This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/XLl7U2bhWYK6zJYopotLrrBYeI0.roa File: XLl7U2bhWYK6zJYopotLrrBYeI0.roa (raw, json) Hash identifier: MK+HMPU4Dt+Vt4G7etqvlxwnLvin/AWpn2adKiXWUQk= Subject key identifier: 5C:B9:7B:53:66:E1:59:82:BA:CC:96:28:A6:8B:4B:AE:B0:58:78:8D Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Certificate serial: 019B55A75B4B1B6C6D6EFFE639DF8CD788EA Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/XLl7U2bhWYK6zJYopotLrrBYeI0.roa Signing time: Thu 25 Dec 2025 13:16:29 +0000 ROA not before: Thu 25 Dec 2025 13:16:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 85.115.208.0/23 maxlen: 24 85.115.210.0/23 maxlen: 24 213.145.66.0/24 maxlen: 24 213.145.68.0/23 maxlen: 23 213.145.70.0/23 maxlen: 24 213.145.72.0/21 maxlen: 24 213.145.82.0/24 maxlen: 24 213.145.84.0/23 maxlen: 23 213.145.84.0/24 maxlen: 24 213.145.86.0/23 maxlen: 23 213.145.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 15:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:55:a7:5b:4b:1b:6c:6d:6e:ff:e6:39:df:8c:d7:88:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Validity Not Before: Dec 25 13:16:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=5cb97b5366e15982bacc9628a68b4baeb058788d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:15:01:1e:19:5b:e7:03:fe:0b:ef:7c:57:50: 1b:dd:58:41:f4:34:af:df:98:5b:15:f3:2f:88:9d: ae:4e:c0:ec:0f:b1:99:8a:3a:cd:b5:42:74:21:3e: 8e:54:b2:4b:11:ae:a2:ac:76:27:b8:db:14:55:dc: 20:b1:3f:82:56:e4:d4:fd:bf:65:80:67:97:b8:f0: 75:88:89:2f:5d:95:e5:4e:19:ba:55:f6:82:7d:c2: 39:65:47:1b:66:6f:16:08:49:fa:15:b3:66:2d:0e: a4:1a:a3:6f:db:a3:d5:e3:bc:65:fc:b5:d8:44:c2: 13:85:49:da:1c:dc:f2:a3:8f:40:82:c7:64:2d:48: 9f:09:d6:12:af:d1:e0:fe:8d:92:1c:63:4c:f3:fd: 74:a4:d2:58:0f:51:01:b0:0c:a9:0c:24:8c:7e:e1: f0:17:4f:00:7a:70:15:dd:fc:d4:6f:6d:9c:a3:52: ec:3c:53:42:62:3c:fa:90:3a:72:6c:47:fe:9b:7e: 19:6d:1a:a4:66:0c:92:98:1b:25:91:30:9b:94:c1: c3:4d:cf:a9:cf:f4:d3:f2:38:dd:cf:80:9d:c4:b6: 80:a4:5d:50:74:c1:6e:0d:1a:23:85:2f:1f:07:c8: c5:99:92:a7:98:21:d8:0b:e9:99:47:91:72:2c:1c: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B9:7B:53:66:E1:59:82:BA:CC:96:28:A6:8B:4B:AE:B0:58:78:8D X509v3 Authority Key Identifier: keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/XLl7U2bhWYK6zJYopotLrrBYeI0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.115.208.0/22 213.145.66.0/24 213.145.68.0-213.145.79.255 213.145.82.0/24 213.145.84.0-213.145.89.255 Signature Algorithm: sha256WithRSAEncryption a2:11:71:42:eb:f0:92:65:01:c3:3d:45:cc:bf:8f:af:4b:e6: ed:0d:d0:88:49:b2:62:db:25:22:3d:38:ac:12:c4:0c:0c:5c: 30:b0:f5:9a:a8:48:92:21:71:c3:ae:eb:10:3c:50:e3:70:c6: 6f:09:45:23:cf:58:82:10:f1:4e:b8:19:37:ad:fb:f0:87:5f: 2e:84:ef:61:4f:4b:d3:cd:33:9d:14:0c:5d:48:d5:c3:69:95: c8:1d:55:bb:f1:f0:f7:2b:25:e1:7f:00:e3:a6:41:a0:44:9c: f0:0f:26:df:8c:d1:34:5f:2e:73:91:24:4b:e4:b4:95:f2:c9: 0f:27:72:c3:0b:eb:08:2c:70:50:8c:4a:21:1e:98:d7:1f:7e: 70:84:86:58:9f:34:1c:db:2d:4a:66:5d:30:3f:e9:8d:7f:f9: d0:12:73:b1:26:70:a2:42:b6:ac:26:bf:42:4b:1d:c2:78:51: b8:a2:97:29:3c:85:72:c1:1b:ef:d6:40:71:44:c8:f4:35:d6: 4a:2f:0c:bf:29:d3:f1:25:95:a2:e2:d2:2e:95:27:8c:fd:4a: 12:63:29:a1:dd:d7:85:e0:8c:16:4f:0a:c2:0b:10:a1:4a:76: 0e:d5:3e:e9:c1:61:8b:0a:43:72:36:9e:be:73:fd:33:95:3c: a7:03:d6:5a -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZtVp1tLG2xtbv/mOd+M14jqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx ZDA3MjIwHhcNMjUxMjI1MTMxNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Y2I5N2I1MzY2ZTE1OTgyYmFjYzk2MjhhNjhiNGJhZWIwNTg3ODhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhUBHhlb5wP+C+98V1Ab3VhB9DSv 35hbFfMviJ2uTsDsD7GZijrNtUJ0IT6OVLJLEa6irHYnuNsUVdwgsT+CVuTU/b9l gGeXuPB1iIkvXZXlThm6VfaCfcI5ZUcbZm8WCEn6FbNmLQ6kGqNv26PV47xl/LXY RMIThUnaHNzyo49AgsdkLUifCdYSr9Hg/o2SHGNM8/10pNJYD1EBsAypDCSMfuHw F08AenAV3fzUb22co1LsPFNCYjz6kDpybEf+m34ZbRqkZgySmBslkTCblMHDTc+p z/TT8jjdz4CdxLaApF1QdMFuDRojhS8fB8jFmZKnmCHYC+mZR5FyLBy0cwIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFFy5e1Nm4VmCusyWKKaLS66wWHiNMB8GA1UdIwQY MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt ZDI0MmI2ZjNhOGExLzEvWExsN1UyYmhXWUs2ekpZb3BvdExyckJZZUkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuAwQCVXPQAwQA 1ZFCMAwDBALVkUQDBATVkUADBADVkVIwDAMEAtWRVAMEAdWRWDANBgkqhkiG9w0B AQsFAAOCAQEAohFxQuvwkmUBwz1FzL+Pr0vm7Q3QiEmyYtslIj04rBLEDAxcMLD1 mqhIkiFxw67rEDxQ43DGbwlFI89YghDxTrgZN6378IdfLoTvYU9L080znRQMXUjV w2mVyB1Vu/Hw9ysl4X8A46ZBoESc8A8m34zRNF8uc5EkS+S0lfLJDydywwvrCCxw UIxKIR6Y1x9+cISGWJ80HNstSmZdMD/pjX/50BJzsSZwokK2rCa/QksdwnhRuKKX KTyFcsEb79ZAcUTI9DXWSi8MvynT8SWVouLSLpUnjP1KEmMpod3XheCMFk8KwgsQ oUp2DtU+6cFhiwpDcjaevnP9M5U8pwPWWg== -----END CERTIFICATE-----Generated at Tue Dec 30 21:05:59 2025 by rpki-client