This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/xJUIGoS7uDaiXdm5WUAD5bWRSWQ.roa File: xJUIGoS7uDaiXdm5WUAD5bWRSWQ.roa (raw, json) Hash identifier: Pl9tI/PjAarrm+R/uWGM0e7k6Ly0X+NlOZbjCwEUtFc= Subject key identifier: C4:95:08:1A:84:BB:B8:36:A2:5D:D9:B9:59:40:03:E5:B5:91:49:64 Certificate issuer: /CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db Certificate serial: 019B77C75B577E26B42BED212FCC28AECF28 Authority key identifier: 57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/xJUIGoS7uDaiXdm5WUAD5bWRSWQ.roa Signing time: Thu 01 Jan 2026 04:18:32 +0000 ROA not before: Thu 01 Jan 2026 04:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198949 IP address blocks: 5.57.96.0/19 maxlen: 24 78.108.224.0/20 maxlen: 24 80.69.208.0/20 maxlen: 24 109.122.128.0/18 maxlen: 24 185.147.224.0/22 maxlen: 24 213.55.0.0/18 maxlen: 24 2a00:a080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.mft rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 13:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:5b:57:7e:26:b4:2b:ed:21:2f:cc:28:ae:cf:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57b80e60b5adf45aeba5c0c8abccc63997a0f1db Validity Not Before: Jan 1 04:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c495081a84bbb836a25dd9b9594003e5b5914964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:35:f4:77:de:2e:bc:81:16:b0:d9:7b:d2:f0: 71:b4:69:7a:77:75:52:76:47:2e:1d:46:ab:9b:30: fc:88:d0:c9:83:f4:2d:3c:a1:be:83:e1:6b:b6:30: a9:67:0c:47:cf:29:1d:33:f9:fc:ef:2f:02:62:ee: 71:c7:2f:37:d7:b4:08:35:ce:43:a1:4a:92:2e:7d: b9:5e:d0:89:9d:55:88:16:7e:0a:94:f1:71:9f:58: 7b:3e:e2:fe:65:b8:81:90:62:0b:09:8d:18:27:21: e2:7e:db:5d:93:0e:ae:c7:e4:f5:45:63:8c:6f:4f: 03:ae:5f:e1:9a:77:d3:19:38:dc:79:a8:cc:10:d0: cb:90:73:f6:99:35:61:3f:b9:68:a6:b8:32:d2:13: 76:9b:d7:2e:83:de:b6:8f:c1:8e:78:b6:08:d1:57: 3a:cf:0a:15:1a:ff:16:a7:d5:08:3c:c1:61:c1:98: 4b:27:ba:0c:98:1e:ba:40:58:b9:f1:92:7a:74:5c: df:9c:b0:ff:89:1c:de:ab:32:37:bb:9e:c4:f9:3d: cc:d5:0a:01:47:28:be:f5:28:21:9f:38:c5:81:f0: a1:02:9d:20:27:b1:52:c7:de:b6:07:ef:65:2b:02: 13:3b:d0:74:26:73:fd:8f:10:55:65:c6:62:bf:78: 28:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:95:08:1A:84:BB:B8:36:A2:5D:D9:B9:59:40:03:E5:B5:91:49:64 X509v3 Authority Key Identifier: keyid:57:B8:0E:60:B5:AD:F4:5A:EB:A5:C0:C8:AB:CC:C6:39:97:A0:F1:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7gOYLWt9FrrpcDIq8zGOZeg8ds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/xJUIGoS7uDaiXdm5WUAD5bWRSWQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/79dd9c-ce64-4b25-8f23-e6e8aae34826/1/V7gOYLWt9FrrpcDIq8zGOZeg8ds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.57.96.0/19 78.108.224.0/20 