This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/2snz2cHxMIqDrmWpyQdj5PDHUMA.roa File: 2snz2cHxMIqDrmWpyQdj5PDHUMA.roa (raw, json) Hash identifier: PDvyyYGhi1AmhDsFwKXgGPleS0592sAJ/29+42mhJtU= Subject key identifier: DA:C9:F3:D9:C1:F1:30:8A:83:AE:65:A9:C9:07:63:E4:F0:C7:50:C0 Certificate issuer: /CN=74b42a6de4e01fc31250d1bbe322281046ee61aa Certificate serial: 019B7758765D945A55D07ABE8E583483E84E Authority key identifier: 74:B4:2A:6D:E4:E0:1F:C3:12:50:D1:BB:E3:22:28:10:46:EE:61:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/2snz2cHxMIqDrmWpyQdj5PDHUMA.roa Signing time: Thu 01 Jan 2026 02:17:24 +0000 ROA not before: Thu 01 Jan 2026 02:17:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 2a10:dac0:96::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.crl rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.mft rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:76:5d:94:5a:55:d0:7a:be:8e:58:34:83:e8:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74b42a6de4e01fc31250d1bbe322281046ee61aa Validity Not Before: Jan 1 02:17:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dac9f3d9c1f1308a83ae65a9c90763e4f0c750c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b8:19:ab:a8:f0:cf:8c:81:ae:cb:88:92:86: a6:b7:d1:a1:a1:06:c4:45:84:ca:16:25:ea:29:34: 78:08:37:9d:11:06:b5:8c:d8:a9:98:72:90:f0:2a: d7:43:1a:72:a0:6f:cc:c1:96:b5:0a:c1:6a:ee:e2: 8f:63:bd:a6:4a:50:3a:bf:28:2f:4f:46:ed:98:f5: c1:a0:e9:71:22:c7:43:63:48:10:90:eb:3a:7f:30: df:db:09:80:25:9c:4b:20:68:c8:d3:b6:2e:84:23: 9f:45:ea:33:fd:de:37:64:84:e0:1f:d0:1c:cd:d6: 99:89:ea:0f:87:77:af:dc:02:f5:8d:5d:c7:5f:40: 7a:57:1f:d0:26:80:4e:ce:25:39:da:31:41:f3:47: 22:14:a4:1a:ad:4f:21:d5:e3:4b:46:1c:45:99:d8: 61:2c:f9:f7:dd:a5:a9:5e:93:81:77:31:72:53:2d: 8b:0b:78:50:1f:54:ef:a5:3e:c6:89:8f:62:94:11: f3:9a:e2:30:fc:5b:4b:71:c1:4a:df:88:fc:de:94: 14:53:5e:f7:9e:5b:f8:94:7b:c7:51:7d:95:ff:e4: 7d:53:ce:33:c3:41:ea:82:f6:a0:92:95:3d:bd:90: d7:f4:a7:73:60:97:b5:c1:13:07:04:64:ef:6a:8e: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C9:F3:D9:C1:F1:30:8A:83:AE:65:A9:C9:07:63:E4:F0:C7:50:C0 X509v3 Authority Key Identifier: keyid:74:B4:2A:6D:E4:E0:1F:C3:12:50:D1:BB:E3:22:28:10:46:EE:61:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLQqbeTgH8MSUNG74yIoEEbuYao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/2snz2cHxMIqDrmWpyQdj5PDHUMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e5556c-cfea-4972-aaf8-17a1dcdcc6e0/1/dLQqbeTgH8MSUNG74yIoEEbuYao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a10:dac0:96::/48 