This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/CYXPumOChSdoMa-5o0FCbfSsOYE.roa File: CYXPumOChSdoMa-5o0FCbfSsOYE.roa (raw, json) Hash identifier: Ki1vUDNQjiNnTFWXimQLwQJZU9YwEW1064X+1jbc6MM= Subject key identifier: 09:85:CF:BA:63:82:85:27:68:31:AF:B9:A3:41:42:6D:F4:AC:39:81 Certificate issuer: /CN=a77720c7dc1dc3edd1d0d47f923bcd833f06af36 Certificate serial: 019B7FF157A78C457023B59B4A8915F09135 Authority key identifier: A7:77:20:C7:DC:1D:C3:ED:D1:D0:D4:7F:92:3B:CD:83:3F:06:AF:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3cgx9wdw-3R0NR_kjvNgz8GrzY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/CYXPumOChSdoMa-5o0FCbfSsOYE.roa Signing time: Fri 02 Jan 2026 18:21:21 +0000 ROA not before: Fri 02 Jan 2026 18:21:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49895 IP address blocks: 46.254.72.0/22 maxlen: 22 46.254.72.0/24 maxlen: 24 46.254.73.0/24 maxlen: 24 46.254.74.0/24 maxlen: 24 46.254.75.0/24 maxlen: 24 213.5.8.0/21 maxlen: 21 213.5.8.0/24 maxlen: 24 213.5.9.0/24 maxlen: 24 213.5.10.0/24 maxlen: 24 213.5.11.0/24 maxlen: 24 213.5.12.0/24 maxlen: 24 213.5.13.0/24 maxlen: 24 213.5.14.0/24 maxlen: 24 213.5.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/p3cgx9wdw-3R0NR_kjvNgz8GrzY.crl rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/p3cgx9wdw-3R0NR_kjvNgz8GrzY.mft rsync://rpki.ripe.net/repository/DEFAULT/p3cgx9wdw-3R0NR_kjvNgz8GrzY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:57:a7:8c:45:70:23:b5:9b:4a:89:15:f0:91:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a77720c7dc1dc3edd1d0d47f923bcd833f06af36 Validity Not Before: Jan 2 18:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0985cfba638285276831afb9a341426df4ac3981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:91:f1:b3:e6:40:74:ad:a5:29:5d:e2:4f: b0:b8:57:7b:5d:66:16:07:a5:de:6a:a6:02:77:4a: d1:00:8f:b9:bf:b2:a3:9b:e2:dd:ce:b6:55:9a:d7: f9:aa:b8:20:9d:90:fe:4c:8a:f9:5a:1e:39:ea:57: b1:47:b8:ca:82:5a:d3:31:0d:e4:fc:2f:79:13:8b: ad:56:da:b0:c3:79:63:22:ec:9d:f6:56:69:ab:a4: 5c:19:cc:a7:e5:87:9f:14:36:06:1b:41:95:2b:26: 5e:52:d1:ed:8a:97:81:66:2f:81:b6:49:e6:92:a9: d0:80:bc:3c:b6:73:54:a9:bb:54:ba:25:6d:fd:67: f1:58:13:10:6d:ba:eb:6e:2f:2d:ae:47:09:38:d0: 43:6d:4b:5a:51:70:a6:e1:c1:48:2f:e1:34:6a:97: 51:f5:21:40:e4:8a:42:c4:8d:0e:54:4a:73:8f:8b: 30:5e:f0:27:ae:84:ce:df:aa:64:70:3e:e6:58:ed: 00:bc:68:f4:df:2a:8d:31:c5:00:36:d7:71:bd:cb: fd:07:33:76:9a:a3:49:c6:72:67:95:37:28:96:8f: 22:fb:69:d5:ca:99:06:1b:83:6f:64:0c:68:28:f2: 6a:72:55:74:3c:4a:04:f2:46:9d:5f:b8:2f:42:7d: f6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:85:CF:BA:63:82:85:27:68:31:AF:B9:A3:41:42:6D:F4:AC:39:81 X509v3 Authority Key Identifier: