This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2RP9gQ5xP9Ihjc6YMyK9AHH4u2I.roa File: 2RP9gQ5xP9Ihjc6YMyK9AHH4u2I.roa (raw, json) Hash identifier: udaIIlPNdTv7uLuqWUTu47sEF5pmuuknbP9ypecBvVw= Subject key identifier: D9:13:FD:81:0E:71:3F:D2:21:8D:CE:98:33:22:BD:00:71:F8:BB:62 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84FADE2E4E914218F9399764B1E462 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2RP9gQ5xP9Ihjc6YMyK9AHH4u2I.roa Signing time: Fri 02 Jan 2026 16:22:59 +0000 ROA not before: Fri 02 Jan 2026 16:22:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204720 IP address blocks: 93.171.230.0/24 maxlen: 24 195.178.4.0/24 maxlen: 24 195.178.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:fa:de:2e:4e:91:42:18:f9:39:97:64:b1:e4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d913fd810e713fd2218dce983322bd0071f8bb62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d4:19:23:0e:da:ac:6d:cc:ab:f2:5a:77:c0: 55:a1:82:ca:6e:03:82:59:d8:c2:74:4b:86:b0:01: c6:5c:d2:8e:7e:f8:30:38:ef:00:72:56:6a:18:9d: 37:96:5a:70:81:60:58:bf:6b:a9:bb:be:3b:3d:05: 98:d9:0e:e5:98:1d:87:f9:da:b1:49:94:54:fb:91: e7:66:31:d1:59:4d:96:74:79:d7:5a:08:ab:37:30: 87:3c:a0:c4:df:7a:f5:54:dd:a4:66:cc:9d:9d:c6: d0:8c:04:28:fd:73:7e:b9:b1:93:bc:a7:6e:d5:4d: a8:d6:f8:eb:02:0b:7d:93:b4:3e:46:f6:45:63:81: 62:69:da:c5:8a:78:63:64:aa:3d:44:b7:36:9c:3f: 63:e7:e6:5e:49:e4:b0:97:9e:1b:92:a6:fd:34:4b: bb:3c:aa:aa:8b:bb:fb:e3:51:45:c9:3a:c4:51:ba: db:dc:5a:bb:8b:fc:5f:7b:f4:08:e8:55:45:0f:0a: 8b:a1:cd:ba:7b:63:e7:76:25:23:84:fa:20:7e:79: fc:c2:21:29:38:fb:bd:36:0c:ab:cd:9a:3f:e6:6a: 37:2c:db:57:ed:37:a2:f2:23:ba:b4:95:ea:1d:7b: 65:18:f0:01:26:39:dc:2c:9f:d1:40:c5:5a:eb:18: c4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:13:FD:81:0E:71:3F:D2:21:8D:CE:98:33:22:BD:00:71:F8:BB:62 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2RP9gQ5xP9Ihjc6YMyK9AHH4u2I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.230.0/24 195.178.4.0/23 Signature Algorithm: sha256WithRSAEncryption ac:fc:cb:19:b8:18:e8:88:43:54:8d:7f:cf:39:0b:07:81:e1: f6:1d:ef:87:ae:9b:83:ee:6c:18:87:c3:36:73:90:13:7c:ac: 5f:8c:83:e3:54:f2:bf:14:4e:bc:0f:d1:40:27:a2:21:f1:0a: 59:ce:9f:c8:fe:2c:45:e7:b8:88:af:96:22:4b:d8:14:31:fa: 57:f4:36:8f:64:c4:d9:fe:d8:44:55:03:e6:60:ff:18:c7:0d: 88:05:62:9e:53:bb:17:47:20:79:8a:21:0c:67:0c:ef:09:2d: 5f:9e:1a:e5:ea:ec:30:a7:76:0b:04:23:7f:4e:04:ba:1e:fa: cd:94:32:2c:00:9d:59:2e:60:4d:89:47:d0:9a:31:74:89:df: 4e:68:ad:b3:8f:82:54:86:f6:28:9c:79:2e:a5:49:d3:cd:a8: 97:1a:54:bd:49:11:3d:c1:f0:0b:a4:ca:f1:d7:74:a4:04:a6: c0:09:ea:49:69:61:56:be:52:55:b6:20:59:8a:df:f1:91:c5: 21:79:f0:d3:76:c3:fc:17:da:76:c6:3e:6f:23:f4:e9:62:16: c8:ca:e2:b3:17:ee:c6:6b:60:e5:9e:5a:d3:91:1f:39:e3:17: d4:fa:78:75:41:5d:0a:d9:b6:a7:e9:dc:4c:cc:dd:2c:81:fb: 80:35:a3:c8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hPreLk6RQhj5OZdkseRiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTEzZmQ4MTBlNzEzZmQyMjE4ZGNlOTgzMzIyYmQwMDcxZjhiYjYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NQZIw7arG3Mq/Jad8BVoYLKbgOC WdjCdEuGsAHGXNKOfvgwOO8AclZqGJ03llpwgWBYv2upu747PQWY2Q7lmB2H+dqx SZRU+5HnZjHRWU2WdHnXWgirNzCHPKDE33r1VN2kZsydncbQjAQo/XN+ubGTvKdu 1U2o1vjrAgt9k7Q+RvZFY4FiadrFinhjZKo9RLc2nD9j5+ZeSeSwl54bkqb9NEu7 PKqqi7v741FFyTrEUbrb3Fq7i/xfe/QI6FVFDwqLoc26e2PndiUjhPogfnn8wiEp OPu9NgyrzZo/5mo3LNtX7Tei8iO6tJXqHXtlGPABJjncLJ/RQMVa6xjE2QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNkT/YEOcT/SIY3OmDMivQBx+LtiMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvMlJQOWdRNXhQOUloamM2WU15SzlBSEg0dTJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXavmAwQB w7IEMA0GCSqGSIb3DQEBCwUAA4IBAQCs/MsZuBjoiENUjX/POQsHgeH2He+HrpuD 7mwYh8M2c5ATfKxfjIPjVPK/FE68D9FAJ6Ih8QpZzp/I/ixF57iIr5YiS9gUMfpX 9DaPZMTZ/thEVQPmYP8Yxw2IBWKeU7sXRyB5iiEMZwzvCS1fnhrl6uwwp3YLBCN/ TgS6HvrNlDIsAJ1ZLmBNiUfQmjF0id9OaK2zj4JUhvYonHkupUnTzaiXGlS9SRE9 wfALpMrx13SkBKbACepJaWFWvlJVtiBZit/xkcUhefDTdsP8F9p2xj5vI/TpYhbI yuKzF+7Ga2DlnlrTkR854xfU+nh1QV0K2ban6dxMzN0sgfuANaPI -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:47 2026 by rpki-client