This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/sXZEyLDztNjM23Z0NfTDSffhRV4.roa File: sXZEyLDztNjM23Z0NfTDSffhRV4.roa (raw, json) Hash identifier: j1ThO6JX0t+4KZGC5ITUDqv+a2GExzOx5SfNMj5dHwM= Subject key identifier: B1:76:44:C8:B0:F3:B4:D8:CC:DB:76:74:35:F4:C3:49:F7:E1:45:5E Certificate issuer: /CN=e97592f1eb41d6c893cd0dd72b63fc34ee553533 Certificate serial: 019B7DCA63ACE777BD4DB8ACA30F10948118 Authority key identifier: E9:75:92:F1:EB:41:D6:C8:93:CD:0D:D7:2B:63:FC:34:EE:55:35:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XWS8etB1siTzQ3XK2P8NO5VNTM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/sXZEyLDztNjM23Z0NfTDSffhRV4.roa Signing time: Fri 02 Jan 2026 08:19:34 +0000 ROA not before: Fri 02 Jan 2026 08:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16083 IP address blocks: 81.16.208.0/22 maxlen: 22 81.16.208.0/23 maxlen: 23 91.106.112.0/21 maxlen: 24 178.209.192.0/19 maxlen: 24 217.73.192.0/20 maxlen: 24 217.73.198.0/24 maxlen: 24 2a00:eb9::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/6XWS8etB1siTzQ3XK2P8NO5VNTM.crl rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/6XWS8etB1siTzQ3XK2P8NO5VNTM.mft rsync://rpki.ripe.net/repository/DEFAULT/6XWS8etB1siTzQ3XK2P8NO5VNTM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:63:ac:e7:77:bd:4d:b8:ac:a3:0f:10:94:81:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e97592f1eb41d6c893cd0dd72b63fc34ee553533 Validity Not Before: Jan 2 08:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b17644c8b0f3b4d8ccdb767435f4c349f7e1455e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:27:f3:02:bf:2a:e7:52:7e:be:c1:d2:d2: 37:6e:86:4d:1f:b7:ff:8e:f1:5c:1d:f9:7d:b0:8e: e3:84:60:4f:2b:f1:22:7f:cd:ae:de:ef:fb:82:72: 89:a4:7c:22:e4:85:c4:29:37:51:f8:54:5b:97:b4: 9d:28:22:aa:a6:eb:81:6b:74:83:9c:03:7e:09:48: f9:8f:e6:cc:97:00:d9:55:a2:d2:fc:ec:7c:1a:01: bc:ef:f0:ec:0a:f2:2b:21:97:b6:da:5b:1d:f5:cb: b0:21:62:29:d6:34:82:07:27:c8:84:f3:ea:25:24: d0:27:dd:8a:7f:2b:5b:8d:64:ed:85:97:23:ce:4a: ed:c0:0a:6e:f8:d5:8e:0d:d4:bd:89:4d:41:8c:dd: 13:92:13:78:7b:80:a8:52:b5:e0:e5:77:95:40:be: a5:df:ac:7b:e8:bc:44:29:63:cb:9f:8b:cb:4e:d8: 72:98:55:5f:25:49:92:ca:d5:56:1a:1c:ce:5b:d9: a0:d7:ef:e7:08:6c:7a:f4:89:c5:1a:6c:cc:08:b1: 18:22:6c:b2:60:18:fa:4c:9d:96:fe:77:55:49:8b: 16:65:56:ef:20:65:9f:7b:c2:3d:9e:97:26:77:01: 05:a3:99:3f:64:10:da:d3:06:53:c4:cd:05:2b:fa: c7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:76:44:C8:B0:F3:B4:D8:CC:DB:76:74:35:F4:C3:49:F7:E1:45:5E X509v3 Authority Key Identifier: keyid:E9:75:92:F1:EB:41:D6:C8:93:CD:0D:D7:2B:63:FC:34:EE:55:35:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XWS8etB1siTzQ3XK2P8NO5VNTM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/sXZEyLDztNjM23Z0NfTDSffhRV4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/42217e-ead0-46be-8ad0-05f90ad24f3e/1/6XWS8etB1siTzQ3XK2P8NO5VNTM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.16.208.0/22 