This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/2i6ET0xmeFNNwjckPtEiXMzR1A8.roa File: 2i6ET0xmeFNNwjckPtEiXMzR1A8.roa (raw, json) Hash identifier: RMMo6cNDlmb7w7WUvvn6btB8oEeGkC5RlJSJmweHPSg= Subject key identifier: DA:2E:84:4F:4C:66:78:53:4D:C2:37:24:3E:D1:22:5C:CC:D1:D4:0F Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5 Certificate serial: 019B7B3613586F1B5CF40B5345E292DBE989 Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/2i6ET0xmeFNNwjckPtEiXMzR1A8.roa Signing time: Thu 01 Jan 2026 20:18:20 +0000 ROA not before: Thu 01 Jan 2026 20:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5630 IP address blocks: 89.106.184.0/21 maxlen: 24 2a01:20::/48 maxlen: 48 2a01:20:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:13:58:6f:1b:5c:f4:0b:53:45:e2:92:db:e9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5 Validity Not Before: Jan 1 20:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da2e844f4c6678534dc237243ed1225cccd1d40f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0d:e0:e8:7b:04:2c:f3:22:42:c8:e6:64:8f: 79:80:cd:dd:da:09:f6:4a:ff:42:57:72:28:dc:8f: 7a:46:89:20:05:27:1a:56:1a:13:aa:6a:f1:72:d8: 9f:05:d4:ef:72:4c:c2:5d:50:57:5b:7b:13:52:45: db:bf:91:a6:bd:5c:6a:a2:db:0d:20:c1:9c:15:26: e1:c4:27:5f:21:d4:0f:ad:82:84:ea:fc:08:01:d2: c1:71:e1:a9:8b:2f:7f:94:6f:e4:aa:d6:67:d8:c3: 57:9f:8b:a1:9f:14:28:05:75:a4:d9:26:80:c9:3a: 76:e0:01:b7:54:ce:0e:bf:de:0c:77:7d:2c:b1:28: 7c:c7:3e:6e:02:ed:33:4d:62:a5:6a:db:92:6d:2b: 44:03:7f:cf:1f:4d:3f:12:06:81:29:d6:c0:17:31: a5:45:b7:e5:52:9d:ed:49:00:90:f2:4c:37:5d:58: 7e:ca:c2:d2:61:97:1d:1a:f0:35:ed:ed:f9:d5:84: 2d:ac:51:20:5c:80:0a:4c:f6:60:cb:35:93:e0:4e: 7e:61:83:b8:9d:e5:37:02:3e:52:3c:8d:9d:49:c2: 73:c5:2c:a2:1c:50:0a:b9:02:8c:9f:e2:cf:8c:b2: 19:e1:fa:4e:9b:a0:6f:e0:c3:c2:bf:c3:c6:f3:ce: 87:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2E:84:4F:4C:66:78:53:4D:C2:37:24:3E:D1:22:5C:CC:D1:D4:0F X509v3 Authority Key Identifier: keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/2i6ET0xmeFNNwjckPtEiXMzR1A8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.106.184.0/21 IPv6: 2a01:20::/48 2a01:20:4::/48 Signature Algorithm: sha256WithRSAEncryption 14:a0:ba:a4:31:6d:76:e5:5b:dc:7d:fe:d2:72:63:b1:02:d5: 8d:35:ef:6e:fe:bf:cc:e1:62:13:51:49:db:3a:9f:da:76:b2: 23:e8:b8:80:46:ac:20:e6:83:04:59:5a:97:e3:1c:91:81:a6: 08:44:26:46:96:6f:46:6b:c7:3d:55:e2:37:87:36:3a:c9:55: 16:d9:64:b8:08:25:8c:0d:24:54:47:6e:4d:28:70:e0:87:55: 75:64:de:81:4a:9e:65:11:07:d2:15:e5:9d:7f:d9:f8:fc:1a: 5e:cd:db:37:ce:37:51:11:5e:a5:3e:79:2c:50:98:ab:5c:cc: 8d:2b:b4:10:7d:7f:3f:92:3b:3d:47:f7:ae:ef:31:4b:12:f8: fd:5c:db:63:4f:05:fe:8a:64:f5:92:d0:72:0b:bd:e7:bd:3d: ed:d1:57:e2:3d:07:3d:6b:f4:42:26:26:b8:83:50:1c:ed:f6: fe:e0:5e:1c:56:62:ee:d9:e6:cf:41:31:53:4e:ea:41:5e:76: e4:87:4b:e4:0d:c7:29:e1:a5:cb:f7:20:bc:0c:1a:d2:85:2d: 3b:86:dd:e7:89:ee:85:6b:12:2d:5b:69:4b:e2:db:66:17:75: 6f:f9:d8:47:45:28:81:80:d6:8b:a9:ca:f0:c2:f7:12:82:6b: bb:83:be:49 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt7NhNYbxtc9AtTReKS2+mJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwN2U2YjVhYTQzN2QzNjkzMTUxNTAyYTIxMTQ5NmUzN2Q0 YWUyYzUwHhcNMjYwMTAxMjAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTJlODQ0ZjRjNjY3ODUzNGRjMjM3MjQzZWQxMjI1Y2NjZDFkNDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvw3g6HsELPMiQsjmZI95gM3d2gn2 Sv9CV3Io3I96RokgBScaVhoTqmrxctifBdTvckzCXVBXW3sTUkXbv5GmvVxqotsN IMGcFSbhxCdfIdQPrYKE6vwIAdLBceGpiy9/lG/kqtZn2MNXn4uhnxQoBXWk2SaA yTp24AG3VM4Ov94Md30ssSh8xz5uAu0zTWKlatuSbStEA3/PH00/EgaBKdbAFzGl RbflUp3tSQCQ8kw3XVh+ysLSYZcdGvA17e351YQtrFEgXIAKTPZgyzWT4E5+YYO4 neU3Aj5SPI2dScJzxSyiHFAKuQKMn+LPjLIZ4fpOm6Bv4MPCv8PG886H9wIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFNouhE9MZnhTTcI3JD7RIlzM0dQPMB8GA1UdIwQY MBaAFAB+a1qkN9NpMVFQKiEUluN9SuLFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy81MThmYWItNzYwNi00ODMyLWFhNjYt NWE4YzY3ODQyMzg5LzEvMmk2RVQweG1lRk5Od2pja1B0RWlYTXpSMUE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy81MThmYWItNzYwNi00ODMyLWFhNjYtNWE4YzY3ODQyMzg5 LzEvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQDWWq4MBgE AgACMBIDBwAqAQAgAAADBwAqAQAgAAQwDQYJKoZIhvcNAQELBQADggEBABSguqQx bXblW9x9/tJyY7EC1Y01727+v8zhYhNRSds6n9p2siPouIBGrCDmgwRZWpfjHJGB pghEJkaWb0Zrxz1V4jeHNjrJVRbZZLgIJYwNJFRHbk0ocOCHVXVk3oFKnmURB9IV 5Z1/2fj8Gl7N2zfON1ERXqU+eSxQmKtczI0rtBB9fz+SOz1H967vMUsS+P1c22NP Bf6KZPWS0HILvee9Pe3RV+I9Bz1r9EImJriDUBzt9v7gXhxWYu7Z5s9BMVNO6kFe duSHS+QNxynhpcv3ILwMGtKFLTuG3eeJ7oVrEi1baUvi22YXdW/52EdFKIGA1oup yvDC9xKCa7uDvkk= -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:08 2026 by rpki-client