This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/72d48b-865a-4e6e-96f3-5768d37f7bb5/1/2gtdnmtxdp159yoykWR7atnRXug.roa File: 2gtdnmtxdp159yoykWR7atnRXug.roa (raw, json) Hash identifier: QojryZo1S1FIxC+Q/WaC+2xdtTehaO8dflArcrZGQ6E= Subject key identifier: DA:0B:5D:9E:6B:71:76:9D:79:F7:2A:32:91:64:7B:6A:D9:D1:5E:E8 Certificate issuer: /CN=f356cdd5a49ce6c42a9a35fa77b9727819688896 Certificate serial: 019B7AC7E22C0CA30B15B1AC3A531A03A994 Authority key identifier: F3:56:CD:D5:A4:9C:E6:C4:2A:9A:35:FA:77:B9:72:78:19:68:88:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81bN1aSc5sQqmjX6d7lyeBloiJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/72d48b-865a-4e6e-96f3-5768d37f7bb5/1/2gtdnmtxdp159yoykWR7atnRXug.roa Signing time: Thu 01 Jan 2026 18:17:58 +0000 ROA not before: Thu 01 Jan 2026 18:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 2.57.1.0/24 maxlen: 24 134.99.0.0/16 maxlen: 16 134.99.235.0/24 maxlen: 24 2a12:eac0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/72d48b-865a-4e6e-96f3-5768d37f7bb5/1/81bN1aSc5sQqmjX6d7lyeBloiJY.crl rsync://rpki.ripe.net/repository/DEFAULT/76/72d48b-865a-4e6e-96f3-5768d37f7bb5/1/81bN1aSc5sQqmjX6d7lyeBloiJY.mft rsync://rpki.ripe.net/repository/DEFAULT/81bN1aSc5sQqmjX6d7lyeBloiJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e2:2c:0c:a3:0b:15:b1:ac:3a:53:1a:03:a9:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f356cdd5a49ce6c42a9a35fa77b9727819688896 Validity Not Before: Jan 1 18:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da0b5d9e6b71769d79f72a3291647b6ad9d15ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:bc:46:7f:74:01:5b:28:0e:d2:96:58:fd: 46:15:92:89:a3:8c:08:7a:1a:57:75:d8:07:ac:ce: ae:87:96:bc:6e:e8:f6:88:ba:15:22:0e:1c:ed:c0: 0b:0e:6b:5c:c3:b7:37:82:fc:06:8f:bb:25:bb:f2: 7b:eb:a1:4a:5d:b0:36:be:5b:45:c1:ba:1a:2c:9f: 7a:2b:84:f5:eb:f0:16:b6:30:92:e4:d6:c8:28:b6: d4:9c:6a:11:ab:1f:7e:c5:60:75:de:f1:db:e3:f3: ba:ea:2f:71:c7:01:22:f9:b1:78:19:c9:26:ae:a7: ae:69:b1:4b:74:f1:59:e6:9e:c8:f3:6d:41:c3:2e: 25:b7:68:93:2e:03:56:74:e9:e9:e8:d3:8a:ef:03: 72:97:f7:0e:8c:49:81:6c:52:8f:fa:18:ae:84:94: c6:47:66:ed:81:9a:be:39:d6:3e:16:9e:cb:a6:03: 6e:9f:75:4d:1c:a0:46:94:05:75:8b:95:27:38:74: 8a:2f:41:cc:72:4b:b6:fc:9f:14:ab:0a:73:81:3e: 0f:f8:4a:cb:f1:e0:94:ce:60:aa:c9:10:9e:db:de: b2:ce:36:24:7a:9c:84:c8:5a:e9:84:27:4b:13:ad: bc:fc:62:18:ff:c3:26:da:ea:b5:fa:68:9b:15:34: 98:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0B:5D:9E:6B:71:76:9D:79:F7:2A:32:91:64:7B:6A:D9:D1:5E:E8 X509v3 Authority Key Identifier: keyid:F3:56:CD:D5:A4:9C:E6:C4:2A:9A:35:FA:77:B9:72:78:19:68:88:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81bN1aSc5sQqmjX6d7lyeBloiJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/72d48b-865a-4e6e-96f3-5768d37f7bb5/1/2gtdnmtxdp159yoykWR7atnRXug.