This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/2_PmjSq2ymAnVudAlocm7T1tmn4.roa File: 2_PmjSq2ymAnVudAlocm7T1tmn4.roa (raw, json) Hash identifier: QSuT7TExW9U0JzR64tb3XYLCTidPjZYgevzpEmIents= Subject key identifier: DB:F3:E6:8D:2A:B6:CA:60:27:56:E7:40:96:87:26:ED:3D:6D:9A:7E Certificate issuer: /CN=153d757b77067befd9446694748ad2b04e97b38c Certificate serial: 019B7EA4F978D788AD9C125C99EC938E3A9B Authority key identifier: 15:3D:75:7B:77:06:7B:EF:D9:44:66:94:74:8A:D2:B0:4E:97:B3:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/2_PmjSq2ymAnVudAlocm7T1tmn4.roa Signing time: Fri 02 Jan 2026 12:18:19 +0000 ROA not before: Fri 02 Jan 2026 12:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201193 IP address blocks: 185.76.232.0/22 maxlen: 24 185.76.232.0/24 maxlen: 24 185.76.233.0/24 maxlen: 24 185.76.234.0/24 maxlen: 24 185.76.235.0/24 maxlen: 24 2a05:5dc0::/29 maxlen: 30 2a05:5dc0::/30 maxlen: 30 2a05:5dc4::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.mft rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:f9:78:d7:88:ad:9c:12:5c:99:ec:93:8e:3a:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=153d757b77067befd9446694748ad2b04e97b38c Validity Not Before: Jan 2 12:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbf3e68d2ab6ca602756e740968726ed3d6d9a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:ec:a9:22:0e:5d:3a:f3:34:60:6e:f2:fb: bb:99:ae:38:bb:2d:15:f9:2f:de:e7:35:bb:a0:12: 51:fc:14:87:71:75:06:71:03:fe:23:a1:8b:7a:b4: ad:22:44:14:04:8e:65:4f:88:98:aa:04:eb:5e:a0: 6c:42:c7:40:95:d7:5e:a2:53:1c:69:94:4b:89:88: 11:16:d7:d0:a0:f7:26:5b:c0:87:dc:84:ca:48:6f: ce:eb:e8:00:fb:e1:7f:10:6d:28:f5:36:5e:dc:7c: 45:5e:55:be:f7:1e:35:3e:c1:42:89:39:bf:8f:97: ac:95:82:49:86:ee:47:96:37:2a:d9:b7:1f:69:d6: 4a:25:79:e8:57:ec:b5:f4:c4:92:5d:39:e2:32:96: c1:19:82:40:fc:1c:2f:52:d5:47:59:48:31:d6:01: 59:df:9a:72:7e:15:a2:cb:e0:a9:4b:4a:aa:4b:2a: 8a:42:9f:b3:8d:59:90:7d:2d:5b:59:38:7a:96:69: 9a:e1:86:8a:1f:81:ea:2e:8f:04:00:2b:69:cb:a5: 85:f4:f2:6e:d4:b6:79:f7:ba:66:df:89:f6:fb:87: ce:de:dc:36:f7:37:83:6a:b5:eb:2d:49:ec:66:30: 00:a7:cc:85:66:bd:03:55:78:99:c3:cb:ad:0d:a6: f2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F3:E6:8D:2A:B6:CA:60:27:56:E7:40:96:87:26:ED:3D:6D:9A:7E X509v3 Authority Key Identifier: keyid:15:3D:75:7B:77:06:7B:EF:D9:44:66:94:74:8A:D2:B0:4E:97:B3:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/2_PmjSq2ymAnVudAlocm7T1tmn4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/8a94b9-70fe-46ff-a4e6-019e1f8403dd/1/FT11e3cGe-_ZRGaUdIrSsE6Xs4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.76.232.0/22 