This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/XNV9wPAqysMBIC2XJGUuQeljvGQ.roa File: XNV9wPAqysMBIC2XJGUuQeljvGQ.roa (raw, json) Hash identifier: flffQRMNH+W2jDu27k/I1V7GhHYoHbxfArajhLjcHkc= Subject key identifier: 5C:D5:7D:C0:F0:2A:CA:C3:01:20:2D:97:24:65:2E:41:E9:63:BC:64 Certificate issuer: /CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33 Certificate serial: 019B7834E714F40451796DA5E2B5EE7597AB Authority key identifier: C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/XNV9wPAqysMBIC2XJGUuQeljvGQ.roa Signing time: Thu 01 Jan 2026 06:18:11 +0000 ROA not before: Thu 01 Jan 2026 06:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29283 IP address blocks: 80.74.16.0/21 maxlen: 21 85.184.64.0/19 maxlen: 19 85.184.78.0/24 maxlen: 24 85.184.94.0/24 maxlen: 24 89.33.144.0/21 maxlen: 21 94.199.120.0/21 maxlen: 21 149.232.176.0/21 maxlen: 21 185.6.60.0/22 maxlen: 22 185.6.60.0/24 maxlen: 24 185.6.61.0/24 maxlen: 24 185.6.62.0/24 maxlen: 24 213.174.96.0/19 maxlen: 19 213.174.96.0/24 maxlen: 24 213.174.98.0/24 maxlen: 24 213.174.99.0/24 maxlen: 24 213.174.127.0/24 maxlen: 24 2a02:6c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.mft rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e7:14:f4:04:51:79:6d:a5:e2:b5:ee:75:97:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9ed64c93ddfdf2f49b7ea1c23eaad0870249a33 Validity Not Before: Jan 1 06:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5cd57dc0f02acac301202d9724652e41e963bc64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:15:3c:77:07:83:0d:e6:a6:22:a3:72:fc:56: 28:4b:0e:a6:27:f0:47:31:57:26:e0:a9:89:58:9c: 1d:20:c1:09:cc:51:2c:a1:aa:57:cc:2c:67:10:26: 10:80:6f:54:18:7c:48:08:c9:4e:d9:0b:85:72:6f: fe:b9:bd:e2:e2:06:e2:3a:a4:29:51:8e:f5:f4:d5: 7d:a5:eb:d2:e9:5d:9e:77:e7:57:04:ef:89:e3:80: 95:68:1d:54:97:3a:6d:fa:4a:dd:49:d9:4b:85:cb: 7d:b3:9b:69:a2:1b:33:0e:14:9f:08:87:9f:cd:01: 1b:48:7c:34:21:dc:b8:3f:5c:d8:83:ce:7c:68:b2: b7:ca:77:81:54:8e:0a:9d:73:e2:b0:33:12:11:c5: 94:a4:f7:b2:2a:42:f0:c4:57:36:a2:a8:97:02:b9: 10:17:bf:e4:3d:93:74:e0:60:c5:1a:7d:2b:32:fb: 08:dc:8e:63:38:ec:01:78:0d:cb:bd:a4:31:b3:aa: 01:fc:bb:bb:0c:5d:f2:eb:d6:57:8c:39:97:03:0f: 96:f1:f4:d3:ae:89:4c:e6:f5:28:02:6c:a1:2a:b9: 4a:79:ca:34:e1:12:44:f5:77:49:c4:8d:bc:50:9a: e4:5e:00:48:9f:cf:55:97:59:97:6c:52:46:72:85: 78:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D5:7D:C0:F0:2A:CA:C3:01:20:2D:97:24:65:2E:41:E9:63:BC:64 X509v3 Authority Key Identifier: keyid:C9:ED:64:C9:3D:DF:DF:2F:49:B7:EA:1C:23:EA:AD:08:70:24:9A:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/XNV9wPAqysMBIC2XJGUuQeljvGQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2a2ab2-3098-4a0f-809c-35ed5b53da05/1/ye1kyT3f3y9Jt-ocI-qtCHAkmjM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.74.16.0/21 