This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/0c766e-f332-423c-8c86-863147e464b1/1/xKy2YzDgnzteH29hXlw5ygQsbto.roa File: xKy2YzDgnzteH29hXlw5ygQsbto.roa (raw, json) Hash identifier: QUhXlxlNtimAJYg+iw8/GAwdsz7qa9LXTGj2DtwPMLU= Subject key identifier: C4:AC:B6:63:30:E0:9F:3B:5E:1F:6F:61:5E:5C:39:CA:04:2C:6E:DA Certificate issuer: /CN=b16c22dd012e2693069864fa9576325c373f164a Certificate serial: 019B7C809A148FBDF3F08213D2BB0EBE6F6A Authority key identifier: B1:6C:22:DD:01:2E:26:93:06:98:64:FA:95:76:32:5C:37:3F:16:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sWwi3QEuJpMGmGT6lXYyXDc_Fko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/0c766e-f332-423c-8c86-863147e464b1/1/xKy2YzDgnzteH29hXlw5ygQsbto.roa Signing time: Fri 02 Jan 2026 02:19:21 +0000 ROA not before: Fri 02 Jan 2026 02:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200858 IP address blocks: 185.78.64.0/22 maxlen: 22 185.131.212.0/22 maxlen: 22 2a06:de40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/0c766e-f332-423c-8c86-863147e464b1/1/sWwi3QEuJpMGmGT6lXYyXDc_Fko.crl rsync://rpki.ripe.net/repository/DEFAULT/26/0c766e-f332-423c-8c86-863147e464b1/1/sWwi3QEuJpMGmGT6lXYyXDc_Fko.mft rsync://rpki.ripe.net/repository/DEFAULT/sWwi3QEuJpMGmGT6lXYyXDc_Fko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:9a:14:8f:bd:f3:f0:82:13:d2:bb:0e:be:6f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b16c22dd012e2693069864fa9576325c373f164a Validity Not Before: Jan 2 02:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c4acb66330e09f3b5e1f6f615e5c39ca042c6eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:38:a1:ac:2c:fa:b3:76:b4:66:88:3d:96:a9: df:08:14:44:ae:47:84:08:64:7d:0b:71:41:f0:c2: fc:28:42:89:7c:07:ef:51:c6:dc:cf:a3:19:e6:1d: 0c:9f:54:ea:e6:77:d7:23:ed:f7:f8:e7:53:f2:f7: 55:2d:91:6f:3c:cf:a5:cc:d1:14:c8:d5:dc:d0:f2: 40:54:57:90:68:e2:ac:a4:e3:9c:4e:a5:dd:92:1c: 93:2d:32:60:b0:84:8c:ae:05:d5:c8:d1:7d:2d:c9: 2a:a0:b9:3c:38:79:41:14:a7:6a:54:a4:2a:e8:17: 66:be:fc:28:f9:c8:69:2c:b7:dc:11:82:96:bd:12: fe:d1:3c:ff:af:ca:b6:ff:86:5c:57:a1:b1:a1:91: dd:62:c8:0b:d9:30:bd:fa:95:40:ed:22:48:2e:73: a0:44:aa:9d:ac:ab:49:2e:1f:46:43:c4:e9:da:e4: aa:e0:cf:c5:25:b7:99:7b:4d:0d:cc:e7:9f:9c:fb: e4:de:10:e8:ad:7e:38:f9:df:f8:bb:ab:11:fa:4f: e5:5f:7f:21:2f:4b:8e:31:d7:c1:3e:36:c8:2f:17: b5:97:ff:bc:ad:82:c8:0e:ec:96:98:68:a7:cb:3d: 27:f3:e9:13:03:9f:6d:77:4c:f7:1d:50:24:0a:f6: de:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AC:B6:63:30:E0:9F:3B:5E:1F:6F:61:5E:5C:39:CA:04:2C:6E:DA X509v3 Authority Key Identifier: keyid:B1:6C:22:DD:01:2E:26:93:06:98:64:FA:95:76:32:5C:37:3F:16:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sWwi3QEuJpMGmGT6lXYyXDc_Fko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/0c766e-f332-423c-8c86-863147e464b1/1/xKy2YzDgnzteH29hXlw5ygQsbto.