This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/208129-d086-49d4-9dc7-5a9ac7f39023/1/2AG4E7qAt_4fZev1XlJEGets8GQ.roa File: 2AG4E7qAt_4fZev1XlJEGets8GQ.roa (raw, json) Hash identifier: pOb52T7TL8V2yMfYjqzg4zNYa3sfzX3jMEvSLA8/EMM= Subject key identifier: D8:01:B8:13:BA:80:B7:FE:1F:65:EB:F5:5E:52:44:19:EB:6C:F0:64 Certificate issuer: /CN=377bd10f7d906c131c8c9e2fc7316416df4ae224 Certificate serial: 019B7910B28489DE0996B05F48B6212482E2 Authority key identifier: 37:7B:D1:0F:7D:90:6C:13:1C:8C:9E:2F:C7:31:64:16:DF:4A:E2:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N3vRD32QbBMcjJ4vxzFkFt9K4iQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/208129-d086-49d4-9dc7-5a9ac7f39023/1/2AG4E7qAt_4fZev1XlJEGets8GQ.roa Signing time: Thu 01 Jan 2026 10:18:15 +0000 ROA not before: Thu 01 Jan 2026 10:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47271 IP address blocks: 91.198.11.0/24 maxlen: 24 91.209.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/208129-d086-49d4-9dc7-5a9ac7f39023/1/N3vRD32QbBMcjJ4vxzFkFt9K4iQ.crl rsync://rpki.ripe.net/repository/DEFAULT/17/208129-d086-49d4-9dc7-5a9ac7f39023/1/N3vRD32QbBMcjJ4vxzFkFt9K4iQ.mft rsync://rpki.ripe.net/repository/DEFAULT/N3vRD32QbBMcjJ4vxzFkFt9K4iQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b2:84:89:de:09:96:b0:5f:48:b6:21:24:82:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=377bd10f7d906c131c8c9e2fc7316416df4ae224 Validity Not Before: Jan 1 10:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d801b813ba80b7fe1f65ebf55e524419eb6cf064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:27:6d:20:83:f3:d9:2e:0c:e5:82:7e:19:5a: a8:da:79:90:cf:b7:9b:c5:b2:aa:f9:a4:2b:05:af: 40:30:a1:e3:a9:a6:18:a2:62:70:8e:54:d3:ab:b8: 5f:3c:e9:5b:76:17:2e:85:94:d6:86:73:f9:26:58: cd:a5:1b:cb:ac:94:60:f5:d7:f3:5c:13:f7:7e:af: ad:7b:99:19:df:14:21:8b:8e:b6:77:b4:38:9c:74: bc:b3:98:fc:89:8a:92:58:96:a3:ac:b8:1f:f6:2a: df:f2:3a:51:17:9e:91:a9:88:e9:5f:89:65:90:70: 1d:e5:e0:59:ae:ef:8f:2b:c4:19:c6:09:65:52:14: d2:0a:1c:82:e5:64:20:38:04:61:71:8b:90:e0:b4: 87:04:7e:10:95:0c:ad:b4:59:39:e1:ca:68:bd:70: ab:05:3a:ce:d8:8e:71:f5:0a:ed:82:40:0d:81:d8: 4e:3a:0a:d8:a3:a0:cb:68:67:6f:41:48:49:75:b7: ec:6e:78:db:4e:f4:5f:27:71:d0:3f:35:99:50:26: 56:c5:ed:c0:5d:db:e8:39:52:91:26:47:30:58:93: db:37:f2:03:7a:a5:3c:12:e7:e0:52:8b:6d:54:97: 68:d8:fd:a3:93:a2:49:02:73:c3:ee:c1:01:43:23: 0e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:01:B8:13:BA:80:B7:FE:1F:65:EB:F5:5E:52:44:19:EB:6C:F0:64 X509v3 Authority Key Identifier: keyid:37:7B:D1:0F:7D:90:6C:13:1C:8C:9E:2F:C7:31:64:16:DF:4A:E2:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N3vRD32QbBMcjJ4vxzFkFt9K4iQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/208129-d086-49d4-9dc7-5a9ac7f39023/1/2AG4E7qAt_4fZev1XlJEGets8GQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/208129-d086-49d4-9dc7-5a9ac7f39023/1/N3vRD32QbBMcjJ4vxzFkFt9K4iQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.11.0/24 91.209.3.