This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/gK2Rq9Zs-Y9rHAKXi0YVfwz0vlI.roa File: gK2Rq9Zs-Y9rHAKXi0YVfwz0vlI.roa (raw, json) Hash identifier: soCJxr1Be9fMlxT+zXNdcRqutbnVfTkKZ0DnRO9Wh6M= Subject key identifier: 80:AD:91:AB:D6:6C:F9:8F:6B:1C:02:97:8B:46:15:7F:0C:F4:BE:52 Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2 Certificate serial: 019B7EA726059272CD3BA647A85B5B15CD3E Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/gK2Rq9Zs-Y9rHAKXi0YVfwz0vlI.roa Signing time: Fri 02 Jan 2026 12:20:42 +0000 ROA not before: Fri 02 Jan 2026 12:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.1.105.0/24 maxlen: 24 2001:7f8:bf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:26:05:92:72:cd:3b:a6:47:a8:5b:5b:15:cd:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2 Validity Not Before: Jan 2 12:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=80ad91abd66cf98f6b1c02978b46157f0cf4be52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:18:34:01:41:45:4e:78:08:a1:9d:be:20: 99:c8:c3:23:64:5d:30:28:81:d9:33:81:ec:4c:f6: 99:72:66:80:2a:94:e3:04:92:e2:79:c9:c8:10:80: 15:e9:67:52:1c:eb:19:e2:4f:1b:07:87:93:d4:69: 18:f9:22:4c:49:df:43:e8:20:64:3b:94:6d:a6:90: 4d:d6:19:3b:2b:45:cf:d8:32:15:29:ac:79:a5:2f: 6e:d2:4e:60:42:cb:43:19:f7:c9:66:22:b6:8d:be: 71:c5:7f:ab:32:f8:bd:59:eb:b7:bf:7c:ca:40:0e: 00:17:cb:a9:e8:46:52:ca:02:9a:e5:2d:26:df:9b: b1:6f:80:a9:0d:ad:ad:d2:81:46:c3:85:b2:63:b0: a2:e1:bb:73:a6:62:e7:37:7b:31:fe:33:59:e5:f0: 1c:da:3e:f3:0b:0a:8b:40:c3:46:8c:23:2e:4b:75: f3:66:bb:4f:a2:82:6d:77:e7:1a:b2:67:22:9a:64: c7:d1:6d:c1:07:f1:1a:24:b0:30:15:e4:84:fe:7f: 1b:60:79:15:22:77:cc:92:bb:1e:6d:c4:e9:de:1c: 3c:d3:39:38:d7:13:59:f3:76:3b:99:1f:88:1b:ac: 96:76:31:bf:8f:fb:f6:95:0e:40:a4:1a:29:76:d9: 13:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AD:91:AB:D6:6C:F9:8F:6B:1C:02:97:8B:46:15:7F:0C:F4:BE:52 X509v3 Authority Key Identifier: keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/gK2Rq9Zs-Y9rHAKXi0YVfwz0vlI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.105.0/24 IPv6: 2001:7f8:bf::/48 Signature Algorithm: sha256WithRSAEncryption 28:69:a7:54:16:83:38:d7:c1:52:c1:ea:af:9a:86:34:d4:b3: 38:1a:1c:24:1e:bc:b3:f3:92:2e:73:08:43:09:54:b1:f8:bc: 7e:15:74:ab:3b:c5:cd:79:81:10:83:a2:53:80:43:04:9d:18: 14:ea:2d:0a:db:27:71:55:53:39:fa:87:e6:9d:0a:c7:64:fb: 97:c9:4e:3d:46:2a:d6:d8:68:ee:35:d8:b4:31:cd:02:4a:4c: b0:93:b2:c7:aa:5b:78:aa:92:4e:fc:fe:bb:0d:8e:e3:61:68: 21:95:14:c7:24:3f:fe:e0:38:9d:56:c5:97:c1:4b:2f:88:34: 92:09:57:fb:a8:e1:5d:83:da:93:22:0e:82:70:a6:97:33:9f: a2:02:a1:f9:ab:41:40:cc:e5:82:b4:76:62:fb:22:96:81:7e: 2c:3d:0d:81:22:5b:a9:dc:d9:5d:f8:4c:7e:75:47:c2:75:9a: ec:f7:19:48:68:85:3b:f1:a6:69:9d:46:a8:d8:f1:52:ed:14: 1b:4a:de:bc:d5:ce:1f:42:f8:96:ea:cb:70:df:ce:2c:dd:ac: 23:c9:fc:b5:9a:ac:d5:f6:1c:37:e9:a1:23:23:45:15:1b:87: 3d:f0:03:7c:9b:4a:2c:45:d3:7d:a9:a7:b0:c8:6c:30:ec:5c: 73:10:2f:b3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+pyYFknLNO6ZHqFtbFc0+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMGNjNDYzMDFjOGIxZmQ0NjM5MjkzMDE4ZmJhNTM2NTNh MjY1YjIwHhcNMjYwMTAyMTIyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MGFkOTFhYmQ2NmNmOThmNmIxYzAyOTc4YjQ2MTU3ZjBjZjRiZTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhMYNAFBRU54CKGdviCZyMMjZF0w KIHZM4HsTPaZcmaAKpTjBJLiecnIEIAV6WdSHOsZ4k8bB4eT1GkY+SJMSd9D6CBk O5RtppBN1hk7K0XP2DIVKax5pS9u0k5gQstDGffJZiK2jb5xxX+rMvi9Weu3v3zK QA4AF8up6EZSygKa5S0m35uxb4CpDa2t0oFGw4WyY7Ci4btzpmLnN3sx/jNZ5fAc 2j7zCwqLQMNGjCMuS3XzZrtPooJtd+casmcimmTH0W3BB/EaJLAwFeSE/n8bYHkV InfMkrsebcTp3hw80zk41xNZ83Y7mR+IG6yWdjG/j/v2lQ5ApBopdtkTIQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFICtkavWbPmPaxwCl4tGFX8M9L5SMB8GA1UdIwQY MBaAFCoMxGMByLH9RjkpMBj7pTZTomWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8yODYyZDEtMmNjOS00NTY1LTg2YzIt MmJiNTU5N2EyNDM1LzEvZ0syUnE5WnMtWTlySEFLWGkwWVZmd3owdmxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8yODYyZDEtMmNjOS00NTY1LTg2YzItMmJiNTU5N2EyNDM1 LzEvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQFpMA8E AgACMAkDBwAgAQf4AL8wDQYJKoZIhvcNAQELBQADggEBAChpp1QWgzjXwVLB6q+a hjTUszgaHCQevLPzki5zCEMJVLH4vH4VdKs7xc15gRCDolOAQwSdGBTqLQrbJ3FV Uzn6h+adCsdk+5fJTj1GKtbYaO412LQxzQJKTLCTsseqW3iqkk78/rsNjuNhaCGV FMckP/7gOJ1WxZfBSy+INJIJV/uo4V2D2pMiDoJwppczn6ICofmrQUDM5YK0dmL7 IpaBfiw9DYEiW6nc2V34TH51R8J1muz3GUhohTvxpmmdRqjY8VLtFBtK3rzVzh9C +Jbqy3DfzizdrCPJ/LWarNX2HDfpoSMjRRUbhz3wA3ybSixF032pp7DIbDDsXHMQ L7M= -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:02 2026 by rpki-client