:6c:d5:4b:27:ac:3a:a3:8c:8d: d3:91:29:9a:b1:c6:90:38:c4:c1:b4:bf:09:1e:c3:20:29:e4: 07:36:87:59:ea:42:d4:ce:7b:2f:38:cd:e9:98:bb:b2:1e:8e: 45:94:a2:4d:8f:fb:df:75:66:11:31:40:ef:56:46:e1:c3:87: fe:0b:24:1f:d0:c0:41:b8:93:ef:f9:6d:3e:4c:f5:88:93:1e: b0:ec:31:c6:8b:a5:c9:5b:e7:a1:02:33:d0:c2:41:c5:d5:e8: 48:eb:0d:e4:d1:ef:64:29:ea:57:c9:9b:2a:0c:fb:e8:bb:3e: c8:bc:24:68:3b:95:50:25:a0:93:93:79:e5:cc:45:57:f5:21: 82:a4:e1:a9 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NIhu+W5TuIPDntUpLJTRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZDgyY2NmMGM4ZGVhN2Q3ZjZhZDcyZThlNjI0NjJkN2Jl MjBkNTYwHhcNMjYwMTAxMDYxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNWU3NmI2ZGY4NmVhNGIzZTZhYWJiMzY3Mjc2YjM3MGQ2ZWU0M2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1U2z1+TytUkOylgATKM6f5zZ5ik oLh3etOv+EvxJa2yv0fhzIAz3At3zVJLr2Rk5r9DtYLJP0PJlRSoXByg7M+tbP4e CDp4N+YMSEEInXBLHNyNxiY5wfWSlKX9PUQN850h0slE0qfX/dY51oRaE/bEkYkL fDB9HILxZ3UDWnnaPcBnZuTCHIEALHa/oVYEnfaHWraDbaFtChOdmK0kCj/saGR6 9nF243TLfYT+aZOu0uaFxOx9qBI2O+XvIfNVgqJwIbwRTRqt9pSEmAkGzVVHF+mM oWMOq1w+shSGMz52+ySoFcV4pthf5izEuzYyF5oxjJO4EE6lQ2E+zdKJWQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMXna234bqSz5qq7NnJ2s3DW7kOrMB8GA1UdIwQY MBaAFMLYLM8Mjep9f2rXLo5iRi174g1WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3Rnc3p3eU42bjFfYXRjdWptSkdMWHZpRFZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zMjc5NTItNGM2Ni00Yjk1LWI2ZGUt NDMxMThlNDk2ZDQwLzEveGVkcmJmaHVwTFBtcXJzMmNuYXpjTmJ1UTZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8zMjc5NTItNGM2Ni00Yjk1LWI2ZGUtNDMxMThlNDk2ZDQw LzEvd3Rnc3p3eU42bjFfYXRjdWptSkdMWHZpRFZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVSTMA0E AgACMAcDBQAqBNICMA0GCSqGSIb3DQEBCwUAA4IBAQCyaACnV0bmi5GFQ9Uqn2kH F5iPmliQQh/3lumrgTWDWk5PpjNdF5vmNZgamTnw/I2Ktd98VuBD0uq05Sdf+J+l LhA8k1NjsomCO1RuX+3Cm3u2uBUw49omtYmGTnHUf+8sHXieyWOt4bovOObY80Il EjrN4Wps1UsnrDqjjI3TkSmascaQOMTBtL8JHsMgKeQHNodZ6kLUznsvOM3pmLuy Ho5FlKJNj/vfdWYRMUDvVkbhw4f+CyQf0MBBuJPv+W0+TPWIkx6w7DHGi6XJW+eh AjPQwkHF1ehI6w3k0e9kKepXyZsqDPvouz7IvCRoO5VQJaCTk3nlzEVX9SGCpOGp -----END CERTIFICATE-----Generated at Mon Jan 12 16:18:11 2026 by rpki-client