This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/1y7xTrL6Zi63EaoYq9pgRa2ZmlQ.roa File: 1y7xTrL6Zi63EaoYq9pgRa2ZmlQ.roa (raw, json) Hash identifier: x6v+XwxnZ+9V385BiBIu0MPWBYFFND0ofcUwqGHURxo= Subject key identifier: D7:2E:F1:4E:B2:FA:66:2E:B7:11:AA:18:AB:DA:60:45:AD:99:9A:54 Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e Certificate serial: 019B7EA6A57E58AA767ADAAD2DD3793EE904 Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/1y7xTrL6Zi63EaoYq9pgRa2ZmlQ.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34984 IP address blocks: 80.91.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a5:7e:58:aa:76:7a:da:ad:2d:d3:79:3e:e9:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d72ef14eb2fa662eb711aa18abda6045ad999a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:81:ea:99:51:7e:98:69:a7:98:ae:cb:fe:16: 5f:4e:cd:ee:ac:78:7b:39:2f:e3:40:5e:0d:1e:d1: ee:2b:c7:45:04:be:e5:65:15:6b:35:03:92:14:17: 8e:14:5b:93:a6:75:eb:8b:62:d7:46:23:ac:cd:7f: 61:6d:d3:6a:bb:4d:ec:f7:26:ce:f7:8d:61:3b:cc: 6b:d8:36:b6:64:81:fc:59:98:d2:1b:8e:19:be:7f: e9:a4:20:35:69:bb:6c:e6:5b:70:44:9d:6d:38:41: 6c:35:a1:7d:09:47:53:65:1e:0e:7e:41:21:03:e8: 14:7e:fd:d3:24:77:b2:82:7c:4f:ed:77:e6:8d:bd: 0c:63:16:1e:3c:13:e7:17:bc:14:11:9c:bd:7f:3d: 80:5e:d9:42:95:c0:6d:0b:7d:36:4a:e4:ed:cb:1a: 63:a2:10:62:20:bd:b4:63:2c:10:25:b6:ec:1a:fe: 53:17:93:33:df:37:43:0a:e1:02:6a:3d:33:0a:3f: dc:04:22:f1:22:d1:96:9f:c1:4f:e9:b5:b1:7a:10: 0f:f7:64:45:ad:ce:e7:6d:80:5d:41:7c:9b:59:14: e9:9f:23:a4:ce:c0:e9:49:29:61:fe:ce:02:58:85: d7:2e:8c:ff:f4:72:e0:57:35:9c:17:46:81:ac:84: d8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2E:F1:4E:B2:FA:66:2E:B7:11:AA:18:AB:DA:60:45:AD:99:9A:54 X509v3 Authority Key Identifier: keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/1y7xTrL6Zi63EaoYq9pgRa2ZmlQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.91.74.0/24 Signature Algorithm: sha256WithRSAEncryption 97:15:32:32:02:21:58:28:79:54:13:a2:d9:a3:55:bf:fd:16: 82:9f:7c:51:e6:ed:7c:dd:e5:ca:31:da:02:fa:37:40:1f:b6: c8:9d:4d:5e:39:3a:71:52:07:6d:f0:2d:32:de:0d:60:63:68: 7e:4a:2a:4e:a2:18:0b:3e:e5:90:88:86:2d:69:51:c1:b8:fe: 85:e0:0c:55:49:d0:74:7c:a3:0e:4b:b2:b7:78:dc:7c:7e:60: 16:a4:70:b5:0d:a7:8e:2a:6a:5c:65:18:9e:1c:61:0f:43:48: e5:3f:2a:dc:07:56:be:e4:7d:27:8d:2c:38:a7:11:85:f8:61: f5:90:69:9c:a2:10:f8:4a:86:8f:a0:56:84:44:c4:30:93:60: 1f:fb:36:87:5c:46:e4:0f:9a:92:71:f9:af:d4:92:1f:81:00: da:33:bf:d7:11:86:f0:26:31:72:67:58:5a:a1:60:8b:32:04: 39:5b:44:5f:16:7e:37:ac:e8:e2:c5:e5:43:62:09:96:a3:9f: 57:e1:3a:85:a0:7b:0e:8d:1a:35:0b:b0:9b:21:0b:d1:23:b4: eb:77:71:66:c9:63:28:d1:16:a8:ec:61:49:27:20:a1:18:1d: bd:4b:f5:35:af:ee:9c:ec:5a:17:63:a7:48:02:f0:6c:92:07: dd:47:94:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pqV+WKp2etqtLdN5PukEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODAyNGI3MjlkOTlmMDUxMzNlYzZkMTQzOTBjNzNlYjM2 ZGI5OWUwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzJlZjE0ZWIyZmE2NjJlYjcxMWFhMThhYmRhNjA0NWFkOTk5YTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYHqmVF+mGmnmK7L/hZfTs3urHh7 OS/jQF4NHtHuK8dFBL7lZRVrNQOSFBeOFFuTpnXri2LXRiOszX9hbdNqu03s9ybO 941hO8xr2Da2ZIH8WZjSG44Zvn/ppCA1abts5ltwRJ1tOEFsNaF9CUdTZR4OfkEh A+gUfv3TJHeygnxP7Xfmjb0MYxYePBPnF7wUEZy9fz2AXtlClcBtC302SuTtyxpj ohBiIL20YywQJbbsGv5TF5Mz3zdDCuECaj0zCj/cBCLxItGWn8FP6bWxehAP92RF rc7nbYBdQXybWRTpnyOkzsDpSSlh/s4CWIXXLoz/9HLgVzWcF0aBrITYCwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNcu8U6y+mYutxGqGKvaYEWtmZpUMB8GA1UdIwQY MBaAFOWAJLcp2Z8FEz7G0UOQxz6zbbmeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQt OTU2ZjZiNWM2MTcwLzEvMXk3eFRyTDZaaTYzRWFvWXE5cGdSYTJabWxRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQtOTU2ZjZiNWM2MTcw LzEvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUFtKMA0G CSqGSIb3DQEBCwUAA4IBAQCXFTIyAiFYKHlUE6LZo1W//RaCn3xR5u183eXKMdoC +jdAH7bInU1eOTpxUgdt8C0y3g1gY2h+SipOohgLPuWQiIYtaVHBuP6F4AxVSdB0 fKMOS7K3eNx8fmAWpHC1DaeOKmpcZRieHGEPQ0jlPyrcB1a+5H0njSw4pxGF+GH1 kGmcohD4SoaPoFaERMQwk2Af+zaHXEbkD5qScfmv1JIfgQDaM7/XEYbwJjFyZ1ha oWCLMgQ5W0RfFn43rOjixeVDYgmWo59X4TqFoHsOjRo1C7CbIQvRI7Trd3FmyWMo 0Rao7GFJJyChGB29S/U1r+6c7FoXY6dIAvBskgfdR5Qo -----END CERTIFICATE-----Generated at Sun Jan 25 18:09:15 2026 by rpki-client