This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/PRXYBUMYEQRkV3ToDuIhNBrHhyA.roa File: PRXYBUMYEQRkV3ToDuIhNBrHhyA.roa (raw, json) Hash identifier: uvNCYHR/ZZCKYM9W7EA0XBc+nLp6Db9Y2V2m/ZWTRGE= Subject key identifier: 3D:15:D8:05:43:18:11:04:64:57:74:E8:0E:E2:21:34:1A:C7:87:20 Certificate issuer: /CN=0d72fe2c805ed63afc9c89e9324ac94d30939aab Certificate serial: 019B7B3581B37114B274422E8FECD85B7469 Authority key identifier: 0D:72:FE:2C:80:5E:D6:3A:FC:9C:89:E9:32:4A:C9:4D:30:93:9A:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXL-LIBe1jr8nInpMkrJTTCTmqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/PRXYBUMYEQRkV3ToDuIhNBrHhyA.roa Signing time: Thu 01 Jan 2026 20:17:42 +0000 ROA not before: Thu 01 Jan 2026 20:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 109.245.74.0/24 maxlen: 24 109.245.96.0/24 maxlen: 24 109.245.97.0/24 maxlen: 24 109.245.98.0/24 maxlen: 24 109.245.99.0/24 maxlen: 24 109.245.100.0/24 maxlen: 24 109.245.101.0/24 maxlen: 24 109.245.102.0/24 maxlen: 24 109.245.103.0/24 maxlen: 24 109.245.112.0/24 maxlen: 24 109.245.113.0/24 maxlen: 24 109.245.114.0/24 maxlen: 24 109.245.115.0/24 maxlen: 24 109.245.116.0/24 maxlen: 24 109.245.117.0/24 maxlen: 24 109.245.118.0/24 maxlen: 24 109.245.119.0/24 maxlen: 24 109.245.192.0/24 maxlen: 24 109.245.193.0/24 maxlen: 24 109.245.194.0/24 maxlen: 24 109.245.195.0/24 maxlen: 24 109.245.196.0/24 maxlen: 24 109.245.197.0/24 maxlen: 24 109.245.198.0/24 maxlen: 24 109.245.199.0/24 maxlen: 24 109.245.200.0/24 maxlen: 24 109.245.201.0/24 maxlen: 24 109.245.202.0/24 maxlen: 24 109.245.203.0/24 maxlen: 24 109.245.204.0/24 maxlen: 24 109.245.205.0/24 maxlen: 24 109.245.206.0/24 maxlen: 24 109.245.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/DXL-LIBe1jr8nInpMkrJTTCTmqs.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/DXL-LIBe1jr8nInpMkrJTTCTmqs.mft rsync://rpki.ripe.net/repository/DEFAULT/DXL-LIBe1jr8nInpMkrJTTCTmqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:81:b3:71:14:b2:74:42:2e:8f:ec:d8:5b:74:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d72fe2c805ed63afc9c89e9324ac94d30939aab Validity Not Before: Jan 1 20:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d15d80543181104645774e80ee221341ac78720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:be:41:36:ed:5e:1b:88:25:54:f9:cd:0e:9d: a0:28:fc:2f:b3:f0:ef:9d:44:8c:d4:57:aa:9b:71: 74:b3:46:fe:70:2a:48:c1:44:87:7a:fa:04:e8:57: 97:f7:45:59:fc:d6:ee:e1:7e:8e:98:7b:19:1b:e2: cd:fe:50:9d:f2:f7:36:da:b8:56:b8:93:48:44:43: 80:9c:eb:b8:bb:4b:7b:d1:a7:c5:15:e9:27:62:43: 97:80:3c:17:eb:ff:89:5c:75:d0:e6:e2:6b:d1:83: ad:5a:a3:fc:91:71:85:f6:87:dc:6d:1f:78:72:22: 2e:2b:0f:50:b7:5a:85:cd:fc:b5:3e:06:f6:4c:21: 08:dc:1e:79:2f:62:90:70:a4:9e:1c:aa:fd:e0:c5: 31:89:59:e1:4f:4c:06:8e:a6:41:e1:53:7d:b7:55: 79:fd:1f:e2:ba:93:a7:b9:54:3e:14:fe:fc:74:36: eb:18:1d:0a:07:2d:b9:55:33:35:69:aa:d2:55:8a: 5a:8f:a9:81:bd:f2:c3:dd:fd:05:9f:04:a9:d4:0c: 21:5a:06:c5:7c:30:bc:d3:ec:2d:78:89:fa:93:68: 0d:bb:e7:2b:7b:42:02:e7:d3:a6:c1:8a:fc:e7:de: ea:ed:5e:6e:dc:b7:86:07:86:33:75:69:a9:be:ae: 80:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:15:D8:05:43:18:11:04:64:57:74:E8:0E:E2:21:34:1A:C7:87:20 X509v3 Authority Key Identifier: keyid:0D:72:FE:2C:80:5E:D6:3A:FC:9C:89:E9:32:4A:C9:4D:30:93:9A:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXL-LIBe1jr8nInpMkrJTTCTmqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/PRXYBUMYEQRkV3ToDuIhNBrHhyA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/22e1d1-9984-4158-8d18-cf818c7c451a/1/DXL-LIBe1jr8nInpMkrJTTCTmqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.245.74.0/24 109.245.96.0/21 109.245.112.0/21 109.245.192.0/20 Signature Algorithm: sha256WithRSAEncryption 66:f0:3b:4f:77:68:0e:8e:17:8f:22:9c:79:b5:59:65:b8:fc: 47:ef:08:ec:6f:ee:00:f4:f4:4b:5f:73:47:49:54:d3:0d:d2: 0b:56:33:25:ee:c2:76:51:70:22:53:31:ac:15:60:31:87:89: 90:eb:b7:6d:f4:ce:1d:19:f4:7b:03:77:02:e2:5a:ab:f6:bd: c9:8c:4d:0f:48:24:b9:34:37:a7:8c:b5:0a:30:54:bf:a8:83: 28:e3:b7:09:2e:a0:bb:6b:71:28:b0:52:32:c2:0c:c8:98:e5: e5:c4:d2:13:99:5c:e4:ac:6e:4f:4e:58:64:3b:db:80:c5:c2: da:a2:50:e5:e8:5f:91:09:8f:14:72:4b:e2:4d:bf:fb:1e:7d: ae:70:36:ac:5a:10:15:b9:31:e0:4f:6c:e9:9d:79:f8:b4:8f: 9e:4f:20:a6:b6:ea:01:09:55:ba:53:37:3a:96:95:bf:ba:10: 96:18:04:4c:99:ad:3d:c5:fc:4c:50:9f:ed:8d:d5:76:56:6c: 98:0a:e7:49:1f:52:9b:7a:92:2c:2d:72:43:bb:68:bc:56:04: 46:1c:6d:dc:15:00:73:5a:69:7f:89:b3:cd:30:a4:2d:c2:d1: bc:cc:58:19:67:5e:77:d5:82:8d:6f:09:c4:4d:74:18:a7:f4: 2c:b1:05:c4 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt7NYGzcRSydEIuj+zYW3RpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkNzJmZTJjODA1ZWQ2M2FmYzljODllOTMyNGFjOTRkMzA5 MzlhYWIwHhcNMjYwMTAxMjAxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDE1ZDgwNTQzMTgxMTA0NjQ1Nzc0ZTgwZWUyMjEzNDFhYzc4NzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL5BNu1eG4glVPnNDp2gKPwvs/Dv nUSM1Feqm3F0s0b+cCpIwUSHevoE6FeX90VZ/Nbu4X6OmHsZG+LN/lCd8vc22rhW uJNIREOAnOu4u0t70afFFeknYkOXgDwX6/+JXHXQ5uJr0YOtWqP8kXGF9ofcbR94 ciIuKw9Qt1qFzfy1Pgb2TCEI3B55L2KQcKSeHKr94MUxiVnhT0wGjqZB4VN9t1V5 /R/iupOnuVQ+FP78dDbrGB0KBy25VTM1aarSVYpaj6mBvfLD3f0FnwSp1AwhWgbF fDC80+wteIn6k2gNu+cre0IC59OmwYr8597q7V5u3LeGB4YzdWmpvq6AdwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFD0V2AVDGBEEZFd06A7iITQax4cgMB8GA1UdIwQY MBaAFA1y/iyAXtY6/JyJ6TJKyU0wk5qrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFhMLUxJQmUxanI4bklucE1rckpUVENUbXFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yMmUxZDEtOTk4NC00MTU4LThkMTgt Y2Y4MThjN2M0NTFhLzEvUFJYWUJVTVlFUVJrVjNUb0R1SWhOQnJIaHlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yMmUxZDEtOTk4NC00MTU4LThkMTgtY2Y4MThjN2M0NTFh LzEvRFhMLUxJQmUxanI4bklucE1rckpUVENUbXFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAbfVKAwQD bfVgAwQDbfVwAwQEbfXAMA0GCSqGSIb3DQEBCwUAA4IBAQBm8DtPd2gOjhePIpx5 tVlluPxH7wjsb+4A9PRLX3NHSVTTDdILVjMl7sJ2UXAiUzGsFWAxh4mQ67dt9M4d GfR7A3cC4lqr9r3JjE0PSCS5NDenjLUKMFS/qIMo47cJLqC7a3EosFIywgzImOXl xNITmVzkrG5PTlhkO9uAxcLaolDl6F+RCY8UckviTb/7Hn2ucDasWhAVuTHgT2zp nXn4tI+eTyCmtuoBCVW6Uzc6lpW/uhCWGARMma09xfxMUJ/tjdV2VmyYCudJH1Kb epIsLXJDu2i8VgRGHG3cFQBzWml/ibPNMKQtwtG8zFgZZ1531YKNbwnETXQYp/Qs sQXE -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:11 2026 by rpki-client