This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/2J_enL0mq_HbBFj1p_d_qyIXNks.roa File: 2J_enL0mq_HbBFj1p_d_qyIXNks.roa (raw, json) Hash identifier: VBLGjSkxg5gn4s0UWv4znpc4mtgeavbmnZnDA3LFAO4= Subject key identifier: D8:9F:DE:9C:BD:26:AB:F1:DB:04:58:F5:A7:F7:7F:AB:22:17:36:4B Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82 Certificate serial: 019B7AC84A4EAC6EE467AD6A5677446292D0 Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/2J_enL0mq_HbBFj1p_d_qyIXNks.roa Signing time: Thu 01 Jan 2026 18:18:25 +0000 ROA not before: Thu 01 Jan 2026 18:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 51.198.68.0/23 maxlen: 24 2a06:5901:8400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.mft rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:4a:4e:ac:6e:e4:67:ad:6a:56:77:44:62:92:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82 Validity Not Before: Jan 1 18:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d89fde9cbd26abf1db0458f5a7f77fab2217364b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:52:d6:ae:93:ba:14:82:4d:64:f3:c4:20:92: 4d:c1:d5:cd:bb:19:ee:d9:71:16:ae:06:17:86:b0: 61:7e:60:1a:dd:b1:c4:23:cb:11:f3:11:8d:79:a0: 9a:c1:0a:db:35:6e:30:61:c2:20:0a:c6:e4:bc:8b: 7e:e9:3a:8a:38:50:6a:37:01:1b:9c:23:66:a1:81: 1b:d1:db:cc:79:04:21:56:4a:82:65:39:8d:43:c9: 25:0d:14:2b:ea:72:7a:25:84:fc:ba:b5:7e:61:6b: 87:b3:ff:bd:56:50:f8:dc:3e:ed:41:30:d1:6e:e1: c2:17:be:3d:ad:8d:0b:ad:e7:47:ad:78:58:c9:3a: 49:34:63:1a:b5:ad:28:4b:8b:09:0c:d7:1d:ac:ab: c9:9e:70:ae:7e:84:8b:45:33:94:35:19:20:9c:f7: 4d:1e:79:a1:f9:3e:0c:20:42:17:23:e4:ea:17:ed: db:b7:f3:c4:55:22:aa:81:b7:0e:4e:30:4d:69:5e: d3:ed:35:ac:f9:29:3b:58:87:96:96:b3:a4:19:26: 39:70:f7:44:f2:ae:9e:5a:be:53:20:34:93:62:58: a8:89:af:7a:d3:01:c3:15:e4:d6:5c:d2:f2:ce:c1: f2:ef:37:36:53:44:ab:76:07:2e:3d:53:75:a6:ce: 6d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9F:DE:9C:BD:26:AB:F1:DB:04:58:F5:A7:F7:7F:AB:22:17:36:4B X509v3 Authority Key Identifier: keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/2J_enL0mq_HbBFj1p_d_qyIXNks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.198.68.0/23 IPv6: 2a06:5901:8400::/40 Signature Algorithm: sha256WithRSAEncryption 35:1b:93:9c:c5:86:e9:b6:b0:19:c7:8e:f9:2b:67:66:33:3d: 24:5e:a8:fd:dc:b2:14:9e:8b:6b:9a:32:ed:8d:1f:84:5c:d9: 28:7d:90:67:45:60:e3:87:17:ad:37:11:14:c7:59:3b:2a:a9: 0b:7f:6b:1b:2c:9e:64:96:75:61:0c:19:ee:8b:2a:73:fb:5f: 3d:1f:f1:ff:2b:20:70:98:2c:37:fa:17:20:a0:f9:15:22:3d: 7b:a8:bc:01:6c:ab:57:24:db:aa:13:85:66:e5:c9:26:a5:12: ca:0d:56:14:39:c1:85:c1:b6:3a:92:78:4e:7b:57:6e:d5:12: 57:63:96:2c:3f:d6:81:2e:5f:49:b2:34:95:7e:47:cd:5b:61: 5d:21:c0:67:8c:df:d7:5a:e4:d0:17:35:40:01:e7:aa:01:4b: 43:c2:00:32:38:45:ea:24:ed:cb:7e:05:76:14:52:94:d7:6a: 89:42:e2:db:64:6d:67:49:ec:c5:76:83:c4:0d:75:70:ba:c6: 39:8a:d7:77:1c:a2:32:f2:b4:e0:21:c8:63:47:6e:fc:53:8d: f6:9a:96:67:7b:f2:cf:ae:53:fe:50:c9:a8:9b:5b:f0:e1:2b: 22:7e:6e:16:56:aa:92:d5:37:06:00:0e:bf:c8:a7:5c:84:7b: 61:bd:60:a9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt6yEpOrG7kZ61qVndEYpLQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MWQ0YTQzNzRkZjIyMmFjMzIzNWI5NjAyMjA2ZDk2YmYx ZGFjODIwHhcNMjYwMTAxMTgxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkODlmZGU5Y2JkMjZhYmYxZGIwNDU4ZjVhN2Y3N2ZhYjIyMTczNjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVLWrpO6FIJNZPPEIJJNwdXNuxnu 2XEWrgYXhrBhfmAa3bHEI8sR8xGNeaCawQrbNW4wYcIgCsbkvIt+6TqKOFBqNwEb nCNmoYEb0dvMeQQhVkqCZTmNQ8klDRQr6nJ6JYT8urV+YWuHs/+9VlD43D7tQTDR buHCF749rY0LredHrXhYyTpJNGMata0oS4sJDNcdrKvJnnCufoSLRTOUNRkgnPdN Hnmh+T4MIEIXI+TqF+3bt/PEVSKqgbcOTjBNaV7T7TWs+Sk7WIeWlrOkGSY5cPdE 8q6eWr5TIDSTYlioia960wHDFeTWXNLyzsHy7zc2U0SrdgcuPVN1ps5tJQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFNif3py9Jqvx2wRY9af3f6siFzZLMB8GA1UdIwQY MBaAFPcdSkN03yIqwyNblgIgbZa/HayCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUt ZTlhYzJiMDAzMTZhLzEvMkpfZW5MMG1xX0hiQkZqMXBfZF9xeUlYTmtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUtZTlhYzJiMDAzMTZh LzEvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQBM8ZEMA4E AgACMAgDBgAqBlkBhDANBgkqhkiG9w0BAQsFAAOCAQEANRuTnMWG6bawGceO+Stn ZjM9JF6o/dyyFJ6La5oy7Y0fhFzZKH2QZ0Vg44cXrTcRFMdZOyqpC39rGyyeZJZ1 YQwZ7osqc/tfPR/x/ysgcJgsN/oXIKD5FSI9e6i8AWyrVyTbqhOFZuXJJqUSyg1W FDnBhcG2OpJ4TntXbtUSV2OWLD/WgS5fSbI0lX5HzVthXSHAZ4zf11rk0Bc1QAHn qgFLQ8IAMjhF6iTty34FdhRSlNdqiULi22RtZ0nsxXaDxA11cLrGOYrXdxyiMvK0 4CHIY0du/FON9pqWZ3vyz65T/lDJqJtb8OErIn5uFlaqktU3BgAOv8inXIR7Yb1g qQ== -----END CERTIFICATE-----Generated at Fri Jan 9 06:21:15 2026 by rpki-client