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/0c766e-f332-423c-8c86-863147e464b1/1/sWwi3QEuJpMGmGT6lXYyXDc_Fko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.78.64.0/22 185.131.212.0/22 IPv6: 2a06:de40::/29 Signature Algorithm: sha256WithRSAEncryption ba:88:49:70:7e:0a:3c:8e:13:bc:c1:c4:41:05:65:e0:fa:64: 9b:be:1d:b1:ef:f0:90:75:4b:ac:ed:f7:ca:d5:15:4d:d4:68: 03:19:14:1a:e4:ce:3c:a7:98:19:32:c7:da:96:f6:49:72:82: ce:07:20:8c:bb:d2:25:15:9e:2c:ab:da:89:31:8f:a7:cc:be: 2f:51:d6:76:48:bc:5d:0a:41:2b:0d:45:6b:9b:03:fd:fc:15: fa:29:f5:8e:6a:84:ed:7e:1a:d1:b4:b1:dc:28:81:72:61:3b: a3:20:25:8a:6d:19:18:88:99:f1:a0:99:29:fd:75:e3:56:29: ac:2b:3c:79:12:21:2e:f5:2b:c9:cf:29:2f:7c:0b:c4:ac:99: 20:dc:21:95:d0:72:9f:90:34:af:a4:a0:52:6e:5c:84:87:38: b2:07:0d:27:48:1e:54:d4:32:81:d4:d5:8c:7e:bb:03:25:51: e8:86:a0:e3:8c:7d:63:c8:ad:16:7d:da:0d:a8:63:83:87:26: 44:da:37:ff:fe:94:74:4f:6f:7e:6f:15:1a:45:00:02:fd:8b: 81:a5:ca:b6:09:7a:25:75:e0:1d:97:2c:96:2d:e4:f7:3f:28: 33:a4:6c:1a:07:60:3b:d5:c7:ce:a1:09:21:fc:ea:c2:83:22: e9:31:9c:de -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt8gJoUj73z8IIT0rsOvm9qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNmMyMmRkMDEyZTI2OTMwNjk4NjRmYTk1NzYzMjVjMzcz ZjE2NGEwHhcNMjYwMTAyMDIxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNGFjYjY2MzMwZTA5ZjNiNWUxZjZmNjE1ZTVjMzljYTA0MmM2ZWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDihrCz6s3a0Zog9lqnfCBRErkeE CGR9C3FB8ML8KEKJfAfvUcbcz6MZ5h0Mn1Tq5nfXI+33+OdT8vdVLZFvPM+lzNEU yNXc0PJAVFeQaOKspOOcTqXdkhyTLTJgsISMrgXVyNF9LckqoLk8OHlBFKdqVKQq 6Bdmvvwo+chpLLfcEYKWvRL+0Tz/r8q2/4ZcV6GxoZHdYsgL2TC9+pVA7SJILnOg RKqdrKtJLh9GQ8Tp2uSq4M/FJbeZe00NzOefnPvk3hDorX44+d/4u6sR+k/lX38h L0uOMdfBPjbILxe1l/+8rYLIDuyWmGinyz0n8+kTA59td0z3HVAkCvbeUQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFMSstmMw4J87Xh9vYV5cOcoELG7aMB8GA1UdIwQY MBaAFLFsIt0BLiaTBphk+pV2Mlw3PxZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1d3aTNRRXVKcE1HbUdUNmxYWXlYRGNfRmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wYzc2NmUtZjMzMi00MjNjLThjODYt ODYzMTQ3ZTQ2NGIxLzEveEt5Mll6RGduenRlSDI5aFhsdzV5Z1FzYnRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8wYzc2NmUtZjMzMi00MjNjLThjODYtODYzMTQ3ZTQ2NGIx LzEvc1d3aTNRRXVKcE1HbUdUNmxYWXlYRGNfRmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuU5AAwQC uYPUMA0EAgACMAcDBQMqBt5AMA0GCSqGSIb3DQEBCwUAA4IBAQC6iElwfgo8jhO8 wcRBBWXg+mSbvh2x7/CQdUus7ffK1RVN1GgDGRQa5M48p5gZMsfalvZJcoLOByCM u9IlFZ4sq9qJMY+nzL4vUdZ2SLxdCkErDUVrmwP9/BX6KfWOaoTtfhrRtLHcKIFy YTujICWKbRkYiJnxoJkp/XXjVimsKzx5EiEu9SvJzykvfAvErJkg3CGV0HKfkDSv pKBSblyEhziyBw0nSB5U1DKB1NWMfrsDJVHohqDjjH1jyK0WfdoNqGODhyZE2jf/ /pR0T29+bxUaRQAC/YuBpcq2CXoldeAdlyyWLeT3PygzpGwaB2A71cfOoQkh/OrC gyLpMZze -----END CERTIFICATE-----Generated at Tue Feb 10 01:24:02 2026 by rpki-client