This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/g2vfqgEzdRfPfaQ54TL9IaZRWX8.roa File: g2vfqgEzdRfPfaQ54TL9IaZRWX8.roa (raw, json) Hash identifier: Jfx5wikYLOlvElqE/kSmJvHZBwL/6aUVzQP/HGEVTDg= Subject key identifier: 83:6B:DF:AA:01:33:75:17:CF:7D:A4:39:E1:32:FD:21:A6:51:59:7F Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15C31160A26C1644E21124E24A676D Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/g2vfqgEzdRfPfaQ54TL9IaZRWX8.roa Signing time: Fri 02 Jan 2026 14:21:31 +0000 ROA not before: Fri 02 Jan 2026 14:21:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56380 IP address blocks: 194.41.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c3:11:60:a2:6c:16:44:e2:11:24:e2:4a:67:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=836bdfaa01337517cf7da439e132fd21a651597f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:be:e5:af:bb:e6:45:3b:b2:64:e1:d4:68: 09:d3:71:0e:87:15:95:ce:a1:da:ff:90:7b:28:d2: f0:47:ef:37:a1:8f:85:65:05:ba:f4:3b:5c:ec:29: 0b:ed:7b:5f:bd:fb:4d:b0:b9:5a:2c:26:aa:ed:cf: e8:54:f3:6b:d2:c3:c0:fc:3d:25:fb:10:a4:c5:8e: 0d:9d:99:9d:b9:6e:46:9b:00:a5:98:5a:44:89:cd: ad:37:fe:b8:97:3e:f4:bf:42:d5:ba:d9:0e:2c:68: b2:4a:af:a1:20:4f:ee:d1:0f:a2:6c:fe:83:81:02: f3:c6:07:4c:2b:81:e5:78:26:8a:7d:42:d8:1d:be: a2:c8:64:9b:5c:52:58:c1:03:ed:32:0c:ad:24:ad: d6:a9:33:94:e1:9d:f4:77:a6:e9:bb:b0:2a:ce:de: 8a:8d:56:a3:48:1b:aa:4b:cf:70:ee:9f:da:e5:73: 8a:f2:c8:53:4d:8a:84:c9:35:5e:52:a3:15:a2:20: c6:f9:15:45:c3:f9:87:46:2c:b9:05:73:8d:b9:a1: b4:dd:c2:cc:07:9c:ac:7a:eb:a8:93:d7:7f:3d:ee: e8:79:db:bf:a5:39:1e:88:bd:9b:1f:49:31:05:c9: 8b:60:2f:df:98:7e:a6:54:48:a8:35:84:cd:39:40: 0a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6B:DF:AA:01:33:75:17:CF:7D:A4:39:E1:32:FD:21:A6:51:59:7F X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/g2vfqgEzdRfPfaQ54TL9IaZRWX8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.41.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:ac:63:1d:eb:5a:b4:20:46:cc:d0:76:4e:b3:46:83:0e:0f: 91:69:f2:0e:ca:66:8b:f6:2b:35:ac:95:c1:e2:df:a1:1f:a8: 68:d1:b2:03:4d:78:18:18:fd:bd:7d:87:d5:6b:89:48:8a:6f: 68:f8:ae:ef:43:52:3d:fe:4e:70:d1:72:1a:03:30:d3:84:b8: 50:f3:0d:a9:a5:01:70:c6:44:5c:fb:3b:82:ea:65:3c:cd:cb: 66:0b:53:6a:74:81:47:37:c9:ec:bf:1b:8e:41:43:15:2c:e6: f3:0f:63:cf:c2:d9:5d:e8:0f:c5:b2:76:c5:f9:eb:22:66:d3: d9:7b:9f:6b:49:f4:d6:69:25:99:e1:5e:de:42:8c:4f:df:f4: ed:e7:0e:12:62:46:ec:24:6e:ac:99:99:cc:b1:ec:c4:b5:da: 29:e8:4f:75:11:7f:cc:c1:c1:12:90:39:0d:81:4f:28:ab:fc: 82:35:11:d6:3b:83:86:97:83:dc:be:cb:df:d3:85:76:12:56: c2:a6:c2:fd:6d:f1:ee:a6:bc:87:f2:ad:be:b6:2c:8d:a5:1b: 4c:eb:79:86:7c:72:5b:49:96:35:1c:d7:83:16:c2:86:26:d7: 98:37:b6:e5:c9:7d:b7:e3:3e:a1:83:8e:4a:27:7f:c2:09:ea: 2a:e1:69:05 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FcMRYKJsFkTiESTiSmdtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzZiZGZhYTAxMzM3NTE3Y2Y3ZGE0MzllMTMyZmQyMWE2NTE1OTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtP6+5a+75kU7smTh1GgJ03EOhxWV zqHa/5B7KNLwR+83oY+FZQW69Dtc7CkL7XtfvftNsLlaLCaq7c/oVPNr0sPA/D0l +xCkxY4NnZmduW5GmwClmFpEic2tN/64lz70v0LVutkOLGiySq+hIE/u0Q+ibP6D gQLzxgdMK4HleCaKfULYHb6iyGSbXFJYwQPtMgytJK3WqTOU4Z30d6bpu7Aqzt6K jVajSBuqS89w7p/a5XOK8shTTYqEyTVeUqMVoiDG+RVFw/mHRiy5BXONuaG03cLM B5yseuuok9d/Pe7oedu/pTkeiL2bH0kxBcmLYC/fmH6mVEioNYTNOUAKbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFINr36oBM3UXz32kOeEy/SGmUVl/MB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvZzJ2ZnFnRXpkUmZQZmFRNTRUTDlJYVpSV1g4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwilzMA0G CSqGSIb3DQEBCwUAA4IBAQBLrGMd61q0IEbM0HZOs0aDDg+RafIOymaL9is1rJXB 4t+hH6ho0bIDTXgYGP29fYfVa4lIim9o+K7vQ1I9/k5w0XIaAzDThLhQ8w2ppQFw xkRc+zuC6mU8zctmC1NqdIFHN8nsvxuOQUMVLObzD2PPwtld6A/FsnbF+esiZtPZ e59rSfTWaSWZ4V7eQoxP3/Tt5w4SYkbsJG6smZnMsezEtdop6E91EX/MwcESkDkN gU8oq/yCNRHWO4OGl4Pcvsvf04V2ElbCpsL9bfHupryH8q2+tiyNpRtM63mGfHJb SZY1HNeDFsKGJteYN7blyX234z6hg45KJ3/CCeoq4WkF -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:26 2026 by rpki-client