This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/2IDKxwxwH_i7HjGL_JpRf1ACOrU.roa File: 2IDKxwxwH_i7HjGL_JpRf1ACOrU.roa (raw, json) Hash identifier: LXT2Q1B4W3aYJFB+esOZPLI+xHb4kPQIR4b/Xlwf4Ag= Subject key identifier: D8:80:CA:C7:0C:70:1F:F8:BB:1E:31:8B:FC:9A:51:7F:50:02:3A:B5 Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d Certificate serial: 019B7C12F1997FC03188EA771F571BE79809 Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/2IDKxwxwH_i7HjGL_JpRf1ACOrU.roa Signing time: Fri 02 Jan 2026 00:19:34 +0000 ROA not before: Fri 02 Jan 2026 00:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29166 IP address blocks: 195.65.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:f1:99:7f:c0:31:88:ea:77:1f:57:1b:e7:98:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d Validity Not Before: Jan 2 00:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d880cac70c701ff8bb1e318bfc9a517f50023ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:91:c7:71:27:7a:14:23:28:1d:b9:2b:94:76: 82:e2:72:16:fb:a6:97:ad:78:9d:2d:d1:84:0c:70: c6:fb:38:da:69:7b:a8:26:94:e0:73:3f:f1:6e:5b: 1e:8f:b4:d3:66:bb:8a:ca:90:3e:95:ab:57:c1:0d: 7b:d0:5e:1f:74:21:c7:18:aa:11:e2:b1:1e:7b:a1: 3d:da:32:1d:37:59:e3:23:18:66:c5:5c:47:f8:e0: a3:a6:bf:23:07:42:46:d3:b2:01:33:88:2a:b9:68: 52:9f:1e:ef:83:ea:34:00:14:48:53:35:fa:3e:54: a7:3d:6f:d0:38:2b:30:4d:10:79:fc:72:a5:85:a4: 99:4b:fd:4e:22:0d:23:8a:5b:de:50:cc:76:bb:7e: 43:d6:6d:2b:2f:61:2b:99:99:bb:41:12:70:d6:62: c1:29:64:e8:f3:4c:12:2d:72:9d:15:50:9f:f4:f6: 21:1d:43:79:48:bc:1d:87:83:32:8c:f4:6a:c0:80: 6d:05:44:39:14:2b:11:ca:cf:e6:ef:0e:30:7b:0f: bb:08:88:04:ae:39:7b:32:5e:8f:71:c1:34:84:28: 5e:39:94:19:59:d1:43:89:c6:98:27:86:fc:0b:34: b5:b2:91:c2:c4:8f:d2:70:d3:19:4c:22:08:3a:b1: b2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:80:CA:C7:0C:70:1F:F8:BB:1E:31:8B:FC:9A:51:7F:50:02:3A:B5 X509v3 Authority Key Identifier: keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/2IDKxwxwH_i7HjGL_JpRf1ACOrU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.65.148.0/24 Signature Algorithm: sha256WithRSAEncryption 71:2e:e4:ba:48:41:bc:3c:db:a0:4b:5c:a7:98:b2:cf:36:31: c1:a5:d7:1a:89:6b:71:44:6d:13:91:4d:3b:38:a6:2c:85:11: 56:2d:50:c7:ba:2f:99:88:0b:94:b3:34:82:01:93:03:02:cd: cb:af:45:db:3e:0a:84:41:0a:fb:38:37:f2:be:fe:b7:9e:82: 1e:ba:d9:72:a0:36:ae:2d:76:91:ba:d8:69:79:db:47:db:02: 11:b0:e1:39:03:0e:1f:bf:b3:97:89:5e:83:14:33:25:7e:4d: af:8f:89:3b:f8:d1:74:1c:ee:28:91:6a:2c:91:a8:1e:0b:f6: 58:14:ca:0e:83:2a:a5:98:41:62:99:c8:30:69:92:2e:87:24: 41:79:0e:89:d6:78:ce:6a:b9:83:44:13:5e:e0:6b:fa:58:83: c2:19:39:f7:2c:40:c0:e4:25:80:a5:a5:db:f7:92:fc:eb:99: 1a:d9:f0:29:9a:cb:85:70:af:7f:31:8f:a8:7f:fc:7b:d1:19: d7:94:d4:8f:e2:76:52:ed:99:76:8f:7d:72:e1:02:90:ab:a3: 65:aa:7f:7e:67:13:62:9d:a4:ba:54:7f:60:a1:0e:4d:ef:23: 06:f7:11:bc:50:1e:68:11:aa:16:54:5c:32:c1:d4:1c:7a:85: c5:ec:88:95 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EvGZf8AxiOp3H1cb55gJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy MDRjOGQwHhcNMjYwMTAyMDAxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkODgwY2FjNzBjNzAxZmY4YmIxZTMxOGJmYzlhNTE3ZjUwMDIzYWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA95HHcSd6FCMoHbkrlHaC4nIW+6aX rXidLdGEDHDG+zjaaXuoJpTgcz/xblsej7TTZruKypA+latXwQ170F4fdCHHGKoR 4rEee6E92jIdN1njIxhmxVxH+OCjpr8jB0JG07IBM4gquWhSnx7vg+o0ABRIUzX6 PlSnPW/QOCswTRB5/HKlhaSZS/1OIg0jilveUMx2u35D1m0rL2ErmZm7QRJw1mLB KWTo80wSLXKdFVCf9PYhHUN5SLwdh4MyjPRqwIBtBUQ5FCsRys/m7w4wew+7CIgE rjl7Ml6PccE0hCheOZQZWdFDicaYJ4b8CzS1spHCxI/ScNMZTCIIOrGyqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNiAyscMcB/4ux4xi/yaUX9QAjq1MB8GA1UdIwQY MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt YmQxOTI2NzZjOWJiLzEvMklES3h3eHdIX2k3SGpHTF9KcFJmMUFDT3JVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0GUMA0G CSqGSIb3DQEBCwUAA4IBAQBxLuS6SEG8PNugS1ynmLLPNjHBpdcaiWtxRG0TkU07 OKYshRFWLVDHui+ZiAuUszSCAZMDAs3Lr0XbPgqEQQr7ODfyvv63noIeutlyoDau LXaRuthpedtH2wIRsOE5Aw4fv7OXiV6DFDMlfk2vj4k7+NF0HO4okWoskageC/ZY FMoOgyqlmEFimcgwaZIuhyRBeQ6J1njOarmDRBNe4Gv6WIPCGTn3LEDA5CWApaXb 95L865ka2fApmsuFcK9/MY+of/x70RnXlNSP4nZS7Zl2j31y4QKQq6Nlqn9+ZxNi naS6VH9goQ5N7yMG9xG8UB5oEaoWVFwywdQceoXF7IiV -----END CERTIFICATE-----Generated at Mon Jan 26 17:44:39 2026 by rpki-client