This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/6XwrUOrS3RBF5ZEEwqrv4zMxbSw.roa File: 6XwrUOrS3RBF5ZEEwqrv4zMxbSw.roa (raw, json) Hash identifier: MQxM/Cs/sBBc0Q1fcvPAI1H945bwUcFgkL/xMfmGtQ4= Subject key identifier: E9:7C:2B:50:EA:D2:DD:10:45:E5:91:04:C2:AA:EF:E3:33:31:6D:2C Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37CA6373585EE859F8B443037DC20F Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/6XwrUOrS3RBF5ZEEwqrv4zMxbSw.roa Signing time: Fri 02 Jan 2026 10:19:04 +0000 ROA not before: Fri 02 Jan 2026 10:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212477 IP address blocks: 45.144.196.0/24 maxlen: 24 170.62.96.0/22 maxlen: 24 170.62.101.0/24 maxlen: 24 170.62.105.0/24 maxlen: 24 170.62.109.0/24 maxlen: 24 170.62.176.0/21 maxlen: 24 185.102.172.0/22 maxlen: 24 192.253.211.0/24 maxlen: 24 203.188.173.0/24 maxlen: 24 203.188.174.0/24 maxlen: 24 203.188.180.0/24 maxlen: 24 213.254.162.0/24 maxlen: 24 213.254.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:ca:63:73:58:5e:e8:59:f8:b4:43:03:7d:c2:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e97c2b50ead2dd1045e59104c2aaefe333316d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:b5:5b:a1:d4:17:ae:c5:f2:73:17:48:fc: 0a:3d:1a:bd:92:35:fb:14:fb:6b:0d:eb:67:a7:8f: f9:16:64:50:25:32:fc:5e:67:e4:41:5a:5f:87:88: 2f:6b:38:fe:14:f5:5f:0b:e5:33:0d:9e:e8:99:93: db:28:7c:40:33:c8:5f:21:32:da:62:d9:d8:d9:aa: 81:01:89:a7:d7:b6:d3:42:de:3e:d4:a7:e6:16:d6: c5:70:c3:e4:d2:8b:ad:92:f2:19:e0:4a:da:25:54: 45:33:2f:38:d6:8e:9a:3e:05:7b:94:f0:97:8d:ee: b6:62:af:05:ba:9c:cd:ac:75:6c:50:6c:52:a6:55: fd:26:b8:29:75:db:89:58:29:10:cd:f7:47:db:e4: c0:28:c0:a1:0d:06:59:fb:4b:4a:7f:31:8f:88:c8: 86:64:41:80:3d:3e:25:a7:82:d3:74:af:23:bd:98: bb:f4:6d:a0:84:57:60:5b:2e:f2:52:c1:52:c1:b6: 24:a1:aa:58:d9:e5:5e:b9:1b:65:35:d5:40:ef:fd: df:00:d2:27:3a:a5:da:6a:dc:21:20:70:41:98:55: bf:7f:7b:e5:a4:94:2e:bd:af:b2:fa:ed:93:80:91: 5f:0e:63:78:5b:7b:21:09:60:95:67:6e:5d:55:aa: 8e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7C:2B:50:EA:D2:DD:10:45:E5:91:04:C2:AA:EF:E3:33:31:6D:2C X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/6XwrUOrS3RBF5ZEEwqrv4zMxbSw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.196.0/24 170.62.96.0/22 170.62.101.0/24 170.62.105.0/24 170.62.109.0/24 170.62.176.0/21 185.102.172.0/22 192.253.211.0/24 203.188.173.0-203.188.174.255 203.188.180.0/24 213.254.162.0/24 213.254.172.