This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/2tySjVTQSHiULWpIIHxe3UTXyKc.roa File: 2tySjVTQSHiULWpIIHxe3UTXyKc.roa (raw, json) Hash identifier: 11efIhc4jliYz5b7ccbbcBy+lueobimG/f4ImBFKSr4= Subject key identifier: DA:DC:92:8D:54:D0:48:78:94:2D:6A:48:20:7C:5E:DD:44:D7:C8:A7 Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Certificate serial: 019B7AC960FDE892D285AB66B0544FD42476 Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/2tySjVTQSHiULWpIIHxe3UTXyKc.roa Signing time: Thu 01 Jan 2026 18:19:36 +0000 ROA not before: Thu 01 Jan 2026 18:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 393336 IP address blocks: 37.49.144.0/24 maxlen: 24 37.49.147.0/24 maxlen: 24 94.74.171.0/24 maxlen: 24 109.203.161.0/24 maxlen: 24 109.203.163.0/24 maxlen: 24 109.203.166.0/24 maxlen: 24 176.46.129.0/24 maxlen: 24 176.46.130.0/24 maxlen: 24 176.46.133.0/24 maxlen: 24 176.46.135.0/24 maxlen: 24 176.46.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.mft rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:60:fd:e8:92:d2:85:ab:66:b0:54:4f:d4:24:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Validity Not Before: Jan 1 18:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dadc928d54d04878942d6a48207c5edd44d7c8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:52:e9:9e:88:9e:83:9f:86:92:90:8c:f7:78: da:e6:3b:ab:e3:a5:40:fb:fd:e6:69:94:47:f7:9f: bc:e4:be:00:6c:02:f1:27:08:db:40:93:43:8b:c3: 4c:f5:c6:1f:c3:6a:f9:45:29:bb:c0:28:3f:a1:fb: 22:44:8d:f0:02:3f:ad:07:ca:c8:8f:61:7e:3a:39: 4e:f1:9c:95:48:bf:7e:b8:f4:8d:ba:c8:76:27:42: 4d:cd:c7:2e:7d:10:79:b1:42:73:44:ab:ce:6d:76: b3:ba:65:90:58:96:28:65:d6:25:bb:a7:25:5a:3a: 2c:81:b1:66:14:00:4f:aa:d5:17:75:b0:5f:07:1f: e0:ee:c3:a7:4b:4e:e0:79:75:34:16:43:e4:b7:1a: 7a:63:e5:c9:c5:e9:82:bd:3d:d2:2b:1b:96:ea:a6: 83:31:a6:95:47:60:9b:99:11:ce:e6:d9:33:06:8c: 5d:4a:89:76:eb:a6:4f:bc:d7:a3:2f:77:54:05:52: cf:ab:e9:4c:0e:c0:43:2a:77:46:2a:c6:52:f1:e0: aa:c0:d5:95:63:33:72:83:3a:3b:d0:d6:ac:75:86: 79:9f:ab:1a:ef:1b:96:3a:16:a2:4d:26:42:a1:2c: 7f:b9:5e:13:e0:4c:33:d5:43:6d:f1:82:4e:58:4c: da:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DC:92:8D:54:D0:48:78:94:2D:6A:48:20:7C:5E:DD:44:D7:C8:A7 X509v3 Authority Key Identifier: keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/2tySjVTQSHiULWpIIHxe3UTXyKc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.49.144.0/24 37.49.147.0/24 94.74.171.0/24 109.203.161.0/24 109.203.163.0/24 