This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/2JOxayZ4kxrtihpkJSNfTVv34wU.roa File: 2JOxayZ4kxrtihpkJSNfTVv34wU.roa (raw, json) Hash identifier: zOn78CRIowaCVixyqjErS7L368UV3aEuLomuXw4ifTk= Subject key identifier: D8:93:B1:6B:26:78:93:1A:ED:8A:1A:64:25:23:5F:4D:5B:F7:E3:05 Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046 Certificate serial: 019B7B364C1A50F49225E5A584E3C7415F5C Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/2JOxayZ4kxrtihpkJSNfTVv34wU.roa Signing time: Thu 01 Jan 2026 20:18:34 +0000 ROA not before: Thu 01 Jan 2026 20:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50304 IP address blocks: 185.101.144.0/24 maxlen: 24 185.101.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.mft rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:4c:1a:50:f4:92:25:e5:a5:84:e3:c7:41:5f:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046 Validity Not Before: Jan 1 20:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d893b16b2678931aed8a1a6425235f4d5bf7e305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:77:4f:df:6c:97:4b:f8:14:2a:d8:18:45:2a: c0:55:f2:cc:1a:34:96:6d:e2:18:7c:e0:f9:f3:eb: bb:1e:5f:7d:bd:60:3b:23:e8:88:f9:d3:1e:41:6d: 75:25:98:55:6e:8c:81:bb:88:c3:42:c8:16:37:9e: 90:74:e0:5b:8d:17:d8:59:48:6e:cc:78:4b:69:3a: 07:2b:54:a9:bc:94:be:a7:0f:54:bf:3f:8e:33:7b: 50:0d:9a:aa:6f:c1:ab:36:74:ba:5e:d8:bc:e1:03: 17:2a:24:c6:bc:4f:64:7b:76:99:79:c0:df:52:4b: fa:8b:58:f3:9c:f9:01:d6:12:99:57:de:1a:b3:54: 2d:a5:e5:5d:43:76:62:fe:29:fc:cc:1d:8d:1f:e9: 15:aa:25:bd:9f:9f:f6:3d:a7:9c:b0:7f:10:c6:12: a5:cc:96:67:cc:96:40:fd:a5:32:04:9a:1d:f2:e3: 68:9c:b2:e3:4d:6b:95:70:27:a9:25:66:57:ee:0a: 73:69:8a:17:32:66:4a:61:8c:95:63:27:36:9b:e8: 29:fb:5b:75:46:b2:df:dd:44:43:c3:38:e2:d6:72: 87:98:6d:ec:cd:15:43:46:1a:82:88:c2:7c:83:b0: e4:ee:fc:38:c9:c6:18:01:50:95:53:83:64:97:c6: de:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:93:B1:6B:26:78:93:1A:ED:8A:1A:64:25:23:5F:4D:5B:F7:E3:05 X509v3 Authority Key Identifier: keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/2JOxayZ4kxrtihpkJSNfTVv34wU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.101.144.0/23 Signature Algorithm: sha256WithRSAEncryption 03:1b:03:b3:ac:50:d3:b4:3e:31:99:09:49:f7:1f:31:52:74: 38:8c:65:ed:28:3d:7c:3a:de:b7:bc:93:ee:ec:89:2c:75:88: 96:c1:b8:92:93:5a:95:5c:af:b4:80:8d:9d:d7:49:26:71:ef: f8:6c:69:ff:6e:64:33:69:1c:29:56:6e:8d:6e:a1:84:85:6d: 1e:ed:86:0c:df:ec:86:69:96:44:27:9d:f2:4e:fc:07:94:4e: 88:d8:59:fe:71:d2:ce:55:99:3c:9f:23:bd:e7:5b:45:f3:15: b1:5e:36:be:28:97:ee:64:e6:78:95:1c:53:ea:16:e1:dd:00: 17:85:f8:50:80:84:a5:01:31:09:0e:bd:07:dd:a7:51:13:98: fa:c9:46:91:46:e7:c0:f0:47:5a:e0:98:0d:78:06:20:fa:03: c9:01:55:6e:cb:e0:47:9f:d4:39:d0:08:41:e6:fc:af:86:be: fb:5f:54:8e:f0:d4:e6:b1:a3:b1:88:1b:a8:2b:07:19:42:af: f3:23:20:99:6c:1f:3f:64:77:92:1c:48:32:80:51:14:c5:26: b5:63:13:87:78:d1:8e:8e:e6:9e:0a:e1:e6:17:7c:51:29:cb: 9f:46:1c:20:2e:9a:7e:99:ae:3f:5c:53:d8:99:ee:e0:e1:ea: 36:87:77:fe -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NkwaUPSSJeWlhOPHQV9cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjYTY0M2JiMzk5YzZkODdhZGM0YzdjYmE1ZDJiNzJmYmQw MGQwNDYwHhcNMjYwMTAxMjAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkODkzYjE2YjI2Nzg5MzFhZWQ4YTFhNjQyNTIzNWY0ZDViZjdlMzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHdP32yXS/gUKtgYRSrAVfLMGjSW beIYfOD58+u7Hl99vWA7I+iI+dMeQW11JZhVboyBu4jDQsgWN56QdOBbjRfYWUhu zHhLaToHK1SpvJS+pw9Uvz+OM3tQDZqqb8GrNnS6Xti84QMXKiTGvE9ke3aZecDf Ukv6i1jznPkB1hKZV94as1QtpeVdQ3Zi/in8zB2NH+kVqiW9n5/2PaecsH8QxhKl zJZnzJZA/aUyBJod8uNonLLjTWuVcCepJWZX7gpzaYoXMmZKYYyVYyc2m+gp+1t1 RrLf3URDwzji1nKHmG3szRVDRhqCiMJ8g7Dk7vw4ycYYAVCVU4Nkl8bemQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNiTsWsmeJMa7YoaZCUjX01b9+MFMB8GA1UdIwQY MBaAFHymQ7s5nG2HrcTHy6XSty+9ANBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZktaRHV6bWNiWWV0eE1mTHBkSzNMNzBBMEVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9jMDMwMWQtNTgwMS00YWM2LWI1MDMt NDRlYTY0NzIxYzllLzEvMkpPeGF5WjRreHJ0aWhwa0pTTmZUVnYzNHdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi9jMDMwMWQtNTgwMS00YWM2LWI1MDMtNDRlYTY0NzIxYzll LzEvZktaRHV6bWNiWWV0eE1mTHBkSzNMNzBBMEVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuWWQMA0G CSqGSIb3DQEBCwUAA4IBAQADGwOzrFDTtD4xmQlJ9x8xUnQ4jGXtKD18Ot63vJPu 7IksdYiWwbiSk1qVXK+0gI2d10kmce/4bGn/bmQzaRwpVm6NbqGEhW0e7YYM3+yG aZZEJ53yTvwHlE6I2Fn+cdLOVZk8nyO951tF8xWxXja+KJfuZOZ4lRxT6hbh3QAX hfhQgISlATEJDr0H3adRE5j6yUaRRufA8Eda4JgNeAYg+gPJAVVuy+BHn9Q50AhB 5vyvhr77X1SO8NTmsaOxiBuoKwcZQq/zIyCZbB8/ZHeSHEgygFEUxSa1YxOHeNGO juaeCuHmF3xRKcufRhwgLpp+ma4/XFPYme7g4eo2h3f+ -----END CERTIFICATE-----Generated at Fri Jan 23 21:40:55 2026 by rpki-client