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/72d48b-865a-4e6e-96f3-5768d37f7bb5/1/81bN1aSc5sQqmjX6d7lyeBloiJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.1.0/24 134.99.0.0/16 IPv6: 2a12:eac0::/29 Signature Algorithm: sha256WithRSAEncryption 75:88:33:fc:b3:c1:4c:98:16:1d:a4:a3:fe:50:87:72:c6:aa: 2f:7f:f0:65:ef:73:b5:e7:06:61:b8:a7:4e:a2:6e:75:1e:66: 04:97:ac:ae:fd:f3:d5:68:cf:6a:8f:09:48:5d:15:e0:60:7c: 45:dc:f4:68:59:3d:6e:7c:d7:28:b5:7e:1a:3b:d7:2b:c4:04: 35:6d:69:14:b7:14:77:20:8a:57:50:61:1f:23:12:47:66:de: c2:9d:4c:0b:7e:66:9b:12:73:bc:f4:0b:bf:7e:4b:2e:25:05: c5:ca:31:fb:2e:0f:73:31:51:d5:5a:81:0b:57:53:de:10:d9: ed:16:67:2c:cb:02:2e:f1:ac:2d:dc:bd:bd:33:24:ba:3e:1b: 80:f5:7f:71:f4:b8:66:1f:4a:34:d6:21:12:0e:47:5a:62:50: c0:34:e8:8e:0f:01:39:96:be:62:9f:2a:f1:36:8b:9b:01:fd: 73:42:c5:18:9b:6e:c3:f0:31:77:16:cb:e0:09:fe:f4:74:f0: 54:90:ca:6c:64:e6:62:2b:81:bb:16:f6:50:18:39:5d:f9:76: 07:77:bc:9b:af:18:92:87:78:a6:f0:28:84:60:15:86:d6:c5: 49:c3:44:88:17:03:09:4f:98:c8:8a:4b:68:0b:ec:c0:58:d7: 7a:a2:12:80 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt6x+IsDKMLFbGsOlMaA6mUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzNTZjZGQ1YTQ5Y2U2YzQyYTlhMzVmYTc3Yjk3Mjc4MTk2 ODg4OTYwHhcNMjYwMTAxMTgxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTBiNWQ5ZTZiNzE3NjlkNzlmNzJhMzI5MTY0N2I2YWQ5ZDE1ZWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW+8Rn90AVsoDtKWWP1GFZKJo4wI ehpXddgHrM6uh5a8buj2iLoVIg4c7cALDmtcw7c3gvwGj7slu/J766FKXbA2vltF wboaLJ96K4T16/AWtjCS5NbIKLbUnGoRqx9+xWB13vHb4/O66i9xxwEi+bF4Gckm rqeuabFLdPFZ5p7I821Bwy4lt2iTLgNWdOnp6NOK7wNyl/cOjEmBbFKP+hiuhJTG R2btgZq+OdY+Fp7LpgNun3VNHKBGlAV1i5UnOHSKL0HMcku2/J8UqwpzgT4P+ErL 8eCUzmCqyRCe296yzjYkepyEyFrphCdLE628/GIY/8Mm2uq1+mibFTSY5wIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFNoLXZ5rcXadefcqMpFke2rZ0V7oMB8GA1UdIwQY MBaAFPNWzdWknObEKpo1+ne5cngZaIiWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODFiTjFhU2M1c1FxbWpYNmQ3bHllQmxvaUpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni83MmQ0OGItODY1YS00ZTZlLTk2ZjMt NTc2OGQzN2Y3YmI1LzEvMmd0ZG5tdHhkcDE1OXlveWtXUjdhdG5SWHVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni83MmQ0OGItODY1YS00ZTZlLTk2ZjMtNTc2OGQzN2Y3YmI1 LzEvODFiTjFhU2M1c1FxbWpYNmQ3bHllQmxvaUpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjARBAIAATALAwQAAjkBAwMA hmMwDQQCAAIwBwMFAyoS6sAwDQYJKoZIhvcNAQELBQADggEBAHWIM/yzwUyYFh2k o/5Qh3LGqi9/8GXvc7XnBmG4p06ibnUeZgSXrK7989Voz2qPCUhdFeBgfEXc9GhZ PW581yi1fho71yvEBDVtaRS3FHcgildQYR8jEkdm3sKdTAt+ZpsSc7z0C79+Sy4l BcXKMfsuD3MxUdVagQtXU94Q2e0WZyzLAi7xrC3cvb0zJLo+G4D1f3H0uGYfSjTW IRIOR1piUMA06I4PATmWvmKfKvE2i5sB/XNCxRibbsPwMXcWy+AJ/vR08FSQymxk 5mIrgbsW9lAYOV35dgd3vJuvGJKHeKbwKIRgFYbWxUnDRIgXAwlPmMiKS2gL7MBY 13qiEoA= -----END CERTIFICATE-----Generated at Tue Jan 27 11:25:39 2026 by rpki-client