This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/XcYNBEw5dI4P7WTbqRWSPyRybiI.roa File: XcYNBEw5dI4P7WTbqRWSPyRybiI.roa (raw, json) Hash identifier: E4xzF5lwUKPn995lmHotzwtaddtV5FgAyRurLOmyZe8= Subject key identifier: 5D:C6:0D:04:4C:39:74:8E:0F:ED:64:DB:A9:15:92:3F:24:72:6E:22 Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b Certificate serial: 019B7F14558F5A0E5594A0C15D7B8FA19497 Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/XcYNBEw5dI4P7WTbqRWSPyRybiI.roa Signing time: Fri 02 Jan 2026 14:19:57 +0000 ROA not before: Fri 02 Jan 2026 14:19:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20765 IP address blocks: 139.3.0.0/16 maxlen: 16 185.84.216.0/22 maxlen: 24 185.84.216.0/24 maxlen: 24 185.84.219.0/24 maxlen: 24 193.96.96.0/21 maxlen: 24 194.45.0.0/22 maxlen: 22 194.45.6.0/23 maxlen: 23 194.115.4.0/24 maxlen: 24 2a05:a880:8000::/40 maxlen: 40 2a05:a880:de10::/48 maxlen: 48 2a05:a880:de52::/48 maxlen: 48 2a05:a880:de56::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.mft rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:55:8f:5a:0e:55:94:a0:c1:5d:7b:8f:a1:94:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b Validity Not Before: Jan 2 14:19:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5dc60d044c39748e0fed64dba915923f24726e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:2d:a2:50:96:65:24:80:01:1a:13:bd:61:41: 66:2c:98:57:81:d7:a0:fb:89:c0:ca:9a:7b:66:26: 08:72:cb:ee:8d:a3:1b:a5:ec:64:08:84:c2:68:25: 56:9f:fa:c7:23:38:cf:f0:67:b0:1b:2b:3e:82:61: 25:b6:07:86:29:e5:9b:9a:14:ac:a6:f5:f5:c4:b7: 32:b8:6d:c9:39:8f:f4:65:7a:0c:7e:f6:e9:8c:59: 70:55:51:02:86:e8:59:1e:e8:4d:18:29:70:f9:32: 43:90:6b:c9:ce:f9:cc:aa:08:e8:46:32:7d:78:1c: 94:4c:a6:a0:b4:33:e5:c1:55:a1:b2:34:44:3d:65: b5:4d:0e:e7:61:fa:2b:ad:fe:5c:24:97:d3:fe:2d: 00:4b:ca:37:f2:96:5e:9f:9c:f9:bb:28:1a:86:f6: 3d:81:b2:51:ba:b5:dd:01:9c:ba:de:d3:02:e2:d2: 92:6c:4f:d6:45:3b:57:04:42:84:87:34:e1:ee:80: 23:f5:fc:c4:f1:ad:83:8e:7a:68:1f:a9:e6:61:68: 53:27:8b:a0:f3:2a:19:e3:01:10:fb:e8:74:1c:f6: 8e:ae:91:8f:34:ec:fb:98:43:a7:b5:39:d4:33:c6: c0:5e:b5:d7:cf:2f:2a:7c:80:85:53:42:06:bf:20: 58:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C6:0D:04:4C:39:74:8E:0F:ED:64:DB:A9:15:92:3F:24:72:6E:22 X509v3 Authority Key Identifier: keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/XcYNBEw5dI4P7WTbqRWSPyRybiI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.3.0.0/16 185.84.216.0/22 193.96.96.0/21 194.45.0.0/22 194.45.6.0/23 194.115.4.0/24 IPv6: 2a05:a880:8000::/40 2a05:a880:de10::/48 2a05:a880:de52::/48 2a05:a880:de56::/48 Signature Algorithm: