This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/2P5osGAVpJVmSHuFqyapukoADZ0.roa File: 2P5osGAVpJVmSHuFqyapukoADZ0.roa (raw, json) Hash identifier: LZdCcSECrLZwTeH0jGGwEW8WFnGViD+GJYSUapNTS8I= Subject key identifier: D8:FE:68:B0:60:15:A4:95:66:48:7B:85:AB:26:A9:BA:4A:00:0D:9D Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83AD2F25F318F3AD9A5BD7817DBB58 Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/2P5osGAVpJVmSHuFqyapukoADZ0.roa Signing time: Fri 02 Jan 2026 16:21:34 +0000 ROA not before: Fri 02 Jan 2026 16:21:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201244 IP address blocks: 46.243.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:ad:2f:25:f3:18:f3:ad:9a:5b:d7:81:7d:bb:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d8fe68b06015a49566487b85ab26a9ba4a000d9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ed:ac:c9:1f:d4:d3:6b:23:d5:1d:47:16:fd: 34:5a:0e:3b:a3:2c:8a:ce:15:8c:51:a7:37:bb:02: 73:72:6b:ba:22:75:d1:48:b2:82:3a:48:4f:21:58: 30:29:3b:46:a0:9a:be:d9:68:62:00:b1:bb:48:66: 50:00:f3:67:6e:0d:09:b8:0f:3b:50:e8:fb:48:40: 16:27:e0:7a:45:89:7c:ad:53:80:a0:6d:b4:25:71: c9:76:06:85:02:24:03:9c:71:75:56:0f:33:80:3c: 68:bc:85:d4:71:a7:75:af:46:f5:82:5c:19:08:7a: 70:1c:b1:70:6c:2e:ff:e1:79:1e:2f:b6:80:23:21: e4:9e:5e:e7:62:3a:36:69:4d:1f:ab:12:3a:80:42: 5a:32:69:81:cf:15:a5:e9:3b:93:e1:5b:14:45:3a: 53:57:6a:39:8d:29:e0:20:8f:2e:e4:67:f0:cf:7e: 39:5c:e7:bd:ad:a0:04:4b:24:eb:7d:3a:fa:fa:e3: 88:f0:ac:cc:2c:f1:df:c5:63:21:1d:7c:e5:6c:df: 22:56:72:b2:bf:84:93:48:a2:d9:e5:7d:e0:e9:f4: de:92:8c:bd:90:9b:c2:3f:7f:09:e4:10:72:42:bc: c6:e9:b6:1b:17:8d:0e:78:ed:44:20:51:49:19:0c: 65:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FE:68:B0:60:15:A4:95:66:48:7B:85:AB:26:A9:BA:4A:00:0D:9D X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/2P5osGAVpJVmSHuFqyapukoADZ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.243.175.0/24 Signature Algorithm: sha256WithRSAEncryption ca:b7:28:dc:53:d8:8d:f2:6c:bf:91:a3:12:bb:1e:f1:04:f6: 6c:d8:c1:af:b9:c7:09:22:6d:44:de:13:7f:3f:55:fb:a9:56: 79:01:11:7f:12:89:67:02:7a:0e:4f:d6:d5:50:a8:3b:8b:6e: af:54:2d:5f:aa:88:4f:28:1e:20:50:5f:33:1d:3e:cf:f8:e1: de:b2:09:51:c0:8d:f1:3e:f9:a2:6b:ff:dd:60:82:bb:46:79: a3:f4:67:df:ba:32:30:21:52:b2:3f:90:7f:ab:f2:f5:0d:77: 5c:4e:83:e6:65:e4:32:77:e3:45:e3:8d:27:df:35:84:73:6c: ad:14:06:fe:1a:85:0a:84:c9:30:00:ec:46:3d:46:ff:c7:55: 38:ff:8a:e2:5a:ef:c1:2b:42:1f:af:31:3d:1a:f3:8e:64:cb: 40:61:ce:a5:87:fc:4d:e9:aa:41:27:db:99:6a:05:d2:93:ad: df:89:6a:9b:9d:cd:1e:c0:cf:27:84:3e:dd:6b:21:6f:57:2b: c2:9d:59:f9:3c:4f:e2:fc:78:25:05:34:f9:12:34:01:95:ce: 66:6c:e4:c9:b4:f7:1c:9f:37:7f:fc:da:5e:d8:44:3c:04:4c: 6f:ee:f9:e1:77:e4:9f:d0:df:aa:af:8d:81:95:8f:bb:00:ac: 39:64:ff:14 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g60vJfMY862aW9eBfbtYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOGZlNjhiMDYwMTVhNDk1NjY0ODdiODVhYjI2YTliYTRhMDAwZDlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAme2syR/U02sj1R1HFv00Wg47oyyK zhWMUac3uwJzcmu6InXRSLKCOkhPIVgwKTtGoJq+2WhiALG7SGZQAPNnbg0JuA87 UOj7SEAWJ+B6RYl8rVOAoG20JXHJdgaFAiQDnHF1Vg8zgDxovIXUcad1r0b1glwZ CHpwHLFwbC7/4XkeL7aAIyHknl7nYjo2aU0fqxI6gEJaMmmBzxWl6TuT4VsURTpT V2o5jSngII8u5Gfwz345XOe9raAESyTrfTr6+uOI8KzMLPHfxWMhHXzlbN8iVnKy v4STSKLZ5X3g6fTekoy9kJvCP38J5BByQrzG6bYbF40OeO1EIFFJGQxlNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNj+aLBgFaSVZkh7hasmqbpKAA2dMB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvMlA1b3NHQVZwSlZtU0h1RnF5YXB1a29BRFowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvOvMA0G CSqGSIb3DQEBCwUAA4IBAQDKtyjcU9iN8my/kaMSux7xBPZs2MGvuccJIm1E3hN/ P1X7qVZ5ARF/EolnAnoOT9bVUKg7i26vVC1fqohPKB4gUF8zHT7P+OHesglRwI3x Pvmia//dYIK7Rnmj9GffujIwIVKyP5B/q/L1DXdcToPmZeQyd+NF440n3zWEc2yt FAb+GoUKhMkwAOxGPUb/x1U4/4riWu/BK0IfrzE9GvOOZMtAYc6lh/xN6apBJ9uZ agXSk63fiWqbnc0ewM8nhD7dayFvVyvCnVn5PE/i/HglBTT5EjQBlc5mbOTJtPcc nzd//Npe2EQ8BExv7vnhd+Sf0N+qr42BlY+7AKw5ZP8U -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:21 2026 by rpki-client