This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/2e6ee3-8158-458e-a0ac-ae81edc6fbd7/1/2P0Kjjt5-7UDTZhBwA-FFuDiDYM.roa File: 2P0Kjjt5-7UDTZhBwA-FFuDiDYM.roa (raw, json) Hash identifier: e8dlsMoEY5OAzunOS6SXf0tgQsD9v9aE1pqpQ/DOvsk= Subject key identifier: D8:FD:0A:8E:3B:79:FB:B5:03:4D:98:41:C0:0F:85:16:E0:E2:0D:83 Certificate issuer: /CN=3ee0214c609c6cd67803ac7c736ef8da517ca59d Certificate serial: 019B79ECDC4A5B037BC5B22E3F6048E393E4 Authority key identifier: 3E:E0:21:4C:60:9C:6C:D6:78:03:AC:7C:73:6E:F8:DA:51:7C:A5:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuAhTGCcbNZ4A6x8c2742lF8pZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/2e6ee3-8158-458e-a0ac-ae81edc6fbd7/1/2P0Kjjt5-7UDTZhBwA-FFuDiDYM.roa Signing time: Thu 01 Jan 2026 14:18:44 +0000 ROA not before: Thu 01 Jan 2026 14:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210536 IP address blocks: 109.71.185.0/24 maxlen: 24 2a14:c180::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/2e6ee3-8158-458e-a0ac-ae81edc6fbd7/1/PuAhTGCcbNZ4A6x8c2742lF8pZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/59/2e6ee3-8158-458e-a0ac-ae81edc6fbd7/1/PuAhTGCcbNZ4A6x8c2742lF8pZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/PuAhTGCcbNZ4A6x8c2742lF8pZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:dc:4a:5b:03:7b:c5:b2:2e:3f:60:48:e3:93:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee0214c609c6cd67803ac7c736ef8da517ca59d Validity Not Before: Jan 1 14:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d8fd0a8e3b79fbb5034d9841c00f8516e0e20d83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cb:29:a7:d8:02:c7:9b:5b:c0:89:de:3a:e7: 26:e5:15:8a:b2:fd:28:13:5d:fd:30:f0:ef:b4:37: 79:34:14:c5:55:b7:26:b0:38:82:86:1b:df:b2:5f: dd:99:58:be:81:bf:9f:34:e4:bd:41:62:9b:4c:d8: 31:42:63:70:90:86:6e:90:ee:86:6d:c4:0c:50:22: b3:e7:d6:68:9d:c7:b2:98:8a:0f:01:c2:58:e1:9b: ca:33:b9:e5:51:39:c0:10:96:6c:a0:9b:3a:c8:78: 44:84:da:5c:23:5d:25:27:37:fb:39:6d:ff:53:f2: da:2a:61:58:5a:36:4b:10:cb:74:a1:c1:55:ca:54: c5:80:11:1f:2a:82:ca:99:17:0c:de:47:ba:24:52: 0d:26:90:01:63:49:9c:33:e0:45:8e:40:b5:2d:95: 01:95:7f:97:ab:59:6c:1c:5b:03:80:9f:66:ac:0e: 36:e5:6c:d0:83:2c:42:9d:06:43:0b:bc:cb:c9:36: d5:b2:c0:77:75:5a:f4:a9:77:49:7e:54:59:a9:a3: 29:11:ee:5b:2f:6a:32:f2:4e:78:09:27:65:34:cc: 60:2c:8d:49:20:e2:82:3d:71:8f:00:89:6b:44:e0: 31:9c:19:d6:46:71:25:f2:e0:c7:89:16:60:4f:64: 27:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FD:0A:8E:3B:79:FB:B5:03:4D:98:41:C0:0F:85:16:E0:E2:0D:83 X509v3 Authority Key Identifier: keyid:3E:E0:21:4C:60:9C:6C:D6:78:03:AC:7C:73:6E:F8:DA:51:7C:A5:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuAhTGCcbNZ4A6x8c2742lF8pZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2e6ee3-8158-458e-a0ac-ae81edc6fbd7/1/2P0Kjjt5-7UDTZhBwA-FFuDiDYM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/2e6ee3-8158-458e-a0ac-ae81edc6fbd7/1/PuAhTGCcbNZ4A6x8c2742lF8pZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.71.185.0/24 