This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/745c65-b877-45f2-b898-b30b0e5265a8/1/2_fshuRoDR0I_NRp0VMlVT3wOD8.roa File: 2_fshuRoDR0I_NRp0VMlVT3wOD8.roa (raw, json) Hash identifier: oqyyBd6HYSuKWOFREp/oTcA0W5Qo5aOsY4Cj1orj65g= Subject key identifier: DB:F7:EC:86:E4:68:0D:1D:08:FC:D4:69:D1:53:25:55:3D:F0:38:3F Certificate issuer: /CN=36a1daece1c6e878546dbd1333da09feb8bff018 Certificate serial: 019B7EA738E94494B0985FC07B3419BA36F8 Authority key identifier: 36:A1:DA:EC:E1:C6:E8:78:54:6D:BD:13:33:DA:09:FE:B8:BF:F0:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NqHa7OHG6HhUbb0TM9oJ_ri_8Bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/745c65-b877-45f2-b898-b30b0e5265a8/1/2_fshuRoDR0I_NRp0VMlVT3wOD8.roa Signing time: Fri 02 Jan 2026 12:20:46 +0000 ROA not before: Fri 02 Jan 2026 12:20:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31027 IP address blocks: 193.162.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/745c65-b877-45f2-b898-b30b0e5265a8/1/NqHa7OHG6HhUbb0TM9oJ_ri_8Bg.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/745c65-b877-45f2-b898-b30b0e5265a8/1/NqHa7OHG6HhUbb0TM9oJ_ri_8Bg.mft rsync://rpki.ripe.net/repository/DEFAULT/NqHa7OHG6HhUbb0TM9oJ_ri_8Bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:38:e9:44:94:b0:98:5f:c0:7b:34:19:ba:36:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36a1daece1c6e878546dbd1333da09feb8bff018 Validity Not Before: Jan 2 12:20:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbf7ec86e4680d1d08fcd469d15325553df0383f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cc:2a:11:ba:67:1b:96:4a:4d:77:70:95:d8: 71:bd:fe:f4:2f:23:f6:c7:09:30:39:a8:2d:f9:e0: c6:b9:0e:6b:d2:90:fd:75:03:89:c0:8f:fa:81:93: d4:8e:4d:dc:94:d6:71:ed:98:8b:9d:e6:4a:86:95: 37:15:5d:58:67:6b:9c:df:69:68:05:3b:db:01:31: 71:69:ba:39:0d:e5:6e:ac:41:d4:8b:c0:c9:b0:e4: d6:1c:5a:46:e7:85:af:df:d4:79:c7:c1:9b:b2:72: 50:e9:62:79:94:c3:af:29:e5:0a:5c:bd:67:b5:0f: 47:b8:fe:53:36:fa:2a:49:fd:82:e8:4d:52:11:3b: 39:01:95:de:6c:bb:c9:09:16:3a:ff:ed:82:25:76: 28:3d:ae:94:e1:52:81:8a:3e:5e:04:62:f6:73:aa: 96:f2:5b:c9:26:d9:14:1c:d0:2d:fd:49:6c:9d:39: 55:78:c2:18:ad:2e:52:67:43:44:dd:cd:e6:d9:2e: b3:eb:9a:a3:01:71:63:42:8d:72:4f:0c:72:65:7a: 49:29:49:61:20:4a:54:49:97:f8:53:a7:91:a8:62: fc:f6:1d:cb:91:5a:b0:ab:1f:23:be:0f:01:75:57: 4d:13:0c:be:4c:92:2d:c9:49:69:f2:0f:90:f4:c5: ee:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F7:EC:86:E4:68:0D:1D:08:FC:D4:69:D1:53:25:55:3D:F0:38:3F X509v3 Authority Key Identifier: keyid:36:A1:DA:EC:E1:C6:E8:78:54:6D:BD:13:33:DA:09:FE:B8:BF:F0:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NqHa7OHG6HhUbb0TM9oJ_ri_8Bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/745c65-b877-45f2-b898-b30b0e5265a8/1/2_fshuRoDR0I_NRp0VMlVT3wOD8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/745c65-b877-45f2-b898-b30b0e5265a8/1/NqHa7OHG6HhUbb0TM9oJ_ri_8Bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.162.5.0/24 