This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/2VjRyY35srd4tFZwYR3n2JNFpTM.roa File: 2VjRyY35srd4tFZwYR3n2JNFpTM.roa (raw, json) Hash identifier: KVtq1ksbn0eFzWJ+vieJNzHVkLQs/x4Zv2yLi0iRHw8= Subject key identifier: D9:58:D1:C9:8D:F9:B2:B7:78:B4:56:70:61:1D:E7:D8:93:45:A5:33 Certificate issuer: /CN=dd5f72f0facf52705727c039bdc1fbb7cc97d428 Certificate serial: 019B7F83D67EBF88D396C31D1652CF93B137 Authority key identifier: DD:5F:72:F0:FA:CF:52:70:57:27:C0:39:BD:C1:FB:B7:CC:97:D4:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/2VjRyY35srd4tFZwYR3n2JNFpTM.roa Signing time: Fri 02 Jan 2026 16:21:45 +0000 ROA not before: Fri 02 Jan 2026 16:21:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8937 IP address blocks: 193.141.183.0/24 maxlen: 24 193.141.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.crl rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.mft rsync://rpki.ripe.net/repository/DEFAULT/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:d6:7e:bf:88:d3:96:c3:1d:16:52:cf:93:b1:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd5f72f0facf52705727c039bdc1fbb7cc97d428 Validity Not Before: Jan 2 16:21:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d958d1c98df9b2b778b45670611de7d89345a533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:04:79:63:9c:14:59:fc:c1:7a:78:13:fa:7c: 9f:28:4e:2d:a2:50:1d:5a:a9:ab:1e:a9:73:d6:ad: d3:ec:5d:35:cb:17:53:05:73:e5:78:a5:a0:5b:d4: 57:f6:3d:55:22:10:13:48:83:ca:c2:f2:aa:34:24: 1f:2c:41:c9:11:f2:c4:a7:2b:10:79:ae:f4:59:06: 10:60:f2:ef:51:60:6b:36:6a:9f:85:2a:d8:54:5f: 0a:4e:f0:b8:06:c5:a2:a4:d0:a7:4d:7e:b9:d8:f1: e6:2f:a4:32:f8:9a:a6:5f:0b:33:3f:16:d5:a2:1b: fe:02:9c:c4:21:e6:6c:89:0a:51:38:1c:fa:42:29: 6c:cc:09:a4:25:dd:10:2d:e9:1f:7c:75:37:f1:16: 5a:13:e4:85:ad:13:f7:d7:ff:f7:d8:d7:56:bb:89: 96:f4:b5:31:84:93:2d:6f:8e:dc:93:18:08:d4:b6: 7a:33:b6:22:4a:17:f3:eb:cc:3f:0a:0a:09:a9:8b: c9:89:e4:65:9c:d0:f3:db:73:d4:12:91:86:82:0f: 75:a1:c3:09:c2:8e:39:c6:b5:67:13:36:b8:d6:32: 0d:91:4c:82:cc:9a:3c:c6:3d:a0:25:79:76:d4:81: 98:44:6e:19:dc:15:b6:e0:cb:85:05:71:7b:84:04: 94:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:58:D1:C9:8D:F9:B2:B7:78:B4:56:70:61:1D:E7:D8:93:45:A5:33 X509v3 Authority Key Identifier: keyid:DD:5F:72:F0:FA:CF:52:70:57:27:C0:39:BD:C1:FB:B7:CC:97:D4:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/2VjRyY35srd4tFZwYR3n2JNFpTM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.141.183.0/24 193.141.188.