sha256WithRSAEncryption 22:f1:89:f9:48:62:ab:6a:44:3a:b9:e4:df:6a:7a:36:ba:52: 15:27:a2:43:ba:77:dc:4d:b5:b9:fc:43:92:4f:85:dc:61:cb: e5:55:e4:55:d7:43:f4:87:f5:f5:67:ba:60:2a:d8:28:27:f7: 6d:18:1c:0c:79:b7:b1:16:d1:8c:bc:c5:ed:87:89:fe:d7:b2: 26:24:5b:6a:5c:6b:5d:8a:30:7e:b8:f9:4b:40:e8:94:ea:d8: a2:0b:d0:df:93:0d:b1:bc:04:30:0c:2d:48:64:cb:2a:a8:81: 61:0d:cc:cb:79:14:34:40:7a:96:8c:c6:ca:6f:81:85:4f:8e: 88:20:e7:f6:78:bc:18:c8:05:cb:05:9b:78:c6:35:98:98:49: c5:95:a6:85:4b:ff:25:b4:63:c5:6a:fc:b0:90:e4:c2:ea:53: c7:19:4c:f1:05:c1:95:f2:57:39:b6:85:1d:e0:e9:5e:12:54: 5d:6d:8a:6f:c5:79:c0:4b:87:1f:87:85:2b:5f:73:5b:26:cf: e4:6a:9d:57:40:4e:41:7b:f2:9c:09:26:53:ef:d6:62:8c:fc: e1:2a:cf:e3:f9:d9:ee:e4:55:ff:9c:ad:fd:5c:c4:f4:20:88: d6:03:ff:36:e0:57:00:44:6f:fb:dd:61:1d:ea:26:2e:2f:d7: 59:63:eb:44 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgISAZt/FFWPWg5VlKDBXXuPoZSXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3ZWRhOGY3MjZhNjliNTA0ZGU5OTQ5NDNiMGE1ZjIzMDhj MmE5NmIwHhcNMjYwMTAyMTQxOTU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZGM2MGQwNDRjMzk3NDhlMGZlZDY0ZGJhOTE1OTIzZjI0NzI2ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjS2iUJZlJIABGhO9YUFmLJhXgdeg +4nAypp7ZiYIcsvujaMbpexkCITCaCVWn/rHIzjP8GewGys+gmEltgeGKeWbmhSs pvX1xLcyuG3JOY/0ZXoMfvbpjFlwVVEChuhZHuhNGClw+TJDkGvJzvnMqgjoRjJ9 eByUTKagtDPlwVWhsjREPWW1TQ7nYforrf5cJJfT/i0AS8o38pZen5z5uygahvY9 gbJRurXdAZy63tMC4tKSbE/WRTtXBEKEhzTh7oAj9fzE8a2DjnpoH6nmYWhTJ4ug 8yoZ4wEQ++h0HPaOrpGPNOz7mEOntTnUM8bAXrXXzy8qfICFU0IGvyBYGwIDAQAB o4ICUTCCAk0wHQYDVR0OBBYEFF3GDQRMOXSOD+1k26kVkj8kcm4iMB8GA1UdIwQY MBaAFHftqPcmpptQTemUlDsKXyMIwqlrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZC0ybzl5YW1tMUJONlpTVU93cGZJd2pDcVdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83Mjc2ZjMtYzg4ZS00ODE5LTllNTkt NjA4NGNmYzZlNGM0LzEvWGNZTkJFdzVkSTRQN1dUYnFSV1NQeVJ5YmlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi83Mjc2ZjMtYzg4ZS00ODE5LTllNTktNjA4NGNmYzZlNGM0 LzEvZC0ybzl5YW1tMUJONlpTVU93cGZJd2pDcVdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjApBAIAATAjAwMAiwMDBAK5 VNgDBAPBYGADBALCLQADBAHCLQYDBADCcwQwKQQCAAIwIwMGACoFqICAAwcAKgWo gN4QAwcAKgWogN5SAwcAKgWogN5WMA0GCSqGSIb3DQEBCwUAA4IBAQAi8Yn5SGKr akQ6ueTfano2ulIVJ6JDunfcTbW5/EOST4XcYcvlVeRV10P0h/X1Z7pgKtgoJ/dt GBwMebexFtGMvMXth4n+17ImJFtqXGtdijB+uPlLQOiU6tiiC9Dfkw2xvAQwDC1I ZMsqqIFhDczLeRQ0QHqWjMbKb4GFT46IIOf2eLwYyAXLBZt4xjWYmEnFlaaFS/8l tGPFavywkOTC6lPHGUzxBcGV8lc5toUd4OleElRdbYpvxXnAS4cfh4UrX3NbJs/k ap1XQE5Be/KcCSZT79ZijPzhKs/j+dnu5FX/nK39XMT0IIjWA/824FcARG/73WEd 6iYuL9dZY+tE -----END CERTIFICATE-----Generated at Sun Jan 25 21:26:00 2026 by rpki-client