This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2_3lhvPVFiK2bEULia7jSuCldn8.roa File: 2_3lhvPVFiK2bEULia7jSuCldn8.roa (raw, json) Hash identifier: ARLwrbHEG9tc4nc8zfqGiMXhetlyVzV583aKDIDV0iw= Subject key identifier: DB:FD:E5:86:F3:D5:16:22:B6:6C:45:0B:89:AE:E3:4A:E0:A5:76:7F Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Certificate serial: 019BD5C5650B6FE6A23619B53610C69454CC Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2_3lhvPVFiK2bEULia7jSuCldn8.roa Signing time: Mon 19 Jan 2026 10:20:41 +0000 ROA not before: Mon 19 Jan 2026 10:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39831 IP address blocks: 185.226.192.0/24 maxlen: 24 2a05:4380::/32 maxlen: 32 2a0a:e9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.mft rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:c5:65:0b:6f:e6:a2:36:19:b5:36:10:c6:94:54:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467 Validity Not Before: Jan 19 10:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbfde586f3d51622b66c450b89aee34ae0a5767f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2f:31:b7:66:74:63:df:bf:08:8b:3e:22:b7: 8f:d5:b9:4d:14:2a:67:30:99:6f:32:18:79:9d:23: ac:97:3e:80:93:a6:f5:13:6b:42:7d:52:45:c2:3a: fd:ce:a6:01:9e:3f:b4:a9:1d:ae:b0:f2:e2:b7:4e: 5c:24:6b:c9:15:a1:53:a4:f6:6a:54:e9:c3:ec:75: d2:c4:e3:a4:50:c3:5a:71:4b:d9:1b:a8:03:60:e7: e7:11:f2:f3:11:d5:6b:a6:3c:e1:b3:62:ce:8c:f8: 7b:73:b5:0d:13:7d:5a:4f:1c:1b:98:1f:45:db:c5: 0d:59:77:c5:5f:55:6f:8d:39:65:3d:b9:dc:43:3f: 8e:b9:29:dc:fa:2e:d9:6e:9d:15:7f:80:4e:48:bf: 5c:f0:ba:a1:96:d0:14:c1:5c:bf:e6:48:4d:78:e1: e2:78:59:f1:10:45:96:67:0b:cd:9e:6a:a5:95:e6: 35:85:94:15:7f:0a:56:2a:75:d6:a5:bd:b3:6e:ca: 5f:07:42:50:61:a0:1e:a1:c8:3b:29:10:2f:8d:64: 61:f1:aa:dc:69:cd:b6:55:16:31:6b:60:67:05:ca: 7e:b9:5a:85:7d:bc:f3:41:4f:56:6a:8f:91:1c:d0: 89:ee:20:e9:a8:02:67:c8:85:f5:48:c2:10:49:34: 87:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FD:E5:86:F3:D5:16:22:B6:6C:45:0B:89:AE:E3:4A:E0:A5:76:7F X509v3 Authority Key Identifier: keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2_3lhvPVFiK2bEULia7jSuCldn8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.192.0/24 IPv6: 2a05:4380::/32 2a0a:e9c0::/32 Signature Algorithm: sha256WithRSAEncryption 88:16:39:dd:92:9d:2d:3f:dd:07:d7:de:f4:e5:fa:8e:e7:00: 5e:1d:86:f1:55:99:30:60:73:2b:98:f5:0e:38:b7:82:27:b5: 7e:16:01:86:c4:d7:4e:42:72:00:95:17:97:ac:13:79:f4:5c: aa:06:03:a2:97:92:d8:fb:41:29:48:7e:89:8b:c8:37:65:de: de:e1:f0:d2:d3:c3:70:d1:b3:21:25:47:da:5b:60:0b:fb:f5: 3e:db:b9:bd:12:cd:81:ca:7e:08:f0:7e:7d:df:2b:0b:5b:90: 5c:d4:a1:38:17:e8:f4:99:65:d7:bd:95:81:fd:1b:dd:83:7a: 9a:d2:6a:56:a1:b7:8b:2f:fe:d9:23:78:e0:25:e2:93:31:04: 00:6a:bb:8a:b8:1a:80:22:82:c5:ad:54:56:de:aa:38:89:55: 46:b6:19:a9:6c:70:94:aa:7d:ea:b6:40:05:e5:71:d6:03:9a: 47:cb:2e:12:a5:22:25:5a:db:63:6e:fb:0d:3c:fb:17:aa:4a: 2e:3a:1e:50:a8:45:21:30:7b:0b:65:9d:33:17:c4:6b:58:3a: 84:d2:06:53:cb:59:42:0f:41:94:03:8e:9e:db:c4:50:3a:45: 74:49:d7:a2:5f:2a:d8:70:c2:bd:77:88:80:c5:23:55:d4:fd: 1a:d1:5a:9f -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZvVxWULb+aiNhm1NhDGlFTMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy N2E0NjcwHhcNMjYwMTE5MTAyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmZkZTU4NmYzZDUxNjIyYjY2YzQ1MGI4OWFlZTM0YWUwYTU3NjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti8xt2Z0Y9+/CIs+IreP1blNFCpn MJlvMhh5nSOslz6Ak6b1E2tCfVJFwjr9zqYBnj+0qR2usPLit05cJGvJFaFTpPZq VOnD7HXSxOOkUMNacUvZG6gDYOfnEfLzEdVrpjzhs2LOjPh7c7UNE31aTxwbmB9F 28UNWXfFX1VvjTllPbncQz+OuSnc+i7Zbp0Vf4BOSL9c8LqhltAUwVy/5khNeOHi eFnxEEWWZwvNnmqlleY1hZQVfwpWKnXWpb2zbspfB0JQYaAeocg7KRAvjWRh8arc ac22VRYxa2BnBcp+uVqFfbzzQU9Wao+RHNCJ7iDpqAJnyIX1SMIQSTSHIQIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFNv95Ybz1RYitmxFC4mu40rgpXZ/MB8GA1UdIwQY MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt Y2Q3ZTA2Y2JiNTMxLzEvMl8zbGh2UFZGaUsyYkVVTGlhN2pTdUNsZG44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAMBAIAATAGAwQAueLAMBQE AgACMA4DBQAqBUOAAwUAKgrpwDANBgkqhkiG9w0BAQsFAAOCAQEAiBY53ZKdLT/d B9fe9OX6jucAXh2G8VWZMGBzK5j1Dji3gie1fhYBhsTXTkJyAJUXl6wTefRcqgYD opeS2PtBKUh+iYvIN2Xe3uHw0tPDcNGzISVH2ltgC/v1Ptu5vRLNgcp+CPB+fd8r C1uQXNShOBfo9Jll172Vgf0b3YN6mtJqVqG3iy/+2SN44CXikzEEAGq7irgagCKC xa1UVt6qOIlVRrYZqWxwlKp96rZABeVx1gOaR8suEqUiJVrbY277DTz7F6pKLjoe UKhFITB7C2WdMxfEa1g6hNIGU8tZQg9BlAOOntvEUDpFdEnXol8q2HDCvXeIgMUj VdT9GtFanw== -----END CERTIFICATE-----Generated at Fri Jan 23 21:38:24 2026 by rpki-client