This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/KrxW_b4ELuoOn079qhmrKP5hMRA.roa File: KrxW_b4ELuoOn079qhmrKP5hMRA.roa (raw, json) Hash identifier: HTEr8dsqBjf3+QjtaxHrll9cKIHZXkKWDrVGLyYNknM= Subject key identifier: 2A:BC:56:FD:BE:04:2E:EA:0E:9F:4E:FD:AA:19:AB:28:FE:61:31:10 Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Certificate serial: 019B7EA7688881D16ACCB12B6B198F0B8576 Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/KrxW_b4ELuoOn079qhmrKP5hMRA.roa Signing time: Fri 02 Jan 2026 12:20:58 +0000 ROA not before: Fri 02 Jan 2026 12:20:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28860 IP address blocks: 81.27.144.0/20 maxlen: 20 81.27.144.0/24 maxlen: 24 81.27.149.0/24 maxlen: 24 81.27.150.0/24 maxlen: 24 81.27.151.0/24 maxlen: 24 81.27.152.0/24 maxlen: 24 81.27.158.0/24 maxlen: 24 217.24.112.0/20 maxlen: 20 217.24.112.0/24 maxlen: 24 217.24.113.0/24 maxlen: 24 217.24.114.0/24 maxlen: 24 217.24.115.0/24 maxlen: 24 217.24.116.0/24 maxlen: 24 217.24.117.0/24 maxlen: 24 217.24.118.0/24 maxlen: 24 217.24.120.0/24 maxlen: 24 217.24.121.0/24 maxlen: 24 217.24.122.0/24 maxlen: 24 217.24.123.0/24 maxlen: 24 217.24.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.mft rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:68:88:81:d1:6a:cc:b1:2b:6b:19:8f:0b:85:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09 Validity Not Before: Jan 2 12:20:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2abc56fdbe042eea0e9f4efdaa19ab28fe613110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:61:df:9b:05:1c:ea:34:14:61:36:9c:b8:3d: 58:bb:f9:37:35:43:83:72:85:d9:14:d1:18:db:8d: 97:8a:07:a5:a1:9b:73:83:b7:91:f5:3e:d5:d2:f3: 33:89:4c:e3:5e:d2:2b:fd:2a:d7:0c:65:dc:f4:a6: b3:5e:d7:81:77:b6:e0:9b:ee:90:1c:02:ab:89:6a: 9e:d2:9d:a9:8c:e6:0c:8e:ff:bf:d9:e5:00:49:4a: d8:53:b3:a8:9d:3a:c0:7d:92:f3:c2:30:fe:9f:a1: c0:09:62:d1:30:57:a3:0e:98:cf:50:b3:ab:a5:00: 69:37:dc:6f:34:a0:6f:ba:60:c4:df:62:ad:17:1a: 66:d6:94:ee:f5:c2:d1:05:dc:4c:b8:fb:e7:bd:75: c1:cd:ca:c1:81:87:68:52:72:39:0a:b1:eb:3f:5f: 73:bc:dd:bc:f0:03:7b:99:46:40:47:8c:c4:d5:ea: 3b:ef:7c:2e:83:ab:17:33:4b:6e:9f:13:b3:b8:11: 79:fd:38:89:9b:82:85:22:2b:d9:83:a6:e4:e5:fe: f4:35:d6:34:e1:4d:1a:6b:3f:64:10:6e:fe:1b:b7: 04:ca:97:da:78:78:64:46:33:42:9b:39:17:26:5f: 82:88:df:bb:5a:06:fe:d8:90:59:80:59:de:4e:c3: f9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BC:56:FD:BE:04:2E:EA:0E:9F:4E:FD:AA:19:AB:28:FE:61:31:10 