This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/2qzM6x9baKtwfCTVUC_vOHhaD9Q.roa File: 2qzM6x9baKtwfCTVUC_vOHhaD9Q.roa (raw, json) Hash identifier: slF8umIXO8u1xfM7uQvlWuXSbFnPY4ktqm1QtTsVvaw= Subject key identifier: DA:AC:CC:EB:1F:5B:68:AB:70:7C:24:D5:50:2F:EF:38:78:5A:0F:D4 Certificate issuer: /CN=8eee7a3ad152bb8725a7db9bb7520804b6f1155f Certificate serial: 019B7F1563537002C2896434B166CFC449DD Authority key identifier: 8E:EE:7A:3A:D1:52:BB:87:25:A7:DB:9B:B7:52:08:04:B6:F1:15:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/2qzM6x9baKtwfCTVUC_vOHhaD9Q.roa Signing time: Fri 02 Jan 2026 14:21:06 +0000 ROA not before: Fri 02 Jan 2026 14:21:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202499 IP address blocks: 185.71.168.0/22 maxlen: 24 185.71.168.0/24 maxlen: 24 185.71.169.0/24 maxlen: 24 185.71.170.0/24 maxlen: 24 185.71.171.0/24 maxlen: 24 185.228.240.0/24 maxlen: 24 185.228.241.0/24 maxlen: 24 185.228.242.0/24 maxlen: 24 185.239.64.0/22 maxlen: 24 185.239.64.0/24 maxlen: 24 185.239.65.0/24 maxlen: 24 185.239.66.0/24 maxlen: 24 185.239.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/ju56OtFSu4clp9ubt1IIBLbxFV8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/ju56OtFSu4clp9ubt1IIBLbxFV8.mft rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:63:53:70:02:c2:89:64:34:b1:66:cf:c4:49:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8eee7a3ad152bb8725a7db9bb7520804b6f1155f Validity Not Before: Jan 2 14:21:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=daaccceb1f5b68ab707c24d5502fef38785a0fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:b7:7d:92:d0:75:72:08:50:94:b9:b4:95: 3f:7a:68:c5:2f:b6:b7:b0:45:a7:11:5e:54:ed:cb: 22:be:cf:57:5c:52:a3:0e:35:6a:60:65:db:3f:1d: 28:01:c3:60:60:13:6c:1b:4b:09:83:ae:1c:a0:13: dc:cd:ab:52:ab:e6:b8:86:77:fe:aa:8d:01:18:7d: 1e:24:a8:aa:2f:2a:16:6e:45:fd:06:03:10:3f:ba: b3:26:cc:ec:e2:12:ed:d6:b6:3c:5f:b5:ae:0c:8b: 53:f7:a7:46:1e:05:d6:f8:85:94:e0:15:9a:bd:5e: cf:38:9c:15:cb:b7:33:3d:56:0a:90:ad:f8:92:a3: 28:7e:40:4f:3f:55:ca:28:3b:0e:89:cd:dd:a8:75: 0f:76:17:ee:12:9f:43:10:64:85:bf:da:fb:2e:12: 6e:77:bb:83:cf:e8:4c:d3:a7:37:f2:5e:84:58:b2: 1e:23:7a:3a:7c:c2:62:f9:88:72:d4:53:d8:d0:c9: 35:85:e8:2b:ba:0b:82:11:9f:03:11:b9:e6:eb:86: a7:1d:ac:ea:2a:5b:28:cc:f0:97:71:a3:80:57:10: d5:0b:ad:8f:93:e8:89:7d:39:9d:58:61:50:cc:c9: 89:ca:a4:98:13:d7:4e:6e:ba:81:ea:dc:74:0f:9b: 9a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AC:CC:EB:1F:5B:68:AB:70:7C:24:D5:50:2F:EF:38:78:5A:0F:D4 X509v3 Authority Key Identifier: keyid:8E:EE:7A:3A:D1:52:BB:87:25:A7:DB:9B:B7:52:08:04:B6:F1:15:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ju56OtFSu4clp9ubt1IIBLbxFV8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/2qzM6x9baKtwfCTVUC_vOHhaD9Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7979b2-c3d9-4f33-a09f-49591afe17f0/1/ju56OtFSu4clp9ubt1IIBLbxFV8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.71.168.0/22 