This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/2lIrLryq7HmTfKPpabcjHK3nq9Q.roa File: 2lIrLryq7HmTfKPpabcjHK3nq9Q.roa (raw, json) Hash identifier: MkcC0DbST39IMIeFpGmr2s8DCTzDmeI+HCPABqpiG9U= Subject key identifier: DA:52:2B:2E:BC:AA:EC:79:93:7C:A3:E9:69:B7:23:1C:AD:E7:AB:D4 Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A2FE0C43341D84341EF404AF97D612 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/2lIrLryq7HmTfKPpabcjHK3nq9Q.roa Signing time: Thu 01 Jan 2026 08:18:26 +0000 ROA not before: Thu 01 Jan 2026 08:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44851 IP address blocks: 31.13.196.0/24 maxlen: 24 93.123.120.0/21 maxlen: 21 93.123.120.0/22 maxlen: 22 93.123.120.0/24 maxlen: 24 93.123.121.0/24 maxlen: 24 93.123.122.0/24 maxlen: 24 93.123.123.0/24 maxlen: 24 93.123.124.0/22 maxlen: 22 93.123.124.0/24 maxlen: 24 93.123.125.0/24 maxlen: 24 93.123.126.0/24 maxlen: 24 93.123.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:fe:0c:43:34:1d:84:34:1e:f4:04:af:97:d6:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da522b2ebcaaec79937ca3e969b7231cade7abd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:49:01:43:06:9c:1f:26:56:82:de:d9:54: 86:c4:a3:55:40:e6:f8:20:6e:1d:84:9b:e0:e0:e0: a2:fa:07:f5:cf:ed:23:57:79:e0:c0:0b:a6:dc:f3: 2a:15:67:13:29:a0:66:30:bd:e4:ac:d0:47:c1:7c: 11:3b:35:52:4f:25:e4:9a:d4:88:e4:e7:1c:98:e9: 96:5b:bc:57:e1:3e:df:72:69:04:47:38:2d:4d:67: c9:26:57:42:e3:bd:c3:f8:3c:0e:11:7f:a5:33:32: 96:fc:2f:ea:81:6b:74:31:36:01:7c:e6:c7:4d:74: 41:9d:1b:19:b9:94:02:77:cb:52:d3:62:f0:47:77: 68:5d:53:1e:38:fe:c3:ce:7b:6b:85:34:be:b8:45: 81:07:e1:1c:c1:9e:d8:db:f6:d3:68:a9:a6:3b:b9: f7:ff:5d:b0:73:32:2a:26:d0:d6:6c:bf:00:1c:96: 2e:d2:4d:b1:5f:c5:a8:06:c9:bc:8a:62:04:be:d4: 48:07:99:a4:a6:64:a7:db:51:fd:b0:7c:75:26:9a: 99:94:b7:38:df:96:b8:7e:b9:c3:59:8f:2e:6a:ea: d0:e5:a5:d4:8e:59:a1:30:93:d0:ed:2e:73:43:29: 03:d3:ea:e6:c3:89:82:59:ac:36:ca:9c:eb:2f:3a: 2a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:52:2B:2E:BC:AA:EC:79:93:7C:A3:E9:69:B7:23:1C:AD:E7:AB:D4 X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/2lIrLryq7HmTfKPpabcjHK3nq9Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.13.196.0/24 93.123.120.0/21 Signature Algorithm: sha256WithRSAEncryption 20:d1:2e:bc:b4:db:50:a7:9d:a4:66:0f:c3:8b:44:5c:9f:97: 63:0d:53:93:7b:73:aa:88:d9:0a:97:e2:c1:68:32:7a:c6:7f: fb:23:8f:fa:43:93:55:10:d1:23:7f:af:de:ab:8b:bd:a1:60: e6:d5:c6:f2:d3:be:8c:26:26:c2:1d:08:34:b9:5d:2b:87:85: 6d:e1:a8:0f:98:2b:cb:90:ac:85:72:4f:2e:6b:a4:13:ff:cf: df:f3:1b:89:dd:9f:f3:61:05:84:4d:5a:5c:89:71:88:4b:12: 3c:77:a3:6e:40:97:c4:ff:4d:20:04:ad:37:44:a1:6f:4b:b5: 7f:85:cc:ad:98:e5:5d:61:c6:8e:7d:9c:e8:da:e4:3c:d2:2d: b5:cd:f6:22:05:1e:7e:da:6a:f1:8f:c6:06:3d:33:a0:c2:03: 2c:ab:c2:ee:a9:c1:84:e4:1c:1d:00:61:d6:7f:27:dc:95:4b: fd:01:52:8f:0f:c9:df:ac:7b:24:ba:ab:2e:b2:04:3f:8c:1e: 17:7e:6b:d5:56:d5:b4:d5:9d:78:e0:2c:09:62:4b:ab:5f:7c: a8:c1:0a:2e:05:d9:30:e9:0c:51:78:31:d1:cc:60:3e:a0:2c: 9c:b9:e9:07:99:37:84:26:ed:b2:8e:a9:c0:dc:d1:26:36:c8: 04:76:cf:2e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4ov4MQzQdhDQe9ASvl9YSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTUyMmIyZWJjYWFlYzc5OTM3Y2EzZTk2OWI3MjMxY2FkZTdhYmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzlpJAUMGnB8mVoLe2VSGxKNVQOb4 IG4dhJvg4OCi+gf1z+0jV3ngwAum3PMqFWcTKaBmML3krNBHwXwROzVSTyXkmtSI 5OccmOmWW7xX4T7fcmkERzgtTWfJJldC473D+DwOEX+lMzKW/C/qgWt0MTYBfObH TXRBnRsZuZQCd8tS02LwR3doXVMeOP7DzntrhTS+uEWBB+EcwZ7Y2/bTaKmmO7n3 /12wczIqJtDWbL8AHJYu0k2xX8WoBsm8imIEvtRIB5mkpmSn21H9sHx1JpqZlLc4 35a4frnDWY8uaurQ5aXUjlmhMJPQ7S5zQykD0+rmw4mCWaw2ypzrLzoqIQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNpSKy68qux5k3yj6Wm3Ixyt56vUMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvMmxJckxyeXE3SG1UZktQcGFiY2pISzNucTlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHw3EAwQD XXt4MA0GCSqGSIb3DQEBCwUAA4IBAQAg0S68tNtQp52kZg/Di0Rcn5djDVOTe3Oq iNkKl+LBaDJ6xn/7I4/6Q5NVENEjf6/eq4u9oWDm1cby076MJibCHQg0uV0rh4Vt 4agPmCvLkKyFck8ua6QT/8/f8xuJ3Z/zYQWETVpciXGISxI8d6NuQJfE/00gBK03 RKFvS7V/hcytmOVdYcaOfZzo2uQ80i21zfYiBR5+2mrxj8YGPTOgwgMsq8LuqcGE 5BwdAGHWfyfclUv9AVKPD8nfrHskuqsusgQ/jB4XfmvVVtW01Z144CwJYkurX3yo wQouBdkw6QxReDHRzGA+oCycuekHmTeEJu2yjqnA3NEmNsgEds8u -----END CERTIFICATE-----Generated at Fri Jan 2 12:05:20 2026 by rpki-client