This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/2sAFd_2T-QSzjwb2W27Kt8rE6fU.roa File: 2sAFd_2T-QSzjwb2W27Kt8rE6fU.roa (raw, json) Hash identifier: dj9SKHwvFkDv++RY82DTGyA13Fg+Qhu+MtqHoiJGTCM= Subject key identifier: DA:C0:05:77:FD:93:F9:04:B3:8F:06:F6:5B:6E:CA:B7:CA:C4:E9:F5 Certificate issuer: /CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5 Certificate serial: 019B7EA6A8B1310D837E54B71FDDB4FC86BE Authority key identifier: 1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/2sAFd_2T-QSzjwb2W27Kt8rE6fU.roa Signing time: Fri 02 Jan 2026 12:20:09 +0000 ROA not before: Fri 02 Jan 2026 12:20:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30848 IP address blocks: 62.100.86.0/24 maxlen: 24 62.100.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.crl rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.mft rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a8:b1:31:0d:83:7e:54:b7:1f:dd:b4:fc:86:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fc4927ab194ae1237fde2d3bef69038893f0dc5 Validity Not Before: Jan 2 12:20:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dac00577fd93f904b38f06f65b6ecab7cac4e9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c7:fb:9a:e0:68:99:5e:2b:9f:15:89:45:17: 58:8f:f1:ee:7b:ca:3a:db:39:a8:c9:c4:42:a5:2d: b3:b4:5c:c9:a8:67:72:31:98:25:eb:b2:35:a6:1d: 24:23:b3:a5:65:8c:f6:37:ba:d8:8a:02:f8:99:3a: a5:c8:66:f1:02:90:13:bf:7d:5e:2f:e5:5f:91:39: cb:92:ab:af:27:58:29:ce:d7:e4:8f:a9:8d:d7:c7: 8f:2b:b5:00:03:66:a0:3f:64:8f:33:02:db:a5:4a: 05:bc:85:bf:f5:1f:64:81:5a:6f:4b:73:0b:29:b2: 42:a6:8b:69:be:ba:97:03:be:60:28:b0:32:b8:4f: 94:b1:9a:c7:a7:71:eb:e4:b0:bc:30:8e:08:94:85: 87:0e:84:f9:40:91:15:d5:b3:e1:0a:33:ee:81:62: 50:43:6c:1c:4f:49:6e:a9:06:71:3b:0c:ec:07:7d: b6:eb:97:ad:3f:1f:b5:b7:f8:ad:97:d2:10:5b:d0: 1d:e9:06:18:21:ec:ec:ee:ef:10:2b:40:d3:ff:d7: 72:19:22:24:f7:28:1d:68:69:e5:dc:45:bb:32:ce: 18:e2:6b:1e:d3:e2:43:c8:47:19:27:e0:f7:38:3e: af:ab:23:f0:6e:bb:e3:57:94:a7:3d:56:59:f6:2d: dd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C0:05:77:FD:93:F9:04:B3:8F:06:F6:5B:6E:CA:B7:CA:C4:E9:F5 X509v3 Authority Key Identifier: keyid:1F:C4:92:7A:B1:94:AE:12:37:FD:E2:D3:BE:F6:90:38:89:3F:0D:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8SSerGUrhI3_eLTvvaQOIk_DcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/2sAFd_2T-QSzjwb2W27Kt8rE6fU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/943d5d-560c-4314-af82-8b8a01bd7414/1/H8SSerGUrhI3_eLTvvaQOIk_DcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.100.86.