This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Xrd5L_HVM3bLf8Scw8wOSscqPXQ.roa File: Xrd5L_HVM3bLf8Scw8wOSscqPXQ.roa (raw, json) Hash identifier: RKwtFtZaHa7l9DjYQS7kKdZViBEMvcY1BM1NibeCxnY= Subject key identifier: 5E:B7:79:2F:F1:D5:33:76:CB:7F:C4:9C:C3:CC:0E:4A:C7:2A:3D:74 Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722 Certificate serial: 019B7B355783E8520D5332711DA62D04E92C Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Xrd5L_HVM3bLf8Scw8wOSscqPXQ.roa Signing time: Thu 01 Jan 2026 20:17:31 +0000 ROA not before: Thu 01 Jan 2026 20:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8708 IP address blocks: 80.96.12.0/24 maxlen: 24 80.96.43.0/24 maxlen: 24 80.96.47.0/24 maxlen: 24 80.96.51.0/24 maxlen: 24 80.96.57.0/24 maxlen: 24 80.96.67.0/24 maxlen: 24 80.96.69.0/24 maxlen: 24 80.96.72.0/24 maxlen: 24 80.96.79.0/24 maxlen: 24 80.96.219.0/24 maxlen: 24 80.97.147.0/24 maxlen: 24 80.97.148.0/24 maxlen: 24 80.97.149.0/24 maxlen: 24 81.180.27.0/24 maxlen: 24 81.181.30.0/24 maxlen: 24 81.181.112.0/24 maxlen: 24 81.181.128.0/24 maxlen: 24 81.181.147.0/24 maxlen: 24 81.181.167.0/24 maxlen: 24 81.181.246.0/24 maxlen: 24 85.120.20.0/24 maxlen: 24 85.120.23.0/24 maxlen: 24 193.226.16.0/24 maxlen: 24 193.226.116.0/24 maxlen: 24 193.226.125.0/24 maxlen: 24 193.226.127.0/24 maxlen: 24 193.230.158.0/24 maxlen: 24 193.230.171.0/24 maxlen: 24 193.230.217.0/24 maxlen: 24 193.230.229.0/24 maxlen: 24 193.231.75.0/24 maxlen: 24 193.231.108.0/24 maxlen: 24 193.231.184.0/24 maxlen: 24 193.231.194.0/24 maxlen: 24 193.231.233.0/24 maxlen: 24 193.231.236.0/24 maxlen: 24 193.231.238.0/24 maxlen: 24 193.231.252.0/24 maxlen: 24 194.102.98.0/24 maxlen: 24 194.102.134.0/24 maxlen: 24 194.102.229.0/24 maxlen: 24 194.153.224.0/24 maxlen: 24 217.156.14.0/24 maxlen: 24 217.156.20.0/23 maxlen: 23 217.156.41.0/24 maxlen: 24 217.156.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:57:83:e8:52:0d:53:32:71:1d:a6:2d:04:e9:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722 Validity Not Before: Jan 1 20:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5eb7792ff1d53376cb7fc49cc3cc0e4ac72a3d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7f:11:e1:83:64:14:70:b6:c7:c0:f7:df:10: 6b:89:2d:37:b5:13:14:e2:15:78:ea:5d:bd:cb:a6: a8:c0:a0:fd:73:dc:07:6d:99:11:d2:1c:14:10:9d: b6:d0:d5:77:45:07:7f:02:63:a2:e3:ca:db:ba:de: ef:8c:6a:a9:5a:07:37:cb:35:98:3b:a0:c0:84:d9: 77:ff:bf:fa:86:1e:29:66:6d:9c:bc:86:c6:c6:0c: 42:25:a2:bd:38:1a:94:44:5d:42:a6:ca:db:1d:e4: d8:19:dd:e6:fc:ea:ce:9e:f1:eb:de:b1:4a:b4:79: b0:9f:65:1b:4e:d3:d2:0d:9f:ab:66:1a:79:30:b7: 23:ac:f9:8a:8b:30:53:d5:23:06:72:1f:a9:7b:c2: f5:ba:22:7e:ef:1b:f3:04:77:72:ec:13:c8:ec:b8: f9:65:44:e3:b8:0a:be:18:b6:f7:13:3e:de:0c:cf: 66:6c:5c:8e:b5:e6:0b:83:9b:f4:0c:6b:4b:7e:4b: 00:cf:5f:c9:59:9e:4c:2e:01:c9:a7:8b:30:7d:98: ec:38:20:a2:92:54:c0:59:1b:cb:65:03:44:fd:40: 55:73:cb:11:60:4b:d8:a8:f3:a9:51:34:85:cc:db: 22:71:ed:e4:0f:59:9d:6d:c3:2f:63:a2:b1:a6:88: 8e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B7:79:2F:F1:D5:33:76:CB:7F:C4:9C:C3:CC:0E:4A:C7:2A:3D:74 X509v3 Authority Key Identifier: keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Xrd5L_HVM3bLf8Scw8wOSscqPXQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.96.12.0/24 80.96.43.0/24 80.96.47.0/24 