This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/xINjkJL8qvMAVDbIJ4LyV80MllA.roa File: xINjkJL8qvMAVDbIJ4LyV80MllA.roa (raw, json) Hash identifier: kboYGMyjJk+EgYXIB3KXdvFsdQ20CMBg3E1UOGt17HY= Subject key identifier: C4:83:63:90:92:FC:AA:F3:00:54:36:C8:27:82:F2:57:CD:0C:96:50 Certificate issuer: /CN=947121580ed02eddf4f5e5a87d37e017b32df71b Certificate serial: 019B78A2FCC0CFE9F325B68855CFF8999E60 Authority key identifier: 94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/xINjkJL8qvMAVDbIJ4LyV80MllA.roa Signing time: Thu 01 Jan 2026 08:18:26 +0000 ROA not before: Thu 01 Jan 2026 08:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60316 IP address blocks: 185.33.216.0/22 maxlen: 24 185.104.72.0/22 maxlen: 24 185.186.120.0/22 maxlen: 24 185.212.32.0/24 maxlen: 24 185.227.224.0/22 maxlen: 24 2a04:5a00::/29 maxlen: 32 2a06:2f80::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.mft rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:fc:c0:cf:e9:f3:25:b6:88:55:cf:f8:99:9e:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=947121580ed02eddf4f5e5a87d37e017b32df71b Validity Not Before: Jan 1 08:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c483639092fcaaf3005436c82782f257cd0c9650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:6b:5b:dc:44:4a:d9:75:b8:a9:e7:c8:76: 41:c4:47:4a:5b:5c:1a:d3:6b:7e:b0:d8:5a:e2:b0: cf:7f:0a:66:14:a1:53:62:fa:2e:c6:67:f6:e4:a3: 5d:56:63:19:cf:22:4e:51:cd:55:43:ef:92:41:dc: 86:67:a4:0e:f4:99:93:84:54:28:ce:1b:12:68:b1: 4a:87:9c:fa:ae:fc:22:80:45:48:5d:76:2a:5d:91: 7d:eb:a1:d6:2d:64:1a:30:af:9b:84:15:6a:cc:51: 49:65:e0:9c:09:35:da:fe:25:67:fd:66:14:3f:92: 65:b3:fc:e4:a0:d6:9e:b7:d3:cb:25:82:82:a6:13: aa:ec:e5:46:d5:53:4f:50:34:0c:54:c1:26:37:c0: 56:5c:40:1e:da:80:97:5d:fb:54:05:f7:61:c5:c3: c3:fd:61:12:0d:fb:5f:68:b5:1d:7d:71:d9:f5:77: 43:5d:74:ab:5c:1d:d5:95:2f:d6:06:1b:29:50:ed: 1c:f2:c1:8f:72:40:63:cd:a6:53:7e:34:a5:b8:5f: ac:07:c7:20:15:34:0f:74:3d:5b:b6:72:86:a6:c9: 8d:54:1b:7e:59:f0:dc:47:fe:aa:75:bd:2e:d4:6d: f6:54:b8:e0:fd:25:6e:e5:39:08:7e:dd:7e:73:2b: 38:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:83:63:90:92:FC:AA:F3:00:54:36:C8:27:82:F2:57:CD:0C:96:50 X509v3 Authority Key Identifier: keyid:94:71:21:58:0E:D0:2E:DD:F4:F5:E5:A8:7D:37:E0:17:B3:2D:F7:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHEhWA7QLt309eWofTfgF7Mt9xs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/xINjkJL8qvMAVDbIJ4LyV80MllA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/79c5bb-619d-4beb-8649-a2f425600db3/1/lHEhWA7QLt309eWofTfgF7Mt9xs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.33.216.0/22 