This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/ci2RBJP7wBZT9607Ek93x3v-DJg.roa File: ci2RBJP7wBZT9607Ek93x3v-DJg.roa (raw, json) Hash identifier: rQsPZOnMLyTQdUIKObokqHCmODTdjtz2irzXClA4KLY= Subject key identifier: 72:2D:91:04:93:FB:C0:16:53:F7:AD:3B:12:4F:77:C7:7B:FE:0C:98 Certificate issuer: /CN=b27261d715348bfd73ce9dbb72488656993ba2f1 Certificate serial: 019B7B35518C6527BCF3011D1C72F9C44A69 Authority key identifier: B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/ci2RBJP7wBZT9607Ek93x3v-DJg.roa Signing time: Thu 01 Jan 2026 20:17:30 +0000 ROA not before: Thu 01 Jan 2026 20:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57456 IP address blocks: 31.24.87.0/24 maxlen: 24 45.152.122.0/24 maxlen: 24 185.124.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.mft rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:51:8c:65:27:bc:f3:01:1d:1c:72:f9:c4:4a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b27261d715348bfd73ce9dbb72488656993ba2f1 Validity Not Before: Jan 1 20:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=722d910493fbc01653f7ad3b124f77c77bfe0c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a2:4f:bc:12:d7:17:43:94:b4:59:83:83:10: 9d:29:d3:85:a9:a4:db:4f:73:d5:6e:4d:c6:c7:d3: 1a:f5:de:61:ae:a0:bd:70:90:43:2b:a3:a8:36:f9: fa:f1:93:48:4e:b8:f3:d6:0c:fb:5c:c2:0e:17:06: 03:53:8d:8d:d7:50:d0:d7:ff:64:64:d4:eb:84:05: 86:7d:35:45:1e:77:60:0c:94:01:31:0f:a0:ea:33: 14:fa:8a:8b:fe:04:d2:43:b5:69:2f:90:f0:eb:b9: a2:57:ed:7f:dd:b0:fc:af:d4:7d:b5:97:fe:23:e6: 4e:fd:8f:f1:6a:54:f7:ea:6a:29:92:01:cc:6a:70: bf:28:b6:9a:ac:b3:a5:97:f4:99:cc:75:4a:df:1a: 98:94:24:7c:a3:a4:a0:37:ed:39:6c:ae:8b:9d:f1: 3c:57:dc:d6:46:2f:c5:d7:bc:ed:37:ed:3d:33:cb: a7:ae:cf:7d:32:ca:29:57:50:df:97:1e:80:2f:a1: 39:f2:65:b6:b8:83:2d:9b:0f:1f:f4:2c:73:a4:92: da:b4:2b:89:d5:4c:a4:77:d6:13:a4:f4:06:8f:94: 67:e3:26:a2:fa:35:62:f0:9d:86:4e:11:cf:7c:68: ff:be:47:38:71:2d:6e:e5:a2:fa:e1:d0:fa:a3:fc: 6a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2D:91:04:93:FB:C0:16:53:F7:AD:3B:12:4F:77:C7:7B:FE:0C:98 X509v3 Authority Key Identifier: keyid:B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/ci2RBJP7wBZT9607Ek93x3v-DJg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.87.0/24 45.152.122.0/24 185.124.64.0/24 Signature Algorithm: sha256WithRSAEncryption 39:74:04:35:c7:31:ac:1d:bf:19:60:a0:ea:2b:ab:d8:e7:59: 35:f1:10:95:be:47:63:4f:60:b4:68:3d:1c:a8:1d:08:56:42: 