This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b7ceb8-4856-4463-b7b8-353bc6266ee6/1/q2cwbHgodll5mTiws3YOiqyA-i8.roa File: q2cwbHgodll5mTiws3YOiqyA-i8.roa (raw, json) Hash identifier: p3hYIacztdEjHfwDJyx/+pczxs7JhRz6S+sXnyC782Y= Subject key identifier: AB:67:30:6C:78:28:76:59:79:99:38:B0:B3:76:0E:8A:AC:80:FA:2F Certificate issuer: /CN=db282fd897317c2cadd7b13969f6f015c397e05d Certificate serial: 019B7C7F646DADF413D327CA6C651A48513C Authority key identifier: DB:28:2F:D8:97:31:7C:2C:AD:D7:B1:39:69:F6:F0:15:C3:97:E0:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ygv2JcxfCyt17E5afbwFcOX4F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b7ceb8-4856-4463-b7b8-353bc6266ee6/1/q2cwbHgodll5mTiws3YOiqyA-i8.roa Signing time: Fri 02 Jan 2026 02:18:01 +0000 ROA not before: Fri 02 Jan 2026 02:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199608 IP address blocks: 185.9.36.0/24 maxlen: 24 185.9.37.0/24 maxlen: 24 185.9.38.0/24 maxlen: 24 185.9.39.0/24 maxlen: 24 185.244.144.0/24 maxlen: 24 185.244.145.0/24 maxlen: 24 185.244.146.0/24 maxlen: 24 185.244.147.0/24 maxlen: 24 217.70.10.0/24 maxlen: 24 2a03:48c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b7ceb8-4856-4463-b7b8-353bc6266ee6/1/2ygv2JcxfCyt17E5afbwFcOX4F0.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/b7ceb8-4856-4463-b7b8-353bc6266ee6/1/2ygv2JcxfCyt17E5afbwFcOX4F0.mft rsync://rpki.ripe.net/repository/DEFAULT/2ygv2JcxfCyt17E5afbwFcOX4F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:64:6d:ad:f4:13:d3:27:ca:6c:65:1a:48:51:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db282fd897317c2cadd7b13969f6f015c397e05d Validity Not Before: Jan 2 02:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab67306c78287659799938b0b3760e8aac80fa2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:af:f2:f7:50:fa:6f:fa:27:fa:c6:18:81: 7a:cc:12:81:0b:e1:62:11:be:52:eb:f1:d4:da:bb: b0:70:20:10:26:16:b0:7e:03:1b:b8:ef:04:ab:e8: bb:38:1e:49:d7:bf:13:1c:99:93:99:5c:84:26:a8: 9d:85:99:e9:c2:52:f8:d7:9a:05:af:87:84:82:c0: a0:06:e6:b1:f8:66:2d:b4:d3:2f:ef:1b:ed:d9:ba: 47:43:7a:27:7a:53:b1:46:ae:df:6f:0b:17:1f:32: 86:a0:7b:c6:22:7a:de:db:96:8c:5b:5b:86:b7:85: 2d:83:63:cd:43:a3:0d:17:a9:04:1a:4f:c6:35:17: 33:19:64:a3:20:1f:e6:48:43:68:04:dd:85:6c:68: d9:2a:35:7c:54:a6:49:42:c2:54:76:0d:93:42:67: 46:1d:0e:04:7e:01:ed:fa:2b:c4:31:5f:3a:2f:b6: 33:07:14:c9:f0:79:96:b4:ab:38:ea:90:ae:9a:e4: 92:57:a7:50:12:16:6d:51:16:55:3b:03:3b:f0:2c: 5f:53:12:ac:d1:1b:81:c3:2e:2c:1d:f3:ae:11:40: 1d:41:c6:d7:31:77:ad:a9:3c:6e:3c:3a:89:ae:83: cc:60:c9:0d:8a:59:37:fb:ff:b6:8e:33:51:69:f8: fc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:67:30:6C:78:28:76:59:79:99:38:B0:B3:76:0E:8A:AC:80:FA:2F X509v3 Authority Key Identifier: