This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/X2rHjsx_SYXDeiodQE_8UgYyHRo.roa File: X2rHjsx_SYXDeiodQE_8UgYyHRo.roa (raw, json) Hash identifier: znO8+VPm68ygKRjB0I3Xe68pzJgyUVvDVa7DOidQiIU= Subject key identifier: 5F:6A:C7:8E:CC:7F:49:85:C3:7A:2A:1D:40:4F:FC:52:06:32:1D:1A Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Certificate serial: 019B775905D2F3127436A1EF3290D5343952 Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/X2rHjsx_SYXDeiodQE_8UgYyHRo.roa Signing time: Thu 01 Jan 2026 02:18:01 +0000 ROA not before: Thu 01 Jan 2026 02:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202228 IP address blocks: 77.65.128.0/22 maxlen: 24 77.65.131.0/24 maxlen: 24 77.65.132.0/23 maxlen: 24 77.65.133.0/24 maxlen: 24 77.65.200.0/22 maxlen: 24 77.65.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.mft rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:05:d2:f3:12:74:36:a1:ef:32:90:d5:34:39:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8 Validity Not Before: Jan 1 02:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f6ac78ecc7f4985c37a2a1d404ffc5206321d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ae:b7:78:72:51:6a:7d:c2:19:67:cf:a0:e8: f1:a1:ae:b9:97:b1:ab:16:00:65:ef:1b:b1:d3:85: 40:a9:77:cd:99:50:60:9f:29:e7:66:cc:74:22:fe: fe:0a:55:ca:e1:4c:b1:6c:55:8a:b8:91:83:3b:49: 7e:1c:16:5b:62:48:49:85:18:50:ed:f0:e4:da:78: 62:ed:a0:ac:9c:e2:46:7a:03:a2:0e:6a:fe:ad:38: d7:33:17:85:f9:a0:78:f2:2a:80:07:92:4e:32:74: f1:44:18:82:3f:2e:c2:9b:10:54:26:a2:81:8a:05: be:3a:0b:1b:0b:8d:3e:a9:9e:49:e8:ba:1b:c5:76: 85:a3:df:ef:7c:90:44:14:9a:c4:21:8a:db:da:0c: 86:3e:81:eb:5f:52:c8:ee:f2:cd:f9:8b:b8:99:8c: fe:7e:06:be:55:5e:cd:96:ae:04:bf:d1:8e:81:0e: 77:4a:48:2f:f8:df:da:6b:04:dd:2b:94:8d:71:d9: 20:4e:98:b8:00:b4:0d:b0:61:47:19:94:bb:81:ee: 83:f4:ec:53:ad:a7:5f:4b:06:96:9d:1f:21:72:a6: 5b:11:51:58:49:1e:71:1d:41:17:b9:43:80:bf:1f: 3e:e7:4d:75:ca:cd:e0:26:39:ae:cc:1c:07:5f:f9: 02:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6A:C7:8E:CC:7F:49:85:C3:7A:2A:1D:40:4F:FC:52:06:32:1D:1A X509v3 Authority Key Identifier: keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/X2rHjsx_SYXDeiodQE_8UgYyHRo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.65.128.0-77.65.133.255 77.65.200.0-77.65.204.255 Signature Algorithm: sha256WithRSAEncryption 4a:3c:d7:8a:1b:9e:74:4a:e0:df:d8:c0:70:db:00:d2:d1:d0: 3a:82:b7:c8:d9:f3:ef:30:04:2e:14:f3:c5:29:89:8a:ab:ca: 88:ad:d0:73:d6:fc:1b:1b:29:de:fd:9a:96:20:0b:48:52:6a: e9:8f:9b:1d:78:fb:eb:6c:83:99:55:f9:9f:e2:60:21:80:f8: f0:79:0c:5d:6f:b9:94:76:e7:44:41:d8:35:35:39:d5:b6:4d: 35:34:90:fd:7f:a7:4c:06:dd:26:4d:9f:b6:ee:b9:0f:81:54: 0e:b8:0a:35:c2:60:a3:a1:3d:35:5e:3b:89:df:93:06:32:70: 48:01:aa:77:98:f3:06:ce:ec:f8:c7:a0:7c:be:67:30:a3:d2: 0a:1f:94:c0:25:0c:5c:4e:58:58:9a:29:81:82:a8:b9:9b:f0: 3c:ca:40:ae:91:d8:a6:92:2c:c1:42:56:0e:c2:47:74:52:f8: bf:ec:91:84:ca:9e:84:11:dd:57:26:a2:74:34:21:67:f9:a3: 91:41:6f:de:90:aa:11:89:9b:59:55:81:e3:82:d2:05:07:1f: c2:f7:9f:4f:96:08:78:a3:e3:a6:00:35:19:eb:83:8b:38:a9: 27:eb:ff:f1:88:af:f4:9e:c6:7c:73:d5:99:e3:84:e2:f7:cf: 26:b5:8a:ca -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZt3WQXS8xJ0NqHvMpDVNDlSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx YjM2ZTgwHhcNMjYwMTAxMDIxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjZhYzc4ZWNjN2Y0OTg1YzM3YTJhMWQ0MDRmZmM1MjA2MzIxZDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1a63eHJRan3CGWfPoOjxoa65l7Gr FgBl7xux04VAqXfNmVBgnynnZsx0Iv7+ClXK4UyxbFWKuJGDO0l+HBZbYkhJhRhQ 7fDk2nhi7aCsnOJGegOiDmr+rTjXMxeF+aB48iqAB5JOMnTxRBiCPy7CmxBUJqKB igW+OgsbC40+qZ5J6LobxXaFo9/vfJBEFJrEIYrb2gyGPoHrX1LI7vLN+Yu4mYz+ fga+VV7Nlq4Ev9GOgQ53Skgv+N/aawTdK5SNcdkgTpi4ALQNsGFHGZS7ge6D9OxT radfSwaWnR8hcqZbEVFYSR5xHUEXuUOAvx8+5011ys3gJjmuzBwHX/kCIwIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFF9qx47Mf0mFw3oqHUBP/FIGMh0aMB8GA1UdIwQY MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt MDI0YjE2NTVjMjQ3LzEvWDJySGpzeF9TWVhEZWlvZFFFXzhVZ1l5SFJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3 LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBAdNQYAD BAFNQYQwDAMEA01ByAMEAE1BzDANBgkqhkiG9w0BAQsFAAOCAQEASjzXihuedErg 39jAcNsA0tHQOoK3yNnz7zAELhTzxSmJiqvKiK3Qc9b8Gxsp3v2aliALSFJq6Y+b HXj762yDmVX5n+JgIYD48HkMXW+5lHbnREHYNTU51bZNNTSQ/X+nTAbdJk2ftu65 D4FUDrgKNcJgo6E9NV47id+TBjJwSAGqd5jzBs7s+MegfL5nMKPSCh+UwCUMXE5Y WJopgYKouZvwPMpArpHYppIswUJWDsJHdFL4v+yRhMqehBHdVyaidDQhZ/mjkUFv 3pCqEYmbWVWB44LSBQcfwvefT5YIeKPjpgA1GeuDizipJ+v/8Yiv9J7GfHPVmeOE 4vfPJrWKyg== -----END CERTIFICATE-----Generated at Sun Jan 25 20:31:31 2026 by rpki-client