80.96.51.0/24 80.96.57.0/24 80.96.67.0/24 80.96.69.0/24 80.96.72.0/24 80.96.79.0/24 80.96.219.0/24 80.97.147.0-80.97.149.255 81.180.27.0/24 81.181.30.0/24 81.181.112.0/24 81.181.128.0/24 81.181.147.0/24 81.181.167.0/24 81.181.246.0/24 85.120.20.0/24 85.120.23.0/24 193.226.16.0/24 193.226.116.0/24 193.226.125.0/24 193.226.127.0/24 193.230.158.0/24 193.230.171.0/24 193.230.217.0/24 193.230.229.0/24 193.231.75.0/24 193.231.108.0/24 193.231.184.0/24 193.231.194.0/24 193.231.233.0/24 193.231.236.0/24 193.231.238.0/24 193.231.252.0/24 194.102.98.0/24 194.102.134.0/24 194.102.229.0/24 194.153.224.0/24 217.156.14.0/24 217.156.20.0/23 217.156.41.0/24 217.156.97.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:83:be:c8:8d:b9:70:b8:ab:49:fd:13:94:c6:1b:95:13:fa: 6a:5e:09:8b:a3:e8:a0:ae:af:44:d8:20:06:b2:e2:71:24:f2: ce:84:78:b0:ff:7a:2d:0f:b8:44:27:ae:54:92:8e:a9:5e:99: d9:89:cb:5e:d0:87:37:24:84:20:93:c5:67:28:8d:ab:7b:c5: 78:85:e8:a6:8d:41:9d:ca:a0:78:f3:bc:be:0f:51:1b:52:2f: c0:ac:4d:16:34:12:85:90:ba:56:48:1a:82:d0:3e:5b:79:ba: f0:27:b3:2a:12:9b:2d:a6:17:93:f4:84:69:07:a3:bb:c9:08: 17:43:eb:88:96:84:d1:11:2c:9a:75:c3:79:68:0a:5a:75:72: d8:fb:ec:2b:36:2b:a5:bf:ff:ef:af:0c:01:e9:1d:ec:c6:38: 85:a6:13:0f:21:68:c0:18:39:aa:18:ff:4d:39:ee:a1:e0:10: 0e:62:b3:92:30:2b:52:0d:60:52:fb:42:ad:d1:ff:8c:b2:26: 29:a4:24:0a:a3:d1:47:ab:0b:13:60:16:a0:89:03:2a:e9:63: 6d:b8:e2:3a:66:cb:10:dc:fe:6a:12:c3:1c:8f:43:38:e2:55: ad:f4:72:d4:37:f5:d5:9f:bc:e1:aa:e5:bc:57:5b:b7:02:f8: 1a:03:36:0c -----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgISAZt7NVeD6FINUzJxHaYtBOksMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh MTU3MjIwHhcNMjYwMTAxMjAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZWI3NzkyZmYxZDUzMzc2Y2I3ZmM0OWNjM2NjMGU0YWM3MmEzZDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxH8R4YNkFHC2x8D33xBriS03tRMU 4hV46l29y6aowKD9c9wHbZkR0hwUEJ220NV3RQd/AmOi48rbut7vjGqpWgc3yzWY O6DAhNl3/7/6hh4pZm2cvIbGxgxCJaK9OBqURF1CpsrbHeTYGd3m/OrOnvHr3rFK tHmwn2UbTtPSDZ+rZhp5MLcjrPmKizBT1SMGch+pe8L1uiJ+7xvzBHdy7BPI7Lj5 ZUTjuAq+GLb3Ez7eDM9mbFyOteYLg5v0DGtLfksAz1/JWZ5MLgHJp4swfZjsOCCi klTAWRvLZQNE/UBVc8sRYEvYqPOpUTSFzNsice3kD1mdbcMvY6KxpoiOOwIDAQAB o4IDHTCCAxkwHQYDVR0OBBYEFF63eS/x1TN2y3/EnMPMDkrHKj10MB8GA1UdIwQY MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt ZjUyYzQ3YzIyNWRiLzEvWHJkNUxfSFZNM2JMZjhTY3c4d09Tc2NxUFhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBMQYIKwYBBQUHAQcBAf8EggEgMIIBHDCCARgEAgABMIIB EAMEAFBgDAMEAFBgKwMEAFBgLwMEAFBgMwMEAFBgOQMEAFBgQwMEAFBgRQMEAFBg SAMEAFBgTwMEAFBg2zAMAwQAUGGTAwQBUGGUAwQAUbQbAwQAUbUeAwQAUbVwAwQA UbWAAwQAUbWTAwQAUbWnAwQAUbX2AwQAVXgUAwQAVXgXAwQAweIQAwQAweJ0AwQA weJ9AwQAweJ/AwQAweaeAwQAwearAwQAwebZAwQAweblAwQAwedLAwQAwedsAwQA wee4AwQAwefCAwQAwefpAwQAwefsAwQAwefuAwQAwef8AwQAwmZiAwQAwmaGAwQA wmblAwQAwpngAwQA2ZwOAwQB2ZwUAwQA2ZwpAwQA2ZxhMA0GCSqGSIb3DQEBCwUA A4IBAQAvg77IjblwuKtJ/ROUxhuVE/pqXgmLo+igrq9E2CAGsuJxJPLOhHiw/3ot D7hEJ65Uko6pXpnZicte0Ic3JIQgk8VnKI2re8V4heimjUGdyqB487y+D1EbUi/A rE0WNBKFkLpWSBqC0D5bebrwJ7MqEpstpheT9IRpB6O7yQgXQ+uIloTRESyadcN5 aApadXLY++wrNiulv//vrwwB6R3sxjiFphMPIWjAGDmqGP9NOe6h4BAOYrOSMCtS DWBS+0Kt0f+MsiYppCQKo9FHqwsTYBagiQMq6WNtuOI6ZssQ3P5qEsMcj0M44lWt 9HLUN/XVn7zhquW8V1u3AvgaAzYM -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:08 2026 by rpki-client