This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/prwVIWLchRMQh4wLMP_5AL-rJeY.roa File: prwVIWLchRMQh4wLMP_5AL-rJeY.roa (raw, json) Hash identifier: pBy/6NiY8dt/IGcrx7wYr9+LEFZ5rOBd3e190L4AGRc= Subject key identifier: A6:BC:15:21:62:DC:85:13:10:87:8C:0B:30:FF:F9:00:BF:AB:25:E6 Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda Certificate serial: 019B7C806F4D02A1F50F44A8C09AE6C2E807 Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/prwVIWLchRMQh4wLMP_5AL-rJeY.roa Signing time: Fri 02 Jan 2026 02:19:10 +0000 ROA not before: Fri 02 Jan 2026 02:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43179 IP address blocks: 77.74.224.0/24 maxlen: 24 77.74.226.0/24 maxlen: 24 77.74.227.0/24 maxlen: 24 109.105.200.0/24 maxlen: 24 109.105.201.0/24 maxlen: 24 109.105.202.0/24 maxlen: 24 109.105.203.0/24 maxlen: 24 109.105.204.0/24 maxlen: 24 109.105.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.mft rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:6f:4d:02:a1:f5:0f:44:a8:c0:9a:e6:c2:e8:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda Validity Not Before: Jan 2 02:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6bc152162dc851310878c0b30fff900bfab25e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cb:f0:65:c7:ba:45:a8:79:a2:72:af:21:fd: 82:c0:2d:26:10:75:01:be:97:20:18:ea:50:e2:ce: ba:fc:13:23:b2:82:65:59:59:79:ff:35:2f:16:49: 3f:87:fd:03:29:0d:58:36:ff:f3:e0:0e:97:c3:89: 6d:82:51:0c:04:cb:05:51:41:82:15:fd:8d:1d:f6: f1:79:75:45:6c:fb:19:c5:a0:fe:ac:25:d7:f2:af: d2:ce:35:c6:34:27:52:16:08:22:69:6c:1b:78:d6: fb:d3:26:8d:1b:c5:b0:e0:9f:da:1a:44:65:99:0f: 79:92:eb:86:3d:1e:86:c7:79:d1:47:39:06:83:27: 14:77:18:85:63:54:de:b0:39:d5:87:da:55:39:c0: e1:72:17:4f:56:21:e0:eb:02:3a:05:2c:a0:4a:b5: a4:e9:17:5c:71:ee:fb:c6:f4:86:3a:83:9d:47:68: 51:a8:2d:c7:78:24:80:15:7a:52:64:39:f0:50:d9: 41:d0:41:82:b9:e5:c4:fa:7c:bc:f3:8f:79:ac:11: 9b:7b:58:81:3e:24:b0:e9:80:f4:76:06:8e:b2:93: 46:af:3b:62:de:06:af:54:cc:cd:45:b0:56:fa:19: 4c:9d:8a:6b:ed:a0:ba:81:a3:76:6f:c3:06:01:c1: 0d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BC:15:21:62:DC:85:13:10:87:8C:0B:30:FF:F9:00:BF:AB:25:E6 X509v3 Authority Key Identifier: keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/prwVIWLchRMQh4wLMP_5AL-rJeY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.74.224.0/24 77.74.226.0/23 109.105.200.0-109.105.204.255 109.105.206.0/24 Signature Algorithm: sha256WithRSAEncryption 01:83:83:0c:f4:de:03:f1:34:8e:72:8b:37:8f:d6:ad:d9:07: e1:35:ee:75:89:7e:32:fd:ae:fc:c0:97:d3:2e:fd:59:47:a2: a1:33:9e:77:91:f0:17:ab:71:57:39:ee:07:71:2b:6e:be:9b: d5:c9:ca:04:24:27:da:ed:43:de:d7:f8:c2:e3:15:f5:ab:14: 96:e4:66:47:c2:d0:02:fc:54:5f:94:1c:f0:20:06:0a:a6:cb: 08:61:30:f0:8e:ad:08:99:1b:40:72:41:b5:b2:6f:77:06:85: b3:37:af:42:1c:f9:4c:2c:c1:aa:c0:5c:7d:e5:cb:de:cd:ee: ea:c6:c2:5f:48:eb:68:27:1b:cd:e5:cd:7c:82:c1:4d:b1:51: 50:c0:0e:1d:16:a7:01:4c:06:45:54:fe:82:eb:db:87:c3:62: a3:44:67:9c:89:d0:2d:93:96:1d:cb:21:23:bb:58:43:e5:63: 38:83:65:2c:14:be:84:96:ba:bb:15:97:98:c5:30:12:21:a9: c2:3a:46:18:f4:30:89:51:50:89:bb:ad:57:4d:c9:4c:0e:78: 57:a7:5e:1a:65:25:43:2d:f2:79:c9:d4:f8:ec:fd:c7:bd:5d: 9a:8c:5b:31:5c:aa:37:45:5b:84:87:f3:86:7e:6d:7f:d7:b1: 14:49:cc:26 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt8gG9NAqH1D0SowJrmwugHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm NjljZGEwHhcNMjYwMTAyMDIxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNmJjMTUyMTYyZGM4NTEzMTA4NzhjMGIzMGZmZjkwMGJmYWIyNWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cvwZce6Rah5onKvIf2CwC0mEHUB vpcgGOpQ4s66/BMjsoJlWVl5/zUvFkk/h/0DKQ1YNv/z4A6Xw4ltglEMBMsFUUGC Ff2NHfbxeXVFbPsZxaD+rCXX8q/SzjXGNCdSFggiaWwbeNb70yaNG8Ww4J/aGkRl mQ95kuuGPR6Gx3nRRzkGgycUdxiFY1TesDnVh9pVOcDhchdPViHg6wI6BSygSrWk 6Rdcce77xvSGOoOdR2hRqC3HeCSAFXpSZDnwUNlB0EGCueXE+ny88495rBGbe1iB PiSw6YD0dgaOspNGrzti3gavVMzNRbBW+hlMnYpr7aC6gaN2b8MGAcEN6wIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFKa8FSFi3IUTEIeMCzD/+QC/qyXmMB8GA1UdIwQY MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt ZGQyOTRjMzc4ZjZjLzEvcHJ3VklXTGNoUk1RaDR3TE1QXzVBTC1ySmVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQATUrgAwQB TUriMAwDBANtacgDBABtacwDBABtac4wDQYJKoZIhvcNAQELBQADggEBAAGDgwz0 3gPxNI5yizeP1q3ZB+E17nWJfjL9rvzAl9Mu/VlHoqEznneR8BercVc57gdxK26+ m9XJygQkJ9rtQ97X+MLjFfWrFJbkZkfC0AL8VF+UHPAgBgqmywhhMPCOrQiZG0By QbWyb3cGhbM3r0Ic+UwswarAXH3ly97N7urGwl9I62gnG83lzXyCwU2xUVDADh0W pwFMBkVU/oLr24fDYqNEZ5yJ0C2Tlh3LISO7WEPlYziDZSwUvoSWursVl5jFMBIh qcI6Rhj0MIlRUIm7rVdNyUwOeFenXhplJUMt8nnJ1Pjs/ce9XZqMWzFcqjdFW4SH 84Z+bX/XsRRJzCY= -----END CERTIFICATE-----Generated at Wed Jan 21 19:00:35 2026 by rpki-client