This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/2rYrAzNGLRy2kebzewAymxyAgFI.roa File: 2rYrAzNGLRy2kebzewAymxyAgFI.roa (raw, json) Hash identifier: 7lRGKU9DPcDtXv+u0hXbpyy4aMqg0Uw+oprnJUe2LzA= Subject key identifier: DA:B6:2B:03:33:46:2D:1C:B6:91:E6:F3:7B:00:32:9B:1C:80:80:52 Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701 Certificate serial: 019B77C759BDB5356F75D57DDF3064B60F49 Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/2rYrAzNGLRy2kebzewAymxyAgFI.roa Signing time: Thu 01 Jan 2026 04:18:31 +0000 ROA not before: Thu 01 Jan 2026 04:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59776 IP address blocks: 185.72.120.0/22 maxlen: 22 185.72.121.0/24 maxlen: 24 2001:678:82c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.mft rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:59:bd:b5:35:6f:75:d5:7d:df:30:64:b6:0f:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90f25e6a6893f466d2695e90670c047443643701 Validity Not Before: Jan 1 04:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dab62b0333462d1cb691e6f37b00329b1c808052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:45:b5:1d:46:52:c4:e7:e6:2a:c3:e5:31: 70:d6:5d:28:2d:c1:fc:32:d9:13:3e:d6:34:4a:57: 72:ab:1a:6b:e4:47:15:70:3f:d7:48:97:59:18:53: cd:d8:dd:a9:70:ea:40:58:72:6c:d8:27:da:f7:5e: 8a:61:04:62:0a:4f:38:e4:bb:d5:b8:ca:0b:bb:cc: 7a:46:e7:5f:79:86:3b:a9:c0:e6:6f:d1:dc:a0:f5: 1a:b4:b5:83:4e:92:a3:4a:2a:ce:a1:8f:97:b7:15: 59:76:4e:c4:23:61:d3:2c:bc:67:12:f8:85:33:2e: ce:59:4d:87:ab:20:b0:e2:d1:9e:12:b4:e7:9d:03: f6:5e:03:7e:6c:87:c5:63:1f:f2:76:24:42:5f:93: 8b:ba:09:22:ae:24:91:e4:5a:fa:9d:8e:6a:3c:6a: 7d:46:fb:12:dc:58:9d:14:a3:32:bb:51:99:da:34: 7f:85:23:27:13:87:80:56:ec:48:99:8a:a5:18:e0: b9:6c:92:7f:67:53:23:ab:29:1b:3a:cd:67:5f:6b: 40:3e:38:b6:ad:96:84:0c:97:03:e9:53:e5:02:53: 01:be:38:56:4f:33:bd:08:3e:30:0b:cb:0b:09:cf: f7:71:f7:01:c8:43:96:16:1b:a0:81:54:d4:5f:71: cb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B6:2B:03:33:46:2D:1C:B6:91:E6:F3:7B:00:32:9B:1C:80:80:52 X509v3 Authority Key Identifier: keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/2rYrAzNGLRy2kebzewAymxyAgFI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.72.120.0/22 IPv6: 2001:678:82c::/48 Signature Algorithm: sha256WithRSAEncryption 28:81:33:31:a0:12:5f:db:d8:c7:a6:fb:2b:d4:14:28:f7:db: 80:d0:15:54:5f:45:2f:99:50:13:0f:2e:de:02:a3:0c:cf:a8: 6d:0d:0b:9e:6f:d3:79:d5:25:cb:6d:d3:14:06:82:8a:c1:b5: bf:c0:84:88:49:5f:c9:ab:f6:ad:42:d0:14:3e:0d:38:c1:9b: 1d:cf:28:ea:c5:b0:e4:be:3a:51:e1:6d:9e:3b:1e:96:0c:d4: e4:95:4b:6f:16:e5:33:fe:14:b1:d7:f4:f4:fa:8f:5f:68:90: ed:ad:c1:a9:cc:1e:77:62:56:e2:5d:20:90:07:36:66:fe:a6: 87:8d:34:f3:7c:95:f9:08:53:84:7d:5b:fe:80:59:88:ad:bd: e2:8c:20:7d:50:82:d0:cd:72:fd:18:ba:99:b3:8a:6f:a7:b5: 3c:2e:53:78:67:aa:b3:8d:b2:1a:13:84:9f:d5:58:a8:a3:e5: 70:e9:97:19:02:8c:2f:46:6e:2c:ed:0f:7f:b3:7f:a9:f6:d4: b6:ce:9a:85:c8:36:bd:24:f0:af:24:03:08:b6:6b:44:cd:ec: 50:d3:40:b4:69:0d:d2:e6:2b:7b:ac:72:56:cd:34:c1:57:09: 7b:8b:7b:98:98:db:aa:01:f8:d7:b3:db:a4:54:8e:5b:76:5c: d5:d3:a1:c7 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3x1m9tTVvddV93zBktg9JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZjI1ZTZhNjg5M2Y0NjZkMjY5NWU5MDY3MGMwNDc0NDM2 NDM3MDEwHhcNMjYwMTAxMDQxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWI2MmIwMzMzNDYyZDFjYjY5MWU2ZjM3YjAwMzI5YjFjODA4MDUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqStFtR1GUsTn5irD5TFw1l0oLcH8 MtkTPtY0Sldyqxpr5EcVcD/XSJdZGFPN2N2pcOpAWHJs2Cfa916KYQRiCk845LvV uMoLu8x6RudfeYY7qcDmb9HcoPUatLWDTpKjSirOoY+XtxVZdk7EI2HTLLxnEviF My7OWU2HqyCw4tGeErTnnQP2XgN+bIfFYx/ydiRCX5OLugkiriSR5Fr6nY5qPGp9 RvsS3FidFKMyu1GZ2jR/hSMnE4eAVuxImYqlGOC5bJJ/Z1MjqykbOs1nX2tAPji2 rZaEDJcD6VPlAlMBvjhWTzO9CD4wC8sLCc/3cfcByEOWFhuggVTUX3HLCwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFNq2KwMzRi0ctpHm83sAMpscgIBSMB8GA1UdIwQY MBaAFJDyXmpok/Rm0mlekGcMBHRDZDcBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1BKZWFtaVQ5R2JTYVY2UVp3d0VkRU5rTndFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi8wNGIxNjItNzA5OS00MDRkLTgzOTEt M2IwYjRiOGEyOTgzLzEvMnJZckF6TkdMUnkya2ViemV3QXlteHlBZ0ZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi8wNGIxNjItNzA5OS00MDRkLTgzOTEtM2IwYjRiOGEyOTgz LzEva1BKZWFtaVQ5R2JTYVY2UVp3d0VkRU5rTndFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCuUh4MA8E AgACMAkDBwAgAQZ4CCwwDQYJKoZIhvcNAQELBQADggEBACiBMzGgEl/b2Mem+yvU FCj324DQFVRfRS+ZUBMPLt4CowzPqG0NC55v03nVJctt0xQGgorBtb/AhIhJX8mr 9q1C0BQ+DTjBmx3PKOrFsOS+OlHhbZ47HpYM1OSVS28W5TP+FLHX9PT6j19okO2t wanMHndiVuJdIJAHNmb+poeNNPN8lfkIU4R9W/6AWYitveKMIH1QgtDNcv0Yupmz im+ntTwuU3hnqrONshoThJ/VWKij5XDplxkCjC9GbiztD3+zf6n21LbOmoXINr0k 8K8kAwi2a0TN7FDTQLRpDdLmK3usclbNNMFXCXuLe5iY26oB+Nez26RUjlt2XNXT occ= -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:50 2026 by rpki-client