This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/502RJFuHYsVVdsk5nlBdFZUnjzA.roa File: 502RJFuHYsVVdsk5nlBdFZUnjzA.roa (raw, json) Hash identifier: J6t8qFuhu7mWQDizillanFkdE0VQubG3/+wxJ1PTiNE= Subject key identifier: E7:4D:91:24:5B:87:62:C5:55:76:C9:39:9E:50:5D:15:95:27:8F:30 Certificate issuer: /CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8 Certificate serial: 019B7BA51227458446C3EE50DC671279A8C7 Authority key identifier: 66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/502RJFuHYsVVdsk5nlBdFZUnjzA.roa Signing time: Thu 01 Jan 2026 22:19:34 +0000 ROA not before: Thu 01 Jan 2026 22:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60255 IP address blocks: 185.208.88.0/22 maxlen: 24 2a0b:32c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:12:27:45:84:46:c3:ee:50:dc:67:12:79:a8:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8 Validity Not Before: Jan 1 22:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e74d91245b8762c55576c9399e505d1595278f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:03:ea:5e:07:33:eb:ee:87:85:c7:30:13:70: db:3e:21:f2:53:47:63:be:1e:98:e1:e9:2d:2e:af: 3a:e0:2e:54:f7:7f:89:a6:4b:67:54:12:58:53:80: 6a:37:c2:79:9a:3b:33:f1:ee:ec:b9:75:1d:61:be: e6:e8:7e:96:de:23:ae:a5:7d:34:fe:fd:f9:f0:48: bd:12:6c:b5:bd:0a:e5:2c:cc:61:da:0e:45:36:91: 79:ec:1c:f5:d6:d9:5e:3e:ba:29:3b:d9:a9:aa:97: 7c:32:ad:cd:19:6d:c3:ec:a7:aa:a5:a8:c5:71:7d: 3d:36:28:6e:4c:f3:73:70:a0:c3:d6:6d:af:e0:4b: 85:fb:a5:d2:04:d8:44:70:be:99:a0:bf:c4:5f:7c: d6:e8:15:52:7f:1e:5e:21:9b:0b:60:ee:77:be:2c: 4a:ee:4e:74:db:03:d4:68:b4:ac:f5:ce:e9:bd:bd: 4b:5e:63:85:e3:78:a8:88:55:fb:f2:9d:9f:3f:30: e7:a0:07:c2:7c:49:3b:8b:26:ef:ac:18:fa:fd:b5: 87:9c:59:44:ad:ec:46:73:ff:cd:bb:52:1e:cb:db: ff:cf:2d:23:9a:1a:8b:e5:9e:0a:b1:0f:a5:5b:be: ff:da:7a:5d:5b:e4:7f:41:c9:e5:1c:5b:7e:1b:22: c4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4D:91:24:5B:87:62:C5:55:76:C9:39:9E:50:5D:15:95:27:8F:30 X509v3 Authority Key Identifier: keyid:66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/502RJFuHYsVVdsk5nlBdFZUnjzA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.208.88.0/22 IPv6: 2a0b:32c0::/29 Signature Algorithm: sha256WithRSAEncryption 4c:e1:2a:87:85:b8:13:e7:2d:72:e7:0f:2a:11:6b:f7:7f:98: 2f:9b:2f:54:c9:8d:9d:aa:3a:7d:19:02:31:f0:9b:53:1d:83: cc:36:79:e9:ca:5a:53:e7:fd:94:d6:1a:08:55:ff:5c:3a:a2: eb:f6:d1:09:fa:07:12:ee:77:55:ea:31:d8:23:27:78:a1:54: e1:2b:f7:c0:65:05:cb:ab:eb:9d:b6:85:78:43:32:ab:f2:9b: 07:50:cd:aa:4c:a3:fe:13:3e:51:6e:c3:61:29:4d:ae:ef:25: 07:09:18:7b:de:eb:a7:a6:b5:91:cd:6b:64:6c:1d:bf:1a:92: 6c:50:cb:b9:68:df:67:29:ab:96:df:2b:c0:73:51:df:d0:79: d2:e3:58:1a:7e:3d:1b:e0:ad:1d:40:80:ee:2f:9e:20:1c:97: 4d:74:df:40:b0:4a:bb:13:a5:67:10:11:b5:64:1c:02:a2:7c: ff:65:55:73:2b:ac:42:f8:a7:2c:e1:5a:4c:32:81:33:3d:87: 6f:13:a8:c5:3d:25:de:45:02:1f:19:3b:44:a3:53:3d:47:59: 43:7b:2a:10:92:d9:ce:6e:56:4f:b6:e6:c4:3b:29:75:84:6d: 20:f6:5e:b8:7b:81:0a:aa:dc:3b:0a:65:11:00:85:0a:5c:27: 74:2b:c9:7c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pRInRYRGw+5Q3GcSeajHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2NjM0ZjE0NTg2ZTM5OWNkMzgwMmQ5Yzg4YjFlNjdkOGRk YjAzYTgwHhcNMjYwMTAxMjIxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzRkOTEyNDViODc2MmM1NTU3NmM5Mzk5ZTUwNWQxNTk1Mjc4ZjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgPqXgcz6+6HhccwE3DbPiHyU0dj vh6Y4ektLq864C5U93+JpktnVBJYU4BqN8J5mjsz8e7suXUdYb7m6H6W3iOupX00 /v358Ei9Emy1vQrlLMxh2g5FNpF57Bz11tlePropO9mpqpd8Mq3NGW3D7KeqpajF cX09NihuTPNzcKDD1m2v4EuF+6XSBNhEcL6ZoL/EX3zW6BVSfx5eIZsLYO53vixK 7k502wPUaLSs9c7pvb1LXmOF43ioiFX78p2fPzDnoAfCfEk7iybvrBj6/bWHnFlE rexGc//Nu1Iey9v/zy0jmhqL5Z4KsQ+lW77/2npdW+R/QcnlHFt+GyLEtQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFOdNkSRbh2LFVXbJOZ5QXRWVJ48wMB8GA1UdIwQY MBaAFGZjTxRYbjmc04AtnIix5n2N2wOoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8yYzJkMzMtYTM2Ny00NDliLTljNDct MTcxZGI0NjkwYzBhLzEvNTAyUkpGdUhZc1ZWZHNrNW5sQmRGWlVuanpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8yYzJkMzMtYTM2Ny00NDliLTljNDctMTcxZGI0NjkwYzBh LzEvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudBYMA0E AgACMAcDBQMqCzLAMA0GCSqGSIb3DQEBCwUAA4IBAQBM4SqHhbgT5y1y5w8qEWv3 f5gvmy9UyY2dqjp9GQIx8JtTHYPMNnnpylpT5/2U1hoIVf9cOqLr9tEJ+gcS7ndV 6jHYIyd4oVThK/fAZQXLq+udtoV4QzKr8psHUM2qTKP+Ez5RbsNhKU2u7yUHCRh7 3uunprWRzWtkbB2/GpJsUMu5aN9nKauW3yvAc1Hf0HnS41gafj0b4K0dQIDuL54g HJdNdN9AsEq7E6VnEBG1ZBwConz/ZVVzK6xC+Kcs4VpMMoEzPYdvE6jFPSXeRQIf GTtEo1M9R1lDeyoQktnOblZPtubEOyl1hG0g9l64e4EKqtw7CmURAIUKXCd0K8l8 -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:25 2026 by rpki-client