This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/exjxqyv8hTS9Gp5OL5ZbxerOrX0.roa File: exjxqyv8hTS9Gp5OL5ZbxerOrX0.roa (raw, json) Hash identifier: PDONFR9O+WpDhKQeLmKKh1Xe7Q/Lbpx8WU5sU+EIl28= Subject key identifier: 7B:18:F1:AB:2B:FC:85:34:BD:1A:9E:4E:2F:96:5B:C5:EA:CE:AD:7D Certificate issuer: /CN=0620eadb2e1562b4e2e4f480772c36887a777f24 Certificate serial: 019B7DC879A56CB1BDD21BE5742170C0A979 Authority key identifier: 06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/exjxqyv8hTS9Gp5OL5ZbxerOrX0.roa Signing time: Fri 02 Jan 2026 08:17:28 +0000 ROA not before: Fri 02 Jan 2026 08:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201364 IP address blocks: 80.93.220.0/24 maxlen: 24 217.195.195.0/24 maxlen: 24 217.195.197.0/24 maxlen: 24 2a05:3040::/29 maxlen: 29 2a05:3040::/32 maxlen: 32 2a05:3041::/32 maxlen: 32 2a05:3042::/32 maxlen: 32 2a05:3043::/32 maxlen: 32 2a05:3044::/32 maxlen: 32 2a05:3045::/32 maxlen: 32 2a05:3046::/32 maxlen: 32 2a05:3047::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:79:a5:6c:b1:bd:d2:1b:e5:74:21:70:c0:a9:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0620eadb2e1562b4e2e4f480772c36887a777f24 Validity Not Before: Jan 2 08:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b18f1ab2bfc8534bd1a9e4e2f965bc5eacead7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:03:df:b6:1f:a8:95:83:b2:6b:a4:05:c8:20: e4:a4:93:8d:30:17:a0:69:50:40:37:28:ae:c1:de: 2b:62:14:02:7a:f7:01:ae:c4:fe:e0:71:34:db:d3: 67:b0:e0:f8:3a:28:f1:80:85:97:3c:f6:70:04:20: 44:6e:7b:e1:3d:72:51:ca:3e:b0:9d:49:7d:1a:12: 7e:a7:44:84:62:8b:c1:2d:4e:90:e4:86:36:51:52: 8d:67:06:2c:83:85:f9:b4:f5:8b:b0:22:03:2e:c7: af:d3:88:e1:30:92:a5:34:0b:1d:0e:87:cd:d8:f2: fc:a4:18:a8:42:22:37:b4:e5:45:bf:3d:2a:72:af: 81:85:e1:2f:f5:a1:27:f8:af:0c:28:a8:27:1b:ce: 1b:f1:c8:45:90:09:ac:62:6e:f7:07:bf:0f:34:bb: fa:e7:bd:d2:b6:69:75:37:44:c9:61:66:99:ee:ba: 70:56:b9:48:a7:60:7a:16:8d:0f:7e:d6:37:9a:c1: c3:a2:bd:38:03:28:75:38:6d:34:44:1a:99:d2:cb: 78:be:81:8a:08:bf:46:54:02:56:eb:8e:92:21:ac: f9:76:b5:72:fd:c9:6f:53:73:ce:e8:56:96:4f:c7: 24:14:1e:b6:91:38:eb:79:c9:38:c4:54:53:12:aa: fa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:18:F1:AB:2B:FC:85:34:BD:1A:9E:4E:2F:96:5B:C5:EA:CE:AD:7D X509v3 Authority Key Identifier: keyid:06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/exjxqyv8hTS9Gp5OL5ZbxerOrX0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.93.220.0/24 217.195.195.0/24 217.195.197.0/24 IPv6: 2a05:3040::/29 Signature Algorithm: sha256WithRSAEncryption 