This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3b6eab-f909-42c9-b588-15c65ff258e8/1/2VIoG8QN-zjnAemqLtXlhO_Jltw.roa File: 2VIoG8QN-zjnAemqLtXlhO_Jltw.roa (raw, json) Hash identifier: cZjTIR9f7TdWlH+cvp6k0DHUwZH3r7HLXpRNG9UZVIM= Subject key identifier: D9:52:28:1B:C4:0D:FB:38:E7:01:E9:AA:2E:D5:E5:84:EF:C9:96:DC Certificate issuer: /CN=ef1535978be6b0ad7a9cb70eb0522f8c950982a9 Certificate serial: 019B77589937C00B2742CD825EA39718DF41 Authority key identifier: EF:15:35:97:8B:E6:B0:AD:7A:9C:B7:0E:B0:52:2F:8C:95:09:82:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xU1l4vmsK16nLcOsFIvjJUJgqk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3b6eab-f909-42c9-b588-15c65ff258e8/1/2VIoG8QN-zjnAemqLtXlhO_Jltw.roa Signing time: Thu 01 Jan 2026 02:17:33 +0000 ROA not before: Thu 01 Jan 2026 02:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206276 IP address blocks: 2a0d:c540::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3b6eab-f909-42c9-b588-15c65ff258e8/1/7xU1l4vmsK16nLcOsFIvjJUJgqk.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/3b6eab-f909-42c9-b588-15c65ff258e8/1/7xU1l4vmsK16nLcOsFIvjJUJgqk.mft rsync://rpki.ripe.net/repository/DEFAULT/7xU1l4vmsK16nLcOsFIvjJUJgqk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:99:37:c0:0b:27:42:cd:82:5e:a3:97:18:df:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef1535978be6b0ad7a9cb70eb0522f8c950982a9 Validity Not Before: Jan 1 02:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d952281bc40dfb38e701e9aa2ed5e584efc996dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5c:4f:c1:c1:17:20:18:9f:89:8b:13:d3:5f: fe:00:af:28:2f:18:ec:82:41:80:96:f8:f0:44:ae: 76:02:a0:d6:2d:7f:3f:02:e4:76:8c:53:5c:62:85: f3:1d:b2:8c:da:5a:14:54:97:1e:4d:8f:7d:b2:8f: 76:e9:90:40:44:e6:27:3a:4f:0e:00:72:3e:78:52: a6:a0:24:ba:13:2b:80:be:84:e2:16:6a:1a:8c:28: 70:22:4a:ff:6c:d2:23:52:e9:be:fd:53:83:22:25: 7f:ef:80:ea:7a:87:36:2d:3b:03:55:0e:31:38:cc: 82:49:22:38:f8:41:ae:c6:8f:47:58:f8:b2:f8:81: a0:5d:df:55:12:e0:9f:b3:d2:72:c9:9f:d4:bd:93: 7c:c3:00:c9:9d:18:da:3a:5e:a2:03:0a:02:5b:ef: 6a:d1:2a:33:be:73:b1:f8:b5:ff:83:0b:d9:83:93: d1:96:64:4e:03:3a:9e:05:25:a2:09:16:57:0b:ea: 79:cc:bc:67:3c:13:73:d5:16:25:db:3b:78:29:c0: 3c:7d:fc:d9:11:76:6d:5f:2f:91:1b:74:a1:c1:39: a9:d4:c9:3f:be:d4:81:82:ad:43:57:36:8d:92:94: 06:22:75:fb:b9:90:42:16:4e:12:b1:7e:8f:61:19: 85:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:52:28:1B:C4:0D:FB:38:E7:01:E9:AA:2E:D5:E5:84:EF:C9:96:DC X509v3 Authority Key Identifier: keyid:EF:15:35:97:8B:E6:B0:AD:7A:9C:B7:0E:B0:52:2F:8C:95:09:82:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xU1l4vmsK16nLcOsFIvjJUJgqk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3b6eab-f909-42c9-b588-15c65ff258e8/1/2VIoG8QN-zjnAemqLtXlhO_Jltw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3b6eab-f909-42c9-b588-15c65ff258e8/1/7xU1l4vmsK16nLcOsFIvjJUJgqk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:c540::/29 