85.184.64.0/19 89.33.144.0/21 94.199.120.0/21 149.232.176.0/21 185.6.60.0/22 213.174.96.0/19 IPv6: 2a02:6c40::/32 Signature Algorithm: sha256WithRSAEncryption 3e:71:20:77:af:93:9b:77:72:19:4c:ac:75:02:28:77:be:6e: ad:d6:6f:89:42:49:d0:72:f7:58:e4:17:c8:70:81:3c:98:55: 1f:c2:80:d4:eb:aa:61:b6:f2:3f:30:ed:33:5b:6e:26:07:fd: ba:3c:ba:e8:a2:6e:a6:21:95:82:f9:f7:d4:f8:9d:a1:f8:23: 1f:49:cc:38:44:72:b9:84:db:35:7a:47:4b:ff:14:d9:9a:41: 17:8c:fd:c7:62:80:ce:6e:de:bb:83:18:06:32:52:b5:44:95: 59:ac:94:a5:f7:50:4a:72:bc:2f:91:df:d5:30:1a:c0:3a:19: 5b:2a:03:72:7a:bd:55:e1:4b:54:91:b4:d4:cf:65:5f:3a:ac: be:45:a4:f7:7a:d4:75:0f:b0:d0:ff:14:5a:d6:4f:05:b1:fd: 05:3c:e5:63:af:b3:b7:1b:cb:11:f4:49:c9:43:45:8e:18:42: 15:bb:91:70:be:1e:e5:2e:f6:83:9f:06:ef:1a:eb:aa:45:74: b1:dd:cd:4d:ef:b6:e8:b5:f8:06:3e:d3:5a:e9:72:5b:f4:e9: b0:35:a3:fa:4f:33:e2:0e:41:ed:a1:e6:39:3c:16:0d:37:7f: 16:d4:4b:da:91:13:12:4a:30:9e:5c:b9:6b:9f:a1:23:c4:aa: b1:2e:32:2c -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt4NOcU9ARReW2l4rXudZerMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZWQ2NGM5M2RkZmRmMmY0OWI3ZWExYzIzZWFhZDA4NzAy NDlhMzMwHhcNMjYwMTAxMDYxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Y2Q1N2RjMGYwMmFjYWMzMDEyMDJkOTcyNDY1MmU0MWU5NjNiYzY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRU8dweDDeamIqNy/FYoSw6mJ/BH MVcm4KmJWJwdIMEJzFEsoapXzCxnECYQgG9UGHxICMlO2QuFcm/+ub3i4gbiOqQp UY719NV9pevS6V2ed+dXBO+J44CVaB1Ulzpt+krdSdlLhct9s5tpohszDhSfCIef zQEbSHw0Idy4P1zYg858aLK3yneBVI4KnXPisDMSEcWUpPeyKkLwxFc2oqiXArkQ F7/kPZN04GDFGn0rMvsI3I5jOOwBeA3LvaQxs6oB/Lu7DF3y69ZXjDmXAw+W8fTT rolM5vUoAmyhKrlKeco04RJE9XdJxI28UJrkXgBIn89Vl1mXbFJGcoV40wIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFFzVfcDwKsrDASAtlyRlLkHpY7xkMB8GA1UdIwQY MBaAFMntZMk9398vSbfqHCPqrQhwJJozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWUxa3lUM2YzeTlKdC1vY0ktcXRDSEFrbWpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yYTJhYjItMzA5OC00YTBmLTgwOWMt MzVlZDViNTNkYTA1LzEvWE5WOXdQQXF5c01CSUMyWEpHVXVRZWxqdkdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8yYTJhYjItMzA5OC00YTBmLTgwOWMtMzVlZDViNTNkYTA1 LzEveWUxa3lUM2YzeTlKdC1vY0ktcXRDSEFrbWpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDUEoQAwQF VbhAAwQDWSGQAwQDXsd4AwQDleiwAwQCuQY8AwQF1a5gMA0EAgACMAcDBQAqAmxA MA0GCSqGSIb3DQEBCwUAA4IBAQA+cSB3r5Obd3IZTKx1Aih3vm6t1m+JQknQcvdY 5BfIcIE8mFUfwoDU66phtvI/MO0zW24mB/26PLroom6mIZWC+ffU+J2h+CMfScw4 RHK5hNs1ekdL/xTZmkEXjP3HYoDObt67gxgGMlK1RJVZrJSl91BKcrwvkd/VMBrA OhlbKgNyer1V4UtUkbTUz2VfOqy+RaT3etR1D7DQ/xRa1k8Fsf0FPOVjr7O3G8sR 9EnJQ0WOGEIVu5Fwvh7lLvaDnwbvGuuqRXSx3c1N77botfgGPtNa6XJb9OmwNaP6 TzPiDkHtoeY5PBYNN38W1EvakRMSSjCeXLlrn6EjxKqxLjIs -----END CERTIFICATE-----Generated at Mon Jan 26 05:06:04 2026 by rpki-client