185.228.240.0-185.228.242.255 185.239.64.0/22 Signature Algorithm: sha256WithRSAEncryption 63:2d:97:b8:f0:5d:3b:92:e7:ae:3c:52:dd:61:77:52:54:a9: 18:68:e5:fb:1d:94:94:d6:b1:57:1c:49:6a:9f:88:5c:8b:45: f5:df:b9:c5:ff:62:dc:c1:36:48:17:77:6a:7b:b3:7a:e7:da: 51:7e:48:f9:ef:05:9f:71:5e:94:78:d1:43:53:3f:c5:e2:1a: e2:dc:f3:72:e3:3f:bc:66:27:86:da:7c:00:0e:57:99:53:be: 87:41:ba:2a:50:2a:44:aa:4e:88:2a:2a:6f:70:1f:2d:ce:c5: a9:25:6a:8b:82:56:68:f9:86:aa:15:66:e2:9b:ea:86:20:3b: fc:20:61:93:5a:01:57:86:78:48:2b:55:6d:1a:58:4f:96:e7: 79:e8:07:32:1e:dd:eb:38:66:c0:85:16:67:75:09:95:84:25: cd:d1:13:89:e7:7e:62:3c:85:85:26:59:d7:13:93:ae:87:62: 13:47:3c:3d:6d:be:49:82:4b:43:c4:f2:86:89:2a:95:37:b6: c6:68:c7:08:e3:0e:01:53:ac:53:9e:2a:20:0d:e0:e0:8c:ed: 0a:44:64:43:1e:21:c5:a8:99:66:45:be:ab:00:d8:ec:4d:f1: ab:92:f3:65:ef:48:13:54:66:5b:d0:97:80:24:72:eb:e9:83: fe:65:9f:02 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt/FWNTcALCiWQ0sWbPxEndMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlZWU3YTNhZDE1MmJiODcyNWE3ZGI5YmI3NTIwODA0YjZm MTE1NWYwHhcNMjYwMTAyMTQyMTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWFjY2NlYjFmNWI2OGFiNzA3YzI0ZDU1MDJmZWYzODc4NWEwZmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWC3fZLQdXIIUJS5tJU/emjFL7a3 sEWnEV5U7csivs9XXFKjDjVqYGXbPx0oAcNgYBNsG0sJg64coBPczatSq+a4hnf+ qo0BGH0eJKiqLyoWbkX9BgMQP7qzJszs4hLt1rY8X7WuDItT96dGHgXW+IWU4BWa vV7POJwVy7czPVYKkK34kqMofkBPP1XKKDsOic3dqHUPdhfuEp9DEGSFv9r7LhJu d7uDz+hM06c38l6EWLIeI3o6fMJi+Yhy1FPY0Mk1hegruguCEZ8DEbnm64anHazq KlsozPCXcaOAVxDVC62Pk+iJfTmdWGFQzMmJyqSYE9dObrqB6tx0D5uaKwIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFNqszOsfW2ircHwk1VAv7zh4Wg/UMB8GA1UdIwQY MBaAFI7uejrRUruHJafbm7dSCAS28RVfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanU1Nk90RlN1NGNscDl1YnQxSUlCTGJ4RlY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83OTc5YjItYzNkOS00ZjMzLWEwOWYt NDk1OTFhZmUxN2YwLzEvMnF6TTZ4OWJhS3R3ZkNUVlVDX3ZPSGhhRDlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83OTc5YjItYzNkOS00ZjMzLWEwOWYtNDk1OTFhZmUxN2Yw LzEvanU1Nk90RlN1NGNscDl1YnQxSUlCTGJ4RlY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQCuUeoMAwD BAS55PADBAC55PIDBAK570AwDQYJKoZIhvcNAQELBQADggEBAGMtl7jwXTuS5648 Ut1hd1JUqRho5fsdlJTWsVccSWqfiFyLRfXfucX/YtzBNkgXd2p7s3rn2lF+SPnv BZ9xXpR40UNTP8XiGuLc83LjP7xmJ4bafAAOV5lTvodBuipQKkSqTogqKm9wHy3O xaklaouCVmj5hqoVZuKb6oYgO/wgYZNaAVeGeEgrVW0aWE+W53noBzIe3es4ZsCF Fmd1CZWEJc3RE4nnfmI8hYUmWdcTk66HYhNHPD1tvkmCS0PE8oaJKpU3tsZoxwjj DgFTrFOeKiAN4OCM7QpEZEMeIcWomWZFvqsA2OxN8auS82XvSBNUZlvQl4Akcuvp g/5lnwI= -----END CERTIFICATE-----Generated at Mon Jan 26 07:51:52 2026 by rpki-client