This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/2uonQk8lw16FeBIvKKSSmhsYIS0.roa File: 2uonQk8lw16FeBIvKKSSmhsYIS0.roa (raw, json) Hash identifier: 2dNCmgQW6KMhs3bZJLn40BJuFp8E7ETzKi/EDLa0p5s= Subject key identifier: DA:EA:27:42:4F:25:C3:5E:85:78:12:2F:28:A4:92:9A:1B:18:21:2D Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c Certificate serial: 019B7AC954CF0A8588FBEF9875713858D566 Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/2uonQk8lw16FeBIvKKSSmhsYIS0.roa Signing time: Thu 01 Jan 2026 18:19:33 +0000 ROA not before: Thu 01 Jan 2026 18:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205113 IP address blocks: 66.110.88.0/21 maxlen: 24 80.231.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.mft rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:54:cf:0a:85:88:fb:ef:98:75:71:38:58:d5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c Validity Not Before: Jan 1 18:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=daea27424f25c35e8578122f28a4929a1b18212d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:a7:5f:61:cf:da:08:6a:d4:fd:be:53:05: ff:a2:96:7e:bc:55:d1:bb:4b:48:9c:88:93:2b:77: b3:7e:75:83:c1:8e:6e:9f:17:ca:fd:78:47:a1:18: ba:25:ad:31:6b:ae:f2:c3:4c:ea:c8:60:d7:52:4c: 34:fc:b7:31:46:93:04:3a:47:5b:cf:3a:6d:82:34: 57:c7:91:2b:64:5a:3b:da:62:bd:f3:cb:12:0a:53: b8:18:f8:0f:73:07:8c:4c:05:ef:c9:93:82:4a:56: 13:b6:63:cc:22:87:7e:be:29:f1:f0:aa:e0:d5:1d: 6f:f0:9f:01:12:85:18:74:66:a1:8a:f0:76:d0:89: 7d:dc:7b:b8:3e:81:de:72:18:6e:7a:1c:7e:b6:6e: dc:86:84:35:40:66:3c:d3:93:b1:99:ec:98:72:aa: 15:cf:22:91:57:48:d4:d4:1e:2c:d1:59:26:e1:65: 68:a7:60:27:d8:e4:7b:cc:19:eb:b3:45:6b:46:41: 73:e2:e5:d8:40:83:27:26:75:b9:2b:2e:4b:3c:59: 43:6c:2e:5a:d5:59:16:26:59:c7:33:6a:90:d7:c6: 9b:d6:3a:8a:c1:3f:fb:9c:8c:0d:8c:99:5b:d7:ea: 58:4b:d2:09:c0:34:12:70:39:18:37:a5:00:c9:5f: 43:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:EA:27:42:4F:25:C3:5E:85:78:12:2F:28:A4:92:9A:1B:18:21:2D X509v3 Authority Key Identifier: keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/2uonQk8lw16FeBIvKKSSmhsYIS0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.110.88.0/21 80.231.188.0/22 Signature Algorithm: sha256WithRSAEncryption 65:96:ea:14:a5:87:f8:2c:4f:e2:0d:2a:1d:23:95:89:3b:7f: cf:ba:c0:2f:10:e7:a5:30:96:87:09:08:07:61:5e:79:12:d5: 3c:38:47:83:ff:1e:cd:ba:90:28:9c:c3:c9:9b:57:4e:64:34: b6:ef:f3:68:a2:a8:4a:a2:e7:8c:f5:1b:c3:8e:5d:3b:32:ef: 98:d4:ee:69:0a:b9:93:33:c2:9c:27:2e:f2:80:3d:ec:37:10: a8:ed:d3:e6:8b:e2:a1:1e:ef:d4:37:2f:b2:b5:d8:bb:1a:39: bb:3a:4a:69:f4:9c:c1:72:5c:ba:3d:f1:fa:cf:72:34:98:7e: f5:a2:19:82:8a:7b:7d:a9:66:84:fe:4c:ec:e2:8d:41:70:bc: 7b:b8:4b:2e:bb:c6:af:7b:e9:71:ef:b8:d5:2c:a3:8c:2b:48: 5a:08:24:07:89:80:86:2f:5b:0b:8e:26:0f:91:5c:c7:34:da: 1a:bb:f7:fc:0d:bb:2a:b7:2c:04:18:46:0d:8f:2c:9b:25:c3: ef:ff:fb:d3:d0:78:ca:80:e1:f8:59:00:ef:76:bc:30:8c:d4: 17:26:dc:e6:d1:06:6a:28:ad:3e:ba:d0:6c:02:ca:5d:cc:44: dd:04:9d:ad:d1:53:d0:91:21:e8:79:80:91:81:50:98:ab:e2: 20:0d:c5:47 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yVTPCoWI+++YdXE4WNVmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDFiMjU4NzQ5MGFkMDYxY2IyMDcxNzZiZGVlYzgxYTUz MTU4OGMwHhcNMjYwMTAxMTgxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWVhMjc0MjRmMjVjMzVlODU3ODEyMmYyOGE0OTI5YTFiMTgyMTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlunX2HP2ghq1P2+UwX/opZ+vFXR u0tInIiTK3ezfnWDwY5unxfK/XhHoRi6Ja0xa67yw0zqyGDXUkw0/LcxRpMEOkdb zzptgjRXx5ErZFo72mK988sSClO4GPgPcweMTAXvyZOCSlYTtmPMIod+vinx8Krg 1R1v8J8BEoUYdGahivB20Il93Hu4PoHechhuehx+tm7choQ1QGY805OxmeyYcqoV zyKRV0jU1B4s0Vkm4WVop2An2OR7zBnrs0VrRkFz4uXYQIMnJnW5Ky5LPFlDbC5a 1VkWJlnHM2qQ18ab1jqKwT/7nIwNjJlb1+pYS9IJwDQScDkYN6UAyV9DyQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNrqJ0JPJcNehXgSLyikkpobGCEtMB8GA1UdIwQY MBaAFE3Rslh0kK0GHLIHF2ve7IGlMViMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUt ZGI0NjNjNWZiMGI0LzEvMnVvblFrOGx3MTZGZUJJdktLU1NtaHNZSVMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUtZGI0NjNjNWZiMGI0 LzEvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDQm5YAwQC UOe8MA0GCSqGSIb3DQEBCwUAA4IBAQBlluoUpYf4LE/iDSodI5WJO3/PusAvEOel MJaHCQgHYV55EtU8OEeD/x7NupAonMPJm1dOZDS27/NooqhKoueM9RvDjl07Mu+Y 1O5pCrmTM8KcJy7ygD3sNxCo7dPmi+KhHu/UNy+ytdi7Gjm7Okpp9JzBcly6PfH6 z3I0mH71ohmCint9qWaE/kzs4o1BcLx7uEsuu8ave+lx77jVLKOMK0haCCQHiYCG L1sLjiYPkVzHNNoau/f8DbsqtywEGEYNjyybJcPv//vT0HjKgOH4WQDvdrwwjNQX Jtzm0QZqKK0+utBsAspdzETdBJ2t0VPQkSHoeYCRgVCYq+IgDcVH -----END CERTIFICATE-----Generated at Sun Jan 25 15:28:47 2026 by rpki-client