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:2c:86:ad:00:1b:ce:d4:da:aa:3a:53:7c:b7:fb:62:99:ae: b7:56:3f:85:c2:46:7f:aa:ce:28:3a:14:2a:94:70:12:62:e1: 7b:69:08:42:ed:cb:f0:f0:08:a9:00:98:07:b2:66:7e:83:30: f6:97:42:47:5f:d3:0c:df:dc:51:88:6f:31:d4:8b:c5:73:d3: 22:b1:70:90:00:ea:0f:00:82:a8:e4:61:ba:10:91:54:92:10: 79:5d:41:07:cc:38:db:9a:4a:fe:51:96:71:a8:be:09:39:16: e1:18:01:03:8b:18:c2:7d:cd:a2:40:95:4e:19:2c:f3:cd:8a: 55:33:f6:e2:c9:86:b1:22:44:bd:e2:99:2c:35:6c:a2:15:4b: 37:87:73:1d:5b:fe:dd:3d:da:19:59:b1:c7:e4:d4:9a:f8:98: da:c4:45:b8:9e:d9:ab:f4:2f:5a:49:b6:a0:ad:e2:d7:9e:47: 89:d7:14:cd:ff:d3:0d:d6:98:4a:be:1b:23:70:34:67:1a:df: cd:8b:c7:c2:14:0b:97:80:07:7e:00:02:e2:a5:e3:0c:bb:92: 93:28:e2:99:34:52:59:c6:35:17:95:82:5d:d0:98:93:29:c3: 1a:50:04:76:ca:ea:4f:90:f3:48:62:af:03:32:e1:22:57:3d: d3:c9:f3:9f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5ELKEid4JlrBfSLYhJILiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3N2JkMTBmN2Q5MDZjMTMxYzhjOWUyZmM3MzE2NDE2ZGY0 YWUyMjQwHhcNMjYwMTAxMTAxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkODAxYjgxM2JhODBiN2ZlMWY2NWViZjU1ZTUyNDQxOWViNmNmMDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgydtIIPz2S4M5YJ+GVqo2nmQz7eb xbKq+aQrBa9AMKHjqaYYomJwjlTTq7hfPOlbdhcuhZTWhnP5JljNpRvLrJRg9dfz XBP3fq+te5kZ3xQhi462d7Q4nHS8s5j8iYqSWJajrLgf9irf8jpRF56RqYjpX4ll kHAd5eBZru+PK8QZxgllUhTSChyC5WQgOARhcYuQ4LSHBH4QlQyttFk54cpovXCr BTrO2I5x9QrtgkANgdhOOgrYo6DLaGdvQUhJdbfsbnjbTvRfJ3HQPzWZUCZWxe3A XdvoOVKRJkcwWJPbN/IDeqU8EufgUottVJdo2P2jk6JJAnPD7sEBQyMOcwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNgBuBO6gLf+H2Xr9V5SRBnrbPBkMB8GA1UdIwQY MBaAFDd70Q99kGwTHIyeL8cxZBbfSuIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjN2UkQzMlFiQk1jako0dnh6RmtGdDlLNGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDgxMjktZDA4Ni00OWQ0LTlkYzct NWE5YWM3ZjM5MDIzLzEvMkFHNEU3cUF0XzRmWmV2MVhsSkVHZXRzOEdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDgxMjktZDA4Ni00OWQ0LTlkYzctNWE5YWM3ZjM5MDIz LzEvTjN2UkQzMlFiQk1jako0dnh6RmtGdDlLNGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW8YLAwQA W9EDMA0GCSqGSIb3DQEBCwUAA4IBAQCOLIatABvO1NqqOlN8t/tima63Vj+FwkZ/ qs4oOhQqlHASYuF7aQhC7cvw8AipAJgHsmZ+gzD2l0JHX9MM39xRiG8x1IvFc9Mi sXCQAOoPAIKo5GG6EJFUkhB5XUEHzDjbmkr+UZZxqL4JORbhGAEDixjCfc2iQJVO GSzzzYpVM/biyYaxIkS94pksNWyiFUs3h3MdW/7dPdoZWbHH5NSa+JjaxEW4ntmr 9C9aSbagreLXnkeJ1xTN/9MN1phKvhsjcDRnGt/Ni8fCFAuXgAd+AALipeMMu5KT KOKZNFJZxjUXlYJd0JiTKcMaUAR2yupPkPNIYq8DMuEiVz3TyfOf -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:52 2026 by rpki-client