This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/852140-a27f-449b-b5ff-223742ee4375/1/Sr2ilYThFqm2tCLjqx0SQiHp3gg.roa File: Sr2ilYThFqm2tCLjqx0SQiHp3gg.roa (raw, json) Hash identifier: ZjkDiEE0NsiNSW23AbUw04cnOCc6rq224JzhXfjp1bc= Subject key identifier: 4A:BD:A2:95:84:E1:16:A9:B6:B4:22:E3:AB:1D:12:42:21:E9:DE:08 Certificate issuer: /CN=cfd6e161dcfb7b72775149d435b79ba9d56d1417 Certificate serial: 019B7BA43D1649069AC171AEA43C65E4325F Authority key identifier: CF:D6:E1:61:DC:FB:7B:72:77:51:49:D4:35:B7:9B:A9:D5:6D:14:17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9bhYdz7e3J3UUnUNbebqdVtFBc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/852140-a27f-449b-b5ff-223742ee4375/1/Sr2ilYThFqm2tCLjqx0SQiHp3gg.roa Signing time: Thu 01 Jan 2026 22:18:39 +0000 ROA not before: Thu 01 Jan 2026 22:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 95.129.184.0/21 maxlen: 21 185.52.108.0/22 maxlen: 22 192.122.217.0/24 maxlen: 24 192.122.218.0/23 maxlen: 23 192.122.220.0/22 maxlen: 22 192.122.224.0/21 maxlen: 21 192.122.232.0/23 maxlen: 23 192.122.234.0/24 maxlen: 24 2a01:7ae0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/852140-a27f-449b-b5ff-223742ee4375/1/z9bhYdz7e3J3UUnUNbebqdVtFBc.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/852140-a27f-449b-b5ff-223742ee4375/1/z9bhYdz7e3J3UUnUNbebqdVtFBc.mft rsync://rpki.ripe.net/repository/DEFAULT/z9bhYdz7e3J3UUnUNbebqdVtFBc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:3d:16:49:06:9a:c1:71:ae:a4:3c:65:e4:32:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfd6e161dcfb7b72775149d435b79ba9d56d1417 Validity Not Before: Jan 1 22:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4abda29584e116a9b6b422e3ab1d124221e9de08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:26:8c:09:bb:bb:23:86:dc:3c:47:c0:63:46: 19:07:1d:a5:6a:9a:37:8c:a9:12:fb:fa:42:7f:d5: 2b:6a:0e:97:d3:bc:02:1c:6f:ca:1e:0b:8e:07:8d: c6:c5:34:8f:44:83:90:95:1a:7b:1c:9c:c8:0c:63: 78:8f:78:2f:2b:e5:42:f8:ec:71:5e:89:9a:70:f7: e3:68:41:09:7d:c6:df:13:7b:04:2a:37:3b:29:bf: c0:87:7f:26:77:78:27:2c:8a:4b:2c:30:a5:ee:f5: ac:70:99:cb:4c:80:f7:b7:3c:cc:61:d3:18:d6:4b: 75:0c:2c:2f:7c:05:11:de:47:b8:74:17:9d:29:ff: 53:a2:71:ad:cd:e7:96:b2:28:13:49:06:4a:d2:fa: 06:71:36:57:dd:a2:76:e3:64:61:15:f3:7a:61:ad: 3f:60:c8:4d:70:b7:1e:57:84:af:87:b1:e3:b2:24: 69:0a:7f:bc:22:8d:ba:bc:db:fb:1c:5f:f1:99:7d: d4:42:d8:e3:24:8f:bf:81:3e:ce:a6:84:99:41:af: 6c:21:34:29:ae:1c:19:29:cc:19:b5:ba:0f:6e:14: 55:e2:24:6a:1c:81:ec:f4:07:e7:4f:ce:7c:22:4b: a4:8e:f8:fd:36:65:5d:cf:7d:ef:c3:0e:97:1f:59: d7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:BD:A2:95:84:E1:16:A9:B6:B4:22:E3:AB:1D:12:42:21:E9:DE:08 X509v3 Authority Key Identifier: