This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/2FfewzchtBOlT_1-bM1KbwVEptI.roa File: 2FfewzchtBOlT_1-bM1KbwVEptI.roa (raw, json) Hash identifier: XCreExSvtYmion6efW1Ds82lk+nlI9Ef/9JOGZG0IwY= Subject key identifier: D8:57:DE:C3:37:21:B4:13:A5:4F:FD:7E:6C:CD:4A:6F:05:44:A6:D2 Certificate issuer: /CN=e41bf78b70ac276cbf65bb909f9934082f4d2d79 Certificate serial: 019B7F80A5B33ADC92804F0160643A5DE49A Authority key identifier: E4:1B:F7:8B:70:AC:27:6C:BF:65:BB:90:9F:99:34:08:2F:4D:2D:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/2FfewzchtBOlT_1-bM1KbwVEptI.roa Signing time: Fri 02 Jan 2026 16:18:16 +0000 ROA not before: Fri 02 Jan 2026 16:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205237 IP address blocks: 193.104.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.mft rsync://rpki.ripe.net/repository/DEFAULT/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:a5:b3:3a:dc:92:80:4f:01:60:64:3a:5d:e4:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e41bf78b70ac276cbf65bb909f9934082f4d2d79 Validity Not Before: Jan 2 16:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d857dec33721b413a54ffd7e6ccd4a6f0544a6d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e9:22:53:6b:8f:f2:eb:f8:97:3c:f0:42:10: f6:1c:32:e9:48:67:3d:b3:e5:71:e0:ab:bf:13:19: b0:e0:21:05:ff:71:26:bf:55:56:b0:a4:c2:a0:fe: a8:52:c8:65:9c:df:c8:4f:d3:fe:f1:a4:60:f2:d7: 5f:47:13:35:18:b0:09:c1:7a:af:35:8b:78:25:8d: c0:90:42:39:d8:6a:7b:f5:8e:77:2f:07:44:1f:10: 8f:aa:9b:da:ef:a9:d4:22:9e:dd:26:1a:11:96:06: cb:0f:8c:55:e0:e4:56:42:cc:bb:b3:bd:04:7f:c4: e5:19:5b:fe:4b:49:45:d9:38:ac:53:5c:da:a1:98: 54:8b:a1:9d:d7:c2:28:9b:81:2b:36:c8:3b:d0:ad: 23:2a:eb:c5:e0:73:c7:4b:d7:2b:aa:09:a5:cb:b3: f2:16:29:76:f7:4e:a6:bd:bd:62:b4:1b:a6:20:43: d4:64:02:90:df:02:36:6f:bf:55:7d:2f:33:a6:29: bd:fe:5a:99:96:16:43:4c:ba:63:d0:80:89:15:c5: 64:db:8d:31:df:27:6c:fc:1b:31:ea:57:7a:9b:aa: d8:79:20:84:93:91:57:6e:76:1a:30:e9:2b:e5:12: 0b:37:6b:2f:a9:8a:f9:22:5f:f2:d3:f0:aa:8c:1f: 5a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:57:DE:C3:37:21:B4:13:A5:4F:FD:7E:6C:CD:4A:6F:05:44:A6:D2 X509v3 Authority Key Identifier: keyid:E4:1B:F7:8B:70:AC:27:6C:BF:65:BB:90:9F:99:34:08:2F:4D:2D:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/2FfewzchtBOlT_1-bM1KbwVEptI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/0cc042-cf2b-4616-92e0-af0556c47a37/1/5Bv3i3CsJ2y_ZbuQn5k0CC9NLXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.104.25.