IPv6: 2a14:c180::/29 Signature Algorithm: sha256WithRSAEncryption 33:0d:58:f4:3e:94:1a:15:92:ab:46:45:c2:0f:34:01:d8:06: d3:7b:c3:2c:1e:6e:5d:ea:9d:bb:22:0b:cb:31:eb:e7:f4:52: 84:4c:61:83:22:b7:c9:fe:17:89:2c:d9:be:3c:1a:b6:8a:50: c9:93:cf:00:45:83:fb:22:af:f3:7c:5f:de:50:77:33:13:2f: 95:ac:a9:18:d1:5f:d2:9c:f0:82:99:f0:4d:60:e7:84:51:c7: f6:3f:74:7a:b5:3a:2a:5e:96:1b:43:fc:22:62:b3:37:f6:af: 41:06:21:ee:5f:2f:9b:68:ba:0a:d9:d4:72:cf:29:fc:12:00: 6c:03:7a:f3:e7:68:b9:86:14:f6:3d:14:83:a7:e1:6d:2c:06: 49:32:ac:70:00:f5:26:02:c9:ba:0a:73:25:92:04:6f:f5:ba: a5:11:90:da:d8:7f:e5:0f:fb:8b:73:98:1c:34:0a:94:d9:df: ef:27:f2:da:9d:c8:ae:b7:f7:ef:5c:30:15:6f:6d:87:d6:d8: 81:fb:be:fb:0e:d0:c7:d2:f9:ec:88:00:78:fe:f0:a7:a3:98: f0:f2:81:f1:47:25:32:ea:49:c8:54:ac:29:fe:e7:bb:2a:40: 8b:5e:ef:1f:15:bb:1f:69:b0:05:84:82:aa:70:51:a0:e1:77: f0:23:53:23 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57NxKWwN7xbIuP2BI45PkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTAyMTRjNjA5YzZjZDY3ODAzYWM3YzczNmVmOGRhNTE3 Y2E1OWQwHhcNMjYwMTAxMTQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOGZkMGE4ZTNiNzlmYmI1MDM0ZDk4NDFjMDBmODUxNmUwZTIwZDgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMspp9gCx5tbwIneOucm5RWKsv0o E139MPDvtDd5NBTFVbcmsDiChhvfsl/dmVi+gb+fNOS9QWKbTNgxQmNwkIZukO6G bcQMUCKz59ZonceymIoPAcJY4ZvKM7nlUTnAEJZsoJs6yHhEhNpcI10lJzf7OW3/ U/LaKmFYWjZLEMt0ocFVylTFgBEfKoLKmRcM3ke6JFINJpABY0mcM+BFjkC1LZUB lX+Xq1lsHFsDgJ9mrA425WzQgyxCnQZDC7zLyTbVssB3dVr0qXdJflRZqaMpEe5b L2oy8k54CSdlNMxgLI1JIOKCPXGPAIlrROAxnBnWRnEl8uDHiRZgT2QngQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNj9Co47efu1A02YQcAPhRbg4g2DMB8GA1UdIwQY MBaAFD7gIUxgnGzWeAOsfHNu+NpRfKWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVBaFRHQ2NiTlo0QTZ4OGMyNzQybEY4cFowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8yZTZlZTMtODE1OC00NThlLWEwYWMt YWU4MWVkYzZmYmQ3LzEvMlAwS2pqdDUtN1VEVFpoQndBLUZGdURpRFlNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS8yZTZlZTMtODE1OC00NThlLWEwYWMtYWU4MWVkYzZmYmQ3 LzEvUHVBaFRHQ2NiTlo0QTZ4OGMyNzQybEY4cFowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbUe5MA0E AgACMAcDBQMqFMGAMA0GCSqGSIb3DQEBCwUAA4IBAQAzDVj0PpQaFZKrRkXCDzQB 2AbTe8MsHm5d6p27IgvLMevn9FKETGGDIrfJ/heJLNm+PBq2ilDJk88ARYP7Iq/z fF/eUHczEy+VrKkY0V/SnPCCmfBNYOeEUcf2P3R6tToqXpYbQ/wiYrM39q9BBiHu Xy+baLoK2dRyzyn8EgBsA3rz52i5hhT2PRSDp+FtLAZJMqxwAPUmAsm6CnMlkgRv 9bqlEZDa2H/lD/uLc5gcNAqU2d/vJ/Lanciut/fvXDAVb22H1tiB+777DtDH0vns iAB4/vCno5jw8oHxRyUy6knIVKwp/ue7KkCLXu8fFbsfabAFhIKqcFGg4XfwI1Mj -----END CERTIFICATE-----Generated at Sun Jan 25 23:03:47 2026 by rpki-client