Signature Algorithm: sha256WithRSAEncryption 01:0a:73:a2:de:a5:96:0a:ea:05:3d:07:3c:59:6a:db:de:95: dd:1b:89:4c:5b:35:82:76:10:c1:6b:9e:47:52:23:cd:38:1e: 63:7a:af:31:21:5e:27:b7:00:6e:2a:1b:36:87:48:4b:8a:63: 8a:8a:7f:f0:70:72:4e:c6:d2:8a:19:11:9b:02:01:68:ad:8d: 08:d5:1d:21:50:af:a9:5f:91:49:4b:1c:1a:a9:1d:12:8f:a5: 6b:06:b4:61:42:8f:f5:a0:77:92:c0:05:86:15:84:1a:ed:13: fc:c9:b6:1c:ac:93:6a:51:57:94:3b:b1:9b:c8:11:6d:b1:fe: ac:cb:0a:22:a7:2e:10:a5:3f:11:18:98:f9:40:18:81:bf:a5: 62:4e:78:46:24:f4:30:48:e6:ab:0c:1b:4b:cb:2d:b3:c7:d0: d2:d6:29:66:f8:89:b3:18:88:ee:a1:0c:f0:29:11:65:32:c7: d5:64:4b:9a:ad:d9:0e:4f:78:49:84:14:3b:8e:2d:05:83:f1: 31:46:ce:74:89:94:a7:46:68:21:74:bd:23:cd:b7:52:e0:47: 12:7a:28:6f:6c:2e:c4:f3:e4:f6:59:22:80:fa:04:fa:c4:48: 14:8f:cc:2c:45:67:9f:24:a6:fa:95:a5:da:11:40:47:50:81: fc:ab:7a:00 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt3WHZdlFpV0Hq+jlg0g+hOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YjQyYTZkZTRlMDFmYzMxMjUwZDFiYmUzMjIyODEwNDZl ZTYxYWEwHhcNMjYwMTAxMDIxNzI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWM5ZjNkOWMxZjEzMDhhODNhZTY1YTljOTA3NjNlNGYwYzc1MGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrgZq6jwz4yBrsuIkoamt9GhoQbE RYTKFiXqKTR4CDedEQa1jNipmHKQ8CrXQxpyoG/MwZa1CsFq7uKPY72mSlA6vygv T0btmPXBoOlxIsdDY0gQkOs6fzDf2wmAJZxLIGjI07YuhCOfReoz/d43ZITgH9Ac zdaZieoPh3ev3AL1jV3HX0B6Vx/QJoBOziU52jFB80ciFKQarU8h1eNLRhxFmdhh LPn33aWpXpOBdzFyUy2LC3hQH1TvpT7GiY9ilBHzmuIw/FtLccFK34j83pQUU173 nlv4lHvHUX2V/+R9U84zw0HqgvagkpU9vZDX9KdzYJe1wRMHBGTvao6PGwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFNrJ89nB8TCKg65lqckHY+Twx1DAMB8GA1UdIwQY MBaAFHS0Km3k4B/DElDRu+MiKBBG7mGqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZExRcWJlVGdIOE1TVU5HNzR5SW9FRWJ1WWFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9lNTU1NmMtY2ZlYS00OTcyLWFhZjgt MTdhMWRjZGNjNmUwLzEvMnNuejJjSHhNSXFEcm1XcHlRZGo1UERIVU1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9lNTU1NmMtY2ZlYS00OTcyLWFhZjgtMTdhMWRjZGNjNmUw LzEvZExRcWJlVGdIOE1TVU5HNzR5SW9FRWJ1WWFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhDawACW MA0GCSqGSIb3DQEBCwUAA4IBAQABCnOi3qWWCuoFPQc8WWrb3pXdG4lMWzWCdhDB a55HUiPNOB5jeq8xIV4ntwBuKhs2h0hLimOKin/wcHJOxtKKGRGbAgForY0I1R0h UK+pX5FJSxwaqR0Sj6VrBrRhQo/1oHeSwAWGFYQa7RP8ybYcrJNqUVeUO7GbyBFt sf6sywoipy4QpT8RGJj5QBiBv6ViTnhGJPQwSOarDBtLyy2zx9DS1ilm+ImzGIju oQzwKRFlMsfVZEuardkOT3hJhBQ7ji0Fg/ExRs50iZSnRmghdL0jzbdS4EcSeihv bC7E8+T2WSKA+gT6xEgUj8wsRWefJKb6laXaEUBHUIH8q3oA -----END CERTIFICATE-----Generated at Sun Jan 18 16:38:02 2026 by rpki-client