This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/B2qK9WAAo6Q_Dp7oMkwjibF7vms.roa File: B2qK9WAAo6Q_Dp7oMkwjibF7vms.roa (raw, json) Hash identifier: hOOC0bXQ2nqhxdtvCZH5Mj81Az3XTWnz75ayG2jUfOc= Subject key identifier: 07:6A:8A:F5:60:00:A3:A4:3F:0E:9E:E8:32:4C:23:89:B1:7B:BE:6B Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511 Certificate serial: 019B7C8001AB56085B8C939BB88A8258156B Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/B2qK9WAAo6Q_Dp7oMkwjibF7vms.roa Signing time: Fri 02 Jan 2026 02:18:42 +0000 ROA not before: Fri 02 Jan 2026 02:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2300 IP address blocks: 81.52.185.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.mft rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:01:ab:56:08:5b:8c:93:9b:b8:8a:82:58:15:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511 Validity Not Before: Jan 2 02:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=076a8af56000a3a43f0e9ee8324c2389b17bbe6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:aa:25:a9:f7:00:d3:5f:e4:2a:f0:7b:30: 5f:79:1c:52:13:b2:27:1e:8a:b5:aa:ae:30:2a:b2: 30:85:13:07:8f:ee:d9:22:2a:f6:5d:ae:82:b7:5e: 0b:84:13:3b:e7:bf:53:93:f7:d0:f4:70:21:b4:8b: 20:51:c9:43:a1:88:37:e0:d0:27:07:40:d9:13:03: 93:6a:de:fb:c6:a5:01:c4:f3:3e:a9:4c:1a:94:dc: ab:bb:ae:36:eb:c8:f9:19:e4:6e:df:e9:56:79:01: c5:8a:ea:aa:77:9b:dc:ef:53:b7:8c:62:5b:a4:df: cf:f5:b0:14:66:0f:b0:11:b8:93:73:a7:af:da:78: 9e:7d:ec:98:09:ac:c7:a7:29:6c:ab:b3:fc:c8:7f: 56:7b:c1:d9:3a:16:a1:0f:18:b0:5f:2c:fc:d9:b0: 96:51:e8:fb:2e:07:db:a5:b8:2d:53:48:d1:d6:06: 59:20:95:a5:94:00:23:4a:9e:ab:0a:f0:4e:62:ad: 5e:f4:d5:b3:2f:a5:1f:22:63:ea:06:6f:76:2f:8a: bf:c3:6a:2b:1a:66:43:22:a3:b5:38:5c:4e:93:bb: 99:94:dc:bb:7f:f0:72:db:40:16:b1:14:71:47:b4: 08:b1:a5:e7:22:b6:4c:22:00:05:58:8f:70:fa:1f: 3e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:6A:8A:F5:60:00:A3:A4:3F:0E:9E:E8:32:4C:23:89:B1:7B:BE:6B X509v3 Authority Key Identifier: keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/B2qK9WAAo6Q_Dp7oMkwjibF7vms.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.52.185.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:f4:98:c5:76:d2:41:e9:52:3b:a6:ad:81:79:71:d5:eb:06: 46:91:c5:57:7a:b9:76:0d:16:61:60:08:06:ed:fc:4b:4d:17: c7:ac:ff:1d:79:45:68:8d:6c:11:8c:cf:ad:0b:cd:6e:46:ac: 1e:79:8b:21:a4:25:de:33:a9:41:59:df:17:65:10:99:29:56: 15:32:30:2a:1b:8a:6f:ff:86:0a:9e:51:80:0c:0d:3d:ca:47: d1:69:83:3d:15:3d:92:43:b9:05:dd:a6:d1:98:35:e4:09:66: f2:39:33:11:19:de:7a:85:e3:c3:8c:a0:72:9d:95:07:66:6f: 56:18:37:bc:62:9d:08:22:45:ce:54:c5:dd:69:1d:af:6b:9a: b7:be:09:47:b2:0b:d3:f3:c2:d3:74:8e:f2:47:b4:0b:89:f2: 25:dd:9e:99:0e:9c:f0:3f:ff:33:83:c9:f5:fb:ab:e1:2f:6c: 6e:d2:99:42:bc:2a:69:a0:e8:28:3a:f9:28:4b:23:4f:d8:65: 1a:63:af:22:bb:13:07:33:f2:46:8e:1e:99:8c:8c:1c:e3:1f: 0d:7c:a4:66:44:b7:b2:6f:17:f3:c7:55:c6:ae:ea:3e:bf:1a: fa:fc:e8:ad:f9:2c:87:b1:d2:73:56:56:c9:c5:cf:66:e1:7c: 67:a6:ad:89 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gAGrVghbjJObuIqCWBVrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh MTA1MTEwHhcNMjYwMTAyMDIxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzZhOGFmNTYwMDBhM2E0M2YwZTllZTgzMjRjMjM4OWIxN2JiZTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC+qJan3ANNf5CrwezBfeRxSE7In Hoq1qq4wKrIwhRMHj+7ZIir2Xa6Ct14LhBM7579Tk/fQ9HAhtIsgUclDoYg34NAn B0DZEwOTat77xqUBxPM+qUwalNyru64268j5GeRu3+lWeQHFiuqqd5vc71O3jGJb pN/P9bAUZg+wEbiTc6ev2niefeyYCazHpylsq7P8yH9We8HZOhahDxiwXyz82bCW Uej7LgfbpbgtU0jR1gZZIJWllAAjSp6rCvBOYq1e9NWzL6UfImPqBm92L4q/w2or GmZDIqO1OFxOk7uZlNy7f/By20AWsRRxR7QIsaXnIrZMIgAFWI9w+h8+kwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAdqivVgAKOkPw6e6DJMI4mxe75rMB8GA1UdIwQY MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt NDU5MzVmNTA2YTEyLzEvQjJxSzlXQUFvNlFfRHA3b01rd2ppYkY3dm1zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUTS5MA0G CSqGSIb3DQEBCwUAA4IBAQCN9JjFdtJB6VI7pq2BeXHV6wZGkcVXerl2DRZhYAgG 7fxLTRfHrP8deUVojWwRjM+tC81uRqweeYshpCXeM6lBWd8XZRCZKVYVMjAqG4pv /4YKnlGADA09ykfRaYM9FT2SQ7kF3abRmDXkCWbyOTMRGd56hePDjKBynZUHZm9W GDe8Yp0IIkXOVMXdaR2va5q3vglHsgvT88LTdI7yR7QLifIl3Z6ZDpzwP/8zg8n1 +6vhL2xu0plCvCppoOgoOvkoSyNP2GUaY68iuxMHM/JGjh6ZjIwc4x8NfKRmRLey bxfzx1XGruo+vxr6/Oit+SyHsdJzVlbJxc9m4Xxnpq2J -----END CERTIFICATE-----Generated at Sun Jan 25 19:02:00 2026 by rpki-client