This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/d2St0IuqAQY3CJ7fhkugSTKW_7g.roa File: d2St0IuqAQY3CJ7fhkugSTKW_7g.roa (raw, json) Hash identifier: Dy+8wfeJNHpJN4BkHVBW1ZF1+KeLsec0xtu4JQ1x7+g= Subject key identifier: 77:64:AD:D0:8B:AA:01:06:37:08:9E:DF:86:4B:A0:49:32:96:FF:B8 Certificate issuer: /CN=d9f200e2d38683a7cb1ce5cabbee34c068834a0b Certificate serial: 019B7EA75C08FD9AA4753451AD114DCEF93F Authority key identifier: D9:F2:00:E2:D3:86:83:A7:CB:1C:E5:CA:BB:EE:34:C0:68:83:4A:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/d2St0IuqAQY3CJ7fhkugSTKW_7g.roa Signing time: Fri 02 Jan 2026 12:20:55 +0000 ROA not before: Fri 02 Jan 2026 12:20:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 193.134.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/2fIA4tOGg6fLHOXKu-40wGiDSgs.crl rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/2fIA4tOGg6fLHOXKu-40wGiDSgs.mft rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:5c:08:fd:9a:a4:75:34:51:ad:11:4d:ce:f9:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9f200e2d38683a7cb1ce5cabbee34c068834a0b Validity Not Before: Jan 2 12:20:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7764add08baa010637089edf864ba0493296ffb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:97:1b:96:fe:1e:f1:5c:eb:c7:10:bf:7a:1a: ad:17:ca:69:35:45:5a:61:a7:53:31:7b:ee:45:9a: d5:b7:38:67:a6:39:1a:d9:3d:bd:70:f4:6e:56:85: 71:34:d0:69:d7:fb:46:f6:80:5e:71:b7:d0:91:0b: ec:40:1b:39:d5:bd:d6:56:1f:80:11:72:3b:cd:a4: 11:aa:ea:31:ba:45:ad:ba:16:29:84:d0:21:3c:b5: b7:a1:12:f4:3a:2e:5b:6f:7d:44:59:ad:6e:ff:07: f0:f8:74:35:66:4e:38:b2:7d:49:c7:3a:96:0b:37: 8f:c6:7c:1f:45:3a:3d:f5:41:96:ee:e7:0c:11:7a: ef:c1:9f:9b:0d:bd:b2:da:31:db:0e:07:b1:c8:fa: 34:e7:04:e4:4f:09:0c:a1:a2:95:50:30:7f:10:e9: 54:5f:e7:6b:62:ec:3c:0f:2c:9c:68:7f:2d:79:fb: 1f:2b:a4:0a:22:70:48:54:b4:fa:e4:c7:c5:b6:0d: 95:32:8b:37:79:a6:d2:28:a2:0b:1d:a0:39:c7:16: 89:8b:3f:49:cc:41:22:81:d9:83:41:14:b2:6c:f3: 4e:07:4b:99:23:e5:6d:49:2b:e6:ff:fc:c8:77:13: 81:10:78:db:4c:7d:84:c5:73:bb:e4:a4:52:b5:21: ac:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:64:AD:D0:8B:AA:01:06:37:08:9E:DF:86:4B:A0:49:32:96:FF:B8 X509v3 Authority Key Identifier: keyid:D9:F2:00:E2:D3:86:83:A7:CB:1C:E5:CA:BB:EE:34:C0:68:83:4A:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/d2St0IuqAQY3CJ7fhkugSTKW_7g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/2fIA4tOGg6fLHOXKu-40wGiDSgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.134.240.0/21 Signature Algorithm: