This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/2OnJvywqLTqTHQR4ZliJJnzFvUk.roa File: 2OnJvywqLTqTHQR4ZliJJnzFvUk.roa (raw, json) Hash identifier: pTOCAec3hbidb7DPVahpWDXDEzqpTAp6rkFHQfa7X0g= Subject key identifier: D8:E9:C9:BF:2C:2A:2D:3A:93:1D:04:78:66:58:89:26:7C:C5:BD:49 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78344FC05722367A4418171D4C19DF87 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/2OnJvywqLTqTHQR4ZliJJnzFvUk.roa Signing time: Thu 01 Jan 2026 06:17:32 +0000 ROA not before: Thu 01 Jan 2026 06:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31574 IP address blocks: 193.181.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4f:c0:57:22:36:7a:44:18:17:1d:4c:19:df:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d8e9c9bf2c2a2d3a931d0478665889267cc5bd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:0e:fb:a9:b6:d8:68:c6:68:82:f8:0e:04:6d: a6:e5:15:c7:19:a9:86:de:8b:b2:46:49:b0:27:a4: 6a:94:8a:59:c1:2b:29:f4:2e:fb:81:7c:ea:fd:21: d1:03:9d:26:87:1f:03:3b:67:3d:a4:4f:ed:af:a1: 13:eb:21:2e:ed:96:bd:85:10:ad:53:e9:ed:f1:5a: 2a:0f:07:36:f1:d4:73:76:57:01:24:87:fc:13:db: 42:27:3f:2c:2d:a3:6d:97:40:99:0d:d9:e5:d9:cd: a6:4f:99:3f:3e:c7:5e:a0:ad:11:bf:9b:28:f5:1c: 07:86:5a:02:24:52:dd:0a:1d:0f:82:38:f9:02:e9: ee:09:cc:96:87:69:5d:25:80:d4:1c:9e:96:3c:63: 4a:4b:6b:f0:01:53:3d:ef:f9:58:81:57:d3:63:eb: 49:db:6a:4a:51:6b:fa:f1:08:f8:7f:dd:0b:de:f7: 3b:ff:d1:99:d8:f6:9b:a7:85:b3:31:14:68:62:e0: 8a:b0:83:8a:79:cc:3b:70:b1:52:86:9c:c3:4a:2f: c4:fa:a1:40:da:7a:72:03:cf:3b:87:e9:56:24:1b: fa:e4:90:6c:85:09:51:9b:ad:7c:e1:ca:86:22:22: a4:83:5d:be:23:53:9a:6e:93:e5:46:fc:cf:0d:8b: b6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E9:C9:BF:2C:2A:2D:3A:93:1D:04:78:66:58:89:26:7C:C5:BD:49 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/2OnJvywqLTqTHQR4ZliJJnzFvUk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.181.59.0/24 Signature Algorithm: sha256WithRSAEncryption 26:04:80:f8:91:9e:dd:7c:6f:4d:dd:72:9c:a1:40:a6:00:52: 6b:44:6c:c3:8b:63:18:02:f5:5a:58:4c:c6:fe:19:77:31:cf: f6:b5:63:9d:3b:50:91:35:52:5c:e7:2b:9d:9c:e3:06:0a:53: 66:62:2c:35:3d:d6:fb:55:77:7d:c5:14:76:7f:6b:97:90:d8: 15:b9:cc:77:2d:54:c5:c3:8b:39:ca:fa:e2:d4:03:77:68:3c: fd:70:cb:9b:6b:8f:e3:8a:9e:7d:f8:43:03:46:15:d2:a4:a5: 07:13:bc:0c:be:63:ff:4a:2b:50:4b:23:00:f9:2d:0c:e5:f0: c3:d7:88:26:a6:3a:b0:62:e1:1d:45:0f:0a:c4:7d:8f:00:b2: c1:e4:10:85:86:d8:49:6f:93:26:06:d9:5f:2b:1e:e2:28:85: 46:65:75:1f:a4:94:c8:93:ee:0c:58:d7:e4:84:d6:2d:1f:2f: 72:d9:14:7e:5a:02:cd:a6:49:8b:01:36:4d:2c:c6:4f:36:00: 25:f5:59:df:80:4a:f8:57:b0:2a:43:a0:fb:d1:51:40:ac:9e: 9d:82:99:f6:02:1a:63:d3:12:10:8c:9c:3f:5c:98:33:96:9f: 2e:dc:c3:1b:72:c4:5f:a8:b5:08:eb:8f:20:c3:08:00:e8:77: 1f:5c:6a:05 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NE/AVyI2ekQYFx1MGd+HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOGU5YzliZjJjMmEyZDNhOTMxZDA0Nzg2NjU4ODkyNjdjYzViZDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9g77qbbYaMZogvgOBG2m5RXHGamG 3ouyRkmwJ6RqlIpZwSsp9C77gXzq/SHRA50mhx8DO2c9pE/tr6ET6yEu7Za9hRCt U+nt8VoqDwc28dRzdlcBJIf8E9tCJz8sLaNtl0CZDdnl2c2mT5k/PsdeoK0Rv5so 9RwHhloCJFLdCh0Pgjj5AunuCcyWh2ldJYDUHJ6WPGNKS2vwAVM97/lYgVfTY+tJ 22pKUWv68Qj4f90L3vc7/9GZ2Pabp4WzMRRoYuCKsIOKecw7cLFShpzDSi/E+qFA 2npyA887h+lWJBv65JBshQlRm6184cqGIiKkg12+I1OabpPlRvzPDYu2mQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNjpyb8sKi06kx0EeGZYiSZ8xb1JMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvMk9uSnZ5d3FMVHFUSFFSNFpsaUpKbnpGdlVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbU7MA0G CSqGSIb3DQEBCwUAA4IBAQAmBID4kZ7dfG9N3XKcoUCmAFJrRGzDi2MYAvVaWEzG /hl3Mc/2tWOdO1CRNVJc5yudnOMGClNmYiw1Pdb7VXd9xRR2f2uXkNgVucx3LVTF w4s5yvri1AN3aDz9cMuba4/jip59+EMDRhXSpKUHE7wMvmP/SitQSyMA+S0M5fDD 14gmpjqwYuEdRQ8KxH2PALLB5BCFhthJb5MmBtlfKx7iKIVGZXUfpJTIk+4MWNfk hNYtHy9y2RR+WgLNpkmLATZNLMZPNgAl9VnfgEr4V7AqQ6D70VFArJ6dgpn2Ahpj 0xIQjJw/XJgzlp8u3MMbcsRfqLUI648gwwgA6HcfXGoF -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:36 2026 by rpki-client