This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/xmo5IxQ49b2iTuzQ5nnDoyN-_5c.roa File: xmo5IxQ49b2iTuzQ5nnDoyN-_5c.roa (raw, json) Hash identifier: TuBiRPDvmK33i1NU+I9Xz6NP+awkXIf9a5QeFcH5ZdA= Subject key identifier: C6:6A:39:23:14:38:F5:BD:A2:4E:EC:D0:E6:79:C3:A3:23:7E:FF:97 Certificate issuer: /CN=6be39c31be93f56e63bd26d5b1c072dc775319e6 Certificate serial: 019B7F142ABC4BBC07108F230E92ED75163F Authority key identifier: 6B:E3:9C:31:BE:93:F5:6E:63:BD:26:D5:B1:C0:72:DC:77:53:19:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/xmo5IxQ49b2iTuzQ5nnDoyN-_5c.roa Signing time: Fri 02 Jan 2026 14:19:46 +0000 ROA not before: Fri 02 Jan 2026 14:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51597 IP address blocks: 91.219.80.0/22 maxlen: 22 91.219.80.0/24 maxlen: 24 91.219.81.0/24 maxlen: 24 91.219.82.0/24 maxlen: 24 91.219.83.0/24 maxlen: 24 176.116.192.0/21 maxlen: 21 176.116.192.0/24 maxlen: 24 176.116.193.0/24 maxlen: 24 176.116.194.0/24 maxlen: 24 176.116.195.0/24 maxlen: 24 176.116.196.0/24 maxlen: 24 176.116.197.0/24 maxlen: 24 2001:678:318::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.mft rsync://rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:2a:bc:4b:bc:07:10:8f:23:0e:92:ed:75:16:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6be39c31be93f56e63bd26d5b1c072dc775319e6 Validity Not Before: Jan 2 14:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c66a39231438f5bda24eecd0e679c3a3237eff97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:df:b5:01:7b:96:97:e6:81:3d:2f:1d:7c:fc: d5:cb:1e:56:51:0e:2b:4e:ce:15:78:c8:03:32:51: d6:a0:60:bb:2e:4c:b4:d0:0a:bc:14:a2:d3:08:c9: 98:7f:29:35:a3:69:ba:58:4e:2c:26:7f:1c:8d:70: f7:49:2e:53:f7:e6:2c:0c:fc:e5:02:61:c4:c5:ed: 36:77:42:a1:c0:91:64:23:8a:84:41:69:2d:9a:16: 12:53:2c:c5:20:6b:ac:84:3e:af:eb:c5:d9:68:49: 31:20:b6:96:0f:09:cb:c0:17:f5:8c:f3:0d:6e:fe: 37:f2:bb:b8:29:e3:1a:5f:81:96:a6:d5:4e:24:ba: 2f:45:cf:cc:d1:d0:00:0f:9f:56:85:41:24:11:d6: 15:85:a4:7b:be:91:06:ee:52:2a:42:2c:f7:3d:c8: aa:19:bd:92:15:b2:48:9a:27:b0:13:e1:50:c8:14: 2b:95:43:15:55:aa:de:a0:da:8a:5e:0c:33:99:d8: 53:dd:e6:a7:c8:ed:50:31:a7:15:d1:15:75:4e:93: 5c:62:74:a1:55:9f:3a:e7:e2:38:d8:98:85:c1:aa: 67:94:e1:4c:66:2b:ab:e5:24:86:a7:1d:a6:5d:0d: b7:ef:07:36:92:f7:eb:2d:8d:3b:dd:95:99:df:32: 98:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6A:39:23:14:38:F5:BD:A2:4E:EC:D0:E6:79:C3:A3:23:7E:FF:97 X509v3 Authority Key Identifier: keyid:6B:E3:9C:31:BE:93:F5:6E:63:BD:26:D5:B1:C0:72:DC:77:53:19:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-OcMb6T9W5jvSbVscBy3HdTGeY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/xmo5IxQ49b2iTuzQ5nnDoyN-_5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/03c9d3-0e25-4cc7-96a3-117bf42941ca/1/a-OcMb6T9W5jvSbVscBy3HdTGeY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.219.80.0/22 