This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/fYprx9tfSrpJ7R3f1TAiM1wmUEU.roa File: fYprx9tfSrpJ7R3f1TAiM1wmUEU.roa (raw, json) Hash identifier: GnFvgFHqjbv0TdFv86yIpomdwFZ2W7tQkR4j2YTsnvc= Subject key identifier: 7D:8A:6B:C7:DB:5F:4A:BA:49:ED:1D:DF:D5:30:22:33:5C:26:50:45 Certificate issuer: /CN=e5503498ff185d0c607353f43f55e911f62a6802 Certificate serial: 019B7CEDD52787F4BE22A89635A782B3ED23 Authority key identifier: E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/fYprx9tfSrpJ7R3f1TAiM1wmUEU.roa Signing time: Fri 02 Jan 2026 04:18:39 +0000 ROA not before: Fri 02 Jan 2026 04:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15943 IP address blocks: 2.57.116.0/22 maxlen: 24 31.29.32.0/19 maxlen: 24 31.172.104.0/21 maxlen: 24 37.122.136.0/21 maxlen: 24 45.82.192.0/22 maxlen: 24 45.131.16.0/22 maxlen: 24 45.157.100.0/22 maxlen: 24 45.159.176.0/22 maxlen: 24 46.22.0.0/20 maxlen: 24 46.59.128.0/17 maxlen: 24 77.223.8.0/21 maxlen: 24 77.223.16.0/20 maxlen: 24 80.245.104.0/22 maxlen: 24 81.25.160.0/20 maxlen: 24 84.46.0.0/17 maxlen: 24 84.242.16.0/20 maxlen: 24 94.72.128.0/21 maxlen: 24 94.72.168.0/21 maxlen: 24 94.72.184.0/21 maxlen: 24 95.81.0.0/19 maxlen: 24 95.129.0.0/21 maxlen: 24 95.163.160.0/20 maxlen: 24 109.230.96.0/20 maxlen: 24 134.101.128.0/17 maxlen: 24 149.224.0.0/16 maxlen: 24 149.233.128.0/17 maxlen: 24 149.249.16.0/20 maxlen: 24 149.249.248.0/22 maxlen: 24 176.109.192.0/19 maxlen: 24 185.23.224.0/22 maxlen: 24 185.29.240.0/22 maxlen: 24 185.82.16.0/22 maxlen: 24 185.207.4.0/22 maxlen: 24 185.215.236.0/22 maxlen: 24 185.220.216.0/22 maxlen: 24 185.232.32.0/22 maxlen: 24 188.136.224.0/19 maxlen: 24 192.119.48.0/20 maxlen: 24 192.196.192.0/20 maxlen: 24 193.178.56.0/22 maxlen: 24 193.218.16.0/20 maxlen: 24 195.123.96.0/20 maxlen: 24 195.250.0.0/20 maxlen: 24 212.127.32.0/19 maxlen: 24 212.146.136.0/21 maxlen: 24 212.146.144.0/20 maxlen: 24 213.21.32.0/20 maxlen: 24 213.195.24.0/21 maxlen: 24 213.209.64.0/18 maxlen: 24 216.83.208.0/20 maxlen: 24 2a02:2028::/32 maxlen: 32 2a04:4540::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/5VA0mP8YXQxgc1P0P1XpEfYqaAI.crl rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/5VA0mP8YXQxgc1P0P1XpEfYqaAI.mft rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:d5:27:87:f4:be:22:a8:96:35:a7:82:b3:ed:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5503498ff185d0c607353f43f55e911f62a6802 Validity Not Before: Jan 2 04:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d8a6bc7db5f4aba49ed1ddfd53022335c265045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:57:09:0a:29:e6:c0:f5:64:2e:80:4a:d1:5c: 5f:66:2f:3c:9f:96:58:bb:55:2f:76:c6:be:70:88: f3:83:3a:5b:55:f3:02:ca:fc:fb:c6:6f:0e:33:a7: 7f:83:98:b9:51:26:bd:d1:25:07:ce:45:9a:8d:d3: f4:0f:39:ac:b8:97:8b:2d:1d:da:d8:29:f3:50:7d: 0c:48:1b:b2:ab:70:80:75:75:76:80:38:f7:8c:1c: 5d:62:f8:4c:98:65:e5:db:18:38:99:6c:56:ca:78: 3f:38:31:25:10:dc:a1:72:ee:ed:b0:ac:fd:52:a5: 86:95:22:29:e8:3a:62:e6:9d:d5:3b:2e:32:95:fd: d8:fc:c0:bb:a6:6c:4a:1a:9e:54:22:ce:6b:22:d3: 92:6f:9d:7f:a7:ed:fa:4c:48:1c:f2:f8:f4:75:fd: bb:5d:1c:86:bc:09:59:72:68:53:f4:a4:ec:2d:33: 44:99:5b:32:9e:a1:38:4b:4a:95:2e:e3:53:d4:88: de:1f:cb:5c:16:90:4f:61:79:8e:ab:6f:dc:c4:2c: d2:a0:ac:d1:37:9d:76:e6:e5:6c:ff:c9:a0:0c:62: b5:a2:df:96:ea:64:70:0e:51:81:67:cb:77:8a:7c: 24:19:c2:2b:f2:08:2d:f0:a8:97:dc:aa:66:2c:bf: 82:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8A:6B:C7:DB:5F:4A:BA:49:ED:1D:DF:D5:30:22:33:5C:26:50:45 X509v3 Authority Key Identifier: keyid:E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/fYprx9tfSrpJ7R3f1TAiM1wmUEU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/5VA0mP8YXQxgc1P0P1XpEfYqaAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.116.0/22 31.29.32.0/19 31.172.104.0/21 37.122.136.0/21 45.82.192.0/22 45.131.16.0/22 45.157.100.0/22 45.159.176.0/22 46.22.0.0/20 46.59.128.0/17 77.223.8.0-77.223.31.255 80.245.104.0/22 81.25.160.0/20 84.46.0.0/17 84.242.16.0/20 94.72.128.0/21 94.72.168.0/21 94.72.184.0/21 95.81.0.0/19 95.129.0.0/21 95.163.160.0/20 109.230.96.0/20 134.101.128.0/17 149.224.0.0/16 149.233.128.0/17 149.249.16.0/20 149.249.248.0/22 176.109.192.0/19 185.23.224.0/22 185.29.240.0/22 185.82.16.0/22 185.207.4.0/22 185.215.236.0/22 185.220.216.0/22 185.232.32.0/22 188.136.224.0/19 192.119.48.0/20 192.196.192.0/20 193.178.56.0/22 193.218.16.0/20 195.123.96.0/20 195.250.0.0/20 212.127.32.0/19 212.146.136.0-212.146.159.255 213.21.32.0/20 213.195.24.0/21 213.209.64.0/18 216.83.208.0/20 IPv6: 2a02:2028::/32 2a04:4540::/29 Signature Algorithm: sha256WithRSAEncryption b1:e8:98:f7:c5:78:0f:a6:d6:2e:a2:1c:0c:92:ed:f4:00:ce: d5:28:d2:d8:48:4a:41:82:fa:86:09:18:d3:05:8c:36:22:f7: 1a:50:7e:e0:e1:c2:79:c0:e6:65:db:13:44:47:f5:a6:6b:3d: 18:ab:51:bd:d8:4b:34:44:56:a9:2c:fd:5b:02:ec:09:45:e4: 37:79:d9:de:ca:10:8d:2d:4b:30:76:28:2e:c3:21:bb:5d:9e: 53:51:27:c5:bb:2a:94:83:7a:4b:36:ab:e8:4d:29:06:94:9a: 62:4e:89:26:61:59:12:c1:ca:77:42:60:84:8b:2e:e5:f9:92: bd:b5:46:e7:b2:87:1f:ac:dd:33:e1:8e:39:dd:71:62:5b:4a: 