This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/r2fhwRZgDnJ42tEzYpq9QARdwNg.roa File: r2fhwRZgDnJ42tEzYpq9QARdwNg.roa (raw, json) Hash identifier: UN6m1b3Vnp+W6gqg/ChwnnprYWWgYrCXDJiUYFQZheM= Subject key identifier: AF:67:E1:C1:16:60:0E:72:78:DA:D1:33:62:9A:BD:40:04:5D:C0:D8 Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea Certificate serial: 019B7C129FA67390E51ADAFE40381ADB8797 Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/r2fhwRZgDnJ42tEzYpq9QARdwNg.roa Signing time: Fri 02 Jan 2026 00:19:13 +0000 ROA not before: Fri 02 Jan 2026 00:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204708 IP address blocks: 80.67.184.0/24 maxlen: 24 2001:913:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.mft rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:9f:a6:73:90:e5:1a:da:fe:40:38:1a:db:87:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea Validity Not Before: Jan 2 00:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af67e1c116600e7278dad133629abd40045dc0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fc:a9:b4:9e:d2:76:d3:df:e8:98:e2:26:73: fd:a8:cb:16:db:ff:69:54:01:7a:f2:9b:7f:7a:bf: ac:db:8b:81:f9:d1:b6:7a:af:a9:d9:0a:52:e7:f6: ad:40:11:f1:03:c8:95:7f:80:b9:93:ae:b2:d2:49: 0e:32:fa:6f:af:56:ba:fb:da:6d:ae:40:28:f6:a7: a3:5e:a0:30:82:9a:69:d4:bc:18:57:0d:c8:ca:13: 86:65:74:9c:c4:f7:37:65:cf:76:ad:c3:c2:6f:c7: 66:3a:e8:c9:80:0c:6f:db:94:85:78:8e:36:25:d6: 40:d7:5d:2e:c5:d6:8d:98:99:9b:d0:e3:4a:8c:d1: 88:8d:a0:81:58:d4:cb:f3:c1:00:5e:13:fb:07:30: 4c:ed:85:d0:b1:9c:99:39:5c:78:07:6f:5e:58:94: c7:f4:23:f2:62:fc:32:9b:84:bf:dc:be:25:94:e9: 26:a2:63:e3:62:3a:48:82:d0:e4:a5:3e:4d:21:71: 98:19:5f:54:a5:94:9f:0c:d2:9f:52:8d:3a:1b:6e: bd:58:5b:d1:f0:c0:c8:36:ba:60:2f:53:11:2a:62: 30:19:e7:66:fc:ea:7a:07:30:57:05:9b:c4:53:ef: 1a:14:c4:35:19:95:22:82:80:f6:0d:6d:26:82:b4: cc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:67:E1:C1:16:60:0E:72:78:DA:D1:33:62:9A:BD:40:04:5D:C0:D8 X509v3 Authority Key Identifier: keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/r2fhwRZgDnJ42tEzYpq9QARdwNg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.67.184.0/24 IPv6: 2001:913:3000::/36 Signature Algorithm: sha256WithRSAEncryption 5f:12:93:2b:12:c8:2c:9f:eb:60:60:68:2b:80:ac:2b:c9:c9: 10:e7:90:71:ba:f6:56:d4:fd:8b:de:00:8a:db:ea:22:9b:f7: a6:96:bd:0c:d3:03:43:08:ba:40:87:e7:dc:d0:c6:0e:ee:2f: d8:da:10:32:60:55:f4:ab:73:1d:9e:bd:f2:e7:77:62:a9:29: 4c:f2:07:20:79:70:93:41:db:4b:08:94:c8:d0:43:9f:9e:d6: 7e:7b:a0:b4:c2:30:9c:53:8b:a3:d9:18:0b:63:96:8a:34:94: 70:bc:4e:93:5f:ce:a0:86:f7:e1:c6:63:c1:dc:8e:5f:d1:64: e7:a1:08:8c:97:c3:41:e8:d3:7c:88:22:a4:b8:a9:a5:2c:74: 57:2f:2e:55:fb:b3:92:d2:77:73:14:15:75:14:17:93:17:e5: 0f:d6:60:0f:2d:05:b5:59:e9:bc:c8:13:ef:22:d4:0b:aa:b9: ad:4e:74:5d:18:b9:94:9c:a0:f8:0e:2c:53:b4:25:34:6c:b9: 5b:44:c9:86:ab:39:33:de:f7:cb:ee:73:8a:17:a6:18:81:9c: 52:80:ac:6f:38:de:c9:05:c5:ee:cc:32:36:f9:64:88:ee:c1: ac:2d:57:bc:41:cb:87:c1:e8:19:c8:a3:cc:ff:ee:77:8f:0b: 31:c3:b9:6e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt8Ep+mc5DlGtr+QDga24eXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZWQyZmJiNzIxM2ZiZjMyYWQ0YzA4N2Y4YjBiMjJjZWNl ZjRmZWEwHhcNMjYwMTAyMDAxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjY3ZTFjMTE2NjAwZTcyNzhkYWQxMzM2MjlhYmQ0MDA0NWRjMGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvyptJ7SdtPf6JjiJnP9qMsW2/9p VAF68pt/er+s24uB+dG2eq+p2QpS5/atQBHxA8iVf4C5k66y0kkOMvpvr1a6+9pt rkAo9qejXqAwgppp1LwYVw3IyhOGZXScxPc3Zc92rcPCb8dmOujJgAxv25SFeI42 JdZA110uxdaNmJmb0ONKjNGIjaCBWNTL88EAXhP7BzBM7YXQsZyZOVx4B29eWJTH 9CPyYvwym4S/3L4llOkmomPjYjpIgtDkpT5NIXGYGV9UpZSfDNKfUo06G269WFvR 8MDINrpgL1MRKmIwGedm/Op6BzBXBZvEU+8aFMQ1GZUigoD2DW0mgrTMMQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFK9n4cEWYA5yeNrRM2KavUAEXcDYMB8GA1UdIwQY MBaAFHLtL7tyE/vzKtTAh/iwsizs70/qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTkt YTY1MjMzYjNlOTc1LzEvcjJmaHdSWmdEbko0MnRFellwcTlRQVJkd05nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTktYTY1MjMzYjNlOTc1 LzEvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAUEO4MA4E AgACMAgDBgQgAQkTMDANBgkqhkiG9w0BAQsFAAOCAQEAXxKTKxLILJ/rYGBoK4Cs K8nJEOeQcbr2VtT9i94AitvqIpv3ppa9DNMDQwi6QIfn3NDGDu4v2NoQMmBV9Ktz HZ698ud3YqkpTPIHIHlwk0HbSwiUyNBDn57WfnugtMIwnFOLo9kYC2OWijSUcLxO k1/OoIb34cZjwdyOX9Fk56EIjJfDQejTfIgipLippSx0Vy8uVfuzktJ3cxQVdRQX kxflD9ZgDy0FtVnpvMgT7yLUC6q5rU50XRi5lJyg+A4sU7QlNGy5W0TJhqs5M973 y+5zihemGIGcUoCsbzjeyQXF7swyNvlkiO7BrC1XvEHLh8HoGcijzP/ud48LMcO5 bg== -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:18 2026 by rpki-client