This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/xsTVjIeVJzqy3Dly9i83AhLsDng.roa File: xsTVjIeVJzqy3Dly9i83AhLsDng.roa (raw, json) Hash identifier: ivpCGfFhECEPmQVaRhGvlFpdc3270xnQ6EhBDnMhaxU= Subject key identifier: C6:C4:D5:8C:87:95:27:3A:B2:DC:39:72:F6:2F:37:02:12:EC:0E:78 Certificate issuer: /CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13 Certificate serial: 019A92599DE2FBFDFAECD856E5BF432A1E67 Authority key identifier: 0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/xsTVjIeVJzqy3Dly9i83AhLsDng.roa Signing time: Mon 17 Nov 2025 15:05:37 +0000 ROA not before: Mon 17 Nov 2025 15:05:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212238 IP address blocks: 45.66.135.0/24 maxlen: 24 45.67.55.0/24 maxlen: 24 45.82.165.0/24 maxlen: 24 45.85.2.0/24 maxlen: 24 45.90.140.0/24 maxlen: 24 45.128.152.0/24 maxlen: 24 45.134.18.0/24 maxlen: 24 45.144.242.0/24 maxlen: 24 89.31.124.0/24 maxlen: 24 91.220.202.0/24 maxlen: 24 91.220.203.0/24 maxlen: 24 147.78.14.0/24 maxlen: 24 152.89.210.0/24 maxlen: 24 185.105.191.0/24 maxlen: 24 185.120.17.0/24 maxlen: 24 185.126.68.0/24 maxlen: 24 185.126.136.0/24 maxlen: 24 185.126.137.0/24 maxlen: 24 185.126.224.0/24 maxlen: 24 185.126.227.0/24 maxlen: 24 185.167.117.0/24 maxlen: 24 185.167.118.0/24 maxlen: 24 185.167.119.0/24 maxlen: 24 185.171.122.0/24 maxlen: 24 185.171.123.0/24 maxlen: 24 185.172.114.0/24 maxlen: 24 185.175.142.0/24 maxlen: 24 185.175.143.0/24 maxlen: 24 185.187.236.0/24 maxlen: 24 188.119.102.0/24 maxlen: 24 192.54.56.0/24 maxlen: 24 192.54.58.0/24 maxlen: 24 192.54.59.0/24 maxlen: 24 193.37.56.0/24 maxlen: 24 193.37.57.0/24 maxlen: 24 193.38.136.0/24 maxlen: 24 194.124.32.0/24 maxlen: 24 194.156.229.0/24 maxlen: 24 2a0c:8a40:2::/48 maxlen: 48 2a0c:8a41:a300::/64 maxlen: 64 2a0c:8a47::/32 maxlen: 32 2a0c:8a47::/36 maxlen: 36 2a0c:8a47:1000::/36 maxlen: 36 2a0c:8a47:2000::/36 maxlen: 36 2a0c:8a47:3000::/36 maxlen: 36 2a0c:8a47:4000::/36 maxlen: 36 2a0c:8a47:5000::/36 maxlen: 36 2a0c:8a47:6000::/36 maxlen: 36 2a0c:8a47:7000::/36 maxlen: 36 2a0c:8a47:8000::/36 maxlen: 36 2a0c:8a47:9000::/36 maxlen: 36 2a0c:8a47:a000::/36 maxlen: 36 2a0c:8a47:b000::/36 maxlen: 36 2a0c:8a47:c000::/36 maxlen: 36 2a0c:8a47:d000::/36 maxlen: 36 2a0c:8a47:e000::/36 maxlen: 36 2a0c:8a47:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CyR-czkeydaipG8ssLAvyZQojxM.