This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/PadcjJVx5jmluDWFjc29kZ9yL8s.roa File: PadcjJVx5jmluDWFjc29kZ9yL8s.roa (raw, json) Hash identifier: NwNAOizJItoskM6yqh2ngcBfOk9OciQyWZlyeSsGqXc= Subject key identifier: 3D:A7:5C:8C:95:71:E6:39:A5:B8:35:85:8D:CD:BD:91:9F:72:2F:CB Certificate issuer: /CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Certificate serial: 019B797F2E20650E266621234070EAC62F16 Authority key identifier: 2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/PadcjJVx5jmluDWFjc29kZ9yL8s.roa Signing time: Thu 01 Jan 2026 12:18:56 +0000 ROA not before: Thu 01 Jan 2026 12:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59651 IP address blocks: 130.49.8.0/24 maxlen: 24 130.49.9.0/24 maxlen: 24 130.49.10.0/24 maxlen: 24 130.49.11.0/24 maxlen: 24 170.168.28.0/24 maxlen: 24 170.168.29.0/24 maxlen: 24 170.168.30.0/24 maxlen: 24 170.168.31.0/24 maxlen: 24 170.168.96.0/24 maxlen: 24 170.168.97.0/24 maxlen: 24 170.168.98.0/24 maxlen: 24 170.168.99.0/24 maxlen: 24 170.168.172.0/24 maxlen: 24 170.168.173.0/24 maxlen: 24 170.168.174.0/24 maxlen: 24 170.168.175.0/24 maxlen: 24 170.168.240.0/24 maxlen: 24 170.168.241.0/24 maxlen: 24 170.168.242.0/24 maxlen: 24 170.168.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.mft rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:2e:20:65:0e:26:66:21:23:40:70:ea:c6:2f:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e6a86e62f0ce98e02e980869ff4414ee2a0f0ce Validity Not Before: Jan 1 12:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3da75c8c9571e639a5b835858dcdbd919f722fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:65:f9:6b:0c:60:33:9d:56:3b:54:1d:30: f6:bc:7d:db:1a:4f:85:8a:38:05:84:b5:b9:9b:bc: 61:1e:94:09:da:a5:ba:31:21:6c:62:33:ef:98:9e: 01:f9:6e:37:5d:44:1d:7f:3b:dc:e8:42:5e:fa:4a: 1e:99:51:a6:21:24:d6:85:87:83:b8:75:ea:ad:7a: 26:d7:86:5c:bd:66:db:18:5d:a2:69:3a:5a:d3:54: 60:c3:5a:d8:56:0a:98:f5:8e:61:d8:57:2c:7b:ac: 72:ca:41:13:78:25:ec:20:b3:a3:2b:0f:40:21:6c: 0b:14:68:f5:de:5f:b4:b1:34:33:32:88:fa:60:38: ea:81:7d:bd:8b:fd:53:16:cb:69:f9:62:07:2c:21: 00:d1:4b:89:3f:f0:04:05:2c:63:2f:cd:3b:ba:00: af:6f:70:93:28:03:6b:7d:5b:dd:bb:06:57:9d:9e: ce:9a:a8:9f:0d:f6:34:75:d7:86:d5:d4:03:b2:53: cf:c7:78:ac:55:f3:57:c4:f1:2f:17:3a:56:35:05: d7:50:20:9f:34:11:89:c2:9c:c7:5c:38:e8:dd:ca: 82:ce:1e:f1:9e:7c:5e:30:6a:90:03:c7:89:37:71: 9f:a1:0f:da:2e:0c:7c:f4:a5:ee:44:60:24:14:b6: a0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A7:5C:8C:95:71:E6:39:A5:B8:35:85:8D:CD:BD:91:9F:72:2F:CB X509v3 Authority Key Identifier: keyid:2E:6A:86:E6:2F:0C:E9:8E:02:E9:80:86:9F:F4:41:4E:E2:A0:F0:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/PadcjJVx5jmluDWFjc29kZ9yL8s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/2b6030-6d88-4e3e-9f3a-a667bb765060/1/LmqG5i8M6Y4C6YCGn_RBTuKg8M4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.49.8.0/22 170.168.28.0/22 170.168.96.0/22 170.168.172.0/22 170.168.240.