This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/0gBlJTwbURvMna08HGkpbxF3GuY.roa File: 0gBlJTwbURvMna08HGkpbxF3GuY.roa (raw, json) Hash identifier: +AHpd/2s8j+dmg3ibj8zF8ms1DXXH4Z/pjBe0gUwZIo= Subject key identifier: D2:00:65:25:3C:1B:51:1B:CC:9D:AD:3C:1C:69:29:6F:11:77:1A:E6 Certificate issuer: /CN=e2c137106c1a46aea07c24b11729fd7d216a24f5 Certificate serial: 019B775937152D0752D13D2B067CBE50DFAD Authority key identifier: E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/0gBlJTwbURvMna08HGkpbxF3GuY.roa Signing time: Thu 01 Jan 2026 02:18:14 +0000 ROA not before: Thu 01 Jan 2026 02:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 185.222.232.0/22 maxlen: 22 185.222.233.0/24 maxlen: 24 185.222.234.0/24 maxlen: 24 2a0d:800::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.mft rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:37:15:2d:07:52:d1:3d:2b:06:7c:be:50:df:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2c137106c1a46aea07c24b11729fd7d216a24f5 Validity Not Before: Jan 1 02:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d20065253c1b511bcc9dad3c1c69296f11771ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:8f:68:08:44:b9:a7:d0:df:49:dd:5f:1c: 56:ff:96:06:84:62:82:f0:35:9e:7e:ac:33:5c:3f: 92:2b:67:f1:3d:46:2d:e4:6c:c3:c8:b4:7c:71:67: 15:1a:4d:8c:62:cf:53:ea:c8:ec:15:4d:d5:e4:9b: ef:44:55:7e:93:53:4b:87:6b:6f:6c:23:0f:ce:c8: 2a:a8:ae:0d:0e:0b:76:cd:f1:8e:98:5b:db:81:55: dc:67:2c:98:4f:35:83:b1:e0:a4:46:bb:f1:06:f1: 82:18:92:16:46:ce:2f:4f:8f:9c:61:3b:83:33:bd: 2e:95:cc:28:0a:ae:2b:0d:43:30:8d:90:05:16:e7: 45:53:86:49:0b:c8:2a:07:97:fc:3c:a6:eb:77:5a: ec:5b:b9:07:65:c6:15:85:5a:14:80:93:27:08:73: 18:13:2d:ed:ea:c8:e7:b6:fd:e8:b1:70:23:3c:a0: 0e:6a:dd:0f:7c:f0:e0:40:8f:ec:a8:c0:d5:78:bb: 5a:fb:79:86:58:f0:44:c5:87:27:89:9e:43:99:83: 9f:b6:2f:62:4d:15:d6:ea:8a:49:c1:b3:17:81:31: fa:34:c6:a3:7f:43:ce:fa:80:28:3d:61:5d:ce:0d: f1:19:e9:db:50:6d:73:f8:2b:76:85:e7:36:b4:21: d2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:00:65:25:3C:1B:51:1B:CC:9D:AD:3C:1C:69:29:6F:11:77:1A:E6 X509v3 Authority Key Identifier: keyid:E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/0gBlJTwbURvMna08HGkpbxF3GuY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.222.232.0/22 IPv6: 2a0d:800::/29 Signature Algorithm: sha256WithRSAEncryption 72:14:1a:be:28:97:b6:2b:57:c3:17:f4:a6:a6:43:d0:29:5f: 3f:cb:c1:86:9d:c3:08:ee:79:89:ad:91:cf:f5:06:5c:c4:7d: d1:b3:a6:a9:c7:47:7d:64:bd:86:f3:fc:c2:d4:e4:b8:89:0e: bb:a7:eb:12:41:db:4e:43:14:9f:db:6f:eb:3e:84:69:1d:61: 6b:42:a8:2c:b0:34:df:24:c4:d2:38:e5:34:a5:3b:ce:0b:4b: 6c:9d:4d:1d:b5:84:8d:e0:92:55:08:92:c0:b4:ed:ef:9a:ee: 48:a2:f5:30:7a:79:32:00:16:cd:ee:26:6c:5b:4f:9c:af:e7: ce:91:19:38:cd:e5:95:b4:4f:48:83:d5:4b:a4:66:9d:53:3f: 09:24:84:68:47:14:53:72:56:2a:44:fd:56:44:af:5d:8f:e2: 47:62:00:82:27:1f:db:69:09:c7:bc:c1:d7:a2:f5:ae:ff:70: ab:3a:4f:41:39:9f:4f:a2:0c:32:43:b0:6e:52:65:63:c5:3a: fa:38:90:44:4f:75:4b:7b:bb:29:5e:df:95:c1:0e:12:85:e7: ed:93:f7:e9:d7:5a:10:a0:53:6f:ce:3e:44:e2:d3:27:37:6a: 1e:d4:dd:29:22:0d:c0:83:eb:45:01:5c:c0:89:01:f9:b9:21: 6d:93:41:c8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WTcVLQdS0T0rBny+UN+tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYzEzNzEwNmMxYTQ2YWVhMDdjMjRiMTE3MjlmZDdkMjE2 YTI0ZjUwHhcNMjYwMTAxMDIxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjAwNjUyNTNjMWI1MTFiY2M5ZGFkM2MxYzY5Mjk2ZjExNzcxYWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuqPaAhEuafQ30ndXxxW/5YGhGKC 8DWefqwzXD+SK2fxPUYt5GzDyLR8cWcVGk2MYs9T6sjsFU3V5JvvRFV+k1NLh2tv bCMPzsgqqK4NDgt2zfGOmFvbgVXcZyyYTzWDseCkRrvxBvGCGJIWRs4vT4+cYTuD M70ulcwoCq4rDUMwjZAFFudFU4ZJC8gqB5f8PKbrd1rsW7kHZcYVhVoUgJMnCHMY Ey3t6sjntv3osXAjPKAOat0PfPDgQI/sqMDVeLta+3mGWPBExYcniZ5DmYOfti9i TRXW6opJwbMXgTH6NMajf0PO+oAoPWFdzg3xGenbUG1z+Ct2hec2tCHSnQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNIAZSU8G1EbzJ2tPBxpKW8RdxrmMB8GA1UdIwQY MBaAFOLBNxBsGkauoHwksRcp/X0haiT1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHNFM0VHd2FScTZnZkNTeEZ5bjlmU0ZxSlBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8yNDM1Y2MtNTUzMy00ZjcwLWJiODIt OWNhZjI1YTQ5OWQ3LzEvMGdCbEpUd2JVUnZNbmEwOEhHa3BieEYzR3VZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8yNDM1Y2MtNTUzMy00ZjcwLWJiODItOWNhZjI1YTQ5OWQ3 LzEvNHNFM0VHd2FScTZnZkNTeEZ5bjlmU0ZxSlBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCud7oMA0E AgACMAcDBQMqDQgAMA0GCSqGSIb3DQEBCwUAA4IBAQByFBq+KJe2K1fDF/SmpkPQ KV8/y8GGncMI7nmJrZHP9QZcxH3Rs6apx0d9ZL2G8/zC1OS4iQ67p+sSQdtOQxSf 22/rPoRpHWFrQqgssDTfJMTSOOU0pTvOC0tsnU0dtYSN4JJVCJLAtO3vmu5IovUw enkyABbN7iZsW0+cr+fOkRk4zeWVtE9Ig9VLpGadUz8JJIRoRxRTclYqRP1WRK9d j+JHYgCCJx/baQnHvMHXovWu/3CrOk9BOZ9PogwyQ7BuUmVjxTr6OJBET3VLe7sp Xt+VwQ4Sheftk/fp11oQoFNvzj5E4tMnN2oe1N0pIg3Ag+tFAVzAiQH5uSFtk0HI -----END CERTIFICATE-----Generated at Tue Jan 20 12:49:42 2026 by rpki-client