30:3a:c2:ba:d1:be:fc:92:89:96:8f:7e:b2:72:49:ae:31:ae: 4b:25:03:35:26:6d:98:15:a0:67:a7:ae:34:19:8b:bf:aa:45: 70:3e:17:4a:cd:a7:c5:ea:df:f7:b7:32:31:d9:dc:5d:1e:83: ce:5a:9c:90:f5:3c:0d:78:07:2e:00:8c:03:5d:93:31:5d:fb: fd:66:bc:d2:fd:c0:5f:c7:c5:f5:8f:27:12:7b:dd:b4:76:00: df:3f:44:1a:0d:c4:18:62:13:16:fd:40:ee:e4:ea:55:1f:da: 6e:29:23:0e:a7:8c:82:8b:b9:62:e3:4c:a4:e7:02:7a:07:d6: ad:bb:c4:a7:77:23:2c:f2:67:39:fc:ed:e7:42:5b:74:76:b1: 3b:51:0b:f0:c7:f1:a7:c0:92:0b:85:20:c8:b5:5e:ed:cb:fa: b2:17:5a:04:3b:69:16:e9:e0:74:4c:94:2f:8b:f5:31:75:2d: 47:ca:5c:4b:f1:fa:40:38:97:88:28:3d:d8:e1:19:6b:f2:b4: 3a:9e:f5:0f:bd:d5:e0:18:fe:70:26:7b:0f:8b:56:e2:94:93: 26:f3:3e:3f -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt7NVGMZSe88wEdHHL5xEppMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyNzI2MWQ3MTUzNDhiZmQ3M2NlOWRiYjcyNDg4NjU2OTkz YmEyZjEwHhcNMjYwMTAxMjAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjJkOTEwNDkzZmJjMDE2NTNmN2FkM2IxMjRmNzdjNzdiZmUwYzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraJPvBLXF0OUtFmDgxCdKdOFqaTb T3PVbk3Gx9Ma9d5hrqC9cJBDK6OoNvn68ZNITrjz1gz7XMIOFwYDU42N11DQ1/9k ZNTrhAWGfTVFHndgDJQBMQ+g6jMU+oqL/gTSQ7VpL5Dw67miV+1/3bD8r9R9tZf+ I+ZO/Y/xalT36mopkgHManC/KLaarLOll/SZzHVK3xqYlCR8o6SgN+05bK6LnfE8 V9zWRi/F17ztN+09M8unrs99MsopV1Dflx6AL6E58mW2uIMtmw8f9CxzpJLatCuJ 1Uykd9YTpPQGj5Rn4yai+jVi8J2GThHPfGj/vkc4cS1u5aL64dD6o/xqJwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFHItkQST+8AWU/etOxJPd8d7/gyYMB8GA1UdIwQY MBaAFLJyYdcVNIv9c86du3JIhlaZO6LxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc25KaDF4VTBpXzF6enAyN2NraUdWcGs3b3ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hYmE1MDItZDE5MS00ZmQ3LWE3Y2Yt NTA0ZjI3NjY3NjBmLzEvY2kyUkJKUDd3QlpUOTYwN0VrOTN4M3YtREpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9hYmE1MDItZDE5MS00ZmQ3LWE3Y2YtNTA0ZjI3NjY3NjBm LzEvc25KaDF4VTBpXzF6enAyN2NraUdWcGs3b3ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAHxhXAwQA LZh6AwQAuXxAMA0GCSqGSIb3DQEBCwUAA4IBAQA5dAQ1xzGsHb8ZYKDqK6vY51k1 8RCVvkdjT2C0aD0cqB0IVkIwOsK60b78komWj36yckmuMa5LJQM1Jm2YFaBnp640 GYu/qkVwPhdKzafF6t/3tzIx2dxdHoPOWpyQ9TwNeAcuAIwDXZMxXfv9ZrzS/cBf x8X1jycSe920dgDfP0QaDcQYYhMW/UDu5OpVH9puKSMOp4yCi7li40yk5wJ6B9at u8SndyMs8mc5/O3nQlt0drE7UQvwx/GnwJILhSDItV7ty/qyF1oEO2kW6eB0TJQv i/UxdS1HylxL8fpAOJeIKD3Y4Rlr8rQ6nvUPvdXgGP5wJnsPi1bilJMm8z4/ -----END CERTIFICATE-----Generated at Sun Jan 25 14:39:58 2026 by rpki-client