This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2r-he5pPQezq9XvlM0HdgQ2YAM8.roa File: 2r-he5pPQezq9XvlM0HdgQ2YAM8.roa (raw, json) Hash identifier: 7j+5IDw29Z8lx+lPbX5IgYRBZP7klfk9LsWsPYiFCC8= Subject key identifier: DA:BF:A1:7B:9A:4F:41:EC:EA:F5:7B:E5:33:41:DD:81:0D:98:00:CF Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Certificate serial: 019B797DE1190DFAAC8F12341B247E539A7C Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2r-he5pPQezq9XvlM0HdgQ2YAM8.roa Signing time: Thu 01 Jan 2026 12:17:31 +0000 ROA not before: Thu 01 Jan 2026 12:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8881 IP address blocks: 208.123.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.mft rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:e1:19:0d:fa:ac:8f:12:34:1b:24:7e:53:9a:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1 Validity Not Before: Jan 1 12:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dabfa17b9a4f41eceaf57be53341dd810d9800cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a3:68:c0:af:b4:21:4d:58:15:e6:fb:be:f4: 4d:85:97:c3:ca:a1:ba:c5:3e:a6:f0:81:d1:6c:85: ee:cc:32:06:cc:6e:f9:af:aa:5f:ec:ea:51:e1:8e: 2c:cc:4f:bb:74:de:69:d6:d1:19:07:19:14:8d:4a: 65:0e:d0:b4:04:12:6d:2c:cb:e0:1c:a8:57:83:45: 0b:8f:24:9a:f2:99:de:33:b4:cd:0c:b0:5d:31:ef: 43:f8:93:60:19:72:23:f7:4e:df:7e:54:c8:96:37: bc:56:cc:4a:fd:aa:75:f0:e7:6f:0e:23:2b:da:f6: ab:7b:f5:02:bf:04:21:52:b8:59:94:fc:b6:da:22: cf:75:68:a8:16:54:5b:f0:1f:2b:19:8a:22:c3:86: 44:1f:6b:bd:37:d3:74:cb:72:b0:fb:ee:2d:4e:47: f5:d3:33:66:d2:9a:1f:fd:ef:12:24:1b:a6:92:b1: f1:39:56:0f:ed:20:bc:7e:20:53:4c:c8:fb:31:9b: 3e:f0:80:e4:0e:b1:a3:be:90:f4:52:93:01:b9:d6: 62:8c:67:3f:24:33:ad:05:cf:83:7d:b0:de:6d:e1: 86:f7:eb:dc:55:f3:33:d4:9c:cf:f6:1a:cc:dc:c5: 0b:e2:5f:8c:6a:08:89:26:f6:fd:a2:1e:90:3a:ec: e4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BF:A1:7B:9A:4F:41:EC:EA:F5:7B:E5:33:41:DD:81:0D:98:00:CF X509v3 Authority Key Identifier: keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2r-he5pPQezq9XvlM0HdgQ2YAM8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.123.188.0/23 Signature Algorithm: sha256WithRSAEncryption 33:f8:3a:3d:16:a7:4d:94:77:83:ad:87:5f:0d:43:15:a0:fd: 06:68:1e:ff:cc:96:d7:df:19:fe:1c:52:c2:fa:6e:36:6d:68: a6:90:d7:39:c7:06:16:79:f7:d4:58:0a:7d:ce:d0:6a:cd:bf: 34:03:00:6e:af:e2:d7:27:b2:ca:3f:5f:15:5e:ee:96:5e:24: 69:9c:4d:7a:db:9b:b9:a6:6d:c9:fb:c4:d6:48:7f:15:30:7e: f5:37:0b:21:b1:9c:c0:15:a0:1c:59:b7:58:24:1a:fe:32:76: b8:34:bd:d7:2e:75:f8:08:46:0b:42:31:5d:93:58:af:03:7b: ad:99:f6:de:cf:a0:6b:45:dd:ba:cf:23:ce:93:4e:c5:f8:bb: f3:96:9f:40:0f:2f:cc:b3:84:e5:80:7e:d4:26:07:b8:a9:67: 12:ca:0d:1c:fd:3d:76:be:35:10:6d:61:bf:15:44:ba:16:31: 80:7a:72:83:c5:bc:52:ef:26:26:a7:d6:87:8f:33:c2:7c:e5: b8:41:d0:3a:f7:f8:cb:af:91:4e:a8:8e:97:38:07:bc:95:2f: de:a2:54:10:a4:f3:9d:0b:ec:7a:95:2e:36:da:bd:8d:88:30: 70:c6:bc:a0:fc:9a:2e:3f:bc:02:b9:d9:90:2a:ee:97:e8:08: 1f:ea:8f:7a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5feEZDfqsjxI0GyR+U5p8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm Y2ZlZDEwHhcNMjYwMTAxMTIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWJmYTE3YjlhNGY0MWVjZWFmNTdiZTUzMzQxZGQ4MTBkOTgwMGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2aNowK+0IU1YFeb7vvRNhZfDyqG6 xT6m8IHRbIXuzDIGzG75r6pf7OpR4Y4szE+7dN5p1tEZBxkUjUplDtC0BBJtLMvg HKhXg0ULjySa8pneM7TNDLBdMe9D+JNgGXIj907fflTIlje8VsxK/ap18OdvDiMr 2vare/UCvwQhUrhZlPy22iLPdWioFlRb8B8rGYoiw4ZEH2u9N9N0y3Kw++4tTkf1 0zNm0pof/e8SJBumkrHxOVYP7SC8fiBTTMj7MZs+8IDkDrGjvpD0UpMBudZijGc/ JDOtBc+DfbDebeGG9+vcVfMz1JzP9hrM3MUL4l+MagiJJvb9oh6QOuzknQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNq/oXuaT0Hs6vV75TNB3YENmADPMB8GA1UdIwQY MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt ZTU4MzlmNDNlNTgzLzEvMnItaGU1cFBRZXpxOVh2bE0wSGRnUTJZQU04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0Hu8MA0G CSqGSIb3DQEBCwUAA4IBAQAz+Do9FqdNlHeDrYdfDUMVoP0GaB7/zJbX3xn+HFLC +m42bWimkNc5xwYWeffUWAp9ztBqzb80AwBur+LXJ7LKP18VXu6WXiRpnE1625u5 pm3J+8TWSH8VMH71NwshsZzAFaAcWbdYJBr+Mna4NL3XLnX4CEYLQjFdk1ivA3ut mfbez6BrRd26zyPOk07F+Lvzlp9ADy/Ms4TlgH7UJge4qWcSyg0c/T12vjUQbWG/ FUS6FjGAenKDxbxS7yYmp9aHjzPCfOW4QdA69/jLr5FOqI6XOAe8lS/eolQQpPOd C+x6lS422r2NiDBwxryg/JouP7wCudmQKu6X6Agf6o96 -----END CERTIFICATE-----Generated at Mon Jan 19 14:38:36 2026 by rpki-client