This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/2pSmfbphSDb9Cqxh8NYcKQtlp1o.roa File: 2pSmfbphSDb9Cqxh8NYcKQtlp1o.roa (raw, json) Hash identifier: maKyyaI7uWNQa13JatdDTrRmvHHlkhB9HEz590CRzd8= Subject key identifier: DA:94:A6:7D:BA:61:48:36:FD:0A:AC:61:F0:D6:1C:29:0B:65:A7:5A Certificate issuer: /CN=9a2f0701d7a63cf3d193695c395d1a1f78335ccf Certificate serial: 019B7CEE40672F9A8913818614020A284AE9 Authority key identifier: 9A:2F:07:01:D7:A6:3C:F3:D1:93:69:5C:39:5D:1A:1F:78:33:5C:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/2pSmfbphSDb9Cqxh8NYcKQtlp1o.roa Signing time: Fri 02 Jan 2026 04:19:07 +0000 ROA not before: Fri 02 Jan 2026 04:19:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208693 IP address blocks: 185.185.204.0/22 maxlen: 24 2a00:7420:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/mi8HAdemPPPRk2lcOV0aH3gzXM8.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/mi8HAdemPPPRk2lcOV0aH3gzXM8.mft rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:40:67:2f:9a:89:13:81:86:14:02:0a:28:4a:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a2f0701d7a63cf3d193695c395d1a1f78335ccf Validity Not Before: Jan 2 04:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da94a67dba614836fd0aac61f0d61c290b65a75a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:7d:c6:d9:d4:b0:2e:e0:8b:df:0e:aa:3b: 35:8f:af:c7:c1:cf:25:bd:3b:53:b8:14:57:24:58: cf:fc:b8:c3:89:46:1a:71:61:b4:21:bf:c0:04:a6: 54:57:9d:27:42:8b:87:58:4b:6b:a0:26:75:ae:03: a7:1c:30:3b:46:4b:d2:d0:d5:a0:13:a8:cb:51:13: 20:ca:93:f4:7b:22:52:19:66:23:b4:71:18:25:94: 41:95:78:48:85:8a:ec:08:18:67:5e:b0:47:d4:96: 60:8b:09:e6:4e:bd:31:d7:c8:3a:9f:17:d2:8f:dd: 2e:19:c4:f2:44:39:21:49:3a:0a:30:e3:71:8c:0f: 8d:72:dc:9b:b0:ea:01:ed:91:ca:8d:dc:b4:6e:3a: 4b:8d:8e:dd:60:55:2f:66:53:04:af:e3:62:af:ad: f2:98:a7:7c:f4:e5:73:e3:dd:d0:d9:80:d4:ba:97: a5:07:98:79:bb:97:df:47:c0:52:21:0a:09:5e:0b: fd:b2:cb:70:9d:c0:3a:8e:7e:30:02:3b:45:2a:3e: db:75:0b:c0:47:fe:6e:29:c1:ba:90:54:6b:d4:a5: 7b:f0:5d:fa:7f:4a:ae:21:30:db:cc:f0:06:bf:25: e7:78:b8:27:82:c9:cc:d9:e3:0a:a3:35:2a:29:f4: 19:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:94:A6:7D:BA:61:48:36:FD:0A:AC:61:F0:D6:1C:29:0B:65:A7:5A X509v3 Authority Key Identifier: keyid:9A:2F:07:01:D7:A6:3C:F3:D1:93:69:5C:39:5D:1A:1F:78:33:5C:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/2pSmfbphSDb9Cqxh8NYcKQtlp1o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/mi8HAdemPPPRk2lcOV0aH3gzXM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.185.204.0/22 IPv6: 2a00:7420:8000::/33 Signature