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:e9:07:09:b7:15:d2:92:b1:09:33:83:2d:f0:8a:f4:67:e0: dc:0a:6e:a1:4d:62:2d:7e:2e:fb:cd:0c:b9:20:88:d7:fe:02: 1b:90:e5:35:20:fa:b5:0d:5c:88:4f:d1:5e:58:fc:01:0e:14: 4c:17:42:0a:7e:c3:8b:3a:e2:a9:42:9e:ba:1a:bc:de:b2:ca: 8b:ca:71:a2:24:82:2c:d2:4b:a2:bf:28:bb:73:a9:db:8d:24: 15:31:73:ae:17:be:01:2b:80:3b:70:28:a9:13:00:b3:bc:a5: 4d:a7:be:5e:47:3d:48:99:21:c4:2d:2f:10:7a:28:a4:eb:ec: 84:ad:60:46:65:c5:e9:a3:7f:9f:0a:e4:9e:32:a3:7b:57:9d: fb:e9:f3:cf:f3:c2:a7:e3:28:a3:d2:41:c6:da:7c:9e:48:dd: e4:fa:21:46:56:dc:f4:bf:b4:c2:aa:a7:58:b4:28:32:a1:d1: 36:20:42:8a:22:2b:cd:6f:67:dd:f7:d5:fc:d8:e6:91:06:1a: 8a:ff:a9:23:07:eb:14:d6:c3:0a:de:ae:f2:3e:7b:46:bf:d5: ef:18:c3:b7:e9:08:da:89:b4:46:db:5d:03:6c:bf:e2:14:62: 76:27:ff:85:91:b4:40:7b:ba:c5:2f:6f:18:43:05:62:2f:4c: f5:86:b2:75 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gKWzOtySgE8BYGQ6XeSaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0MWJmNzhiNzBhYzI3NmNiZjY1YmI5MDlmOTkzNDA4MmY0 ZDJkNzkwHhcNMjYwMTAyMTYxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkODU3ZGVjMzM3MjFiNDEzYTU0ZmZkN2U2Y2NkNGE2ZjA1NDRhNmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ekiU2uP8uv4lzzwQhD2HDLpSGc9 s+Vx4Ku/Exmw4CEF/3Emv1VWsKTCoP6oUshlnN/IT9P+8aRg8tdfRxM1GLAJwXqv NYt4JY3AkEI52Gp79Y53LwdEHxCPqpva76nUIp7dJhoRlgbLD4xV4ORWQsy7s70E f8TlGVv+S0lF2TisU1zaoZhUi6Gd18Iom4ErNsg70K0jKuvF4HPHS9crqgmly7Py Fil2906mvb1itBumIEPUZAKQ3wI2b79VfS8zpim9/lqZlhZDTLpj0ICJFcVk240x 3yds/Bsx6ld6m6rYeSCEk5FXbnYaMOkr5RILN2svqYr5Il/y0/CqjB9avQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNhX3sM3IbQTpU/9fmzNSm8FRKbSMB8GA1UdIwQY MBaAFOQb94twrCdsv2W7kJ+ZNAgvTS15MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUJ2M2kzQ3NKMnlfWmJ1UW41azBDQzlOTFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8wY2MwNDItY2YyYi00NjE2LTkyZTAt YWYwNTU2YzQ3YTM3LzEvMkZmZXd6Y2h0Qk9sVF8xLWJNMUtid1ZFcHRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My8wY2MwNDItY2YyYi00NjE2LTkyZTAtYWYwNTU2YzQ3YTM3 LzEvNUJ2M2kzQ3NKMnlfWmJ1UW41azBDQzlOTFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWgZMA0G CSqGSIb3DQEBCwUAA4IBAQBb6QcJtxXSkrEJM4Mt8Ir0Z+DcCm6hTWItfi77zQy5 IIjX/gIbkOU1IPq1DVyIT9FeWPwBDhRMF0IKfsOLOuKpQp66GrzessqLynGiJIIs 0kuivyi7c6nbjSQVMXOuF74BK4A7cCipEwCzvKVNp75eRz1ImSHELS8Qeiik6+yE rWBGZcXpo3+fCuSeMqN7V5376fPP88Kn4yij0kHG2nyeSN3k+iFGVtz0v7TCqqdY tCgyodE2IEKKIivNb2fd99X82OaRBhqK/6kjB+sU1sMK3q7yPntGv9XvGMO36Qja ibRG210DbL/iFGJ2J/+FkbRAe7rFL28YQwViL0z1hrJ1 -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:45 2026 by rpki-client