keyid:CF:D6:E1:61:DC:FB:7B:72:77:51:49:D4:35:B7:9B:A9:D5:6D:14:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9bhYdz7e3J3UUnUNbebqdVtFBc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/852140-a27f-449b-b5ff-223742ee4375/1/Sr2ilYThFqm2tCLjqx0SQiHp3gg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/852140-a27f-449b-b5ff-223742ee4375/1/z9bhYdz7e3J3UUnUNbebqdVtFBc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.129.184.0/21 185.52.108.0/22 192.122.217.0-192.122.234.255 IPv6: 2a01:7ae0::/32 Signature Algorithm: sha256WithRSAEncryption 06:5a:86:93:b9:e1:ce:db:6a:90:9c:e2:74:67:ca:b0:54:ed: 8a:18:f1:20:6d:8b:50:5b:82:49:a9:28:e6:f5:6c:1c:de:84: 1d:7b:44:b8:8d:24:9f:5f:24:0a:ab:75:e3:cb:f2:e6:7e:52: a3:f5:7f:5f:c7:7b:7d:88:ea:75:b4:aa:94:41:12:fe:a5:bd: e8:8c:09:f7:21:4d:ea:ab:97:ab:d7:56:01:77:3c:60:64:83: 09:80:c7:de:97:f5:61:9d:15:b3:3b:bc:65:36:13:9b:54:b2: 03:f7:e2:69:eb:52:f2:04:db:bf:b6:06:0e:0c:74:10:e8:de: 8b:9a:09:37:6b:42:0e:92:07:90:04:7f:7a:f5:c4:99:f2:70: 4d:71:f5:95:89:d3:15:0a:54:66:ef:0f:ee:71:37:82:d6:70: 80:51:d6:f0:1c:da:21:4d:bc:f8:16:4b:16:a3:b7:0b:83:54: d4:ae:c0:e5:e3:76:4a:79:1a:86:10:79:1e:0d:0b:a8:cd:e4: ba:26:d3:e0:cb:07:c0:f5:3d:d8:81:c7:f8:d6:22:f9:8e:da: 91:59:6f:05:bb:94:3a:92:a7:00:70:69:5f:49:4f:75:ab:27: 40:cb:25:77:13:8c:8c:0f:aa:f9:b0:d0:5c:3f:dd:16:c1:4b: 0c:3b:64:e9 -----BEGIN CERTIFICATE----- MIIFIDCCBAigAwIBAgISAZt7pD0WSQaawXGupDxl5DJfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmZDZlMTYxZGNmYjdiNzI3NzUxNDlkNDM1Yjc5YmE5ZDU2 ZDE0MTcwHhcNMjYwMTAxMjIxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YWJkYTI5NTg0ZTExNmE5YjZiNDIyZTNhYjFkMTI0MjIxZTlkZTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSaMCbu7I4bcPEfAY0YZBx2lapo3 jKkS+/pCf9Urag6X07wCHG/KHguOB43GxTSPRIOQlRp7HJzIDGN4j3gvK+VC+Oxx XomacPfjaEEJfcbfE3sEKjc7Kb/Ah38md3gnLIpLLDCl7vWscJnLTID3tzzMYdMY 1kt1DCwvfAUR3ke4dBedKf9TonGtzeeWsigTSQZK0voGcTZX3aJ242RhFfN6Ya0/ YMhNcLceV4Svh7HjsiRpCn+8Io26vNv7HF/xmX3UQtjjJI+/gT7OpoSZQa9sITQp rhwZKcwZtboPbhRV4iRqHIHs9AfnT858Ikukjvj9NmVdz33vww6XH1nXDwIDAQAB o4ICLDCCAigwHQYDVR0OBBYEFEq9opWE4RaptrQi46sdEkIh6d4IMB8GA1UdIwQY MBaAFM/W4WHc+3tyd1FJ1DW3m6nVbRQXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejliaFlkejdlM0ozVVVuVU5iZWJxZFZ0RkJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS84NTIxNDAtYTI3Zi00NDliLWI1ZmYt MjIzNzQyZWU0Mzc1LzEvU3IyaWxZVGhGcW0ydENManF4MFNRaUhwM2dnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS84NTIxNDAtYTI3Zi00NDliLWI1ZmYtMjIzNzQyZWU0Mzc1 LzEvejliaFlkejdlM0ozVVVuVU5iZWJxZFZ0RkJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAgBAIAATAaAwQDX4G4AwQC uTRsMAwDBADAetkDBADAeuowDQQCAAIwBwMFACoBeuAwDQYJKoZIhvcNAQELBQAD ggEBAAZahpO54c7bapCc4nRnyrBU7YoY8SBti1BbgkmpKOb1bBzehB17RLiNJJ9f JAqrdePL8uZ+UqP1f1/He32I6nW0qpRBEv6lveiMCfchTeqrl6vXVgF3PGBkgwmA x96X9WGdFbM7vGU2E5tUsgP34mnrUvIE27+2Bg4MdBDo3ouaCTdrQg6SB5AEf3r1 xJnycE1x9ZWJ0xUKVGbvD+5xN4LWcIBR1vAc2iFNvPgWSxajtwuDVNSuwOXjdkp5 GoYQeR4NC6jN5Lom0+DLB8D1PdiBx/jWIvmO2pFZbwW7lDqSpwBwaV9JT3WrJ0DL JXcTjIwPqvmw0Fw/3RbBSww7ZOk= -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:10 2026 by rpki-client