4b:d6:3f:ec:cc:0d:4e:88:6d:d0:da:95:f6:28:3a:d6:94:5b: f8:57:23:de:d4:71:1f:2b:ab:c9:ae:73:f7:12:6e:15:f5:8d: da:1e:44:15:de:9b:99:80:9a:1b:94:b4:22:1b:67:23:d0:62: 07:bc:70:96:3a:b9:b4:d6:5f:4b:57:8b:c3:3c:81:3e:c2:02: 17:55:7a:25:76:08:de:ee:4c:4e:de:17:e4:1b:b4:85:1b:ee: 13:3c:07:95:c1:cb:41:f0:2b:fe:97:a2:02:e8:98:05:d0:59: fc:c5:aa:21 -----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgISAZt87dUnh/S+IqiWNaeCs+0jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NTAzNDk4ZmYxODVkMGM2MDczNTNmNDNmNTVlOTExZjYy YTY4MDIwHhcNMjYwMTAyMDQxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDhhNmJjN2RiNWY0YWJhNDllZDFkZGZkNTMwMjIzMzVjMjY1MDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FcJCinmwPVkLoBK0VxfZi88n5ZY u1Uvdsa+cIjzgzpbVfMCyvz7xm8OM6d/g5i5USa90SUHzkWajdP0DzmsuJeLLR3a 2CnzUH0MSBuyq3CAdXV2gDj3jBxdYvhMmGXl2xg4mWxWyng/ODElENyhcu7tsKz9 UqWGlSIp6Dpi5p3VOy4ylf3Y/MC7pmxKGp5UIs5rItOSb51/p+36TEgc8vj0df27 XRyGvAlZcmhT9KTsLTNEmVsynqE4S0qVLuNT1IjeH8tcFpBPYXmOq2/cxCzSoKzR N5125uVs/8mgDGK1ot+W6mRwDlGBZ8t3inwkGcIr8ggt8KiX3KpmLL+CbQIDAQAB o4IDUjCCA04wHQYDVR0OBBYEFH2Ka8fbX0q6Se0d39UwIjNcJlBFMB8GA1UdIwQY MBaAFOVQNJj/GF0MYHNT9D9V6RH2KmgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVZBMG1QOFlYUXhnYzFQMFAxWHBFZllxYUFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85N2IwYmMtZjRmOC00ZjkwLTg1NTQt MWUyNzlmN2I2MDIzLzEvZllwcng5dGZTcnBKN1IzZjFUQWlNMXdtVUVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC85N2IwYmMtZjRmOC00ZjkwLTg1NTQtMWUyNzlmN2I2MDIz LzEvNVZBMG1QOFlYUXhnYzFQMFAxWHBFZllxYUFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBZgYIKwYBBQUHAQcBAf8EggFVMIIBUTCCATcEAgABMIIB LwMEAgI5dAMEBR8dIAMEAx+saAMEAyV6iAMEAi1SwAMEAi2DEAMEAi2dZAMEAi2f sAMEBC4WAAMEBy47gDAMAwQDTd8IAwQFTd8AAwQCUPVoAwQEURmgAwQHVC4AAwQE VPIQAwQDXkiAAwQDXkioAwQDXki4AwQFX1EAAwQDX4EAAwQEX6OgAwQEbeZgAwQH hmWAAwMAleADBAeV6YADBASV+RADBAKV+fgDBAWwbcADBAK5F+ADBAK5HfADBAK5 UhADBAK5zwQDBAK51+wDBAK53NgDBAK56CADBAW8iOADBATAdzADBATAxMADBALB sjgDBATB2hADBATDe2ADBATD+gADBAXUfyAwDAMEA9SSiAMEBdSSgAMEBNUVIAME A9XDGAMEBtXRQAMEBNhT0DAUBAIAAjAOAwUAKgIgKAMFAyoERUAwDQYJKoZIhvcN AQELBQADggEBALHomPfFeA+m1i6iHAyS7fQAztUo0thISkGC+oYJGNMFjDYi9xpQ fuDhwnnA5mXbE0RH9aZrPRirUb3YSzREVqks/VsC7AlF5Dd52d7KEI0tSzB2KC7D IbtdnlNRJ8W7KpSDeks2q+hNKQaUmmJOiSZhWRLByndCYISLLuX5kr21Rueyhx+s 3TPhjjndcWJbSkvWP+zMDU6IbdDalfYoOtaUW/hXI97UcR8rq8muc/cSbhX1jdoe RBXem5mAmhuUtCIbZyPQYge8cJY6ubTWX0tXi8M8gT7CAhdVeiV2CN7uTE7eF+Qb tIUb7hM8B5XBy0HwK/6XogLomAXQWfzFqiE= -----END CERTIFICATE-----Generated at Sun Jan 25 20:49:18 2026 by rpki-client