80.69.208.0/20 109.122.128.0/18 185.147.224.0/22 213.55.0.0/18 IPv6: 2a00:a080::/32 Signature Algorithm: sha256WithRSAEncryption 0f:63:8f:08:0f:c9:ec:c0:24:fe:f4:62:bd:31:ee:4c:f2:09: 58:0c:5b:a8:98:e8:ae:1c:fc:f9:52:8b:35:0f:ff:76:be:8a: 2e:fe:2c:be:21:6d:f3:67:ae:1d:45:a5:be:26:b9:ed:3a:30: 2a:ba:c3:6b:08:ab:fd:ff:3d:05:ee:14:fb:e6:7d:2d:c9:1a: 8f:60:82:3b:76:e7:5d:4a:15:da:3f:50:c3:35:ee:06:dd:52: d1:6d:55:37:3d:a9:e4:ea:bb:ce:e2:96:4b:4a:b2:c3:68:c5: 5f:7e:50:33:d7:12:7d:d4:75:b6:07:09:9f:a2:6e:c3:24:f9: a3:df:e6:4a:7f:ac:5f:29:05:e6:86:74:16:90:74:8d:19:fa: b1:87:81:89:d9:be:b7:b0:71:f8:fc:43:98:46:ee:39:d0:ad: db:2a:84:84:e0:d3:9a:63:20:43:70:5c:26:28:56:c0:5b:7c: 48:a3:27:77:16:09:28:9f:30:29:b1:0d:85:2c:a2:58:cb:06: 67:84:43:26:36:b4:cc:6f:5b:0b:e3:c2:88:df:d4:31:a7:ca: 31:2d:fd:2c:5c:93:76:2d:5b:a4:73:1b:30:bc:17:e4:41:e0: cb:3d:c7:da:be:c8:cd:95:40:83:93:e9:d8:b0:49:a6:e1:27: 71:08:44:e5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt3x1tXfia0K+0hL8wors8oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3YjgwZTYwYjVhZGY0NWFlYmE1YzBjOGFiY2NjNjM5OTdh MGYxZGIwHhcNMjYwMTAxMDQxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDk1MDgxYTg0YmJiODM2YTI1ZGQ5Yjk1OTQwMDNlNWI1OTE0OTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjX0d94uvIEWsNl70vBxtGl6d3VS dkcuHUarmzD8iNDJg/QtPKG+g+FrtjCpZwxHzykdM/n87y8CYu5xxy8317QINc5D oUqSLn25XtCJnVWIFn4KlPFxn1h7PuL+ZbiBkGILCY0YJyHifttdkw6ux+T1RWOM b08Drl/hmnfTGTjceajMENDLkHP2mTVhP7loprgy0hN2m9cug962j8GOeLYI0Vc6 zwoVGv8Wp9UIPMFhwZhLJ7oMmB66QFi58ZJ6dFzfnLD/iRzeqzI3u57E+T3M1QoB Ryi+9SghnzjFgfChAp0gJ7FSx962B+9lKwITO9B0JnP9jxBVZcZiv3gocwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFMSVCBqEu7g2ol3ZuVlAA+W1kUlkMB8GA1UdIwQY MBaAFFe4DmC1rfRa66XAyKvMxjmXoPHbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjdnT1lMV3Q5RnJycGNESXE4ekdPWmVnOGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi83OWRkOWMtY2U2NC00YjI1LThmMjMt ZTZlOGFhZTM0ODI2LzEveEpVSUdvUzd1RGFpWGRtNVdVQUQ1YldSU1dRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi83OWRkOWMtY2U2NC00YjI1LThmMjMtZTZlOGFhZTM0ODI2 LzEvVjdnT1lMV3Q5RnJycGNESXE4ekdPWmVnOGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQFBTlgAwQE TmzgAwQEUEXQAwQGbXqAAwQCuZPgAwQG1TcAMA0EAgACMAcDBQAqAKCAMA0GCSqG SIb3DQEBCwUAA4IBAQAPY48ID8nswCT+9GK9Me5M8glYDFuomOiuHPz5Uos1D/92 voou/iy+IW3zZ64dRaW+JrntOjAqusNrCKv9/z0F7hT75n0tyRqPYII7duddShXa P1DDNe4G3VLRbVU3Pank6rvO4pZLSrLDaMVfflAz1xJ91HW2Bwmfom7DJPmj3+ZK f6xfKQXmhnQWkHSNGfqxh4GJ2b63sHH4/EOYRu450K3bKoSE4NOaYyBDcFwmKFbA W3xIoyd3FgkonzApsQ2FLKJYywZnhEMmNrTMb1sL48KI39Qxp8oxLf0sXJN2LVuk cxswvBfkQeDLPcfavsjNlUCDk+nYsEmm4SdxCETl -----END CERTIFICATE-----Generated at Wed Jan 7 22:33:33 2026 by rpki-client