109.203.166.0/24 176.46.129.0-176.46.130.255 176.46.133.0/24 176.46.135.0/24 176.46.137.0/24 Signature Algorithm: sha256WithRSAEncryption 76:f0:a9:00:01:06:16:9c:af:34:69:bc:82:f0:08:ae:c0:10: 3f:3c:fe:6f:a9:77:ea:f0:9b:a9:0a:73:1e:f1:22:6b:a3:43: 54:fe:dc:70:4a:eb:10:ac:ad:1c:3b:74:42:f0:e1:6c:12:3a: 27:98:14:37:68:2c:a2:7d:cf:e8:50:b0:7a:f3:b3:02:00:b9: a8:43:6c:7f:3b:32:1a:76:6b:70:5f:8d:85:38:13:f6:61:5d: 92:ef:d2:a8:7f:cb:9e:4b:0d:21:54:7d:08:21:ce:d4:4e:61: bf:c9:ee:e8:5d:33:9c:4a:c1:e3:72:21:63:e6:8b:e0:e1:13: ef:d4:5c:d2:c0:fe:c8:87:12:64:52:89:28:2e:38:29:40:c0: 31:f8:16:82:52:a4:b7:5d:93:d5:25:43:4e:17:48:3a:32:67: 59:6c:7e:ea:05:51:2f:59:34:15:f0:62:7a:62:4c:8c:1c:33: f0:96:e3:7a:31:6a:af:be:f6:dc:a0:65:f8:5c:5f:b3:85:b6: 88:1b:79:90:f6:81:07:23:c3:e5:fa:b3:11:17:fb:d5:30:7d: 71:95:70:8e:8f:93:b2:d3:64:32:54:8c:a5:73:7b:9e:f0:72: dc:04:fc:6e:fe:9f:9d:c8:ec:a5:fc:8b:51:e5:aa:55:77:19: 6e:70:de:41 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgISAZt6yWD96JLShatmsFRP1CR2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx ZjQ1ZjcwHhcNMjYwMTAxMTgxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWRjOTI4ZDU0ZDA0ODc4OTQyZDZhNDgyMDdjNWVkZDQ0ZDdjOGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFLpnoieg5+GkpCM93ja5jur46VA +/3maZRH95+85L4AbALxJwjbQJNDi8NM9cYfw2r5RSm7wCg/ofsiRI3wAj+tB8rI j2F+OjlO8ZyVSL9+uPSNush2J0JNzccufRB5sUJzRKvObXazumWQWJYoZdYlu6cl WjosgbFmFABPqtUXdbBfBx/g7sOnS07geXU0FkPktxp6Y+XJxemCvT3SKxuW6qaD MaaVR2CbmRHO5tkzBoxdSol266ZPvNejL3dUBVLPq+lMDsBDKndGKsZS8eCqwNWV YzNygzo70NasdYZ5n6sa7xuWOhaiTSZCoSx/uV4T4Ewz1UNt8YJOWEza1QIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFNrcko1U0Eh4lC1qSCB8Xt1E18inMB8GA1UdIwQY MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt NDk2ZjhlYmIyZDYxLzEvMnR5U2pWVFFTSGlVTFdwSUlIeGUzVVRYeUtjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF0GCCsGAQUFBwEHAQH/BE4wTDBKBAIAATBEAwQAJTGQAwQA JTGTAwQAXkqrAwQAbcuhAwQAbcujAwQAbcumMAwDBACwLoEDBACwLoIDBACwLoUD BACwLocDBACwLokwDQYJKoZIhvcNAQELBQADggEBAHbwqQABBhacrzRpvILwCK7A ED88/m+pd+rwm6kKcx7xImujQ1T+3HBK6xCsrRw7dELw4WwSOieYFDdoLKJ9z+hQ sHrzswIAuahDbH87Mhp2a3BfjYU4E/ZhXZLv0qh/y55LDSFUfQghztROYb/J7uhd M5xKweNyIWPmi+DhE+/UXNLA/siHEmRSiSguOClAwDH4FoJSpLddk9UlQ04XSDoy Z1lsfuoFUS9ZNBXwYnpiTIwcM/CW43oxaq++9tygZfhcX7OFtogbeZD2gQcjw+X6 sxEX+9UwfXGVcI6Pk7LTZDJUjKVze57wctwE/G7+n53I7KX8i1HlqlV3GW5w3kE= -----END CERTIFICATE-----Generated at Wed Jan 21 22:54:51 2026 by rpki-client