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CyR-czkeydaipG8ssLAvyZQojxM.mft rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 08:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:92:59:9d:e2:fb:fd:fa:ec:d8:56:e5:bf:43:2a:1e:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13 Validity Not Before: Nov 17 15:05:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=c6c4d58c8795273ab2dc3972f62f370212ec0e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3a:49:4b:64:77:cc:a1:c7:95:18:e5:62:5e: 4b:ca:49:85:73:e2:4b:46:7d:26:3f:c8:b1:1d:34: 21:bb:1c:a5:c0:05:c1:a5:70:3e:9d:0f:29:10:66: ec:fa:3b:40:ef:b8:e2:2c:f1:ef:4e:2b:5e:06:f7: b1:bc:b5:ee:1c:d2:d7:be:70:c3:06:6a:c3:8a:b9: 0d:66:c2:e0:99:84:e7:83:18:f0:16:14:0b:a9:5d: d7:24:4c:31:9e:d5:fb:b6:55:3e:0b:62:96:66:7c: 51:ae:54:0d:f5:9d:4a:ba:7a:b3:f7:b8:08:79:db: fe:db:f8:fb:d9:04:05:04:fd:f9:26:fa:37:89:e7: b9:ad:61:be:42:72:43:fd:a1:96:03:f4:1d:58:ab: 65:62:e1:17:70:3b:e0:ee:fc:f3:d5:26:b5:e1:d5: 5d:a5:1a:32:db:28:75:d5:3a:cd:48:89:63:15:db: 3e:66:23:9d:24:04:73:dd:96:10:18:7a:29:86:8c: 54:f5:50:c0:ca:81:d7:88:78:f0:87:0b:18:a3:0b: 03:92:df:2a:0c:af:be:bd:6b:82:d2:e6:fb:ee:88: 78:b4:77:e4:2f:5e:a1:c0:d5:40:54:a6:b0:8e:6b: 07:69:3f:a5:ad:aa:4e:10:b4:e7:60:3c:b4:13:cc: 91:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C4:D5:8C:87:95:27:3A:B2:DC:39:72:F6:2F:37:02:12:EC:0E:78 X509v3 Authority Key Identifier: keyid:0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/xsTVjIeVJzqy3Dly9i83AhLsDng.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CyR-czkeydaipG8ssLAvyZQojxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.66.135.0/24 45.67.55.0/24 45.82.165.0/24 45.85.2.0/24 45.90.140.0/24 45.128.152.0/24 45.134.18.0/24 45.144.242.0/24 89.31.124.0/24 91.220.202.0/23 147.78.14.0/24 152.89.210.0/24 185.105.191.0/24 185.120.17.0/24 185.126.68.0/24 185.126.136.0/23 185.126.224.0/24 185.126.227.0/24 185.167.117.0-185.167.119.255 185.171.122.0/23 185.172.114.0/24 185.175.142.0/23 185.187.236.0/24 188.119.102.0/24 192.54.56.0/24 192.54.58.0/23 193.37.56.0/23 193.38.136.0/24 194.124.32.0/24 194.156.229.0/24 IPv6: 2a0c:8a40:2::/48 2a0c:8a41:a300::/64 2a0c:8a47::/32 Signature Algorithm: sha256WithRSAEncryption aa:47:2b:02:4a:9d:1b:b4:84:97:8d:8b:a0:71:b9:5f:ad:4f: 09:c1:7e:38:6a:3d:dc:d6:00:3e:b4:59:e9:ba:3a:30:a3:fc: bf:5c:58:5c:4b:7d:d5:d3:b6:70:eb:b0:d7:4d:0e:ad:15:1e: 55:57:fc:ab:91:32:49:ac:1b:9c:d4:2a:d4:27:bc:f9:4c:70: 43:f8:37:8e:fe:56:59:75:90:73:76:05:fa:24:6d:3f:2c:56: 6c:e0:ac:f5:1d:be:7e:e2:a8:55:bf:b8:0e:34:38:b1:e8:61: 