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:f2:9b:e1:49:b6:7e:9e:dc:2c:23:2a:c5:58:a4:f9:c4:6c: 0c:a8:a8:54:80:e7:b3:73:97:0f:6f:a5:e6:15:5e:24:5b:ee: 03:75:ee:98:e0:79:ca:12:43:a0:90:dc:ad:a1:25:94:a9:25: ba:05:aa:d8:09:39:db:6a:68:2f:a7:99:0e:94:ee:b0:7d:8f: 17:b7:72:95:0e:e3:09:77:f6:ab:51:00:27:5c:3b:94:39:af: 72:c8:7f:6b:9c:c6:1a:f3:b1:d9:3d:e2:64:c5:8a:26:d4:3f: 1d:22:a7:1c:ce:cd:e0:e9:ad:66:05:76:2e:dd:e0:94:03:3d: 86:59:30:08:b4:84:c2:fc:4b:76:cd:51:51:de:97:41:ea:9c: 3b:b2:14:b6:4b:05:23:e0:26:48:8e:f1:6c:91:ef:09:c3:70: a1:1e:fd:e4:5f:93:fa:79:8c:23:c8:61:36:d9:99:5b:f1:08: 2c:0f:e6:48:11:e2:89:42:74:ed:19:48:b6:e1:13:b4:ca:16: 55:f5:c3:50:0d:a6:7b:e8:02:88:1d:5f:0e:c6:e2:6b:12:93: 82:07:8e:b6:ea:80:db:0b:ae:e6:e2:bc:2f:39:eb:fe:ce:8e: 70:70:1a:8b:4c:0b:f3:55:f5:31:80:12:d4:a7:a1:b8:f9:35: f6:bc:84:5b -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgISAZt+N8pjc1he6Fn4tEMDfcIPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlOTdjMmI1MGVhZDJkZDEwNDVlNTkxMDRjMmFhZWZlMzMzMzE2ZDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqa1W6HUF67F8nMXSPwKPRq9kjX7 FPtrDetnp4/5FmRQJTL8XmfkQVpfh4gvazj+FPVfC+UzDZ7omZPbKHxAM8hfITLa YtnY2aqBAYmn17bTQt4+1KfmFtbFcMPk0outkvIZ4EraJVRFMy841o6aPgV7lPCX je62Yq8FupzNrHVsUGxSplX9JrgpdduJWCkQzfdH2+TAKMChDQZZ+0tKfzGPiMiG ZEGAPT4lp4LTdK8jvZi79G2ghFdgWy7yUsFSwbYkoapY2eVeuRtlNdVA7/3fANIn OqXaatwhIHBBmFW/f3vlpJQuva+y+u2TgJFfDmN4W3shCWCVZ25dVaqOnwIDAQAB o4ICUzCCAk8wHQYDVR0OBBYEFOl8K1Dq0t0QReWRBMKq7+MzMW0sMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvNlh3clVPclMzUkJGNVpFRXdxcnY0ek14YlN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDBWBAIAATBQAwQALZDEAwQC qj5gAwQAqj5lAwQAqj5pAwQAqj5tAwQDqj6wAwQCuWasAwQAwP3TMAwDBADLvK0D BADLvK4DBADLvLQDBADV/qIDBAHV/qwwDQYJKoZIhvcNAQELBQADggEBAC3ym+FJ tn6e3CwjKsVYpPnEbAyoqFSA57Nzlw9vpeYVXiRb7gN17pjgecoSQ6CQ3K2hJZSp JboFqtgJOdtqaC+nmQ6U7rB9jxe3cpUO4wl39qtRACdcO5Q5r3LIf2ucxhrzsdk9 4mTFiibUPx0ipxzOzeDprWYFdi7d4JQDPYZZMAi0hML8S3bNUVHel0HqnDuyFLZL BSPgJkiO8WyR7wnDcKEe/eRfk/p5jCPIYTbZmVvxCCwP5kgR4olCdO0ZSLbhE7TK FlX1w1ANpnvoAogdXw7G4msSk4IHjrbqgNsLrubivC856/7OjnBwGotMC/NV9TGA EtSnobj5Nfa8hFs= -----END CERTIFICATE-----Generated at Sun Jan 11 15:07:39 2026 by rpki-client