This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6e4fed-66c8-4d24-aa66-f2c4c9ca1556/1/2Vg8mtqhtEjY6JU3zi44laQwebs.roa File: 2Vg8mtqhtEjY6JU3zi44laQwebs.roa (raw, json) Hash identifier: Uc9g1r54C8yp0GXiH0sU3THCD+1hgCm7+9g2Pk5/hcs= Subject key identifier: D9:58:3C:9A:DA:A1:B4:48:D8:E8:95:37:CE:2E:38:95:A4:30:79:BB Certificate issuer: /CN=7c9129aadb203354d15ff56a27e8dbadaf8d0705 Certificate serial: 019B7F84BE5D6938FD8B73FB10E3179CCD44 Authority key identifier: 7C:91:29:AA:DB:20:33:54:D1:5F:F5:6A:27:E8:DB:AD:AF:8D:07:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJEpqtsgM1TRX_VqJ-jbra-NBwU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6e4fed-66c8-4d24-aa66-f2c4c9ca1556/1/2Vg8mtqhtEjY6JU3zi44laQwebs.roa Signing time: Fri 02 Jan 2026 16:22:44 +0000 ROA not before: Fri 02 Jan 2026 16:22:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31627 IP address blocks: 193.16.243.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/6e4fed-66c8-4d24-aa66-f2c4c9ca1556/1/fJEpqtsgM1TRX_VqJ-jbra-NBwU.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/6e4fed-66c8-4d24-aa66-f2c4c9ca1556/1/fJEpqtsgM1TRX_VqJ-jbra-NBwU.mft rsync://rpki.ripe.net/repository/DEFAULT/fJEpqtsgM1TRX_VqJ-jbra-NBwU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:be:5d:69:38:fd:8b:73:fb:10:e3:17:9c:cd:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c9129aadb203354d15ff56a27e8dbadaf8d0705 Validity Not Before: Jan 2 16:22:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9583c9adaa1b448d8e89537ce2e3895a43079bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:af:e0:9c:b6:23:55:a7:49:2f:04:78:4e:6a: a2:c9:fb:87:28:79:81:da:0c:1b:5c:dc:b1:7b:96: cf:15:3e:21:be:b0:65:72:9b:66:7c:83:f9:65:a1: e3:4a:60:70:c1:df:43:15:b5:d5:a7:78:f7:07:1c: 92:11:b1:4e:07:05:98:1d:fc:3a:8b:b5:d9:f8:fd: 61:0e:dc:10:3c:12:bf:57:56:85:8d:fe:95:9f:96: b8:c5:72:90:34:4e:22:64:c8:2e:2c:58:f0:50:d2: 01:d1:fa:bb:e2:62:cb:ff:d8:d5:2a:78:aa:74:fe: 9b:34:d3:3c:28:89:a5:01:19:14:a9:06:b9:f9:25: 8a:cb:ee:f2:b1:bd:ee:d2:e4:a6:80:b6:1c:ba:44: 14:69:3e:f0:bc:27:77:36:6b:90:b3:d1:e8:43:aa: 41:22:24:e4:44:30:9a:35:9b:38:c3:2a:a5:e3:bb: 60:62:9d:15:fb:48:39:a4:6d:8e:53:f3:7b:41:f3: a3:5c:4b:45:cc:0b:aa:46:f4:f3:ae:23:31:1e:8a: 4b:9d:04:e3:3f:51:c3:72:e8:e6:01:f7:e6:73:d8: 98:8e:3e:f5:f4:53:46:cf:82:07:f8:6d:f2:54:dd: df:e1:62:cb:a1:d0:20:3e:5e:1e:86:ea:a6:da:4f: e5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:58:3C:9A:DA:A1:B4:48:D8:E8:95:37:CE:2E:38:95:A4:30:79:BB X509v3 Authority Key Identifier: keyid:7C:91:29:AA:DB:20:33:54:D1:5F:F5:6A:27:E8:DB:AD:AF:8D:07:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJEpqtsgM1TRX_VqJ-jbra-NBwU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6e4fed-66c8-4d24-aa66-f2c4c9ca1556/1/2Vg8mtqhtEjY6JU3zi44laQwebs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6e4fed-66c8-4d24-aa66-f2c4c9ca1556/1/fJEpqtsgM1TRX_VqJ-jbra-NBwU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.16.243.