This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/Z2dxer3pv4vfqm5c8o0nTL3nVBM.roa File: Z2dxer3pv4vfqm5c8o0nTL3nVBM.roa (raw, json) Hash identifier: 6BGTwxT9tDZFxElYTEC0kNDTjmEpFbYq1mrVapB2fHk= Subject key identifier: 67:67:71:7A:BD:E9:BF:8B:DF:AA:6E:5C:F2:8D:27:4C:BD:E7:54:13 Certificate issuer: /CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1 Certificate serial: 019B791101DDC02D82EB1AB970DCEAD1EE67 Authority key identifier: D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/Z2dxer3pv4vfqm5c8o0nTL3nVBM.roa Signing time: Thu 01 Jan 2026 10:18:36 +0000 ROA not before: Thu 01 Jan 2026 10:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197889 IP address blocks: 77.221.32.0/20 maxlen: 20 77.221.32.0/22 maxlen: 22 77.221.32.0/23 maxlen: 23 77.221.32.0/24 maxlen: 24 77.221.33.0/24 maxlen: 24 77.221.34.0/23 maxlen: 23 77.221.34.0/24 maxlen: 24 77.221.35.0/24 maxlen: 24 77.221.43.0/24 maxlen: 24 77.221.44.0/23 maxlen: 23 77.221.46.0/23 maxlen: 23 77.221.49.0/24 maxlen: 24 77.221.52.0/23 maxlen: 23 77.221.54.0/23 maxlen: 24 77.221.56.0/23 maxlen: 23 77.221.58.0/23 maxlen: 23 77.221.62.0/24 maxlen: 24 2a10:4940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.mft rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:01:dd:c0:2d:82:eb:1a:b9:70:dc:ea:d1:ee:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d703642076d27e252fa90bf1a4296f8bcd9d0cf1 Validity Not Before: Jan 1 10:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6767717abde9bf8bdfaa6e5cf28d274cbde75413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:28:00:95:3c:25:e1:8f:e3:2a:f4:08:5c: f5:4f:23:5d:22:de:60:a9:75:30:19:a3:e4:73:bc: 89:10:3f:e2:05:6f:af:9f:44:13:e9:49:af:39:59: 0f:7b:f9:a8:f5:c0:5d:57:c7:90:da:83:0a:ad:f1: 46:c8:a0:c9:b1:99:51:e0:be:65:45:84:01:af:26: 6d:50:fc:9a:62:3f:2e:6d:65:cb:f4:f6:48:f6:47: f9:4a:24:56:2b:0f:98:23:b7:52:24:fa:20:a0:3b: 63:12:62:eb:fd:4f:e2:fc:ed:5b:00:74:c9:21:d3: 47:ad:df:6a:46:a6:2e:da:05:46:cd:3d:ab:2e:fc: a8:4f:d5:a6:9d:f5:59:d9:78:b9:7c:b4:37:43:d8: a6:08:5c:8c:36:fd:d3:03:b4:e8:b9:c7:91:8a:90: f5:0f:63:89:ce:49:24:c0:69:96:64:f8:b9:83:01: ac:32:89:75:9a:58:a7:da:9d:26:15:36:99:7d:ec: 8c:8c:4a:55:33:bd:4d:8a:57:5e:cc:7d:a7:1e:5c: 2a:73:eb:9a:a2:65:78:9e:f8:bb:74:17:51:77:5b: 70:da:ec:5f:9c:71:e5:92:8f:47:72:50:b5:a6:e0: f2:10:86:78:a3:46:df:39:44:14:d0:1e:1d:3d:ec: 68:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:67:71:7A:BD:E9:BF:8B:DF:AA:6E:5C:F2:8D:27:4C:BD:E7:54:13 X509v3 Authority Key Identifier: keyid:D7:03:64:20:76:D2:7E:25:2F:A9:0B:F1:A4:29:6F:8B:CD:9D:0C:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1wNkIHbSfiUvqQvxpClvi82dDPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/Z2dxer3pv4vfqm5c8o0nTL3nVBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/38136c-db51-4f70-ad8b-654505a2d045/1/1wNkIHbSfiUvqQvxpClvi82dDPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.221.32.0/20 