This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/eXtz9qlxcUXDY9qv_cOL7OrM1mg.roa File: eXtz9qlxcUXDY9qv_cOL7OrM1mg.roa (raw, json) Hash identifier: mPvwGs5vghXg97JZBpfO6Y5/bAb5kwiLFDsCj8CY49c= Subject key identifier: 79:7B:73:F6:A9:71:71:45:C3:63:DA:AF:FD:C3:8B:EC:EA:CC:D6:68 Certificate issuer: /CN=64dfe26d403141be9059ab2144325b402d4cab7d Certificate serial: 019B7AC77B4FE0857486B921E4D2FA49CC1A Authority key identifier: 64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/eXtz9qlxcUXDY9qv_cOL7OrM1mg.roa Signing time: Thu 01 Jan 2026 18:17:32 +0000 ROA not before: Thu 01 Jan 2026 18:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57588 IP address blocks: 176.241.80.0/20 maxlen: 20 176.241.80.0/22 maxlen: 22 176.241.80.0/24 maxlen: 24 176.241.81.0/24 maxlen: 24 176.241.82.0/24 maxlen: 24 176.241.83.0/24 maxlen: 24 176.241.84.0/23 maxlen: 23 176.241.84.0/24 maxlen: 24 176.241.85.0/24 maxlen: 24 176.241.86.0/24 maxlen: 24 176.241.87.0/24 maxlen: 24 176.241.88.0/22 maxlen: 22 176.241.88.0/24 maxlen: 24 176.241.89.0/24 maxlen: 24 176.241.90.0/24 maxlen: 24 176.241.91.0/24 maxlen: 24 176.241.92.0/22 maxlen: 22 176.241.92.0/24 maxlen: 24 176.241.93.0/24 maxlen: 24 176.241.94.0/24 maxlen: 24 176.241.95.0/24 maxlen: 24 185.129.4.0/22 maxlen: 22 185.129.4.0/23 maxlen: 23 185.129.4.0/24 maxlen: 24 185.129.5.0/24 maxlen: 24 185.129.6.0/23 maxlen: 23 185.129.6.0/24 maxlen: 24 185.129.7.0/24 maxlen: 24 2a0d:d680::/29 maxlen: 29 2a0d:d680::/48 maxlen: 48 2a0d:d680:1::/48 maxlen: 48 2a0d:d680:a::/48 maxlen: 48 2a0d:d680:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.mft rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:7b:4f:e0:85:74:86:b9:21:e4:d2:fa:49:cc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64dfe26d403141be9059ab2144325b402d4cab7d Validity Not Before: Jan 1 18:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=797b73f6a9717145c363daaffdc38beceaccd668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:fd:1c:68:ee:06:18:a0:52:44:14:d8:06: 2b:f8:04:23:91:e7:8d:75:01:81:5b:3b:d6:8a:65: ac:92:a4:67:80:e9:f7:7d:47:7f:75:ec:cf:c1:13: a8:15:26:33:b6:d7:5c:2c:52:6b:15:f5:51:e9:5f: 0a:32:d8:85:f5:87:4f:de:99:cd:8b:a6:3b:04:66: 6d:75:3c:49:84:28:62:3b:cd:1a:ac:76:56:ed:d0: df:bc:63:ec:93:08:00:a0:e6:91:aa:f2:2a:88:8a: 82:b8:03:e1:6f:79:fc:ed:df:3c:78:97:ed:72:c0: 80:c0:19:1d:3f:57:9f:f5:bc:2c:cb:5a:4e:e3:36: 4a:0e:3a:6e:88:23:e6:a1:41:8b:40:bc:df:8f:fc: b4:6c:dc:8a:2b:74:a4:6e:00:ca:79:0a:70:17:4e: b3:8a:44:5a:44:fd:9f:0b:33:69:6d:62:4b:3f:04: 18:cb:04:d4:9b:a4:b7:00:7a:ae:b1:4c:db:d5:3e: e5:62:9f:84:e4:8a:74:22:e1:32:e7:f9:a7:b1:bb: ea:46:00:06:50:e9:b6:28:c6:05:f9:cb:e0:d1:14: 35:1f:33:04:fb:4d:51:48:f1:61:8d:3a:31:28:a8: 8a:b8:1f:c3:2a:f5:58:44:9d:ee:87:3c:3d:56:7b: 29:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7B:73:F6:A9:71:71:45:C3:63:DA:AF:FD:C3:8B:EC:EA:CC:D6:68 X509v3 Authority Key Identifier: keyid:64:DF:E2:6D:40:31:41:BE:90:59:AB:21:44:32:5B:40:2D:4C:AB:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZN_ibUAxQb6QWashRDJbQC1Mq30.