IPv6: 2a05:5dc0::/29 Signature Algorithm: sha256WithRSAEncryption a7:72:3b:ba:8f:1f:d8:75:9a:f7:86:43:68:4e:b1:a1:30:57: 82:7f:79:ff:19:c1:9c:0d:a2:ef:f6:49:ba:4e:5c:37:55:eb: b6:f7:e1:79:c5:fe:0f:ca:d0:30:42:c5:00:e2:4e:84:80:4a: be:97:47:bb:1a:a6:69:a7:a4:c5:4e:f4:f5:e2:a2:0c:5b:8e: 81:ad:65:42:00:52:4a:0e:2e:3a:89:c7:c9:94:41:e5:f9:cd: 9c:8d:79:64:24:34:97:b3:05:7b:29:fc:2d:cd:da:59:e2:c9: 9c:c2:14:be:e4:7f:72:12:e5:08:f0:b8:48:c5:f5:b5:f1:a2: 02:cc:7e:af:fc:a5:59:2d:cf:28:61:32:94:a3:ad:04:67:57: e6:26:99:57:74:71:d0:d3:72:ed:4f:22:cb:5b:fb:f1:40:64: c1:0b:85:36:f9:e7:ec:c8:aa:c4:57:ce:95:4e:0c:61:54:38: 83:54:77:b7:89:29:c6:65:9a:7c:b1:8f:f0:99:9e:81:d8:21: 1f:9e:21:54:68:d3:01:f6:f9:6b:8c:83:ae:9b:e8:ae:11:9e: 85:c4:66:7e:81:da:7c:25:49:4f:8c:33:50:0b:fb:9d:7c:79: 95:bc:99:85:f6:55:eb:0a:1b:38:64:58:44:c2:c8:88:9c:cc: be:da:55:11 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pPl414itnBJcmeyTjjqbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1M2Q3NTdiNzcwNjdiZWZkOTQ0NjY5NDc0OGFkMmIwNGU5 N2IzOGMwHhcNMjYwMTAyMTIxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmYzZTY4ZDJhYjZjYTYwMjc1NmU3NDA5Njg3MjZlZDNkNmQ5YTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5jsqSIOXTrzNGBu8vu7ma44uy0V +S/e5zW7oBJR/BSHcXUGcQP+I6GLerStIkQUBI5lT4iYqgTrXqBsQsdAlddeolMc aZRLiYgRFtfQoPcmW8CH3ITKSG/O6+gA++F/EG0o9TZe3HxFXlW+9x41PsFCiTm/ j5eslYJJhu5Hljcq2bcfadZKJXnoV+y19MSSXTniMpbBGYJA/BwvUtVHWUgx1gFZ 35pyfhWiy+CpS0qqSyqKQp+zjVmQfS1bWTh6lmma4YaKH4HqLo8EACtpy6WF9PJu 1LZ597pm34n2+4fO3tw29zeDarXrLUnsZjAAp8yFZr0DVXiZw8utDaby1QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNvz5o0qtspgJ1bnQJaHJu09bZp+MB8GA1UdIwQY MBaAFBU9dXt3Bnvv2URmlHSK0rBOl7OMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlQxMWUzY0dlLV9aUkdhVWRJclNzRTZYczR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi84YTk0YjktNzBmZS00NmZmLWE0ZTYt MDE5ZTFmODQwM2RkLzEvMl9QbWpTcTJ5bUFuVnVkQWxvY203VDF0bW40LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi84YTk0YjktNzBmZS00NmZmLWE0ZTYtMDE5ZTFmODQwM2Rk LzEvRlQxMWUzY0dlLV9aUkdhVWRJclNzRTZYczR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUzoMA0E AgACMAcDBQMqBV3AMA0GCSqGSIb3DQEBCwUAA4IBAQCncju6jx/YdZr3hkNoTrGh MFeCf3n/GcGcDaLv9km6Tlw3Veu29+F5xf4PytAwQsUA4k6EgEq+l0e7GqZpp6TF TvT14qIMW46BrWVCAFJKDi46icfJlEHl+c2cjXlkJDSXswV7KfwtzdpZ4smcwhS+ 5H9yEuUI8LhIxfW18aICzH6v/KVZLc8oYTKUo60EZ1fmJplXdHHQ03LtTyLLW/vx QGTBC4U2+efsyKrEV86VTgxhVDiDVHe3iSnGZZp8sY/wmZ6B2CEfniFUaNMB9vlr jIOum+iuEZ6FxGZ+gdp8JUlPjDNQC/udfHmVvJmF9lXrChs4ZFhEwsiInMy+2lUR -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:45 2026 by rpki-client