This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/dffa1f-cf4a-4c90-b307-db36eea8307f/1/sFud2BTbJwkG-pVAdyDfG15ADY4.roa File: sFud2BTbJwkG-pVAdyDfG15ADY4.roa (raw, json) Hash identifier: eFUaMvgAqEZ4NQM49KaL16OfknWWnOfs9H02j9J+2Bs= Subject key identifier: B0:5B:9D:D8:14:DB:27:09:06:FA:95:40:77:20:DF:1B:5E:40:0D:8E Certificate issuer: /CN=2dcd2c2c1411b46b18f70e677101ada11ccb5198 Certificate serial: 019B7759276A53F1420B7ABB091E537C3AE5 Authority key identifier: 2D:CD:2C:2C:14:11:B4:6B:18:F7:0E:67:71:01:AD:A1:1C:CB:51:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lc0sLBQRtGsY9w5ncQGtoRzLUZg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/dffa1f-cf4a-4c90-b307-db36eea8307f/1/sFud2BTbJwkG-pVAdyDfG15ADY4.roa Signing time: Thu 01 Jan 2026 02:18:10 +0000 ROA not before: Thu 01 Jan 2026 02:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 37.252.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/dffa1f-cf4a-4c90-b307-db36eea8307f/1/Lc0sLBQRtGsY9w5ncQGtoRzLUZg.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/dffa1f-cf4a-4c90-b307-db36eea8307f/1/Lc0sLBQRtGsY9w5ncQGtoRzLUZg.mft rsync://rpki.ripe.net/repository/DEFAULT/Lc0sLBQRtGsY9w5ncQGtoRzLUZg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:27:6a:53:f1:42:0b:7a:bb:09:1e:53:7c:3a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dcd2c2c1411b46b18f70e677101ada11ccb5198 Validity Not Before: Jan 1 02:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b05b9dd814db270906fa95407720df1b5e400d8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7d:39:1a:be:36:f8:b9:44:5c:a7:4e:27:6a: bf:7a:8e:f9:40:1b:5c:ca:10:4b:a6:bf:76:86:a9: 30:0a:8e:a8:d1:c8:0b:6f:92:3d:25:34:f9:bb:20: ed:15:fb:b2:5f:75:60:58:53:d3:b1:70:4f:5e:c4: 15:b2:12:cd:1d:a5:4d:19:20:71:85:82:32:33:c7: 48:9a:d8:35:7c:4f:a8:b3:13:0a:d7:b8:86:5e:2d: 4d:2f:b6:48:82:16:8c:8e:69:c7:12:f8:50:f6:2e: c9:e5:db:93:da:af:6a:5b:1e:3d:67:01:ea:5d:bb: 66:b8:45:c0:ef:58:07:40:5f:3c:a6:73:32:02:07: 81:9a:f8:a1:15:95:15:eb:a7:78:d2:34:75:e4:c3: 72:e0:af:70:c7:42:0f:6c:13:fa:14:aa:0d:41:09: b5:83:a3:ec:8e:32:9f:01:e8:79:82:79:25:2f:a2: e7:32:32:c2:53:b2:01:9e:c0:7a:53:21:c0:b3:e0: a6:05:4a:4e:35:93:c0:b1:7a:15:63:e2:6d:c2:7b: c1:52:12:4e:83:46:92:f3:43:9f:aa:f1:72:98:9e: d3:b6:df:86:7e:f1:bf:28:01:6d:e4:db:25:d2:64: 96:51:3c:2f:00:e9:f3:bf:c9:f8:b2:4a:4c:26:7f: a3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5B:9D:D8:14:DB:27:09:06:FA:95:40:77:20:DF:1B:5E:40:0D:8E X509v3 Authority Key Identifier: keyid:2D:CD:2C:2C:14:11:B4:6B:18:F7:0E:67:71:01:AD:A1:1C:CB:51:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lc0sLBQRtGsY9w5ncQGtoRzLUZg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dffa1f-cf4a-4c90-b307-db36eea8307f/1/sFud2BTbJwkG-pVAdyDfG15ADY4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dffa1f-cf4a-4c90-b307-db36eea8307f/1/Lc0sLBQRtGsY9w5ncQGtoRzLUZg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.252.192.