This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/XHqGlYDi_YYXP4_bxjxB51I_9sQ.roa File: XHqGlYDi_YYXP4_bxjxB51I_9sQ.roa (raw, json) Hash identifier: JyJR1xe42ML2605S9E5QIfVP6eKECWWSWZ+zCzoVYQE= Subject key identifier: 5C:7A:86:95:80:E2:FD:86:17:3F:8F:DB:C6:3C:41:E7:52:3F:F6:C4 Certificate issuer: /CN=b06551937efc96e145e33a1ebca24492dc120ecb Certificate serial: 019B7F8204D5021BB366D8DF8C4F9202C2AA Authority key identifier: B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/XHqGlYDi_YYXP4_bxjxB51I_9sQ.roa Signing time: Fri 02 Jan 2026 16:19:45 +0000 ROA not before: Fri 02 Jan 2026 16:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9121 IP address blocks: 93.184.144.0/24 maxlen: 24 93.184.145.0/24 maxlen: 24 93.184.146.0/24 maxlen: 24 93.184.147.0/24 maxlen: 24 93.184.148.0/24 maxlen: 24 93.184.149.0/24 maxlen: 24 93.184.150.0/24 maxlen: 24 93.184.151.0/24 maxlen: 24 93.184.152.0/24 maxlen: 24 93.184.153.0/24 maxlen: 24 93.184.155.0/24 maxlen: 24 93.184.156.0/24 maxlen: 24 93.184.157.0/24 maxlen: 24 93.184.158.0/24 maxlen: 24 93.184.159.0/24 maxlen: 24 185.168.152.0/24 maxlen: 24 185.168.153.0/24 maxlen: 24 185.168.154.0/23 maxlen: 23 185.168.154.0/24 maxlen: 24 185.168.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.mft rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:04:d5:02:1b:b3:66:d8:df:8c:4f:92:02:c2:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b06551937efc96e145e33a1ebca24492dc120ecb Validity Not Before: Jan 2 16:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5c7a869580e2fd86173f8fdbc63c41e7523ff6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e2:b6:35:63:bb:9c:03:8b:fc:6b:ff:c3:bc: c9:43:1f:a1:3d:45:2e:a7:47:97:d1:f8:0f:52:85: 68:b5:0a:89:30:42:4f:2e:9c:93:96:2e:44:06:f3: 9a:d1:ac:78:f0:f3:8f:3b:02:bc:9c:98:98:13:1f: 88:3c:40:11:e0:48:4f:59:85:09:07:cd:76:73:44: 49:db:eb:07:40:49:17:49:c1:81:25:23:a0:dc:42: 51:72:72:cd:d6:05:1d:16:7e:cd:9a:39:b1:1d:06: ee:de:9b:f9:4c:3e:c7:ba:a0:30:67:b3:af:f8:8f: 09:08:4c:f4:8d:12:71:22:ef:60:ca:2b:de:1e:2f: a2:05:66:d1:4e:98:91:e3:bd:ac:d6:d1:e6:87:5c: 45:8e:3d:f5:19:72:db:33:ec:4b:60:04:e4:41:33: fe:27:7b:d1:80:6c:04:30:1d:79:6c:db:55:44:96: 03:ba:08:27:be:0b:1c:34:d5:4d:1e:4c:12:aa:08: 55:52:1e:5f:bc:0b:18:df:04:58:39:69:c9:df:30: 86:e8:fa:5d:96:a7:13:98:58:65:4a:75:cc:eb:c1: ae:99:ab:e4:58:a7:8c:9d:01:56:0e:47:b2:56:de: a1:c6:92:fd:cb:d2:0c:7e:9b:06:6a:d6:e2:55:40: 48:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7A:86:95:80:E2:FD:86:17:3F:8F:DB:C6:3C:41:E7:52:3F:F6:C4 X509v3 Authority Key Identifier: keyid:B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/XHqGlYDi_YYXP4_bxjxB51I_9sQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.184.144.0-93.184.153.255 93.184.155.0-93.184.159.255 185.168.152.