Signature Algorithm: sha256WithRSAEncryption 38:6c:70:73:8d:8f:93:46:ff:ad:73:93:55:f6:92:ce:ad:34: 00:55:c4:9b:31:91:38:1a:fd:cc:e9:ac:bb:0e:21:a6:ef:d2: e4:6c:5d:d5:7b:ee:19:69:f8:8c:ed:0f:41:24:be:28:4f:b7: 08:28:05:b0:32:65:40:ab:09:79:2a:6b:33:ed:ba:a6:09:be: ec:94:10:60:d2:d9:9b:dd:68:dc:c5:d4:aa:32:e3:3c:04:75: 0e:b8:14:4e:aa:c4:05:ab:60:a8:af:ba:db:e5:b2:12:8d:77: dc:20:03:16:98:20:f6:ae:8b:cf:19:b7:b4:83:ec:6e:d6:87: 46:3e:52:f7:98:02:68:25:ba:01:33:2d:7f:27:10:f8:36:29: f7:cf:ac:f7:ee:fb:1d:de:b9:07:cc:8c:0b:ac:a3:05:d3:11: 72:fc:db:58:83:db:66:cf:58:5f:55:bc:a8:0f:69:cc:36:f0: 00:51:a7:35:86:52:c5:c2:22:6e:46:35:ca:39:0e:e5:2b:c7: f8:2d:cd:50:89:0a:55:da:a7:82:6d:72:61:6d:bf:d0:65:47: 86:fc:fd:64:fe:81:8e:80:75:71:2b:f5:8d:3c:13:fd:02:92: b0:c6:73:a1:ec:c2:57:af:19:a6:a3:f7:f7:27:1d:cf:25:f9: 0e:92:35:bf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pzjpRJSwmF/AezQZujb4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2YTFkYWVjZTFjNmU4Nzg1NDZkYmQxMzMzZGEwOWZlYjhi ZmYwMTgwHhcNMjYwMTAyMTIyMDQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmY3ZWM4NmU0NjgwZDFkMDhmY2Q0NjlkMTUzMjU1NTNkZjAzODNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcwqEbpnG5ZKTXdwldhxvf70LyP2 xwkwOagt+eDGuQ5r0pD9dQOJwI/6gZPUjk3clNZx7ZiLneZKhpU3FV1YZ2uc32lo BTvbATFxabo5DeVurEHUi8DJsOTWHFpG54Wv39R5x8GbsnJQ6WJ5lMOvKeUKXL1n tQ9HuP5TNvoqSf2C6E1SETs5AZXebLvJCRY6/+2CJXYoPa6U4VKBij5eBGL2c6qW 8lvJJtkUHNAt/UlsnTlVeMIYrS5SZ0NE3c3m2S6z65qjAXFjQo1yTwxyZXpJKUlh IEpUSZf4U6eRqGL89h3LkVqwqx8jvg8BdVdNEwy+TJItyUlp8g+Q9MXuYQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNv37IbkaA0dCPzUadFTJVU98Dg/MB8GA1UdIwQY MBaAFDah2uzhxuh4VG29EzPaCf64v/AYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnFIYTdPSEc2SGhVYmIwVE05b0pfcmlfOEJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83NDVjNjUtYjg3Ny00NWYyLWI4OTgt YjMwYjBlNTI2NWE4LzEvMl9mc2h1Um9EUjBJX05ScDBWTWxWVDN3T0Q4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS83NDVjNjUtYjg3Ny00NWYyLWI4OTgtYjMwYjBlNTI2NWE4 LzEvTnFIYTdPSEc2SGhVYmIwVE05b0pfcmlfOEJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaIFMA0G CSqGSIb3DQEBCwUAA4IBAQA4bHBzjY+TRv+tc5NV9pLOrTQAVcSbMZE4Gv3M6ay7 DiGm79LkbF3Ve+4ZafiM7Q9BJL4oT7cIKAWwMmVAqwl5Kmsz7bqmCb7slBBg0tmb 3WjcxdSqMuM8BHUOuBROqsQFq2Cor7rb5bISjXfcIAMWmCD2rovPGbe0g+xu1odG PlL3mAJoJboBMy1/JxD4Nin3z6z37vsd3rkHzIwLrKMF0xFy/NtYg9tmz1hfVbyo D2nMNvAAUac1hlLFwiJuRjXKOQ7lK8f4Lc1QiQpV2qeCbXJhbb/QZUeG/P1k/oGO gHVxK/WNPBP9ApKwxnOh7MJXrxmmo/f3Jx3PJfkOkjW/ -----END CERTIFICATE-----Generated at Mon Jan 26 00:24:25 2026 by rpki-client