This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/XPHIg8FqJ9UAJRe3LojhRYNXryY.roa File: XPHIg8FqJ9UAJRe3LojhRYNXryY.roa (raw, json) Hash identifier: opDGHpio8SYtIUSk+cF4WF228dM9/Rjti5oGCuaSNos= Subject key identifier: 5C:F1:C8:83:C1:6A:27:D5:00:25:17:B7:2E:88:E1:45:83:57:AF:26 Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3 Certificate serial: 019B77C75B6FF99046EDC7FDCBBAC14221E7 Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/XPHIg8FqJ9UAJRe3LojhRYNXryY.roa Signing time: Thu 01 Jan 2026 04:18:32 +0000 ROA not before: Thu 01 Jan 2026 04:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42156 IP address blocks: 45.83.172.0/22 maxlen: 22 45.83.172.0/23 maxlen: 23 45.83.174.0/24 maxlen: 24 45.83.175.0/24 maxlen: 24 45.143.60.0/24 maxlen: 24 45.143.61.0/24 maxlen: 24 45.143.62.0/23 maxlen: 23 69.48.159.0/24 maxlen: 24 185.161.188.0/24 maxlen: 24 185.251.180.0/24 maxlen: 24 2a0e:8480::/29 maxlen: 29 2a0e:e2c0::/29 maxlen: 29 2a0e:e2c1::/32 maxlen: 32 2a0e:e2c2::/32 maxlen: 32 2a0e:e2c4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 01:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:5b:6f:f9:90:46:ed:c7:fd:cb:ba:c1:42:21:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3 Validity Not Before: Jan 1 04:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5cf1c883c16a27d5002517b72e88e1458357af26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:1f:c7:bd:82:09:14:a7:d0:10:b4:6a:fe: fb:55:c4:0e:6a:4e:be:0c:ce:ac:83:03:06:2a:6d: 71:1e:44:36:03:c3:89:14:ac:76:81:63:54:8d:b6: 2a:a9:c6:21:81:46:4b:d0:9f:d0:44:e3:80:28:70: fa:0d:3d:76:02:a1:62:d2:54:99:6d:c7:58:f6:e5: 9f:b9:1a:57:45:ff:44:47:20:f6:b8:de:25:64:db: 87:81:f6:96:26:36:9f:fd:2e:f4:40:49:14:65:07: 39:26:ab:f3:45:74:9a:c9:22:87:eb:40:62:cc:75: 34:48:2e:54:86:6c:b1:e0:b8:31:85:a9:a8:7e:9b: 70:52:3c:3d:e8:78:aa:fa:99:f6:9b:6b:7f:43:72: 0a:29:e5:17:ec:c6:62:f5:9f:4a:da:03:e5:9f:3f: 56:1f:95:60:b5:1a:5c:65:78:2a:98:8d:ad:46:8a: 2b:a4:8f:32:8f:b5:f7:23:59:ba:6f:a0:c5:d1:0b: ea:6f:c6:9e:66:df:c5:e3:61:2c:f7:55:96:d4:02: df:77:bc:c6:46:3a:42:9f:d3:fe:4b:ad:56:36:32: 55:c3:00:10:54:87:b9:10:1d:17:16:ce:05:00:dd: 75:30:7c:d8:fa:6b:11:c3:37:ce:f3:16:49:9c:27: 7d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F1:C8:83:C1:6A:27:D5:00:25:17:B7:2E:88:E1:45:83:57:AF:26 X509v3 Authority Key Identifier: keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/XPHIg8FqJ9UAJRe3LojhRYNXryY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.83.172.0/22 45.143.60.0/22 69.48.159.0/24 