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:0c:b6:9b:7b:6b:fc:50:8f:f8:e0:c7:a2:bb:f0:de:02:b1: fb:d6:69:19:51:0c:40:1f:46:40:e7:f7:6e:97:75:01:05:9f: 84:88:ba:5c:78:12:7c:8f:04:5e:cb:76:d4:cf:2f:36:6a:6d: 65:90:93:fb:cf:bb:ec:25:a3:21:05:5d:46:a7:ef:c3:52:19: 73:0e:9d:b9:5b:31:c8:ff:b7:11:69:e2:80:cb:54:1d:07:3d: 1a:84:b1:49:e7:bb:5a:eb:ea:88:df:cd:5a:8a:d8:59:7d:8c: 67:73:00:e8:d5:e8:e9:52:82:66:34:13:15:4a:8b:04:72:4f: 27:60:79:e1:49:aa:1f:f9:b7:26:d1:21:c1:69:e7:7c:83:7e: cb:56:cb:64:9b:00:ca:e3:1d:7b:f1:07:01:75:3c:00:f1:ad: 67:d0:24:49:df:2a:32:c3:ca:73:f9:17:39:10:f9:4b:7b:6b: 8f:70:fd:a9:c0:d8:01:db:45:c7:20:3d:72:22:cb:fa:ec:ab: 33:eb:b1:89:87:83:a7:7a:b5:27:f1:03:1d:94:25:0d:db:17: 2a:d8:39:90:2d:6f:75:3a:85:e5:44:0d:51:3d:5a:46:f3:fd: cd:31:74:87:ea:ff:a7:13:08:7f:39:a4:f8:35:dd:e0:00:5e: 34:70:a1:af -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt/ggTVAhuzZtjfjE+SAsKqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNjU1MTkzN2VmYzk2ZTE0NWUzM2ExZWJjYTI0NDkyZGMx MjBlY2IwHhcNMjYwMTAyMTYxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YzdhODY5NTgwZTJmZDg2MTczZjhmZGJjNjNjNDFlNzUyM2ZmNmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0OK2NWO7nAOL/Gv/w7zJQx+hPUUu p0eX0fgPUoVotQqJMEJPLpyTli5EBvOa0ax48POPOwK8nJiYEx+IPEAR4EhPWYUJ B812c0RJ2+sHQEkXScGBJSOg3EJRcnLN1gUdFn7NmjmxHQbu3pv5TD7HuqAwZ7Ov +I8JCEz0jRJxIu9gyiveHi+iBWbRTpiR472s1tHmh1xFjj31GXLbM+xLYATkQTP+ J3vRgGwEMB15bNtVRJYDuggnvgscNNVNHkwSqghVUh5fvAsY3wRYOWnJ3zCG6Ppd lqcTmFhlSnXM68GumavkWKeMnQFWDkeyVt6hxpL9y9IMfpsGatbiVUBIlwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFFx6hpWA4v2GFz+P28Y8QedSP/bEMB8GA1UdIwQY MBaAFLBlUZN+/JbhReM6HryiRJLcEg7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0dWUmszNzhsdUZGNHpvZXZLSkVrdHdTRHNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8yYzQ3MzEtODlkNS00ZTliLWI0YWEt YmYwOWFkMzJjODg4LzEvWEhxR2xZRGlfWVlYUDRfYnhqeEI1MUlfOXNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8yYzQ3MzEtODlkNS00ZTliLWI0YWEtYmYwOWFkMzJjODg4 LzEvc0dWUmszNzhsdUZGNHpvZXZLSkVrdHdTRHNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiMAwDBARduJAD BAFduJgwDAMEAF24mwMEBV24gAMEArmomDANBgkqhkiG9w0BAQsFAAOCAQEAXwy2 m3tr/FCP+ODHorvw3gKx+9ZpGVEMQB9GQOf3bpd1AQWfhIi6XHgSfI8EXst21M8v NmptZZCT+8+77CWjIQVdRqfvw1IZcw6duVsxyP+3EWnigMtUHQc9GoSxSee7Wuvq iN/NWorYWX2MZ3MA6NXo6VKCZjQTFUqLBHJPJ2B54UmqH/m3JtEhwWnnfIN+y1bL ZJsAyuMde/EHAXU8APGtZ9AkSd8qMsPKc/kXORD5S3trj3D9qcDYAdtFxyA9ciLL +uyrM+uxiYeDp3q1J/EDHZQlDdsXKtg5kC1vdTqF5UQNUT1aRvP9zTF0h+r/pxMI fzmk+DXd4ABeNHChrw== -----END CERTIFICATE-----Generated at Wed Jan 21 13:16:51 2026 by rpki-client