X509v3 Authority Key Identifier: keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/KrxW_b4ELuoOn079qhmrKP5hMRA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.27.144.0/20 217.24.112.0/20 Signature Algorithm: sha256WithRSAEncryption 3e:ce:0e:7a:fc:e5:ae:e0:8a:90:1d:07:54:7f:e2:7f:45:d3: 09:33:64:34:95:a7:c4:49:76:fe:38:6d:3e:f3:c8:2b:40:bd: 90:f2:f6:85:a7:d1:38:f0:b4:db:88:d5:b5:04:e4:e8:ad:ab: 0b:b0:c2:cf:dd:a1:d5:31:0a:0a:40:ee:df:e0:f5:c3:39:d2: 51:0e:ee:de:b6:c8:e2:8a:79:37:41:5d:6f:ad:da:da:45:a8: c3:f4:60:67:21:20:4c:0a:2a:86:88:1c:56:b0:56:b1:c9:07: 16:d2:3d:a4:d0:63:f9:2e:f0:f7:7d:d9:e7:ba:54:e2:5b:23: cb:04:bb:e7:05:f2:12:aa:8d:dd:cb:3b:5c:eb:17:47:57:25: a7:52:d4:ab:47:ce:fd:78:53:01:90:b2:be:71:b7:d7:e6:52: 30:d7:e7:a4:a4:1c:75:69:b6:8a:70:4c:0f:ae:86:84:07:88: ac:ed:22:db:84:9d:5d:c6:22:99:b4:67:ea:93:73:1f:f0:d3: 2f:0b:05:a8:5c:3a:5a:27:e4:e3:c6:e1:02:b8:03:26:e1:62: 71:90:5a:09:04:4e:d9:99:8c:3e:82:96:ae:73:1e:a9:4a:7f: 0a:68:16:40:1d:56:ec:da:6e:0f:4c:c8:23:6c:b4:36:43:7c: 91:35:9f:05 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+p2iIgdFqzLEraxmPC4V2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx ZTZjMDkwHhcNMjYwMTAyMTIyMDU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWJjNTZmZGJlMDQyZWVhMGU5ZjRlZmRhYTE5YWIyOGZlNjEzMTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWHfmwUc6jQUYTacuD1Yu/k3NUOD coXZFNEY242XigeloZtzg7eR9T7V0vMziUzjXtIr/SrXDGXc9KazXteBd7bgm+6Q HAKriWqe0p2pjOYMjv+/2eUASUrYU7OonTrAfZLzwjD+n6HACWLRMFejDpjPULOr pQBpN9xvNKBvumDE32KtFxpm1pTu9cLRBdxMuPvnvXXBzcrBgYdoUnI5CrHrP19z vN288AN7mUZAR4zE1eo773wug6sXM0tunxOzuBF5/TiJm4KFIivZg6bk5f70NdY0 4U0aaz9kEG7+G7cEypfaeHhkRjNCmzkXJl+CiN+7Wgb+2JBZgFneTsP5YwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCq8Vv2+BC7qDp9O/aoZqyj+YTEQMB8GA1UdIwQY MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt NWE4NmMyNzU3YzFlLzEvS3J4V19iNEVMdW9PbjA3OXFobXJLUDVoTVJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEURuQAwQE 2RhwMA0GCSqGSIb3DQEBCwUAA4IBAQA+zg56/OWu4IqQHQdUf+J/RdMJM2Q0lafE SXb+OG0+88grQL2Q8vaFp9E48LTbiNW1BOTorasLsMLP3aHVMQoKQO7f4PXDOdJR Du7etsjiink3QV1vrdraRajD9GBnISBMCiqGiBxWsFaxyQcW0j2k0GP5LvD3fdnn ulTiWyPLBLvnBfISqo3dyztc6xdHVyWnUtSrR879eFMBkLK+cbfX5lIw1+ekpBx1 abaKcEwProaEB4is7SLbhJ1dxiKZtGfqk3Mf8NMvCwWoXDpaJ+TjxuECuAMm4WJx kFoJBE7ZmYw+gpaucx6pSn8KaBZAHVbs2m4PTMgjbLQ2Q3yRNZ8F -----END CERTIFICATE-----Generated at Mon Jan 26 01:42:04 2026 by rpki-client