Signature Algorithm: sha256WithRSAEncryption 32:a3:ae:11:56:f3:1f:37:16:34:c1:51:cc:d5:be:f2:06:e2: 97:92:9a:d8:c7:7f:ab:93:8a:93:2f:0c:3d:8a:01:f0:a3:63: 9e:26:4d:43:93:5b:90:e3:fa:0a:98:f4:6e:42:12:51:bf:68: c6:07:79:b4:56:6a:c8:57:aa:b0:a8:a6:b5:60:2f:30:2b:11: aa:01:33:86:05:ae:02:33:93:47:6f:c0:c3:03:23:e1:65:77: 47:64:78:51:7e:e5:34:79:f1:41:92:7e:15:4f:46:89:fe:46: 47:52:33:d2:a7:e3:29:7a:ed:32:dd:e2:b6:8d:57:85:d6:0d: 25:ed:f2:45:63:cb:4a:57:a1:be:3b:7e:ba:2c:e8:92:63:13: ea:98:f5:3c:f0:5d:0d:9c:3b:0a:cf:5b:4c:94:20:e7:80:3b: b2:32:7d:4e:5b:e0:70:f2:6f:b2:52:7e:04:0a:53:6c:3b:83: 8c:c4:28:38:a2:fa:3b:7e:5b:cf:60:4b:9b:65:05:b0:25:f7: d5:67:d6:a7:22:b0:0e:54:16:8c:02:66:4a:dc:fc:45:e2:2f: f1:aa:6c:2b:c1:86:2e:73:8e:43:92:45:4d:a4:fc:77:7e:96: c3:80:aa:cf:37:98:1d:2e:c2:b0:41:61:1b:c4:6a:ac:41:8a: 80:db:8c:1a -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt3WJk3wAsnQs2CXqOXGN9BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMTUzNTk3OGJlNmIwYWQ3YTljYjcwZWIwNTIyZjhjOTUw OTgyYTkwHhcNMjYwMTAxMDIxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTUyMjgxYmM0MGRmYjM4ZTcwMWU5YWEyZWQ1ZTU4NGVmYzk5NmRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1xPwcEXIBifiYsT01/+AK8oLxjs gkGAlvjwRK52AqDWLX8/AuR2jFNcYoXzHbKM2loUVJceTY99so926ZBAROYnOk8O AHI+eFKmoCS6EyuAvoTiFmoajChwIkr/bNIjUum+/VODIiV/74Dqeoc2LTsDVQ4x OMyCSSI4+EGuxo9HWPiy+IGgXd9VEuCfs9JyyZ/UvZN8wwDJnRjaOl6iAwoCW+9q 0SozvnOx+LX/gwvZg5PRlmROAzqeBSWiCRZXC+p5zLxnPBNz1RYl2zt4KcA8ffzZ EXZtXy+RG3ShwTmp1Mk/vtSBgq1DVzaNkpQGInX7uZBCFk4SsX6PYRmFiQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFNlSKBvEDfs45wHpqi7V5YTvyZbcMB8GA1UdIwQY MBaAFO8VNZeL5rCtepy3DrBSL4yVCYKpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3hVMWw0dm1zSzE2bkxjT3NGSXZqSlVKZ3FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYjZlYWItZjkwOS00MmM5LWI1ODgt MTVjNjVmZjI1OGU4LzEvMlZJb0c4UU4tempuQWVtcUx0WGxoT19KbHR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8zYjZlYWItZjkwOS00MmM5LWI1ODgtMTVjNjVmZjI1OGU4 LzEvN3hVMWw0dm1zSzE2bkxjT3NGSXZqSlVKZ3FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg3FQDAN BgkqhkiG9w0BAQsFAAOCAQEAMqOuEVbzHzcWNMFRzNW+8gbil5Ka2Md/q5OKky8M PYoB8KNjniZNQ5NbkOP6Cpj0bkISUb9oxgd5tFZqyFeqsKimtWAvMCsRqgEzhgWu AjOTR2/AwwMj4WV3R2R4UX7lNHnxQZJ+FU9Gif5GR1Iz0qfjKXrtMt3ito1XhdYN Je3yRWPLSlehvjt+uizokmMT6pj1PPBdDZw7Cs9bTJQg54A7sjJ9TlvgcPJvslJ+ BApTbDuDjMQoOKL6O35bz2BLm2UFsCX31WfWpyKwDlQWjAJmStz8ReIv8apsK8GG LnOOQ5JFTaT8d36Ww4CqzzeYHS7CsEFhG8RqrEGKgNuMGg== -----END CERTIFICATE-----Generated at Sun Jan 25 14:19:17 2026 by rpki-client