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:37:a1:ef:2f:8d:99:1c:e1:46:b8:04:46:a7:4d:6c:24:e9: 69:24:a8:ea:49:d0:40:36:d3:9a:61:cd:5b:23:62:c5:79:63: df:d6:5c:59:94:dc:cd:44:9f:6d:06:9c:b2:d8:16:8e:7a:27: bc:3a:47:7a:97:e0:35:43:7c:07:7d:b5:46:b8:b4:80:88:fd: ed:1e:22:93:25:a8:04:aa:4b:8e:63:ec:7c:70:6a:f7:10:4b: 2f:aa:41:94:7d:83:fd:82:b8:dc:83:1a:17:77:f4:c8:cb:12: 2e:86:99:50:2b:2f:67:96:6a:05:ff:3d:6c:5b:de:97:ca:d4: fc:79:41:94:c7:30:86:a8:73:16:b0:92:2a:2d:6f:c6:70:b3: 6b:65:c4:12:c1:18:f8:97:06:02:b7:6c:f6:5a:aa:3a:19:22: 83:ba:c7:42:17:9d:79:33:08:bf:ee:f0:f6:6e:72:34:d9:30: 3c:c6:65:ac:b3:18:ce:3b:2c:85:43:e4:11:16:ae:c7:0b:68: c9:ce:81:33:b6:22:59:69:e0:7e:b5:35:60:6b:63:9a:95:80: b3:65:9b:8d:1c:33:df:f8:55:e7:cb:24:c7:92:d5:d1:09:09: 36:71:81:d7:8c:fa:ce:02:4f:8e:4d:ef:4f:1e:01:06:37:ea: 62:91:f9:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WSdqU/FCC3q7CR5TfDrlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkY2QyYzJjMTQxMWI0NmIxOGY3MGU2NzcxMDFhZGExMWNj YjUxOTgwHhcNMjYwMTAxMDIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDViOWRkODE0ZGIyNzA5MDZmYTk1NDA3NzIwZGYxYjVlNDAwZDhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvH05Gr42+LlEXKdOJ2q/eo75QBtc yhBLpr92hqkwCo6o0cgLb5I9JTT5uyDtFfuyX3VgWFPTsXBPXsQVshLNHaVNGSBx hYIyM8dImtg1fE+osxMK17iGXi1NL7ZIghaMjmnHEvhQ9i7J5duT2q9qWx49ZwHq XbtmuEXA71gHQF88pnMyAgeBmvihFZUV66d40jR15MNy4K9wx0IPbBP6FKoNQQm1 g6PsjjKfAeh5gnklL6LnMjLCU7IBnsB6UyHAs+CmBUpONZPAsXoVY+JtwnvBUhJO g0aS80OfqvFymJ7Ttt+GfvG/KAFt5Nsl0mSWUTwvAOnzv8n4skpMJn+jNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLBbndgU2ycJBvqVQHcg3xteQA2OMB8GA1UdIwQY MBaAFC3NLCwUEbRrGPcOZ3EBraEcy1GYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGMwc0xCUVJ0R3NZOXc1bmNRR3RvUnpMVVpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kZmZhMWYtY2Y0YS00YzkwLWIzMDct ZGIzNmVlYTgzMDdmLzEvc0Z1ZDJCVGJKd2tHLXBWQWR5RGZHMTVBRFk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9kZmZhMWYtY2Y0YS00YzkwLWIzMDctZGIzNmVlYTgzMDdm LzEvTGMwc0xCUVJ0R3NZOXc1bmNRR3RvUnpMVVpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDJfzAMA0G CSqGSIb3DQEBCwUAA4IBAQCON6HvL42ZHOFGuARGp01sJOlpJKjqSdBANtOaYc1b I2LFeWPf1lxZlNzNRJ9tBpyy2BaOeie8Okd6l+A1Q3wHfbVGuLSAiP3tHiKTJagE qkuOY+x8cGr3EEsvqkGUfYP9grjcgxoXd/TIyxIuhplQKy9nlmoF/z1sW96XytT8 eUGUxzCGqHMWsJIqLW/GcLNrZcQSwRj4lwYCt2z2Wqo6GSKDusdCF515Mwi/7vD2 bnI02TA8xmWssxjOOyyFQ+QRFq7HC2jJzoEztiJZaeB+tTVga2OalYCzZZuNHDPf +FXnyyTHktXRCQk2cYHXjPrOAk+OTe9PHgEGN+pikfkW -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:50 2026 by rpki-client