This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/2327pNBB2HC1jsNXVSLoDYuPz-0.roa File: 2327pNBB2HC1jsNXVSLoDYuPz-0.roa (raw, json) Hash identifier: MSfovtFJo1224OqRnouSMUrHsi3CJKdbdEt2t0htybE= Subject key identifier: DB:7D:BB:A4:D0:41:D8:70:B5:8E:C3:57:55:22:E8:0D:8B:8F:CF:ED Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f Certificate serial: 019B797F5090244CDDCECC04F9ED591AAB80 Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/2327pNBB2HC1jsNXVSLoDYuPz-0.roa Signing time: Thu 01 Jan 2026 12:19:05 +0000 ROA not before: Thu 01 Jan 2026 12:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213083 IP address blocks: 213.238.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.mft rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:50:90:24:4c:dd:ce:cc:04:f9:ed:59:1a:ab:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f Validity Not Before: Jan 1 12:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db7dbba4d041d870b58ec3575522e80d8b8fcfed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f0:fa:48:e9:a1:4c:f4:07:ba:f3:db:ed:b2: 65:73:d5:93:c1:42:16:3f:9d:5c:7f:8f:74:8d:86: 52:78:d0:43:5c:8e:bd:37:69:71:12:1b:c5:d8:d2: ed:5b:5a:ea:64:17:2d:b1:5f:d0:85:4c:52:1c:3e: 14:44:69:0b:44:cf:5b:22:bc:ed:f1:ba:0e:6b:7e: b3:86:f7:5b:5e:2f:71:ce:c7:e2:cf:ad:f5:4a:52: ba:d4:1a:8b:f2:c1:01:e9:55:68:af:81:f5:f0:3e: b1:e9:95:01:17:e4:41:90:af:19:e4:d5:04:11:d0: 4e:7d:38:59:82:19:24:52:12:18:82:ab:2d:f3:26: 92:af:77:59:59:35:82:be:34:b3:41:17:9f:f0:a0: bc:2e:52:c6:50:18:12:80:6d:64:3b:59:32:63:d2: 2d:b4:05:2e:9d:c1:e4:d1:b7:28:a8:5d:2c:01:f0: b9:c3:e7:03:0e:b9:51:a6:67:01:ae:04:2a:34:bc: 24:16:69:e7:68:22:dd:ef:58:85:e2:fa:69:3c:75: e9:77:db:e3:a5:1a:1a:63:af:65:06:13:0b:88:bd: 1c:83:e8:00:e7:2a:2f:a6:10:42:e7:e2:65:3f:61: 82:c6:64:8a:c5:2d:4e:77:e1:9f:f6:0d:9c:f1:35: f7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7D:BB:A4:D0:41:D8:70:B5:8E:C3:57:55:22:E8:0D:8B:8F:CF:ED X509v3 Authority Key Identifier: keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/2327pNBB2HC1jsNXVSLoDYuPz-0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.238.185.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:15:fe:df:9e:af:a1:68:ce:ff:9c:93:fb:f4:77:f4:2f:4e: ba:6b:fd:4b:6c:1b:c2:2f:e2:b9:e1:86:60:ce:a4:bc:07:12: 03:b1:1a:e8:9e:84:c3:3c:77:87:60:d5:55:dd:4e:14:07:ae: 8e:21:a2:f1:01:cf:88:71:c9:6c:6b:06:9a:a5:22:da:5f:0d: 83:a3:17:cd:dd:51:2e:1d:43:e4:c8:60:72:21:c1:cf:7a:fe: 1c:50:51:ff:f9:9e:b1:26:bf:ad:84:cb:7b:be:07:c7:79:a3: 04:6a:49:15:78:83:af:b4:8c:81:bb:7c:fc:4d:10:2b:53:12: 79:34:93:1c:87:f4:bb:9a:28:94:2b:9a:06:b6:5d:72:d5:69: a9:eb:d8:2c:6a:e4:f4:1c:ea:8b:2b:82:75:80:85:d9:c4:24: e4:aa:42:23:3a:b3:07:4c:12:14:01:26:8e:30:42:a3:1d:42: 1e:a2:b5:37:90:01:a4:52:63:05:b4:0c:54:12:65:13:24:58: 39:11:0b:54:0c:9d:bf:83:4e:ca:a2:39:50:7f:4d:81:01:44: bc:e7:82:62:08:43:bf:37:9c:80:8f:9b:5c:4f:7b:ed:0b:53: 7d:88:03:97:a1:6e:39:42:3e:f9:97:4d:55:9a:02:99:ec:aa: c2:cb:1b:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5f1CQJEzdzswE+e1ZGquAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0 MGRlM2YwHhcNMjYwMTAxMTIxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjdkYmJhNGQwNDFkODcwYjU4ZWMzNTc1NTIyZTgwZDhiOGZjZmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPD6SOmhTPQHuvPb7bJlc9WTwUIW P51cf490jYZSeNBDXI69N2lxEhvF2NLtW1rqZBctsV/QhUxSHD4URGkLRM9bIrzt 8boOa36zhvdbXi9xzsfiz631SlK61BqL8sEB6VVor4H18D6x6ZUBF+RBkK8Z5NUE EdBOfThZghkkUhIYgqst8yaSr3dZWTWCvjSzQRef8KC8LlLGUBgSgG1kO1kyY9It tAUuncHk0bcoqF0sAfC5w+cDDrlRpmcBrgQqNLwkFmnnaCLd71iF4vppPHXpd9vj pRoaY69lBhMLiL0cg+gA5yovphBC5+JlP2GCxmSKxS1Od+Gf9g2c8TX3JwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNt9u6TQQdhwtY7DV1Ui6A2Lj8/tMB8GA1UdIwQY MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt Y2QzMTYxNWQwMWE5LzEvMjMyN3BOQkIySEMxanNOWFZTTG9EWXVQei0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5 LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e65MA0G CSqGSIb3DQEBCwUAA4IBAQBbFf7fnq+haM7/nJP79Hf0L066a/1LbBvCL+K54YZg zqS8BxIDsRronoTDPHeHYNVV3U4UB66OIaLxAc+IcclsawaapSLaXw2DoxfN3VEu HUPkyGByIcHPev4cUFH/+Z6xJr+thMt7vgfHeaMEakkVeIOvtIyBu3z8TRArUxJ5 NJMch/S7miiUK5oGtl1y1Wmp69gsauT0HOqLK4J1gIXZxCTkqkIjOrMHTBIUASaO MEKjHUIeorU3kAGkUmMFtAxUEmUTJFg5EQtUDJ2/g07KojlQf02BAUS854JiCEO/ N5yAj5tcT3vtC1N9iAOXoW45Qj75l01VmgKZ7KrCyxuF -----END CERTIFICATE-----Generated at Wed Jan 21 15:54:58 2026 by rpki-client