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:9d:1c:28:6c:ef:96:5f:dd:50:e5:86:d3:d2:14:ec:25:73: 57:09:0e:e2:48:76:1a:95:e7:0e:83:a9:25:1c:08:09:39:69: e7:78:a8:5a:80:63:9d:d2:3d:a1:9f:c4:0a:3d:e3:e9:42:16: bc:2f:34:d6:d6:1e:82:7e:d5:f9:88:6e:c8:0b:50:f0:c8:e1: a2:77:11:8c:22:27:53:67:e3:a7:eb:13:ca:f6:08:4d:0c:eb: b3:29:88:bb:4e:4e:e0:4a:12:f4:ef:e7:d9:0a:f1:cc:23:d9: b4:54:86:04:5a:c5:cf:24:5f:60:85:60:3f:6e:10:eb:9a:5e: 1a:82:d2:41:35:69:6b:9c:88:f4:dc:a8:f7:c1:bc:33:61:57: 59:30:7c:95:eb:b1:a0:ee:6d:95:e6:56:72:98:12:66:d3:2b: ec:6c:9c:1c:68:94:57:79:c0:0b:a8:a6:71:53:39:d8:ae:db: 32:4d:24:c7:2b:6a:4a:17:dc:cf:60:9f:b9:03:dd:88:87:b0: 84:d6:0f:f4:83:ed:7e:04:79:83:e3:94:fa:61:de:90:67:da: e6:66:da:be:27:74:13:71:3c:ee:0b:27:61:c3:6c:88:5b:2e: 87:ec:ef:69:8f:d4:57:93:9a:bc:69:b1:d8:4e:fb:cb:53:d0: 4c:f2:b6:d3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hL5daTj9i3P7EOMXnM1EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjOTEyOWFhZGIyMDMzNTRkMTVmZjU2YTI3ZThkYmFkYWY4 ZDA3MDUwHhcNMjYwMTAyMTYyMjQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTU4M2M5YWRhYTFiNDQ4ZDhlODk1MzdjZTJlMzg5NWE0MzA3OWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmq/gnLYjVadJLwR4TmqiyfuHKHmB 2gwbXNyxe5bPFT4hvrBlcptmfIP5ZaHjSmBwwd9DFbXVp3j3BxySEbFOBwWYHfw6 i7XZ+P1hDtwQPBK/V1aFjf6Vn5a4xXKQNE4iZMguLFjwUNIB0fq74mLL/9jVKniq dP6bNNM8KImlARkUqQa5+SWKy+7ysb3u0uSmgLYcukQUaT7wvCd3NmuQs9HoQ6pB IiTkRDCaNZs4wyql47tgYp0V+0g5pG2OU/N7QfOjXEtFzAuqRvTzriMxHopLnQTj P1HDcujmAffmc9iYjj719FNGz4IH+G3yVN3f4WLLodAgPl4ehuqm2k/lbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNlYPJraobRI2OiVN84uOJWkMHm7MB8GA1UdIwQY MBaAFHyRKarbIDNU0V/1aifo262vjQcFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkpFcHF0c2dNMVRSWF9WcUotamJyYS1OQndVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82ZTRmZWQtNjZjOC00ZDI0LWFhNjYt ZjJjNGM5Y2ExNTU2LzEvMlZnOG10cWh0RWpZNkpVM3ppNDRsYVF3ZWJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi82ZTRmZWQtNjZjOC00ZDI0LWFhNjYtZjJjNGM5Y2ExNTU2 LzEvZkpFcHF0c2dNMVRSWF9WcUotamJyYS1OQndVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRDzMA0G CSqGSIb3DQEBCwUAA4IBAQBdnRwobO+WX91Q5YbT0hTsJXNXCQ7iSHYalecOg6kl HAgJOWnneKhagGOd0j2hn8QKPePpQha8LzTW1h6CftX5iG7IC1DwyOGidxGMIidT Z+On6xPK9ghNDOuzKYi7Tk7gShL07+fZCvHMI9m0VIYEWsXPJF9ghWA/bhDrml4a gtJBNWlrnIj03Kj3wbwzYVdZMHyV67Gg7m2V5lZymBJm0yvsbJwcaJRXecALqKZx UznYrtsyTSTHK2pKF9zPYJ+5A92Ih7CE1g/0g+1+BHmD45T6Yd6QZ9rmZtq+J3QT cTzuCydhw2yIWy6H7O9pj9RXk5q8abHYTvvLU9BM8rbT -----END CERTIFICATE-----Generated at Mon Jan 26 00:15:46 2026 by rpki-client