keyid:DB:28:2F:D8:97:31:7C:2C:AD:D7:B1:39:69:F6:F0:15:C3:97:E0:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ygv2JcxfCyt17E5afbwFcOX4F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b7ceb8-4856-4463-b7b8-353bc6266ee6/1/q2cwbHgodll5mTiws3YOiqyA-i8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b7ceb8-4856-4463-b7b8-353bc6266ee6/1/2ygv2JcxfCyt17E5afbwFcOX4F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.9.36.0/22 185.244.144.0/22 217.70.10.0/24 IPv6: 2a03:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 17:9e:63:e8:f3:ba:32:8c:b5:f2:de:99:f4:05:ce:d0:c5:6f: f2:f8:86:0f:6b:48:c4:b9:cc:ea:f4:95:ed:9c:92:8d:81:27: 3b:89:8c:63:93:f6:24:e0:5f:5d:6c:39:c7:ea:35:8b:23:ee: c9:c9:e5:a3:25:1a:76:0e:7c:28:c1:96:be:27:9a:53:06:5c: 52:15:b7:65:b5:73:ec:67:2e:52:3f:52:b8:de:5a:e8:1f:bf: e8:d7:8f:0d:5e:ca:67:7f:4a:31:6e:67:5c:0c:8f:99:95:8f: 0a:ab:52:ca:44:8e:06:77:b6:12:9b:aa:2c:93:55:b1:59:cc: 51:05:73:02:27:33:ba:9d:20:9f:d8:20:06:f0:2b:38:c5:26: 72:f3:5f:db:33:54:c1:87:30:9a:ab:3d:7e:49:95:b6:f2:97: f3:19:16:6a:70:d9:9e:c7:a1:e4:8a:75:99:e2:c5:f0:de:27: 22:f1:a6:1a:14:2d:da:35:29:cb:58:54:41:1c:23:2d:da:4e: 6b:16:48:69:87:53:70:92:db:d8:58:70:a3:6b:26:5c:e0:b0: 03:4b:6f:f3:4c:9a:4b:ce:91:f9:c7:34:76:44:17:44:ca:78: 8f:ee:de:fc:e7:1f:0e:0a:51:13:41:81:f3:ff:7d:c3:5c:2c: d2:7d:ea:54 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt8f2RtrfQT0yfKbGUaSFE8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMjgyZmQ4OTczMTdjMmNhZGQ3YjEzOTY5ZjZmMDE1YzM5 N2UwNWQwHhcNMjYwMTAyMDIxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjY3MzA2Yzc4Mjg3NjU5Nzk5OTM4YjBiMzc2MGU4YWFjODBmYTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsyv8vdQ+m/6J/rGGIF6zBKBC+Fi Eb5S6/HU2ruwcCAQJhawfgMbuO8Eq+i7OB5J178THJmTmVyEJqidhZnpwlL415oF r4eEgsCgBuax+GYttNMv7xvt2bpHQ3onelOxRq7fbwsXHzKGoHvGInre25aMW1uG t4Utg2PNQ6MNF6kEGk/GNRczGWSjIB/mSENoBN2FbGjZKjV8VKZJQsJUdg2TQmdG HQ4EfgHt+ivEMV86L7YzBxTJ8HmWtKs46pCumuSSV6dQEhZtURZVOwM78CxfUxKs 0RuBwy4sHfOuEUAdQcbXMXetqTxuPDqJroPMYMkNilk3+/+2jjNRafj8EwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFKtnMGx4KHZZeZk4sLN2DoqsgPovMB8GA1UdIwQY MBaAFNsoL9iXMXwsrdexOWn28BXDl+BdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnlndjJKY3hmQ3l0MTdFNWFmYndGY09YNEYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iN2NlYjgtNDg1Ni00NDYzLWI3Yjgt MzUzYmM2MjY2ZWU2LzEvcTJjd2JIZ29kbGw1bVRpd3MzWU9pcXlBLWk4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9iN2NlYjgtNDg1Ni00NDYzLWI3YjgtMzUzYmM2MjY2ZWU2 LzEvMnlndjJKY3hmQ3l0MTdFNWFmYndGY09YNEYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCuQkkAwQC ufSQAwQA2UYKMA0EAgACMAcDBQAqA0jAMA0GCSqGSIb3DQEBCwUAA4IBAQAXnmPo 87oyjLXy3pn0Bc7QxW/y+IYPa0jEuczq9JXtnJKNgSc7iYxjk/Yk4F9dbDnH6jWL I+7JyeWjJRp2DnwowZa+J5pTBlxSFbdltXPsZy5SP1K43lroH7/o148NXspnf0ox bmdcDI+ZlY8Kq1LKRI4Gd7YSm6osk1WxWcxRBXMCJzO6nSCf2CAG8Cs4xSZy81/b M1TBhzCaqz1+SZW28pfzGRZqcNmex6HkinWZ4sXw3ici8aYaFC3aNSnLWFRBHCMt 2k5rFkhph1NwktvYWHCjayZc4LADS2/zTJpLzpH5xzR2RBdEyniP7t785x8OClET QYHz/33DXCzSfepU -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:40 2026 by rpki-client