59:fd:84:55:06:58:bf:d5:88:11:a0:0f:00:70:9d:43:fd:7a: 1e:13:01:41:8e:e2:b8:74:69:43:76:7c:5b:5f:9a:32:11:26: a0:30:48:7d:db:0f:bb:21:52:26:58:36:11:7e:75:84:81:98: 08:2c:c7:3a:c2:d7:3b:fc:cc:cb:c5:52:c0:1a:1f:af:90:ca: 0b:e0:6d:10:53:d0:12:47:41:b1:f1:72:0c:1b:d9:f3:5a:c1: 29:5f:81:7b:35:ca:a8:75:0d:33:0e:a6:fb:89:62:fe:d3:94: 0b:b4:8b:27:97:a5:47:c7:5f:72:e1:3c:22:8e:fb:8c:e3:98: 34:56:c1:30:ca:02:1f:57:d4:91:c0:6c:cf:85:33:97:38:8b: 60:85:47:16 -----BEGIN CERTIFICATE----- MIIF2zCCBMOgAwIBAgISAZqSWZ3i+/367NhW5b9DKh5nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiMjQ3ZTczMzkxZWM5ZDZhMmE0NmYyY2IwYjAyZmM5OTQy ODhmMTMwHhcNMjUxMTE3MTUwNTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNmM0ZDU4Yzg3OTUyNzNhYjJkYzM5NzJmNjJmMzcwMjEyZWMwZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTpJS2R3zKHHlRjlYl5LykmFc+JL Rn0mP8ixHTQhuxylwAXBpXA+nQ8pEGbs+jtA77jiLPHvTiteBvexvLXuHNLXvnDD BmrDirkNZsLgmYTngxjwFhQLqV3XJEwxntX7tlU+C2KWZnxRrlQN9Z1Kunqz97gI edv+2/j72QQFBP35Jvo3iee5rWG+QnJD/aGWA/QdWKtlYuEXcDvg7vzz1Sa14dVd pRoy2yh11TrNSIljFds+ZiOdJARz3ZYQGHophoxU9VDAyoHXiHjwhwsYowsDkt8q DK++vWuC0ub77oh4tHfkL16hwNVAVKawjmsHaT+lrapOELTnYDy0E8yR4wIDAQAB o4IC5zCCAuMwHQYDVR0OBBYEFMbE1YyHlSc6stw5cvYvNwIS7A54MB8GA1UdIwQY MBaAFAskfnM5HsnWoqRvLLCwL8mUKI8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3lSLWN6a2V5ZGFpcEc4c3NMQXZ5WlFvanhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iM2ZkNDAtYjEyNS00MjgyLWI4ODMt NzM2Nzg5ZWU2ZmQwLzEveHNUVmpJZVZKenF5M0RseTlpODNBaExzRG5nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9iM2ZkNDAtYjEyNS00MjgyLWI4ODMtNzM2Nzg5ZWU2ZmQw LzEvQ3lSLWN6a2V5ZGFpcEc4c3NMQXZ5WlFvanhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIH8BggrBgEFBQcBBwEB/wSB7DCB6TCBwwQCAAEwgbwDBAAt QocDBAAtQzcDBAAtUqUDBAAtVQIDBAAtWowDBAAtgJgDBAAthhIDBAAtkPIDBABZ H3wDBAFb3MoDBACTTg4DBACYWdIDBAC5ab8DBAC5eBEDBAC5fkQDBAG5fogDBAC5 fuADBAC5fuMwDAMEALmndQMEA7mncAMEAbmregMEALmscgMEAbmvjgMEALm77AME ALx3ZgMEAMA2OAMEAcA2OgMEAcElOAMEAMEmiAMEAMJ8IAMEAMKc5TAhBAIAAjAb AwcAKgyKQAACAwkAKgyKQaMAAAADBQAqDIpHMA0GCSqGSIb3DQEBCwUAA4IBAQCq RysCSp0btISXjYugcblfrU8JwX44aj3c1gA+tFnpujowo/y/XFhcS33V07Zw67DX TQ6tFR5VV/yrkTJJrBuc1CrUJ7z5THBD+DeO/lZZdZBzdgX6JG0/LFZs4Kz1Hb5+ 4qhVv7gONDix6GFZ/YRVBli/1YgRoA8AcJ1D/XoeEwFBjuK4dGlDdnxbX5oyESag MEh92w+7IVImWDYRfnWEgZgILMc6wtc7/MzLxVLAGh+vkMoL4G0QU9ASR0Gx8XIM G9nzWsEpX4F7NcqodQ0zDqb7iWL+05QLtIsnl6VHx19y4TwijvuM45g0VsEwygIf V9SRwGzPhTOXOItghUcW -----END CERTIFICATE-----Generated at Wed Dec 3 12:02:53 2025 by rpki-client