77.221.49.0/24 77.221.52.0-77.221.59.255 77.221.62.0/24 IPv6: 2a10:4940::/32 Signature Algorithm: sha256WithRSAEncryption 1a:ca:5a:a8:cf:c0:65:00:2f:a9:94:6e:8f:d9:60:e9:fa:a4: 44:ab:cb:cd:b3:cc:e6:cf:bf:20:90:94:c8:9f:17:0c:de:cc: bd:9c:61:26:64:ca:c8:ae:5c:d0:44:89:4c:0c:24:ac:3e:3a: 20:3b:41:e7:b7:c5:ab:c8:3e:7b:11:da:03:a2:e4:5c:43:b8: 61:7e:11:b3:2d:cd:54:68:71:7e:02:fa:ee:1c:0a:4c:95:e3: bc:9e:85:6e:d3:36:49:18:68:c0:01:d3:a1:09:91:67:34:3a: 15:6d:c2:41:0f:54:1f:0e:2e:80:89:53:20:41:56:e5:02:c1: 0b:d6:c3:00:cd:79:94:f1:c3:d0:61:a8:d7:3d:be:1d:b8:d1: c7:1f:1d:aa:b1:aa:3e:8c:c1:e0:ad:a1:c0:dd:cf:e1:b0:1a: 62:36:32:33:dd:70:71:ff:39:3f:22:24:19:88:b3:6a:4e:71: 67:08:e9:e1:e4:2a:d9:8e:8d:70:60:cf:1b:d1:95:5f:61:66: 65:28:f5:5c:70:18:1b:d8:a4:94:c2:4c:f9:da:d2:d2:bc:b7: 9a:61:aa:91:02:95:32:4d:7f:bd:d7:a5:af:81:19:01:02:89: 6a:b4:f9:c4:2e:ad:9a:03:c9:9c:ad:47:44:97:13:f9:f9:a6: 0c:e9:9c:22 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt5EQHdwC2C6xq5cNzq0e5nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3MDM2NDIwNzZkMjdlMjUyZmE5MGJmMWE0Mjk2ZjhiY2Q5 ZDBjZjEwHhcNMjYwMTAxMTAxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzY3NzE3YWJkZTliZjhiZGZhYTZlNWNmMjhkMjc0Y2JkZTc1NDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnUoAJU8JeGP4yr0CFz1TyNdIt5g qXUwGaPkc7yJED/iBW+vn0QT6UmvOVkPe/mo9cBdV8eQ2oMKrfFGyKDJsZlR4L5l RYQBryZtUPyaYj8ubWXL9PZI9kf5SiRWKw+YI7dSJPogoDtjEmLr/U/i/O1bAHTJ IdNHrd9qRqYu2gVGzT2rLvyoT9WmnfVZ2Xi5fLQ3Q9imCFyMNv3TA7TouceRipD1 D2OJzkkkwGmWZPi5gwGsMol1mlin2p0mFTaZfeyMjEpVM71NildezH2nHlwqc+ua omV4nvi7dBdRd1tw2uxfnHHlko9HclC1puDyEIZ4o0bfOUQU0B4dPexofwIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFGdncXq96b+L36puXPKNJ0y951QTMB8GA1UdIwQY MBaAFNcDZCB20n4lL6kL8aQpb4vNnQzxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXdOa0lIYlNmaVV2cVF2eHBDbHZpODJkRFBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8zODEzNmMtZGI1MS00ZjcwLWFkOGIt NjU0NTA1YTJkMDQ1LzEvWjJkeGVyM3B2NHZmcW01YzhvMG5UTDNuVkJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8zODEzNmMtZGI1MS00ZjcwLWFkOGItNjU0NTA1YTJkMDQ1 LzEvMXdOa0lIYlNmaVV2cVF2eHBDbHZpODJkRFBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAmBAIAATAgAwQETd0gAwQA Td0xMAwDBAJN3TQDBAJN3TgDBABN3T4wDQQCAAIwBwMFACoQSUAwDQYJKoZIhvcN AQELBQADggEBABrKWqjPwGUAL6mUbo/ZYOn6pESry82zzObPvyCQlMifFwzezL2c YSZkysiuXNBEiUwMJKw+OiA7Qee3xavIPnsR2gOi5FxDuGF+EbMtzVRocX4C+u4c CkyV47yehW7TNkkYaMAB06EJkWc0OhVtwkEPVB8OLoCJUyBBVuUCwQvWwwDNeZTx w9BhqNc9vh240ccfHaqxqj6MweCtocDdz+GwGmI2MjPdcHH/OT8iJBmIs2pOcWcI 6eHkKtmOjXBgzxvRlV9hZmUo9VxwGBvYpJTCTPna0tK8t5phqpEClTJNf73Xpa+B GQECiWq0+cQurZoDyZytR0SXE/n5pgzpnCI= -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:19 2026 by rpki-client