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/eXtz9qlxcUXDY9qv_cOL7OrM1mg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/5d6255-65c9-4bfa-b9d7-f657519d0233/1/ZN_ibUAxQb6QWashRDJbQC1Mq30.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.241.80.0/20 185.129.4.0/22 IPv6: 2a0d:d680::/29 Signature Algorithm: sha256WithRSAEncryption 19:32:47:03:85:b6:e2:cc:1d:45:67:28:8b:31:b7:8d:47:b3: c2:00:b3:4e:7d:91:b9:ae:7c:5a:b0:57:f5:bb:27:15:53:5e: aa:e8:54:f3:12:f8:a9:8d:ec:4e:da:3d:1b:cf:72:a6:88:f5: 1e:20:87:a2:a6:09:0f:ae:9a:aa:e4:e4:71:b8:87:6e:0d:18: 29:f1:1d:fb:4b:27:b2:61:ff:a8:14:f9:6c:49:c3:c7:37:68: df:bf:ad:37:b0:0c:59:d1:f2:72:de:02:34:a3:ff:83:18:d1: 38:09:e2:86:19:44:72:c7:83:ba:4c:a2:7e:18:27:97:13:b4: 5e:2d:6f:6f:63:d9:fe:8b:ac:81:7f:d7:02:30:01:8a:88:9b: a9:36:97:6d:69:db:35:ec:11:65:ea:21:c6:e1:9a:34:07:32: 1a:d9:c2:e7:81:98:11:57:75:28:84:30:fd:dc:8f:cf:39:0f: 80:ca:73:54:fb:30:16:85:75:4a:97:16:c4:f0:67:6c:71:25: d1:2e:05:e5:e5:16:cc:5d:aa:b4:61:36:d2:66:f2:1b:10:ee: 04:39:1c:34:df:82:79:c8:9a:66:3b:72:cb:2c:3e:93:a6:47: 43:4e:1e:93:27:7b:fb:e2:cd:1c:05:9c:de:51:23:1e:62:d5: 1d:a6:62:56 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt6x3tP4IV0hrkh5NL6ScwaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZGZlMjZkNDAzMTQxYmU5MDU5YWIyMTQ0MzI1YjQwMmQ0 Y2FiN2QwHhcNMjYwMTAxMTgxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTdiNzNmNmE5NzE3MTQ1YzM2M2RhYWZmZGMzOGJlY2VhY2NkNjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro39HGjuBhigUkQU2AYr+AQjkeeN dQGBWzvWimWskqRngOn3fUd/dezPwROoFSYzttdcLFJrFfVR6V8KMtiF9YdP3pnN i6Y7BGZtdTxJhChiO80arHZW7dDfvGPskwgAoOaRqvIqiIqCuAPhb3n87d88eJft csCAwBkdP1ef9bwsy1pO4zZKDjpuiCPmoUGLQLzfj/y0bNyKK3SkbgDKeQpwF06z ikRaRP2fCzNpbWJLPwQYywTUm6S3AHqusUzb1T7lYp+E5Ip0IuEy5/mnsbvqRgAG UOm2KMYF+cvg0RQ1HzME+01RSPFhjToxKKiKuB/DKvVYRJ3uhzw9VnspXwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFHl7c/apcXFFw2Par/3Di+zqzNZoMB8GA1UdIwQY MBaAFGTf4m1AMUG+kFmrIUQyW0AtTKt9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWk5faWJVQXhRYjZRV2FzaFJESmJRQzFNcTMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81ZDYyNTUtNjVjOS00YmZhLWI5ZDct ZjY1NzUxOWQwMjMzLzEvZVh0ejlxbHhjVVhEWTlxdl9jT0w3T3JNMW1nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi81ZDYyNTUtNjVjOS00YmZhLWI5ZDctZjY1NzUxOWQwMjMz LzEvWk5faWJVQXhRYjZRV2FzaFJESmJRQzFNcTMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQEsPFQAwQC uYEEMA0EAgACMAcDBQMqDdaAMA0GCSqGSIb3DQEBCwUAA4IBAQAZMkcDhbbizB1F ZyiLMbeNR7PCALNOfZG5rnxasFf1uycVU16q6FTzEvipjexO2j0bz3KmiPUeIIei pgkPrpqq5ORxuIduDRgp8R37SyeyYf+oFPlsScPHN2jfv603sAxZ0fJy3gI0o/+D GNE4CeKGGURyx4O6TKJ+GCeXE7ReLW9vY9n+i6yBf9cCMAGKiJupNpdtads17BFl 6iHG4Zo0BzIa2cLngZgRV3UohDD93I/POQ+AynNU+zAWhXVKlxbE8GdscSXRLgXl 5RbMXaq0YTbSZvIbEO4EORw034J5yJpmO3LLLD6TpkdDTh6TJ3v74s0cBZzeUSMe YtUdpmJW -----END CERTIFICATE-----Generated at Tue Jan 20 04:47:38 2026 by rpki-client