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:a9:09:af:22:05:41:73:4e:2c:59:37:ca:00:6d:bb:5c:ae: d1:f3:68:1b:cb:4d:e4:28:d9:d3:8f:fa:17:6f:26:7e:cf:b2: ae:59:ca:f9:17:ba:40:03:2d:ce:9e:2b:0c:3f:21:6e:3f:41: bf:74:ce:f4:03:0d:eb:af:5b:ac:14:4b:71:f7:70:ed:09:4d: 36:72:8d:fa:58:eb:af:b1:19:cc:97:3f:f1:a9:fc:8c:a0:91: 02:6f:ec:c2:59:9f:d0:27:00:84:0f:c2:3b:15:fd:e6:94:72: 09:44:82:37:40:5b:63:0f:9a:fa:ea:7e:12:0c:be:d0:60:47: 5e:dc:6c:49:ad:75:5b:7a:fd:45:3d:40:0e:a1:0c:70:22:65: eb:46:86:bf:5b:e2:03:d6:e8:2e:b1:97:3a:be:ea:f5:b1:0a: a1:b9:1e:87:df:32:c6:da:29:c0:f8:0e:b9:6f:e9:66:b8:e4: 0d:53:61:c1:e2:e9:4d:a9:9d:4c:97:c8:62:20:0a:25:60:f0: 80:b1:81:4e:4c:31:c7:57:84:cd:c4:4f:c2:90:27:18:ce:0e: a8:c4:86:8a:65:d1:12:c1:e8:56:2b:1a:72:13:01:22:e2:17: 58:f9:20:db:15:ba:c8:5a:54:a6:ae:43:2f:32:73:a4:25:55: a1:5b:dc:a1 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt5fy4gZQ4mZiEjQHDqxi8WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNmE4NmU2MmYwY2U5OGUwMmU5ODA4NjlmZjQ0MTRlZTJh MGYwY2UwHhcNMjYwMTAxMTIxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZGE3NWM4Yzk1NzFlNjM5YTViODM1ODU4ZGNkYmQ5MTlmNzIyZmNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEBl+WsMYDOdVjtUHTD2vH3bGk+F ijgFhLW5m7xhHpQJ2qW6MSFsYjPvmJ4B+W43XUQdfzvc6EJe+koemVGmISTWhYeD uHXqrXom14ZcvWbbGF2iaTpa01Rgw1rYVgqY9Y5h2Fcse6xyykETeCXsILOjKw9A IWwLFGj13l+0sTQzMoj6YDjqgX29i/1TFstp+WIHLCEA0UuJP/AEBSxjL807ugCv b3CTKANrfVvduwZXnZ7OmqifDfY0ddeG1dQDslPPx3isVfNXxPEvFzpWNQXXUCCf NBGJwpzHXDjo3cqCzh7xnnxeMGqQA8eJN3GfoQ/aLgx89KXuRGAkFLagYQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFD2nXIyVceY5pbg1hY3NvZGfci/LMB8GA1UdIwQY MBaAFC5qhuYvDOmOAumAhp/0QU7ioPDOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2Et YTY2N2JiNzY1MDYwLzEvUGFkY2pKVng1am1sdURXRmpjMjlrWjl5TDhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8yYjYwMzAtNmQ4OC00ZTNlLTlmM2EtYTY2N2JiNzY1MDYw LzEvTG1xRzVpOE02WTRDNllDR25fUkJUdUtnOE00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCgjEIAwQC qqgcAwQCqqhgAwQCqqisAwQCqqjwMA0GCSqGSIb3DQEBCwUAA4IBAQAbqQmvIgVB c04sWTfKAG27XK7R82gby03kKNnTj/oXbyZ+z7KuWcr5F7pAAy3OnisMPyFuP0G/ dM70Aw3rr1usFEtx93DtCU02co36WOuvsRnMlz/xqfyMoJECb+zCWZ/QJwCED8I7 Ff3mlHIJRII3QFtjD5r66n4SDL7QYEde3GxJrXVbev1FPUAOoQxwImXrRoa/W+ID 1ugusZc6vur1sQqhuR6H3zLG2inA+A65b+lmuOQNU2HB4ulNqZ1Ml8hiIAolYPCA sYFOTDHHV4TNxE/CkCcYzg6oxIaKZdESwehWKxpyEwEi4hdY+SDbFbrIWlSmrkMv MnOkJVWhW9yh -----END CERTIFICATE-----Generated at Tue Jan 20 00:41:34 2026 by rpki-client