176.116.192.0/21 IPv6: 2001:678:318::/48 Signature Algorithm: sha256WithRSAEncryption 97:43:3c:fa:d2:1d:2a:c1:15:37:25:d6:45:3c:00:fa:71:c2: 50:08:f2:66:5f:bd:c3:9f:67:1d:2c:65:1b:e6:84:3c:89:2c: 34:79:29:34:98:fa:63:f1:63:19:34:61:da:9f:da:f1:fb:26: 76:f3:ab:71:7b:6e:08:54:2e:d6:eb:f4:76:20:1d:5e:b4:14: 35:48:fe:2f:1a:c1:3a:1c:53:88:23:24:cb:e9:c5:f3:61:af: f1:d2:ee:d2:f2:1e:f5:4b:2f:a0:f7:2b:ca:61:77:7d:59:10: 37:0e:7f:9f:1c:23:da:3f:48:75:06:38:53:19:34:20:70:2b: 73:4f:63:9f:9f:e5:a4:90:54:7d:49:97:25:2f:2b:46:c7:da: 90:f3:10:2f:5b:c9:ab:a2:64:ab:1d:0e:09:7a:a6:c8:1a:47: a4:d7:25:eb:c4:16:54:e4:26:6c:67:5f:f7:96:ff:09:06:84: fe:6c:51:92:11:65:94:13:35:9e:22:56:b8:54:eb:f5:e5:5e: 7b:69:ea:81:57:0a:07:da:a3:97:12:d5:73:b6:b0:fa:3a:ab: f4:74:29:b2:d9:97:ce:c8:60:41:2a:28:82:16:a8:07:ad:98: 1e:ee:50:5b:0f:e1:73:d3:e4:81:b1:c2:6f:3a:94:c9:a7:33: 02:07:79:5d -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt/FCq8S7wHEI8jDpLtdRY/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiZTM5YzMxYmU5M2Y1NmU2M2JkMjZkNWIxYzA3MmRjNzc1 MzE5ZTYwHhcNMjYwMTAyMTQxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjZhMzkyMzE0MzhmNWJkYTI0ZWVjZDBlNjc5YzNhMzIzN2VmZjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAld+1AXuWl+aBPS8dfPzVyx5WUQ4r Ts4VeMgDMlHWoGC7Lky00Aq8FKLTCMmYfyk1o2m6WE4sJn8cjXD3SS5T9+YsDPzl AmHExe02d0KhwJFkI4qEQWktmhYSUyzFIGushD6v68XZaEkxILaWDwnLwBf1jPMN bv438ru4KeMaX4GWptVOJLovRc/M0dAAD59WhUEkEdYVhaR7vpEG7lIqQiz3Pciq Gb2SFbJImiewE+FQyBQrlUMVVareoNqKXgwzmdhT3eanyO1QMacV0RV1TpNcYnSh VZ865+I42JiFwapnlOFMZiur5SSGpx2mXQ237wc2kvfrLY073ZWZ3zKYFQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFMZqOSMUOPW9ok7s0OZ5w6Mjfv+XMB8GA1UdIwQY MBaAFGvjnDG+k/VuY70m1bHActx3UxnmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYS1PY01iNlQ5VzVqdlNiVnNjQnkzSGRUR2VZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wM2M5ZDMtMGUyNS00Y2M3LTk2YTMt MTE3YmY0Mjk0MWNhLzEveG1vNUl4UTQ5YjJpVHV6UTVubkRveU4tXzVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8wM2M5ZDMtMGUyNS00Y2M3LTk2YTMtMTE3YmY0Mjk0MWNh LzEvYS1PY01iNlQ5VzVqdlNiVnNjQnkzSGRUR2VZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCW9tQAwQD sHTAMA8EAgACMAkDBwAgAQZ4AxgwDQYJKoZIhvcNAQELBQADggEBAJdDPPrSHSrB FTcl1kU8APpxwlAI8mZfvcOfZx0sZRvmhDyJLDR5KTSY+mPxYxk0Ydqf2vH7Jnbz q3F7bghULtbr9HYgHV60FDVI/i8awTocU4gjJMvpxfNhr/HS7tLyHvVLL6D3K8ph d31ZEDcOf58cI9o/SHUGOFMZNCBwK3NPY5+f5aSQVH1JlyUvK0bH2pDzEC9byaui ZKsdDgl6psgaR6TXJevEFlTkJmxnX/eW/wkGhP5sUZIRZZQTNZ4iVrhU6/XlXntp 6oFXCgfao5cS1XO2sPo6q/R0KbLZl87IYEEqKIIWqAetmB7uUFsP4XPT5IGxwm86 lMmnMwIHeV0= -----END CERTIFICATE-----Generated at Sun Jan 4 10:05:44 2026 by rpki-client