This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/_2RVkv-dG4-YIAymCk1yOs7NK58.roa File: _2RVkv-dG4-YIAymCk1yOs7NK58.roa (raw, json) Hash identifier: o6HUJs0cl57DuL7YAIkgRklqKfSqkx4WuloF1lwdZUE= Subject key identifier: FF:64:55:92:FF:9D:1B:8F:98:20:0C:A6:0A:4D:72:3A:CE:CD:2B:9F Certificate issuer: /CN=aebdead4f1d1c8dda96d1cd1789d9dd3e23bf153 Certificate serial: 019B7BA37F03CB475AE23AD540D29415409A Authority key identifier: AE:BD:EA:D4:F1:D1:C8:DD:A9:6D:1C:D1:78:9D:9D:D3:E2:3B:F1:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/_2RVkv-dG4-YIAymCk1yOs7NK58.roa Signing time: Thu 01 Jan 2026 22:17:51 +0000 ROA not before: Thu 01 Jan 2026 22:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209242 IP address blocks: 195.250.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/rr3q1PHRyN2pbRzReJ2d0-I78VM.crl rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/rr3q1PHRyN2pbRzReJ2d0-I78VM.mft rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:7f:03:cb:47:5a:e2:3a:d5:40:d2:94:15:40:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aebdead4f1d1c8dda96d1cd1789d9dd3e23bf153 Validity Not Before: Jan 1 22:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff645592ff9d1b8f98200ca60a4d723acecd2b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:44:b3:bb:8b:4d:f2:5b:09:25:e5:ed:5a:b8: 2a:8c:85:36:e8:6b:c5:de:cb:21:f5:97:65:a5:42: 7e:a2:25:cc:dc:88:b2:c6:ce:06:4c:6d:05:c4:c2: 71:2d:3b:1e:c2:79:a6:39:ce:eb:8f:bd:a3:b4:fe: 14:70:c0:83:a4:1a:b4:5a:ad:b5:aa:fd:46:8b:4e: f8:3d:d1:ee:9d:ac:59:48:51:2d:60:b3:fe:43:87: 4f:e5:2b:56:3c:75:3d:4a:35:ff:14:ee:17:b4:41: 45:68:86:24:a5:96:6a:0e:41:7e:f5:bf:2b:d5:ac: fa:8f:59:5e:22:08:a4:c4:b2:f9:c0:4c:fe:4e:90: f5:30:d3:32:92:1e:58:d8:c0:20:fa:f2:77:d7:f0: 3a:61:c2:7a:cf:ac:24:e3:84:c8:9c:27:2a:c6:76: 32:7f:0c:70:4a:4e:8b:d8:f6:b3:04:8f:7c:4e:87: bc:df:6c:b3:8a:87:12:f0:ba:26:2d:a8:ed:a0:96: e3:71:1c:76:69:d0:17:81:15:34:5a:9f:44:da:6e: 9b:5e:22:1a:07:0e:f8:42:91:c0:34:73:a7:a7:36: f5:4f:0b:41:05:2b:2b:4f:6b:83:0b:49:93:55:e2: a6:90:05:79:7b:a5:b1:f0:fb:35:d6:d0:51:ba:ce: 63:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:64:55:92:FF:9D:1B:8F:98:20:0C:A6:0A:4D:72:3A:CE:CD:2B:9F X509v3 Authority Key Identifier: keyid:AE:BD:EA:D4:F1:D1:C8:DD:A9:6D:1C:D1:78:9D:9D:D3:E2:3B:F1:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rr3q1PHRyN2pbRzReJ2d0-I78VM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/_2RVkv-dG4-YIAymCk1yOs7NK58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/2f5fd6-1904-4dca-abb2-8837ca69e396/1/rr3q1PHRyN2pbRzReJ2d0-I78VM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.250.46.