This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/bXwntXFeCHKsjO7GB1PJNV_QjNk.roa File: bXwntXFeCHKsjO7GB1PJNV_QjNk.roa (raw, json) Hash identifier: +rTDwh3/F920jMntQ9DllHAxW9Ja/oAZipJdW7uf6/k= Subject key identifier: 6D:7C:27:B5:71:5E:08:72:AC:8C:EE:C6:07:53:C9:35:5F:D0:8C:D9 Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Certificate serial: 019BE04A00A67D97A55E8A919692A06585C3 Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/bXwntXFeCHKsjO7GB1PJNV_QjNk.roa Signing time: Wed 21 Jan 2026 11:21:44 +0000 ROA not before: Wed 21 Jan 2026 11:21:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 84.55.8.0/22 maxlen: 24 95.173.48.0/24 maxlen: 24 95.173.50.0/24 maxlen: 24 95.173.51.0/24 maxlen: 24 95.173.54.0/24 maxlen: 24 95.173.57.0/24 maxlen: 24 95.173.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:4a:00:a6:7d:97:a5:5e:8a:91:96:92:a0:65:85:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Validity Not Before: Jan 21 11:21:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d7c27b5715e0872ac8ceec60753c9355fd08cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:22:8e:1d:70:d2:29:8f:a5:f7:a9:7d:1a:4a: 52:0a:61:a6:cc:2c:d5:6e:1a:e1:4f:8b:7a:cd:aa: 03:67:cc:7c:08:46:2a:b2:0a:94:c7:2e:aa:1c:7b: e4:5e:91:f3:e2:4e:8d:58:57:28:8d:94:d0:ba:eb: a2:8b:eb:0b:53:ca:80:67:e9:75:b0:12:6f:66:fc: 74:79:9b:22:e1:13:4e:5e:1a:9a:39:dc:ce:ae:82: 7a:1a:ba:f3:d2:ee:af:3c:c2:d4:a9:26:ad:e7:14: 38:c3:82:90:b4:e7:1e:25:d4:b3:d5:b8:62:cc:bb: 82:fc:55:13:df:01:49:22:2c:c7:fe:a7:b3:90:9d: a3:4e:9b:03:3a:55:13:76:ae:61:d6:b4:55:1a:16: 56:59:6f:95:4b:ed:12:d5:d8:0f:50:32:b4:74:99: c3:48:c4:05:29:9b:75:42:fb:50:2a:ac:08:b9:cf: 73:3e:31:e3:fc:d7:6e:45:47:09:cf:36:ab:3e:e3: 22:6c:a8:28:e9:ac:59:3d:a1:20:76:88:92:0e:24: 89:2e:f0:b2:6d:3c:ea:33:1d:97:2d:68:e2:2a:e8: 8b:4a:0a:21:76:30:02:92:9c:36:97:c6:87:5c:87: 4e:b8:e3:a4:4a:e5:b2:18:30:0f:81:a1:fa:18:42: 87:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:7C:27:B5:71:5E:08:72:AC:8C:EE:C6:07:53:C9:35:5F:D0:8C:D9 X509v3 Authority Key Identifier: keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/bXwntXFeCHKsjO7GB1PJNV_QjNk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.55.8.0/22 95.173.48.0/24 95.173.50.0/23 95.173.54.0/24 95.173.57.0/24 95.173.60.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:fb:dd:2d:4e:bf:45:61:a4:64:4e:ff:d3:60:cb:89:18:13: 3a:70:e0:c1:0e:cd:f5:76:dd:6b:ff:b9:1d:a4:18:31:4f:90: 60:99:67:42:0c:2f:59:aa:5e:f2:e3:24:e7:6f:4f:b6:1d:d8: 79:2a:bb:38:e5:83:66:40:fe:dd:df:d1:78:25:0d:41:7b:3e: b8:99:95:7b:1c:94:c0:d5:b7:13:19:65:8c:8d:be:a0:e6:d6: 8d:06:73:f1:61:ae:3b:bd:84:16:62:86:cc:43:f0:37:43:77: ca:10:3e:5e:75:64:78:02:6c:23:22:10:10:bc:22:b5:74:ce: 73:08:24:2c:ad:92:9e:24:23:74:ab:9e:ec:24:66:d7:cf:04: 60:f0:12:c6:df:af:2d:63:58:8a:a2:96:0e:11:31:11:3b:13: b9:6c:2a:12:0f:95:03:5f:ec:c1:ed:12:94:4b:af:0a:26:82: 12:7a:5f:a8:6c:16:37:92:99:46:89:c4:f5:06:b0:b4:cc:73: 54:e2:45:79:11:37:32:78:6b:7e:0e:90:e4:01:0b:71:8a:fc: 65:1f:03:a4:2a:16:ae:31:26:78:14:5f:26:01:38:ff:3b:79: a4:0f:77:24:05:ac:33:30:8d:0a:17:21:c7:d2:83:2b:f6:39: fe:4e:26:f4 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZvgSgCmfZelXoqRlpKgZYXDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjYxNzU4Y2UzMzA2MjI0NzBhMzlhZThkNmVmNGEyMDQ0 ZjgzYzQwHhcNMjYwMTIxMTEyMTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDdjMjdiNTcxNWUwODcyYWM4Y2VlYzYwNzUzYzkzNTVmZDA4Y2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriKOHXDSKY+l96l9GkpSCmGmzCzV bhrhT4t6zaoDZ8x8CEYqsgqUxy6qHHvkXpHz4k6NWFcojZTQuuuii+sLU8qAZ+l1 sBJvZvx0eZsi4RNOXhqaOdzOroJ6Grrz0u6vPMLUqSat5xQ4w4KQtOceJdSz1bhi zLuC/FUT3wFJIizH/qezkJ2jTpsDOlUTdq5h1rRVGhZWWW+VS+0S1dgPUDK0dJnD SMQFKZt1QvtQKqwIuc9zPjHj/NduRUcJzzarPuMibKgo6axZPaEgdoiSDiSJLvCy bTzqMx2XLWjiKuiLSgohdjACkpw2l8aHXIdOuOOkSuWyGDAPgaH6GEKHsQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFG18J7VxXghyrIzuxgdTyTVf0IzZMB8GA1UdIwQY MBaAFGBmF1jOMwYiRwo5ro1u9KIET4PEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2Ut MWY4NzQ2OTQ1NDgzLzEvYlh3bnRYRmVDSEtzak83R0IxUEpOVl9Rak5rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2UtMWY4NzQ2OTQ1NDgz LzEvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCVDcIAwQA X60wAwQBX60yAwQAX602AwQAX605AwQAX608MA0GCSqGSIb3DQEBCwUAA4IBAQA7 +90tTr9FYaRkTv/TYMuJGBM6cODBDs31dt1r/7kdpBgxT5BgmWdCDC9Zql7y4yTn b0+2Hdh5Krs45YNmQP7d39F4JQ1Bez64mZV7HJTA1bcTGWWMjb6g5taNBnPxYa47 vYQWYobMQ/A3Q3fKED5edWR4AmwjIhAQvCK1dM5zCCQsrZKeJCN0q57sJGbXzwRg 8BLG368tY1iKopYOETEROxO5bCoSD5UDX+zB7RKUS68KJoISel+obBY3kplGicT1 BrC0zHNU4kV5ETcyeGt+DpDkAQtxivxlHwOkKhauMSZ4FF8mATj/O3mkD3ckBawz MI0KFyHH0oMr9jn+Tib0 -----END CERTIFICATE-----Generated at Sun Jan 25 07:36:21 2026 by rpki-client