06:34:78:3e:53:92:3d:9a:0e:50:b3:8f:1f:1f:ff:a1:93:77: 15:12:89:54:bc:f7:c0:5e:5b:19:d3:a4:2e:ea:e4:63:7a:5f: f7:ef:46:06:50:ea:d0:cd:1b:1c:7d:72:fb:60:5c:54:a6:f1: 88:7c:6d:d2:1c:b9:63:d1:27:34:b6:d1:0b:17:46:02:54:c3: 1c:c3:32:41:b1:f8:46:da:de:9c:06:7c:04:9d:30:63:d1:11: f5:84:de:da:ae:15:3a:a8:cb:88:1a:74:5c:39:35:58:51:9a: 87:62:c3:87:45:81:2f:4e:88:14:32:a4:93:44:2a:76:6b:7f: b0:94:a6:fe:f9:8b:82:f1:36:4b:4e:16:8c:b5:b3:b3:c2:3e: f6:6a:8c:ad:14:84:5e:2f:44:67:cf:ff:94:de:03:d1:85:85: 72:d2:7d:d2:cc:40:18:00:61:15:29:7d:8d:19:5e:5e:ff:85: 16:53:27:f5:33:0d:54:dd:f2:bd:7c:8b:d8:71:d2:4e:3f:37: 84:58:ce:be:c0:59:a5:b4:7e:79:25:d0:bd:85:86:18:2d:41: 16:1c:bd:55:03:1f:e3:54:a1:98:db:ce:47:87:af:8d:15:7a: 71:82:a4:14:ae:58:82:a2:3c:05:bb:04:4f:06:5e:1a:29:46: e1:36:fb:60 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt9yHmlbLG90hvldCFwwKl5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MjBlYWRiMmUxNTYyYjRlMmU0ZjQ4MDc3MmMzNjg4N2E3 NzdmMjQwHhcNMjYwMTAyMDgxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjE4ZjFhYjJiZmM4NTM0YmQxYTllNGUyZjk2NWJjNWVhY2VhZDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAPfth+olYOya6QFyCDkpJONMBeg aVBANyiuwd4rYhQCevcBrsT+4HE029NnsOD4OijxgIWXPPZwBCBEbnvhPXJRyj6w nUl9GhJ+p0SEYovBLU6Q5IY2UVKNZwYsg4X5tPWLsCIDLsev04jhMJKlNAsdDofN 2PL8pBioQiI3tOVFvz0qcq+BheEv9aEn+K8MKKgnG84b8chFkAmsYm73B78PNLv6 573Stml1N0TJYWaZ7rpwVrlIp2B6Fo0PftY3msHDor04Ayh1OG00RBqZ0st4voGK CL9GVAJW646SIaz5drVy/clvU3PO6FaWT8ckFB62kTjreck4xFRTEqr6tQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFHsY8asr/IU0vRqeTi+WW8Xqzq19MB8GA1UdIwQY MBaAFAYg6tsuFWK04uT0gHcsNoh6d38kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmlEcTJ5NFZZclRpNVBTQWR5dzJpSHAzZnlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jYzhiZmEtMmIxMy00Njc0LWE5ODQt YTVmZGI1NzBmZTlhLzEvZXhqeHF5djhoVFM5R3A1T0w1WmJ4ZXJPclgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jYzhiZmEtMmIxMy00Njc0LWE5ODQtYTVmZGI1NzBmZTlh LzEvQmlEcTJ5NFZZclRpNVBTQWR5dzJpSHAzZnlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAUF3cAwQA 2cPDAwQA2cPFMA0EAgACMAcDBQMqBTBAMA0GCSqGSIb3DQEBCwUAA4IBAQAGNHg+ U5I9mg5Qs48fH/+hk3cVEolUvPfAXlsZ06Qu6uRjel/370YGUOrQzRscfXL7YFxU pvGIfG3SHLlj0Sc0ttELF0YCVMMcwzJBsfhG2t6cBnwEnTBj0RH1hN7arhU6qMuI GnRcOTVYUZqHYsOHRYEvTogUMqSTRCp2a3+wlKb++YuC8TZLThaMtbOzwj72aoyt FIReL0Rnz/+U3gPRhYVy0n3SzEAYAGEVKX2NGV5e/4UWUyf1Mw1U3fK9fIvYcdJO PzeEWM6+wFmltH55JdC9hYYYLUEWHL1VAx/jVKGY285Hh6+NFXpxgqQUrliCojwF uwRPBl4aKUbhNvtg -----END CERTIFICATE-----Generated at Sun Jan 25 23:03:53 2026 by rpki-client