91.106.112.0/21 178.209.192.0/19 217.73.192.0/20 IPv6: 2a00:eb9::/32 Signature Algorithm: sha256WithRSAEncryption 03:5d:24:65:c0:99:a1:3d:c1:15:56:58:30:29:64:b1:72:27: da:71:68:61:c5:03:ee:94:86:01:fa:cf:2b:ea:b9:2e:cf:63: 43:c0:e2:81:21:05:00:28:2d:f5:ba:59:b5:aa:21:24:a8:ce: f5:cb:4d:4a:04:f1:52:59:e6:de:e9:07:98:c6:7b:ec:29:de: 23:01:42:e4:66:15:3d:af:1e:83:bd:f7:9b:24:2d:df:33:03: bf:33:f2:92:25:e5:36:ac:cd:3f:17:5b:b4:49:9f:49:bf:8c: 79:9d:08:82:bc:41:3b:ca:aa:8a:93:bc:8b:ac:b9:fd:06:d7: 96:2b:c5:20:54:44:52:3e:30:43:8c:58:c8:42:75:9c:7a:f8: 81:56:1b:95:51:90:41:92:9c:89:f2:7e:b1:3c:5c:b4:69:58: ce:38:b6:3e:b2:e7:9a:d9:33:4f:5a:7e:9f:18:ca:fa:42:f1: 6a:72:3c:d2:ea:a5:1b:87:f0:c9:5d:9c:93:ea:63:61:02:50: 0e:f6:bf:ab:2e:e9:2e:39:56:c5:97:ba:c6:fb:e4:f4:f4:85: 44:cf:8e:5f:17:5d:94:df:cf:7b:58:0d:88:ab:81:16:43:b4: d4:89:6d:be:5e:30:96:8a:cf:ea:56:c0:3c:e6:62:77:4f:9f: 84:a0:fd:80 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt9ymOs53e9Tbisow8QlIEYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5NzU5MmYxZWI0MWQ2Yzg5M2NkMGRkNzJiNjNmYzM0ZWU1 NTM1MzMwHhcNMjYwMTAyMDgxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTc2NDRjOGIwZjNiNGQ4Y2NkYjc2NzQzNWY0YzM0OWY3ZTE0NTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzvMn8wK/KudSfr7B0tI3boZNH7f/ jvFcHfl9sI7jhGBPK/Eif82u3u/7gnKJpHwi5IXEKTdR+FRbl7SdKCKqpuuBa3SD nAN+CUj5j+bMlwDZVaLS/Ox8GgG87/DsCvIrIZe22lsd9cuwIWIp1jSCByfIhPPq JSTQJ92KfytbjWTthZcjzkrtwApu+NWODdS9iU1BjN0TkhN4e4CoUrXg5XeVQL6l 36x76LxEKWPLn4vLTthymFVfJUmSytVWGhzOW9mg1+/nCGx69InFGmzMCLEYImyy YBj6TJ2W/ndVSYsWZVbvIGWfe8I9npcmdwEFo5k/ZBDa0wZTxM0FK/rHfwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFLF2RMiw87TYzNt2dDX0w0n34UVeMB8GA1UdIwQY MBaAFOl1kvHrQdbIk80N1ytj/DTuVTUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlhXUzhldEIxc2lUelEzWEsyUDhOTzVWTlRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80MjIxN2UtZWFkMC00NmJlLThhZDAt MDVmOTBhZDI0ZjNlLzEvc1haRXlMRHp0TmpNMjNaME5mVERTZmZoUlY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC80MjIxN2UtZWFkMC00NmJlLThhZDAtMDVmOTBhZDI0ZjNl LzEvNlhXUzhldEIxc2lUelEzWEsyUDhOTzVWTlRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCURDQAwQD W2pwAwQFstHAAwQE2UnAMA0EAgACMAcDBQAqAA65MA0GCSqGSIb3DQEBCwUAA4IB AQADXSRlwJmhPcEVVlgwKWSxcifacWhhxQPulIYB+s8r6rkuz2NDwOKBIQUAKC31 ulm1qiEkqM71y01KBPFSWebe6QeYxnvsKd4jAULkZhU9rx6DvfebJC3fMwO/M/KS JeU2rM0/F1u0SZ9Jv4x5nQiCvEE7yqqKk7yLrLn9BteWK8UgVERSPjBDjFjIQnWc eviBVhuVUZBBkpyJ8n6xPFy0aVjOOLY+suea2TNPWn6fGMr6QvFqcjzS6qUbh/DJ XZyT6mNhAlAO9r+rLukuOVbFl7rG++T09IVEz45fF12U3897WA2Iq4EWQ7TUiW2+ XjCWis/qVsA85mJ3T5+EoP2A -----END CERTIFICATE-----Generated at Fri Jan 2 18:34:02 2026 by rpki-client