185.104.72.0/22 185.186.120.0/22 185.212.32.0/24 185.227.224.0/22 IPv6: 2a04:5a00::/29 2a06:2f80::/29 Signature Algorithm: sha256WithRSAEncryption 98:b4:4b:c9:a0:fd:3b:36:8b:2d:ca:ce:c8:e2:56:92:67:23: b1:fd:92:a3:27:13:96:42:bb:ac:3a:2c:ea:d7:99:94:9b:4a: c3:f1:dc:e8:9b:b0:d3:d9:a2:b2:7f:74:95:78:05:65:ff:0e: 10:2c:43:e7:da:29:d2:d0:80:08:0d:65:3c:62:0a:ba:ef:79: 88:2e:01:62:aa:0f:70:6d:c5:6b:8a:0e:8c:66:6f:22:c5:b3: c0:20:3a:b3:a8:e3:86:ee:d1:b6:38:92:90:53:6e:12:ee:dc: dd:04:db:f6:ce:f5:a1:af:cb:05:eb:ee:a5:48:52:e8:05:da: ec:fa:13:71:31:72:db:a8:15:fa:c1:72:47:30:e3:08:b7:02: 18:30:f6:31:f0:59:b4:12:3b:1e:8f:e5:5c:11:52:99:b5:f5: af:83:ca:a4:fd:f0:28:18:ef:99:cc:c7:c5:32:15:ed:8d:be: 9f:b1:7c:32:aa:e6:60:27:ce:05:e8:51:01:9e:3f:47:fb:ff: db:57:36:53:d8:74:74:7e:0f:4d:3c:89:ac:82:61:cd:92:90: ef:a2:73:8f:51:55:30:30:a2:4d:a1:4f:15:2e:2c:b3:9e:d5: d1:a4:f8:70:58:b2:09:1a:2d:bf:1d:0f:b4:c3:5a:d5:66:14: f5:b9:a5:92 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt4ovzAz+nzJbaIVc/4mZ5gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NzEyMTU4MGVkMDJlZGRmNGY1ZTVhODdkMzdlMDE3YjMy ZGY3MWIwHhcNMjYwMTAxMDgxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDgzNjM5MDkyZmNhYWYzMDA1NDM2YzgyNzgyZjI1N2NkMGM5NjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqRrW9xEStl1uKnnyHZBxEdKW1wa 02t+sNha4rDPfwpmFKFTYvouxmf25KNdVmMZzyJOUc1VQ++SQdyGZ6QO9JmThFQo zhsSaLFKh5z6rvwigEVIXXYqXZF966HWLWQaMK+bhBVqzFFJZeCcCTXa/iVn/WYU P5Jls/zkoNaet9PLJYKCphOq7OVG1VNPUDQMVMEmN8BWXEAe2oCXXftUBfdhxcPD /WESDftfaLUdfXHZ9XdDXXSrXB3VlS/WBhspUO0c8sGPckBjzaZTfjSluF+sB8cg FTQPdD1btnKGpsmNVBt+WfDcR/6qdb0u1G32VLjg/SVu5TkIft1+cys4sQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFMSDY5CS/KrzAFQ2yCeC8lfNDJZQMB8GA1UdIwQY MBaAFJRxIVgO0C7d9PXlqH034BezLfcbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS83OWM1YmItNjE5ZC00YmViLTg2NDkt YTJmNDI1NjAwZGIzLzEveElOamtKTDhxdk1BVkRiSUo0THlWODBNbGxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS83OWM1YmItNjE5ZC00YmViLTg2NDktYTJmNDI1NjAwZGIz LzEvbEhFaFdBN1FMdDMwOWVXb2ZUZmdGN010OXhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQCuSHYAwQC uWhIAwQCubp4AwQAudQgAwQCuePgMBQEAgACMA4DBQMqBFoAAwUDKgYvgDANBgkq hkiG9w0BAQsFAAOCAQEAmLRLyaD9OzaLLcrOyOJWkmcjsf2SoycTlkK7rDos6teZ lJtKw/Hc6Juw09misn90lXgFZf8OECxD59op0tCACA1lPGIKuu95iC4BYqoPcG3F a4oOjGZvIsWzwCA6s6jjhu7RtjiSkFNuEu7c3QTb9s71oa/LBevupUhS6AXa7PoT cTFy26gV+sFyRzDjCLcCGDD2MfBZtBI7Ho/lXBFSmbX1r4PKpP3wKBjvmczHxTIV 7Y2+n7F8MqrmYCfOBehRAZ4/R/v/21c2U9h0dH4PTTyJrIJhzZKQ76Jzj1FVMDCi TaFPFS4ss57V0aT4cFiyCRotvx0PtMNa1WYU9bmlkg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:25 2026 by rpki-client