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:6b:3a:ac:d5:dd:29:db:83:6e:1e:fd:7d:59:d8:40:19:29: ce:75:4c:0c:73:49:70:bc:2d:51:5a:f8:eb:32:e8:6e:5b:dc: 8a:c3:78:92:9d:d1:a3:9a:9a:49:75:91:87:2b:19:c5:87:f2: 71:c7:c6:45:0b:91:2a:40:0b:b2:71:d3:98:79:66:94:c3:c5: f7:6f:70:14:9b:17:99:e8:d0:31:5c:25:ff:97:08:cd:9c:5b: fa:9a:49:ab:b2:1d:1c:cd:76:c1:6f:7f:58:08:31:56:4c:72: 1d:5e:20:f0:8f:dc:04:71:ef:91:cd:25:68:3a:60:f5:5c:0a: b0:0a:04:09:cb:c2:62:ca:4d:aa:d4:d3:a8:0f:06:be:da:07: f8:f7:aa:08:b4:63:01:a3:28:c5:24:5d:97:b5:3c:03:fb:01: 3d:21:e4:7b:3f:bf:2f:a3:d9:d2:e7:f4:86:e1:00:d2:cf:4b: b9:a5:19:3c:fd:35:d0:e0:df:1e:f6:52:7b:60:dd:d3:80:f9: 7a:52:33:a2:96:a5:46:59:06:99:3c:7d:a7:eb:c7:78:8f:15: ef:4b:86:9d:8a:26:54:06:09:f6:1e:c3:ed:e6:48:c0:81:88: 34:db:e5:5e:8e:7c:69:10:a0:14:78:d5:1f:0e:b7:bf:4d:af: fd:94:94:36 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/g9Z+v4jTlsMdFlLPk7E3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNWY3MmYwZmFjZjUyNzA1NzI3YzAzOWJkYzFmYmI3Y2M5 N2Q0MjgwHhcNMjYwMTAyMTYyMTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTU4ZDFjOThkZjliMmI3NzhiNDU2NzA2MTFkZTdkODkzNDVhNTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwR5Y5wUWfzBengT+nyfKE4tolAd WqmrHqlz1q3T7F01yxdTBXPleKWgW9RX9j1VIhATSIPKwvKqNCQfLEHJEfLEpysQ ea70WQYQYPLvUWBrNmqfhSrYVF8KTvC4BsWipNCnTX652PHmL6Qy+JqmXwszPxbV ohv+ApzEIeZsiQpROBz6QilszAmkJd0QLekffHU38RZaE+SFrRP31//32NdWu4mW 9LUxhJMtb47ckxgI1LZ6M7YiShfz68w/CgoJqYvJieRlnNDz23PUEpGGgg91ocMJ wo45xrVnEza41jINkUyCzJo8xj2gJXl21IGYRG4Z3BW24MuFBXF7hASUPQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNlY0cmN+bK3eLRWcGEd59iTRaUzMB8GA1UdIwQY MBaAFN1fcvD6z1JwVyfAOb3B+7fMl9QoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1Y5eThQclBVbkJYSjhBNXZjSDd0OHlYMUNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yZjMzZWUtNTU5MC00YTIyLWI4ZTIt Mjg4MDYxMjcwNWVlLzEvMlZqUnlZMzVzcmQ0dEZad1lSM24ySk5GcFRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi8yZjMzZWUtNTU5MC00YTIyLWI4ZTItMjg4MDYxMjcwNWVl LzEvM1Y5eThQclBVbkJYSjhBNXZjSDd0OHlYMUNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwY23AwQA wY28MA0GCSqGSIb3DQEBCwUAA4IBAQBqazqs1d0p24NuHv19WdhAGSnOdUwMc0lw vC1RWvjrMuhuW9yKw3iSndGjmppJdZGHKxnFh/Jxx8ZFC5EqQAuycdOYeWaUw8X3 b3AUmxeZ6NAxXCX/lwjNnFv6mkmrsh0czXbBb39YCDFWTHIdXiDwj9wEce+RzSVo OmD1XAqwCgQJy8Jiyk2q1NOoDwa+2gf496oItGMBoyjFJF2XtTwD+wE9IeR7P78v o9nS5/SG4QDSz0u5pRk8/TXQ4N8e9lJ7YN3TgPl6UjOilqVGWQaZPH2n68d4jxXv S4adiiZUBgn2HsPt5kjAgYg02+VejnxpEKAUeNUfDre/Ta/9lJQ2 -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:24 2026 by rpki-client