This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/2t_P7Z4EHzx6RCn0NGvyeQ2m4hw.roa File: 2t_P7Z4EHzx6RCn0NGvyeQ2m4hw.roa (raw, json) Hash identifier: 6yZ6J/mreE0RoEYWMI2NLTt5Zn18y6jZiBf2p+Imiq4= Subject key identifier: DA:DF:CF:ED:9E:04:1F:3C:7A:44:29:F4:34:6B:F2:79:0D:A6:E2:1C Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad Certificate serial: 019AC0A030C19C1873D6C176945415C3B048 Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/2t_P7Z4EHzx6RCn0NGvyeQ2m4hw.roa Signing time: Wed 26 Nov 2025 14:45:14 +0000 ROA not before: Wed 26 Nov 2025 14:45:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 48851 IP address blocks: 141.226.100.0/24 maxlen: 24 141.226.110.0/24 maxlen: 24 141.226.252.0/22 maxlen: 24 144.249.128.0/18 maxlen: 24 167.17.128.0/19 maxlen: 24 185.139.240.0/22 maxlen: 24 2a07:1980::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c0:a0:30:c1:9c:18:73:d6:c1:76:94:54:15:c3:b0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad Validity Not Before: Nov 26 14:45:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=dadfcfed9e041f3c7a4429f4346bf2790da6e21c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c3:51:bc:71:46:87:5e:63:d4:93:98:96:68: 9d:ff:ad:5d:83:b9:f0:e1:8c:62:c3:79:87:f6:4a: 99:15:63:6e:a4:45:b7:9d:50:03:43:9e:e7:a0:d4: 02:79:b6:7f:4d:e3:45:6c:97:59:67:03:ef:89:6f: ae:5e:55:2e:8f:12:76:e9:8c:e1:dc:fa:62:11:01: a7:ff:58:94:fb:3a:aa:ee:93:07:55:d6:b0:4c:5c: 30:36:78:8e:bd:36:18:e7:7d:83:96:9b:d6:7c:c1: c9:bd:2f:f8:e8:f3:0c:89:4c:e9:fc:4c:ff:a5:12: 5f:1f:8c:0b:7b:a4:2a:ff:76:24:eb:ff:6e:e3:9a: 50:0f:8e:56:29:90:c4:eb:70:ee:60:9a:30:2f:4a: a3:e7:8c:1c:d3:a8:7d:b8:c8:64:52:ce:8c:47:02: 6f:60:74:29:ae:f9:b4:29:45:d0:c5:9c:9d:70:46: 23:bc:09:09:d8:92:d5:bd:07:75:5b:5e:3a:0d:e0: dd:05:6c:70:16:47:7d:2c:2a:77:c7:d0:b9:43:aa: 72:bd:ce:59:52:db:01:65:a9:fa:c7:92:b1:44:1b: a9:31:35:0f:4c:37:21:7d:bd:69:73:88:85:e5:95: 23:aa:97:38:18:48:6a:72:5c:87:2f:d0:ca:a6:87: 77:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DF:CF:ED:9E:04:1F:3C:7A:44:29:F4:34:6B:F2:79:0D:A6:E2:1C X509v3 Authority Key Identifier: keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/2t_P7Z4EHzx6RCn0NGvyeQ2m4hw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.226.100.0/24 141.226.110.0/24 141.226.252.0/22 144.249.128.0/18 167.17.128.0/19 185.139.240.0/22 IPv6: 2a07:1980::/29 Signature Algorithm: sha256WithRSAEncryption ae:2e:ee:ff:5c:e0:cb:99:33:dd:91:1b:e8:5f:97:6a:54:b4: f9:88:ca:07:23:aa:07:f7:7a:b9:47:c7:78:df:a7:4a:b1:bb: f6:4c:e6:a7:cb:81:f4:5e:6e:dd:e2:b8:76:b1:94:2d:1a:31: ae:eb:ea:6f:2a:88:0c:d0:b4:81:6c:fd:65:67:fe:e7:0c:3a: b7:37:5c:bc:f2:54:c5:bf:bd:e4:a3:12:c7:ef:6e:c9:fd:52: 94:c8:e2:9d:1a:2a:80:ee:21:c0:f4:cf:2d:26:e7:f4:66:91: 08:e5:13:53:8c:e2:70:92:a5:68:d0:34:28:8c:00:fe:2b:57: 6a:7f:8d:17:07:c1:96:90:62:b0:e5:45:49:6c:f4:b3:b1:6b: bb:4a:9a:fa:2a:07:1b:4b:4b:34:ea:fa:54:ed:26:66:95:dd: 17:f4:3c:8c:53:98:ac:7c:b8:89:22:65:80:f7:a6:57:3d:38: a3:7d:13:08:c9:38:c7:2d:72:19:4a:8e:d4:94:25:2d:9d:7a: f8:a4:18:8b:0e:46:17:4e:b4:32:7d:fc:00:39:b4:04:ce:10: af:96:79:8a:ff:d3:db:09:92:da:04:fb:a2:41:b6:ba:2c:78: d6:bc:89:97:6f:58:bc:53:68:3c:1f:d8:18:da:0a:58:87:19: cb:23:6c:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZrAoDDBnBhz1sF2lFQVw7BIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3YmQ5Yjg2NTMxZTU0NGFmYTAzMDlkOGJlMmE3YmE2OTE2 M2Y5YWQwHhcNMjUxMTI2MTQ0NTE0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWRmY2ZlZDllMDQxZjNjN2E0NDI5ZjQzNDZiZjI3OTBkYTZlMjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMNRvHFGh15j1JOYlmid/61dg7nw 4Yxiw3mH9kqZFWNupEW3nVADQ57noNQCebZ/TeNFbJdZZwPviW+uXlUujxJ26Yzh 3PpiEQGn/1iU+zqq7pMHVdawTFwwNniOvTYY532DlpvWfMHJvS/46PMMiUzp/Ez/ pRJfH4wLe6Qq/3Yk6/9u45pQD45WKZDE63DuYJowL0qj54wc06h9uMhkUs6MRwJv YHQprvm0KUXQxZydcEYjvAkJ2JLVvQd1W146DeDdBWxwFkd9LCp3x9C5Q6pyvc5Z UtsBZan6x5KxRBupMTUPTDchfb1pc4iF5ZUjqpc4GEhqclyHL9DKpod34wIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFNrfz+2eBB88ekQp9DRr8nkNpuIcMB8GA1UdIwQY MBaAFJe9m4ZTHlRK+gMJ2L4qe6aRY/mtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9kNGJkOGItNTVmNC00NzY1LWFkMjIt MzQ2MGNjMjY0ODBiLzEvMnRfUDdaNEVIeng2UkNuME5HdnllUTJtNGh3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi9kNGJkOGItNTVmNC00NzY1LWFkMjItMzQ2MGNjMjY0ODBi LzEvbDcyYmhsTWVWRXI2QXduWXZpcDdwcEZqLWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAjeJkAwQA jeJuAwQCjeL8AwQGkPmAAwQFpxGAAwQCuYvwMA0EAgACMAcDBQMqBxmAMA0GCSqG SIb3DQEBCwUAA4IBAQCuLu7/XODLmTPdkRvoX5dqVLT5iMoHI6oH93q5R8d436dK sbv2TOany4H0Xm7d4rh2sZQtGjGu6+pvKogM0LSBbP1lZ/7nDDq3N1y88lTFv73k oxLH727J/VKUyOKdGiqA7iHA9M8tJuf0ZpEI5RNTjOJwkqVo0DQojAD+K1dqf40X B8GWkGKw5UVJbPSzsWu7Spr6KgcbS0s06vpU7SZmld0X9DyMU5isfLiJImWA96ZX PTijfRMIyTjHLXIZSo7UlCUtnXr4pBiLDkYXTrQyffwAObQEzhCvlnmK/9PbCZLa BPuiQba6LHjWvImXb1i8U2g8H9gY2gpYhxnLI2x8 -----END CERTIFICATE-----Generated at Sat Dec 6 17:17:42 2025 by rpki-client