Algorithm: sha256WithRSAEncryption 2e:e7:ca:51:30:3e:19:6c:30:84:e9:5b:21:4a:73:06:5d:6a: 1d:2b:11:36:82:09:53:3d:94:a8:24:bd:13:b8:45:cf:84:8e: 5b:e5:68:3b:60:bf:8e:ac:98:2a:84:7a:f0:c7:18:2a:f7:74: d5:4f:0e:02:00:55:45:1a:78:3c:e9:10:e9:80:8c:21:2d:60: 33:3e:e3:e4:bb:6c:55:0e:c6:8f:25:fe:ca:a0:88:37:b9:96: 84:f3:88:38:3e:04:af:c5:b0:63:f7:a7:26:35:7a:61:7f:81: 45:56:6e:34:9f:60:36:f3:e0:10:26:18:69:5a:d8:4a:8e:89: ca:70:5c:dd:b2:3f:8d:1f:25:a7:9b:ee:82:8f:3a:67:95:95: 2c:a9:1f:e6:34:cf:3e:41:d2:a8:05:39:1b:92:50:05:44:69: 97:f0:44:bb:b7:f6:bb:78:07:7a:4e:a5:e3:55:25:de:6e:c1: b3:7a:bc:57:dc:09:21:27:ab:2a:42:ef:2e:8d:4a:6a:2c:40: 91:84:98:d6:66:89:ca:c1:fb:5b:cd:06:bd:fe:47:3d:f3:8a: 3b:56:50:1a:3e:36:d9:34:41:02:9e:ce:8f:8d:0f:49:67:14: 21:2f:05:13:14:f2:1c:92:15:c8:fb:64:3d:b0:cc:ff:cf:d0: a8:4b:f3:e2 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt87kBnL5qJE4GGFAIKKErpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMmYwNzAxZDdhNjNjZjNkMTkzNjk1YzM5NWQxYTFmNzgz MzVjY2YwHhcNMjYwMTAyMDQxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTk0YTY3ZGJhNjE0ODM2ZmQwYWFjNjFmMGQ2MWMyOTBiNjVhNzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveN9xtnUsC7gi98Oqjs1j6/Hwc8l vTtTuBRXJFjP/LjDiUYacWG0Ib/ABKZUV50nQouHWEtroCZ1rgOnHDA7RkvS0NWg E6jLURMgypP0eyJSGWYjtHEYJZRBlXhIhYrsCBhnXrBH1JZgiwnmTr0x18g6nxfS j90uGcTyRDkhSToKMONxjA+NctybsOoB7ZHKjdy0bjpLjY7dYFUvZlMEr+Nir63y mKd89OVz493Q2YDUupelB5h5u5ffR8BSIQoJXgv9sstwncA6jn4wAjtFKj7bdQvA R/5uKcG6kFRr1KV78F36f0quITDbzPAGvyXneLgngsnM2eMKozUqKfQZ/QIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFNqUpn26YUg2/QqsYfDWHCkLZadaMB8GA1UdIwQY MBaAFJovBwHXpjzz0ZNpXDldGh94M1zPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWk4SEFkZW1QUFBSazJsY09WMGFIM2d6WE04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS81ZWZhZDYtYzlhNC00ODM4LWJkNjct NzM3MTdjNTZiNmYzLzEvMnBTbWZicGhTRGI5Q3F4aDhOWWNLUXRscDFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS81ZWZhZDYtYzlhNC00ODM4LWJkNjctNzM3MTdjNTZiNmYz LzEvbWk4SEFkZW1QUFBSazJsY09WMGFIM2d6WE04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQCubnMMA4E AgACMAgDBgcqAHQggDANBgkqhkiG9w0BAQsFAAOCAQEALufKUTA+GWwwhOlbIUpz Bl1qHSsRNoIJUz2UqCS9E7hFz4SOW+VoO2C/jqyYKoR68McYKvd01U8OAgBVRRp4 POkQ6YCMIS1gMz7j5LtsVQ7GjyX+yqCIN7mWhPOIOD4Er8WwY/enJjV6YX+BRVZu NJ9gNvPgECYYaVrYSo6JynBc3bI/jR8lp5vugo86Z5WVLKkf5jTPPkHSqAU5G5JQ BURpl/BEu7f2u3gHek6l41Ul3m7Bs3q8V9wJISerKkLvLo1KaixAkYSY1maJysH7 W80Gvf5HPfOKO1ZQGj422TRBAp7Oj40PSWcUIS8FExTyHJIVyPtkPbDM/8/QqEvz 4g== -----END CERTIFICATE-----Generated at Mon Jan 26 13:45:51 2026 by rpki-client