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:e2:6b:06:df:a1:49:b9:b5:58:93:40:ee:03:3a:35:33:c1: 48:a1:5b:d4:5f:92:cf:73:b0:e9:22:aa:bd:2f:34:95:a7:a4: ca:44:4f:1a:86:a1:6f:3a:a1:55:05:8f:3f:3b:31:09:f3:85: 1b:f5:26:8c:42:85:84:b9:fb:dd:39:f7:06:5a:0c:1d:cd:cb: 05:f4:f5:c1:9b:0b:95:99:c6:79:26:10:f3:ed:71:9d:a1:e8: a4:23:bb:f2:d3:60:af:16:c5:47:4f:4a:da:da:fa:1b:72:8c: ca:4f:28:26:e5:46:82:53:2f:ac:58:44:27:b1:4f:dc:5a:9e: 9a:dd:3e:98:31:49:4e:65:bd:28:14:0d:78:cc:6c:9f:3e:af: 2e:a2:41:f2:34:d6:1f:4b:32:be:be:74:ec:f2:d2:ff:a5:79: ac:13:e7:3f:16:c6:7b:16:92:f7:a2:c8:ae:72:e1:08:3a:24: df:d9:6f:98:6e:ab:18:07:59:3f:cc:5f:b2:cd:dc:cf:7e:20: b0:99:86:72:ed:0d:14:35:06:e5:71:08:04:85:88:78:26:61: ce:eb:f8:f1:91:fb:0e:96:8e:f1:d7:44:94:f7:28:25:3e:ad: 29:2b:28:b5:e9:f1:e2:2c:69:b2:30:74:25:91:e4:cc:2b:a2: 8d:27:fd:99 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o38Dy0da4jrVQNKUFUCaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYmRlYWQ0ZjFkMWM4ZGRhOTZkMWNkMTc4OWQ5ZGQzZTIz YmYxNTMwHhcNMjYwMTAxMjIxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjY0NTU5MmZmOWQxYjhmOTgyMDBjYTYwYTRkNzIzYWNlY2QyYjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0Szu4tN8lsJJeXtWrgqjIU26GvF 3ssh9ZdlpUJ+oiXM3Iiyxs4GTG0FxMJxLTsewnmmOc7rj72jtP4UcMCDpBq0Wq21 qv1Gi074PdHunaxZSFEtYLP+Q4dP5StWPHU9SjX/FO4XtEFFaIYkpZZqDkF+9b8r 1az6j1leIgikxLL5wEz+TpD1MNMykh5Y2MAg+vJ31/A6YcJ6z6wk44TInCcqxnYy fwxwSk6L2PazBI98Toe832yziocS8LomLajtoJbjcRx2adAXgRU0Wp9E2m6bXiIa Bw74QpHANHOnpzb1TwtBBSsrT2uDC0mTVeKmkAV5e6Wx8Ps11tBRus5j9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP9kVZL/nRuPmCAMpgpNcjrOzSufMB8GA1UdIwQY MBaAFK696tTx0cjdqW0c0XidndPiO/FTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnIzcTFQSFJ5TjJwYlJ6UmVKMmQwLUk3OFZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8yZjVmZDYtMTkwNC00ZGNhLWFiYjIt ODgzN2NhNjllMzk2LzEvXzJSVmt2LWRHNC1ZSUF5bUNrMXlPczdOSzU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8yZjVmZDYtMTkwNC00ZGNhLWFiYjItODgzN2NhNjllMzk2 LzEvcnIzcTFQSFJ5TjJwYlJ6UmVKMmQwLUk3OFZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw/ouMA0G CSqGSIb3DQEBCwUAA4IBAQBe4msG36FJubVYk0DuAzo1M8FIoVvUX5LPc7DpIqq9 LzSVp6TKRE8ahqFvOqFVBY8/OzEJ84Ub9SaMQoWEufvdOfcGWgwdzcsF9PXBmwuV mcZ5JhDz7XGdoeikI7vy02CvFsVHT0ra2vobcozKTygm5UaCUy+sWEQnsU/cWp6a 3T6YMUlOZb0oFA14zGyfPq8uokHyNNYfSzK+vnTs8tL/pXmsE+c/FsZ7FpL3osiu cuEIOiTf2W+YbqsYB1k/zF+yzdzPfiCwmYZy7Q0UNQblcQgEhYh4JmHO6/jxkfsO lo7x10SU9yglPq0pKyi16fHiLGmyMHQlkeTMK6KNJ/2Z -----END CERTIFICATE-----Generated at Wed Jan 21 15:53:11 2026 by rpki-client