sha256WithRSAEncryption 66:c4:a3:1b:e7:fe:ff:63:8d:3e:43:82:3e:85:35:49:5a:62: 07:7b:c5:07:06:b2:0c:c1:19:03:79:4a:eb:9b:0c:ea:00:49: 99:9f:fc:b1:a6:4f:4e:05:8f:3b:90:b1:e3:df:f2:2c:54:3c: 9d:ac:01:cc:34:23:4a:b8:f1:14:42:05:a5:b3:a3:97:10:b8: a8:75:24:13:69:b1:83:57:a5:91:5b:20:6a:75:e6:44:7c:e8: 10:2f:e2:2f:46:0c:08:4c:db:91:06:51:9f:2b:5b:f7:58:79: 73:0a:da:ae:79:fb:2a:ae:55:6b:45:dc:31:77:6e:58:e8:ff: 29:de:b4:64:55:3d:9d:40:53:28:97:6b:03:cc:52:85:84:97: 99:c6:e1:f9:eb:f4:dd:ef:24:92:3c:fc:e1:92:eb:0b:f9:66: af:df:80:75:cb:38:51:de:69:4a:8b:bc:2d:10:a1:3e:bb:c8: a7:80:4c:73:06:0e:c5:9c:e3:71:82:f6:4b:e4:86:db:e7:f0: db:08:51:d9:91:1b:2f:d8:5b:b8:33:71:ea:f3:14:21:c6:40: f2:6d:ea:35:4c:8a:83:6c:f7:38:2c:ce:fb:a9:f9:b8:9f:ed: c8:68:ba:de:ef:d8:42:e7:12:12:ff:f4:86:18:6a:6f:4e:da: 29:cb:55:26 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p1wI/ZqkdTRRrRFNzvk/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZjIwMGUyZDM4NjgzYTdjYjFjZTVjYWJiZWUzNGMwNjg4 MzRhMGIwHhcNMjYwMTAyMTIyMDU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzY0YWRkMDhiYWEwMTA2MzcwODllZGY4NjRiYTA0OTMyOTZmZmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Jcblv4e8VzrxxC/ehqtF8ppNUVa YadTMXvuRZrVtzhnpjka2T29cPRuVoVxNNBp1/tG9oBecbfQkQvsQBs51b3WVh+A EXI7zaQRquoxukWtuhYphNAhPLW3oRL0Oi5bb31EWa1u/wfw+HQ1Zk44sn1JxzqW CzePxnwfRTo99UGW7ucMEXrvwZ+bDb2y2jHbDgexyPo05wTkTwkMoaKVUDB/EOlU X+drYuw8DyycaH8tefsfK6QKInBIVLT65MfFtg2VMos3eabSKKILHaA5xxaJiz9J zEEigdmDQRSybPNOB0uZI+VtSSvm//zIdxOBEHjbTH2ExXO75KRStSGs3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHdkrdCLqgEGNwie34ZLoEkylv+4MB8GA1UdIwQY MBaAFNnyAOLThoOnyxzlyrvuNMBog0oLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmZJQTR0T0dnNmZMSE9YS3UtNDB3R2lEU2dzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8zMDdiOTgtYzIyMi00ODM1LTgzODEt MDljOGZlNzI0Y2Q3LzEvZDJTdDBJdXFBUVkzQ0o3ZmhrdWdTVEtXXzdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC8zMDdiOTgtYzIyMi00ODM1LTgzODEtMDljOGZlNzI0Y2Q3 LzEvMmZJQTR0T0dnNmZMSE9YS3UtNDB3R2lEU2dzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwYbwMA0G CSqGSIb3DQEBCwUAA4IBAQBmxKMb5/7/Y40+Q4I+hTVJWmIHe8UHBrIMwRkDeUrr mwzqAEmZn/yxpk9OBY87kLHj3/IsVDydrAHMNCNKuPEUQgWls6OXELiodSQTabGD V6WRWyBqdeZEfOgQL+IvRgwITNuRBlGfK1v3WHlzCtquefsqrlVrRdwxd25Y6P8p 3rRkVT2dQFMol2sDzFKFhJeZxuH56/Td7ySSPPzhkusL+Wav34B1yzhR3mlKi7wt EKE+u8ingExzBg7FnONxgvZL5Ibb5/DbCFHZkRsv2Fu4M3Hq8xQhxkDybeo1TIqD bPc4LM77qfm4n+3IaLre79hC5xIS//SGGGpvTtopy1Um -----END CERTIFICATE-----Generated at Sat Jan 17 08:24:52 2026 by rpki-client