keyid:A7:77:20:C7:DC:1D:C3:ED:D1:D0:D4:7F:92:3B:CD:83:3F:06:AF:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3cgx9wdw-3R0NR_kjvNgz8GrzY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/CYXPumOChSdoMa-5o0FCbfSsOYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ba7219-ad7c-48b0-9c96-17228cef0049/1/p3cgx9wdw-3R0NR_kjvNgz8GrzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.254.72.0/22 213.5.8.0/21 Signature Algorithm: sha256WithRSAEncryption a5:c6:0b:f2:35:8d:e8:d2:e0:3a:23:43:d5:23:d8:12:1c:b4: 4e:1f:0c:fe:8c:70:3a:14:10:e2:d8:ef:5a:72:8f:53:92:56: 5e:d1:05:b8:f7:4f:8c:d2:f0:14:b6:6c:c0:0b:8c:c6:77:c8: 93:e2:b8:3d:39:88:89:b1:1e:e6:1d:f3:28:71:cf:2c:c7:68: 7d:38:bd:33:e9:3a:a2:e1:2a:c0:1c:f6:f3:42:c4:2b:2e:57: 87:e8:7e:63:30:a0:64:72:8c:40:83:63:8e:62:24:2f:69:a4: b9:63:b5:e4:82:18:f1:b6:28:b3:54:bc:12:65:10:c3:9e:46: 5e:cd:b8:67:b1:1b:b0:d6:78:ea:9c:04:f3:be:2f:12:fc:c8: 4a:32:37:64:25:88:8c:84:8c:bb:d0:a3:42:ba:4f:bb:46:35: d4:21:da:f1:e0:b4:0a:b7:3f:71:2f:58:4d:0e:96:08:64:6a: 36:97:5f:25:5e:9f:ae:60:30:09:c6:61:36:e8:cc:aa:41:b4: 36:75:f1:78:cc:a5:e9:a5:cb:16:02:15:f4:ee:a2:39:b4:f5: e9:ee:bc:48:07:c5:39:cb:43:e9:bb:e9:32:ec:ca:86:bc:2b: 82:03:82:81:38:92:53:b7:0e:97:cd:ea:e1:89:f1:53:c1:0d: 0e:3e:66:1d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/8VenjEVwI7WbSokV8JE1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NzcyMGM3ZGMxZGMzZWRkMWQwZDQ3ZjkyM2JjZDgzM2Yw NmFmMzYwHhcNMjYwMTAyMTgyMTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTg1Y2ZiYTYzODI4NTI3NjgzMWFmYjlhMzQxNDI2ZGY0YWMzOTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsh+R8bPmQHStpSld4k+wuFd7XWYW B6XeaqYCd0rRAI+5v7Kjm+LdzrZVmtf5qrggnZD+TIr5Wh456lexR7jKglrTMQ3k /C95E4utVtqww3ljIuyd9lZpq6RcGcyn5YefFDYGG0GVKyZeUtHtipeBZi+Btknm kqnQgLw8tnNUqbtUuiVt/WfxWBMQbbrrbi8trkcJONBDbUtaUXCm4cFIL+E0apdR 9SFA5IpCxI0OVEpzj4swXvAnroTO36pkcD7mWO0AvGj03yqNMcUANtdxvcv9BzN2 mqNJxnJnlTcolo8i+2nVypkGG4NvZAxoKPJqclV0PEoE8kadX7gvQn32PQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAmFz7pjgoUnaDGvuaNBQm30rDmBMB8GA1UdIwQY MBaAFKd3IMfcHcPt0dDUf5I7zYM/Bq82MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDNjZ3g5d2R3LTNSME5SX2tqdk5nejhHcnpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iYTcyMTktYWQ3Yy00OGIwLTljOTYt MTcyMjhjZWYwMDQ5LzEvQ1lYUHVtT0NoU2RvTWEtNW8wRkNiZlNzT1lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9iYTcyMTktYWQ3Yy00OGIwLTljOTYtMTcyMjhjZWYwMDQ5 LzEvcDNjZ3g5d2R3LTNSME5SX2tqdk5nejhHcnpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLv5IAwQD 1QUIMA0GCSqGSIb3DQEBCwUAA4IBAQClxgvyNY3o0uA6I0PVI9gSHLROHwz+jHA6 FBDi2O9aco9TklZe0QW490+M0vAUtmzAC4zGd8iT4rg9OYiJsR7mHfMocc8sx2h9 OL0z6Tqi4SrAHPbzQsQrLleH6H5jMKBkcoxAg2OOYiQvaaS5Y7XkghjxtiizVLwS ZRDDnkZezbhnsRuw1njqnATzvi8S/MhKMjdkJYiMhIy70KNCuk+7RjXUIdrx4LQK tz9xL1hNDpYIZGo2l18lXp+uYDAJxmE26MyqQbQ2dfF4zKXppcsWAhX07qI5tPXp 7rxIB8U5y0Ppu+ky7MqGvCuCA4KBOJJTtw6XzerhifFTwQ0OPmYd -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:37 2026 by rpki-client