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:7a:8a:35:20:ac:4a:b1:40:60:6d:ac:3b:e1:0d:77:23:f4: d9:9c:55:cb:70:7e:f1:0e:b4:8d:e2:7f:81:8c:1d:5b:31:2b: 35:1c:da:33:42:f1:9f:0f:ba:b5:65:a7:49:c2:a4:ce:11:f2: 1b:b0:b9:52:8e:5f:0c:2d:bf:89:2d:5d:f0:f9:49:51:62:49: 01:87:3c:98:e6:12:88:ce:17:8e:f0:b8:d6:bb:d7:fb:8b:ce: b6:da:88:04:b9:e5:93:d9:a8:23:82:a3:96:13:5c:ec:aa:7b: 95:f3:07:b1:ff:93:32:9d:44:12:d3:a6:1f:b8:7f:99:37:83: 13:90:1a:32:23:1b:ae:94:6d:6a:61:0c:81:2e:b4:6c:28:c2: 07:f6:81:43:d8:87:ad:a3:08:bf:92:c9:54:e2:7b:dc:82:92: 81:37:8d:64:6a:92:81:75:33:32:84:7b:39:bf:43:56:f7:af: ee:d3:fa:cf:50:a8:fa:02:d7:2b:4d:5a:5d:68:8c:6b:ec:81: 27:2f:48:d7:99:aa:a6:62:02:36:e3:54:2d:ed:da:75:57:36: 76:15:dd:bd:02:ed:6c:c3:80:0d:6a:9f:6c:14:be:a4:bb:d6: 69:ff:3c:d3:c7:5a:e0:55:a3:e6:30:6b:d7:7c:b8:d3:26:d6: e9:ec:f9:8c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pqixMQ2DflS3H920/Ia+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmYzQ5MjdhYjE5NGFlMTIzN2ZkZTJkM2JlZjY5MDM4ODkz ZjBkYzUwHhcNMjYwMTAyMTIyMDA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWMwMDU3N2ZkOTNmOTA0YjM4ZjA2ZjY1YjZlY2FiN2NhYzRlOWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucf7muBomV4rnxWJRRdYj/Hue8o6 2zmoycRCpS2ztFzJqGdyMZgl67I1ph0kI7OlZYz2N7rYigL4mTqlyGbxApATv31e L+VfkTnLkquvJ1gpztfkj6mN18ePK7UAA2agP2SPMwLbpUoFvIW/9R9kgVpvS3ML KbJCpotpvrqXA75gKLAyuE+UsZrHp3Hr5LC8MI4IlIWHDoT5QJEV1bPhCjPugWJQ Q2wcT0luqQZxOwzsB32265etPx+1t/itl9IQW9Ad6QYYIezs7u8QK0DT/9dyGSIk 9ygdaGnl3EW7Ms4Y4mse0+JDyEcZJ+D3OD6vqyPwbrvjV5SnPVZZ9i3dIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNrABXf9k/kEs48G9ltuyrfKxOn1MB8GA1UdIwQY MBaAFB/EknqxlK4SN/3i0772kDiJPw3FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDhTU2VyR1VyaEkzX2VMVHZ2YVFPSWtfRGNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85NDNkNWQtNTYwYy00MzE0LWFmODIt OGI4YTAxYmQ3NDE0LzEvMnNBRmRfMlQtUVN6andiMlcyN0t0OHJFNmZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS85NDNkNWQtNTYwYy00MzE0LWFmODItOGI4YTAxYmQ3NDE0 LzEvSDhTU2VyR1VyaEkzX2VMVHZ2YVFPSWtfRGNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBPmRWMA0G CSqGSIb3DQEBCwUAA4IBAQBOeoo1IKxKsUBgbaw74Q13I/TZnFXLcH7xDrSN4n+B jB1bMSs1HNozQvGfD7q1ZadJwqTOEfIbsLlSjl8MLb+JLV3w+UlRYkkBhzyY5hKI zheO8LjWu9f7i8622ogEueWT2agjgqOWE1zsqnuV8wex/5MynUQS06YfuH+ZN4MT kBoyIxuulG1qYQyBLrRsKMIH9oFD2Ietowi/kslU4nvcgpKBN41kapKBdTMyhHs5 v0NW96/u0/rPUKj6AtcrTVpdaIxr7IEnL0jXmaqmYgI241Qt7dp1VzZ2Fd29Au1s w4ANap9sFL6ku9Zp/zzTx1rgVaPmMGvXfLjTJtbp7PmM -----END CERTIFICATE-----Generated at Mon Jan 26 04:40:29 2026 by rpki-client