This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/2bkPk-Ot1qaZU9LokqaM6q6xdF0.roa File: 2bkPk-Ot1qaZU9LokqaM6q6xdF0.roa (raw, json) Hash identifier: FKs43X1xKZGBJpJSHiH34tt6wllzqU8nAr6+m1ghTU0= Subject key identifier: D9:B9:0F:93:E3:AD:D6:A6:99:53:D2:E8:92:A6:8C:EA:AE:B1:74:5D Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e Certificate serial: 019B7EA6D7102FC9B317D7D6F8446B5A3756 Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/2bkPk-Ot1qaZU9LokqaM6q6xdF0.roa Signing time: Fri 02 Jan 2026 12:20:21 +0000 ROA not before: Fri 02 Jan 2026 12:20:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15695 IP address blocks: 84.47.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.mft rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:d7:10:2f:c9:b3:17:d7:d6:f8:44:6b:5a:37:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e Validity Not Before: Jan 2 12:20:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9b90f93e3add6a69953d2e892a68ceaaeb1745d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:7a:30:38:a6:62:10:11:c4:57:50:5b:4c: 6d:51:97:18:94:d6:c0:71:7a:18:00:43:12:54:b1: 43:6e:71:fb:ba:24:98:a3:6a:0f:b2:47:81:3a:51: 76:4e:3a:a0:ca:83:26:8b:b8:4f:11:1e:10:fd:a2: 5b:95:3f:ed:02:57:a0:ba:97:af:8b:a5:41:2d:41: d7:60:cd:7c:3e:cd:fb:40:d6:bd:8d:bf:fc:62:5c: 3b:28:24:9b:55:f5:ed:f1:ae:bf:ee:d0:78:2a:26: 16:a7:ca:37:01:c2:92:0c:70:58:64:95:ab:73:11: 9b:7c:ec:de:2e:71:4a:05:74:9e:b2:23:3e:e8:c3: f4:13:34:be:23:ec:a8:43:00:6c:48:0d:f1:e9:87: 2b:78:02:dd:1a:b3:de:c2:6f:06:67:8b:50:44:46: c5:3e:e9:11:50:42:ff:aa:6d:fa:e5:17:62:dd:c5: 6f:79:7d:ab:6a:b0:56:47:d4:8d:37:1a:4b:b1:6b: 3b:03:71:ee:36:e9:df:71:9d:f7:79:c0:d1:b0:c4: 80:a2:3d:a7:e5:00:47:6c:56:b4:83:82:79:bc:7d: 8e:9f:b7:04:5c:1b:29:8e:09:27:bf:9f:4f:ae:49: 5a:c3:4a:18:c3:ee:5e:1f:08:6a:f0:47:e7:5a:1b: 09:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B9:0F:93:E3:AD:D6:A6:99:53:D2:E8:92:A6:8C:EA:AE:B1:74:5D X509v3 Authority Key Identifier: keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/2bkPk-Ot1qaZU9LokqaM6q6xdF0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.47.184.0/24 Signature Algorithm: sha256WithRSAEncryption 66:26:a8:0d:9a:93:c8:fc:08:be:17:95:eb:e4:b7:b6:36:f6: ef:51:9d:a8:da:46:bd:56:e8:b6:08:63:2a:a4:f4:0a:56:c0: 78:fc:8f:39:bd:10:cd:42:04:9a:be:9b:93:28:95:10:12:c0: 02:30:1a:4d:6a:09:9f:b5:18:62:35:22:28:a0:bb:1a:df:4b: f2:84:2a:2e:66:55:9a:c8:8a:ed:19:a3:1b:19:c5:cd:30:a6: c1:10:15:d4:c9:92:f0:19:b7:33:f1:3c:e6:94:61:69:ba:26: ad:d0:6c:da:44:e7:58:b8:cd:d9:c9:b9:49:15:f5:0b:22:e0: 76:cf:57:92:b9:5b:9e:e4:5c:d7:43:da:b8:b5:4c:14:60:81: 9a:bf:5c:05:71:40:ea:80:dd:62:72:05:09:06:1b:12:46:fb: 2a:b2:05:9d:4c:4e:8d:b5:b7:77:df:23:fe:e0:67:75:6c:21: a1:8c:b5:e5:d1:93:da:67:a8:d7:9b:19:70:1a:4c:4d:2b:fb: 33:8b:c4:ec:ac:e2:69:0e:9d:07:6b:5f:3f:81:70:f6:88:c2: 88:c4:24:ec:ed:d0:2f:94:b9:5b:d4:6d:3b:52:11:52:ef:a6: a7:e0:f6:ed:d5:a1:38:99:3b:26:62:10:a4:4e:ee:25:87:2e: d6:ee:ab:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ptcQL8mzF9fW+ERrWjdWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5ZGQ1NDI3ODE4NTFjMGJjZTVhM2VhNWNjMzg3NjUwZmZj ODI3N2UwHhcNMjYwMTAyMTIyMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOWI5MGY5M2UzYWRkNmE2OTk1M2QyZTg5MmE2OGNlYWFlYjE3NDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwV6MDimYhARxFdQW0xtUZcYlNbA cXoYAEMSVLFDbnH7uiSYo2oPskeBOlF2TjqgyoMmi7hPER4Q/aJblT/tAlegupev i6VBLUHXYM18Ps37QNa9jb/8Ylw7KCSbVfXt8a6/7tB4KiYWp8o3AcKSDHBYZJWr cxGbfOzeLnFKBXSesiM+6MP0EzS+I+yoQwBsSA3x6YcreALdGrPewm8GZ4tQREbF PukRUEL/qm365Rdi3cVveX2rarBWR9SNNxpLsWs7A3HuNunfcZ33ecDRsMSAoj2n 5QBHbFa0g4J5vH2On7cEXBspjgknv59Prklaw0oYw+5eHwhq8EfnWhsJSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNm5D5PjrdammVPS6JKmjOqusXRdMB8GA1UdIwQY MBaAFFndVCeBhRwLzlo+pcw4dlD/yCd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYt NDdlMDkzNzk4OWE4LzEvMmJrUGstT3QxcWFaVTlMb2txYU02cTZ4ZEYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYtNDdlMDkzNzk4OWE4 LzEvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVC+4MA0G CSqGSIb3DQEBCwUAA4IBAQBmJqgNmpPI/Ai+F5Xr5Le2NvbvUZ2o2ka9Vui2CGMq pPQKVsB4/I85vRDNQgSavpuTKJUQEsACMBpNagmftRhiNSIooLsa30vyhCouZlWa yIrtGaMbGcXNMKbBEBXUyZLwGbcz8TzmlGFpuiat0GzaROdYuM3ZyblJFfULIuB2 z1eSuVue5FzXQ9q4tUwUYIGav1wFcUDqgN1icgUJBhsSRvsqsgWdTE6Ntbd33yP+ 4Gd1bCGhjLXl0ZPaZ6jXmxlwGkxNK/szi8TsrOJpDp0Ha18/gXD2iMKIxCTs7dAv lLlb1G07UhFS76an4Pbt1aE4mTsmYhCkTu4lhy7W7qv5 -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:17 2026 by rpki-client