This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/2RbyrkRyfy89JjRg3To0T1X7M24.roa File: 2RbyrkRyfy89JjRg3To0T1X7M24.roa (raw, json) Hash identifier: b2qdxjwNibknS7GfNAq+qHd1R5651Flic59AvsJpQf4= Subject key identifier: D9:16:F2:AE:44:72:7F:2F:3D:26:34:60:DD:3A:34:4F:55:FB:33:6E Certificate issuer: /CN=2c3963ba2aae5abd38a6eed09da985611f1b5021 Certificate serial: 019B7F14479CAE15FFE122756EAD3FBEABDE Authority key identifier: 2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/2RbyrkRyfy89JjRg3To0T1X7M24.roa Signing time: Fri 02 Jan 2026 14:19:53 +0000 ROA not before: Fri 02 Jan 2026 14:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204782 IP address blocks: 77.242.228.0/24 maxlen: 24 77.242.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.mft rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:47:9c:ae:15:ff:e1:22:75:6e:ad:3f:be:ab:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2c3963ba2aae5abd38a6eed09da985611f1b5021 Validity Not Before: Jan 2 14:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d916f2ae44727f2f3d263460dd3a344f55fb336e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:11:8f:e7:f8:04:83:3d:d6:37:23:25:64: 11:1e:fe:ab:4b:b5:0b:b6:27:f9:69:20:51:05:cf: 2f:4a:cb:07:74:ac:ce:f6:30:d1:90:a7:23:40:7b: cd:78:69:18:50:87:db:75:60:e8:23:b1:25:7e:7f: 8d:67:53:b7:14:22:b2:2b:b5:44:f8:8f:e7:ec:cc: 86:3d:02:2c:80:d5:be:43:7f:5c:38:11:29:56:05: 91:cd:d9:66:13:4f:bc:92:c1:ab:a1:94:fc:74:90: 8e:c3:c7:e9:5d:62:a1:6e:e2:8b:02:1d:13:2d:85: 2a:bd:9a:79:11:e8:51:75:28:8a:30:d8:29:6a:62: 5a:de:99:bf:bc:15:00:32:80:bf:f1:aa:24:7d:67: ab:f0:fe:ef:cf:53:a0:b2:1d:6d:c5:f0:86:e2:4f: a5:dc:07:0f:12:44:e1:4e:fc:af:87:f1:a5:96:6d: 82:2c:13:01:b7:45:6c:f7:96:9b:40:85:65:da:33: 7c:d0:44:6a:04:4b:20:90:8d:ea:2a:8d:20:b1:5c: a3:ab:d1:68:28:04:6a:fd:ee:57:3b:5a:ef:5e:35: cb:bd:44:b0:3b:56:91:df:73:20:7a:a6:75:70:b6: 12:64:e5:78:f5:37:8d:b7:c2:fb:5f:10:50:09:99: 41:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:16:F2:AE:44:72:7F:2F:3D:26:34:60:DD:3A:34:4F:55:FB:33:6E X509v3 Authority Key Identifier: keyid:2C:39:63:BA:2A:AE:5A:BD:38:A6:EE:D0:9D:A9:85:61:1F:1B:50:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDljuiquWr04pu7QnamFYR8bUCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/2RbyrkRyfy89JjRg3To0T1X7M24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/381ecc-9d75-41ba-85f6-17693e7ea67a/1/LDljuiquWr04pu7QnamFYR8bUCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.242.228.0/24 77.242.236.0/22 Signature Algorithm: sha256WithRSAEncryption 67:1b:a4:06:2c:36:f4:6b:3e:ef:9a:42:52:68:19:41:fb:01: f7:e9:cc:7d:21:07:4e:a7:15:80:fc:0e:08:ab:7b:b0:27:26: 66:b3:af:c0:d2:d0:cb:fb:39:c3:1a:6b:d6:dd:e9:5b:c1:28: 7c:9c:ed:6c:ed:49:35:5f:b9:e8:63:0d:37:36:30:2b:64:f0: 7c:50:d2:8e:3f:b1:f1:25:32:42:7f:a6:25:d8:3d:e7:d2:3e: c3:e5:f3:78:17:73:ac:bc:c9:89:82:48:71:6e:a4:d5:f4:e9: b6:e6:79:a1:4b:82:ee:04:55:04:9b:f4:ba:8c:e4:29:52:93: 50:0a:ca:b3:bd:ce:49:a9:7c:2a:97:7f:99:d8:7d:d9:f1:93: b5:13:b8:f1:60:07:a6:02:a3:d9:d5:2a:f4:6e:b9:c8:5c:b5: 80:01:b6:dc:3e:b0:42:5c:36:a2:d5:d8:ed:12:b1:84:5c:e8: 5f:41:0e:4f:a2:63:89:a1:73:a7:fe:99:ea:b7:c9:bf:3d:00: 0e:d1:54:ca:bd:1b:2d:6d:41:7f:ba:b1:9b:8a:64:66:20:69: 0e:e2:76:75:ef:21:ba:2c:c3:54:2d:f9:8a:59:5f:ec:05:db: c9:46:fe:31:f2:17:37:7d:78:d1:ea:35:db:06:09:3f:8f:ab: b7:60:ed:7a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FEecrhX/4SJ1bq0/vqveMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjMzk2M2JhMmFhZTVhYmQzOGE2ZWVkMDlkYTk4NTYxMWYx YjUwMjEwHhcNMjYwMTAyMTQxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTE2ZjJhZTQ0NzI3ZjJmM2QyNjM0NjBkZDNhMzQ0ZjU1ZmIzMzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8URj+f4BIM91jcjJWQRHv6rS7UL tif5aSBRBc8vSssHdKzO9jDRkKcjQHvNeGkYUIfbdWDoI7Elfn+NZ1O3FCKyK7VE +I/n7MyGPQIsgNW+Q39cOBEpVgWRzdlmE0+8ksGroZT8dJCOw8fpXWKhbuKLAh0T LYUqvZp5EehRdSiKMNgpamJa3pm/vBUAMoC/8aokfWer8P7vz1Ogsh1txfCG4k+l 3AcPEkThTvyvh/Gllm2CLBMBt0Vs95abQIVl2jN80ERqBEsgkI3qKo0gsVyjq9Fo KARq/e5XO1rvXjXLvUSwO1aR33MgeqZ1cLYSZOV49TeNt8L7XxBQCZlBbwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNkW8q5Ecn8vPSY0YN06NE9V+zNuMB8GA1UdIwQY MBaAFCw5Y7oqrlq9OKbu0J2phWEfG1AhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTERsanVpcXVXcjA0cHU3UW5hbUZZUjhiVUNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zODFlY2MtOWQ3NS00MWJhLTg1ZjYt MTc2OTNlN2VhNjdhLzEvMlJieXJrUnlmeTg5SmpSZzNUbzBUMVg3TTI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8zODFlY2MtOWQ3NS00MWJhLTg1ZjYtMTc2OTNlN2VhNjdh LzEvTERsanVpcXVXcjA0cHU3UW5hbUZZUjhiVUNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATfLkAwQC TfLsMA0GCSqGSIb3DQEBCwUAA4IBAQBnG6QGLDb0az7vmkJSaBlB+wH36cx9IQdO pxWA/A4Iq3uwJyZms6/A0tDL+znDGmvW3elbwSh8nO1s7Uk1X7noYw03NjArZPB8 UNKOP7HxJTJCf6Yl2D3n0j7D5fN4F3OsvMmJgkhxbqTV9Om25nmhS4LuBFUEm/S6 jOQpUpNQCsqzvc5JqXwql3+Z2H3Z8ZO1E7jxYAemAqPZ1Sr0brnIXLWAAbbcPrBC XDai1djtErGEXOhfQQ5PomOJoXOn/pnqt8m/PQAO0VTKvRstbUF/urGbimRmIGkO 4nZ17yG6LMNULfmKWV/sBdvJRv4x8hc3fXjR6jXbBgk/j6u3YO16 -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:24 2026 by rpki-client