185.161.188.0/24 185.251.180.0/24 IPv6: 2a0e:8480::/29 2a0e:e2c0::/29 Signature Algorithm: sha256WithRSAEncryption 41:37:21:46:da:1f:ae:03:2e:2d:37:96:8d:41:44:8d:d5:f9: 41:ed:08:d9:ca:d1:ac:be:a8:a0:48:c4:48:11:d1:2a:02:24: 88:1e:5b:c1:53:e3:72:a0:0d:2f:2e:d0:b3:bf:8c:30:79:56: e8:3e:51:97:81:df:53:1e:a9:c3:e7:b1:43:7d:3b:05:d7:e5: 0a:d2:36:28:60:19:77:19:f5:13:f0:91:a9:2e:aa:58:f0:41: f5:e1:dc:eb:ab:8b:94:c9:74:6f:b3:db:4f:a7:a5:d6:43:ef: 4f:68:56:72:84:99:55:ff:a1:1c:47:27:db:04:1c:41:54:eb: 14:cb:c4:d4:a3:08:28:3b:21:4b:a4:e3:01:c8:67:0a:b7:0b: 6e:39:e2:a5:af:72:36:1f:a4:a3:17:98:e8:c3:0e:7c:bd:28: 8d:ec:49:20:e2:33:d3:ee:15:7c:9a:90:43:1c:96:0c:b3:fc: b2:63:bd:dd:ec:58:0c:b1:75:73:05:a6:83:7f:29:12:40:5d: 69:93:20:65:2e:a2:e5:bf:47:81:14:4e:d8:49:79:6d:0e:7f: 35:76:ac:53:40:47:64:fd:b7:30:40:29:7e:30:5d:b0:dc:a1: 40:08:81:19:58:50:9c:ba:a3:9b:95:ba:56:e6:10:3c:f9:29: 08:3d:6f:32 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt3x1tv+ZBG7cf9y7rBQiHnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyYWYwM2NhMmRmNjQyM2I3N2QwZWYzNzM3YjBmNDc5MWFh MDM1YTMwHhcNMjYwMTAxMDQxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Y2YxYzg4M2MxNmEyN2Q1MDAyNTE3YjcyZTg4ZTE0NTgzNTdhZjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIsfx72CCRSn0BC0av77VcQOak6+ DM6sgwMGKm1xHkQ2A8OJFKx2gWNUjbYqqcYhgUZL0J/QROOAKHD6DT12AqFi0lSZ bcdY9uWfuRpXRf9ERyD2uN4lZNuHgfaWJjaf/S70QEkUZQc5JqvzRXSaySKH60Bi zHU0SC5Uhmyx4LgxhamofptwUjw96Hiq+pn2m2t/Q3IKKeUX7MZi9Z9K2gPlnz9W H5VgtRpcZXgqmI2tRoorpI8yj7X3I1m6b6DF0Qvqb8aeZt/F42Es91WW1ALfd7zG RjpCn9P+S61WNjJVwwAQVIe5EB0XFs4FAN11MHzY+msRwzfO8xZJnCd9GQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFFzxyIPBaifVACUXty6I4UWDV68mMB8GA1UdIwQY MBaAFJKvA8ot9kI7d9DvNzew9HkaoDWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEt NzAzYjZiNzBhN2VjLzEvWFBISWc4RnFKOVVBSlJlM0xvamhSWU5YcnlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEtNzAzYjZiNzBhN2Vj LzEva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQCLVOsAwQC LY88AwQARTCfAwQAuaG8AwQAufu0MBQEAgACMA4DBQMqDoSAAwUDKg7iwDANBgkq hkiG9w0BAQsFAAOCAQEAQTchRtofrgMuLTeWjUFEjdX5Qe0I2crRrL6ooEjESBHR KgIkiB5bwVPjcqANLy7Qs7+MMHlW6D5Rl4HfUx6pw+exQ307BdflCtI2KGAZdxn1 E/CRqS6qWPBB9eHc66uLlMl0b7PbT6el1kPvT2hWcoSZVf+hHEcn2wQcQVTrFMvE 1KMIKDshS6TjAchnCrcLbjnipa9yNh+koxeY6MMOfL0ojexJIOIz0+4VfJqQQxyW DLP8smO93exYDLF1cwWmg38pEkBdaZMgZS6i5b9HgRRO2El5bQ5/NXasU0BHZP23 MEApfjBdsNyhQAiBGVhQnLqjm5W6VuYQPPkpCD1vMg== -----END CERTIFICATE-----Generated at Tue Jan 27 11:21:58 2026 by rpki-client