This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/2k061tGHc03Ey0V3NX4-GnPnNBc.roa File: 2k061tGHc03Ey0V3NX4-GnPnNBc.roa (raw, json) Hash identifier: cqhlKMqnXJOJCr7N4xEDssiNgQoWfirNtnOj+DZf3Xk= Subject key identifier: DA:4D:3A:D6:D1:87:73:4D:C4:CB:45:77:35:7E:3E:1A:73:E7:34:17 Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c Certificate serial: 019B7EA596733039C5FB90D0A471CC4645FD Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/2k061tGHc03Ey0V3NX4-GnPnNBc.roa Signing time: Fri 02 Jan 2026 12:18:59 +0000 ROA not before: Fri 02 Jan 2026 12:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210625 IP address blocks: 83.229.103.0/24 maxlen: 24 83.229.111.0/24 maxlen: 24 141.226.55.0/24 maxlen: 24 141.226.71.0/24 maxlen: 24 147.236.98.0/23 maxlen: 24 147.236.98.0/24 maxlen: 24 147.236.99.0/24 maxlen: 24 147.236.228.0/22 maxlen: 22 147.236.228.0/23 maxlen: 23 147.236.228.0/24 maxlen: 24 147.236.229.0/24 maxlen: 24 147.236.230.0/23 maxlen: 23 147.236.230.0/24 maxlen: 24 147.236.231.0/24 maxlen: 24 2a13:54c0::/29 maxlen: 36 2a13:54c1::/32 maxlen: 32 2a13:54c2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 21:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:96:73:30:39:c5:fb:90:d0:a4:71:cc:46:45:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c Validity Not Before: Jan 2 12:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da4d3ad6d187734dc4cb4577357e3e1a73e73417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:75:39:65:93:b7:4f:db:44:8b:01:55:03:3f: c9:f4:1a:e0:91:7d:57:46:06:72:fe:a1:f9:b1:a5: cb:1e:e9:64:5f:3a:a1:e9:db:d7:0f:ae:7b:32:ff: f6:c4:ea:ba:a9:df:ec:5b:ae:2e:c4:a3:7c:f3:19: 5d:59:c7:4c:bb:2a:29:13:30:d0:bc:84:a4:86:6e: 4c:07:d5:9f:08:7a:a3:6a:61:ea:a2:6e:0d:e6:85: 36:4f:58:36:c9:85:02:45:4a:75:ff:a5:07:4e:51: 77:eb:ae:e9:9a:2a:97:57:76:cd:08:93:c2:91:97: 5d:e7:f6:1f:e6:8d:3c:fb:97:96:c5:f7:d8:2c:82: 89:7f:ed:0d:74:19:20:69:ba:fe:bb:79:fd:f1:0d: fb:24:15:6e:74:f6:9d:6b:5b:e9:22:7f:6e:93:35: 42:12:6a:b9:ff:87:27:1a:79:44:01:84:5c:0b:cf: ca:ab:e8:76:39:79:a4:f6:d9:78:30:27:9c:a6:c3: ce:49:9a:42:63:6c:9d:e5:e7:0f:a2:66:61:1e:30: 0b:f5:67:c6:06:d4:b5:80:59:aa:8c:3c:7b:da:1c: 1b:45:63:38:ad:0b:94:17:df:31:70:3c:33:42:91: 13:12:78:b3:21:7b:f5:22:01:99:5a:b5:cd:98:57: a7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4D:3A:D6:D1:87:73:4D:C4:CB:45:77:35:7E:3E:1A:73:E7:34:17 X509v3 Authority Key Identifier: keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/2k061tGHc03Ey0V3NX4-GnPnNBc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.229.103.0/24 83.229.111.0/24 141.226.55.0/24 141.226.71.0/24 147.236.98.0/23 147.236.228.0/22 IPv6: 2a13:54c0::/29 Signature Algorithm: sha256WithRSAEncryption 34:30:3f:35:e7:ae:eb:a9:b8:15:3b:50:15:86:be:39:a5:0f: 65:3b:e7:4f:95:c0:3b:79:9d:a2:2e:6e:b6:28:62:5c:61:38: 97:2d:41:ec:16:fc:95:3e:c5:db:a4:26:68:ef:02:d2:88:2c: 04:c4:e0:a9:00:76:02:0f:c7:05:1e:1d:c2:65:b2:46:7e:26: b6:89:5b:b7:79:04:34:b8:e1:c1:ab:cd:19:29:0f:ac:0e:81: ac:76:e3:a5:cc:2d:b0:03:6d:65:a7:c7:44:61:2a:c7:62:dc: aa:c2:11:85:b1:8d:12:f9:dd:12:5c:32:bc:2c:b0:85:d6:4e: 2c:fc:f7:f0:fa:8e:20:91:6e:49:97:52:3f:13:02:d4:a2:e6: 3f:98:60:90:e7:3d:6e:58:82:d6:2b:0c:df:31:84:7e:7f:93: 50:17:18:27:98:9f:41:85:24:4c:06:41:84:a8:01:41:8c:3c: 8e:a0:08:bf:79:6d:5f:86:5a:4f:59:2c:1b:98:0c:08:66:9f: c9:1c:65:2d:36:66:ff:8e:6a:06:a4:fd:50:24:9b:93:bc:f0: 07:f1:96:30:96:0e:d4:51:3a:12:2f:0e:99:99:fa:42:e7:51: 67:d2:16:44:e1:53:db:e2:af:ba:92:e6:91:14:2f:7e:18:21: a5:c5:0c:e1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt+pZZzMDnF+5DQpHHMRkX9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzdhOTAyNmU0NWI2OGZlNDczNWE0NjliNzU2MzYxMzBh ZDEyNWMwHhcNMjYwMTAyMTIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTRkM2FkNmQxODc3MzRkYzRjYjQ1NzczNTdlM2UxYTczZTczNDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnU5ZZO3T9tEiwFVAz/J9BrgkX1X RgZy/qH5saXLHulkXzqh6dvXD657Mv/2xOq6qd/sW64uxKN88xldWcdMuyopEzDQ vISkhm5MB9WfCHqjamHqom4N5oU2T1g2yYUCRUp1/6UHTlF3667pmiqXV3bNCJPC kZdd5/Yf5o08+5eWxffYLIKJf+0NdBkgabr+u3n98Q37JBVudPada1vpIn9ukzVC Emq5/4cnGnlEAYRcC8/Kq+h2OXmk9tl4MCecpsPOSZpCY2yd5ecPomZhHjAL9WfG BtS1gFmqjDx72hwbRWM4rQuUF98xcDwzQpETEnizIXv1IgGZWrXNmFenkwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFNpNOtbRh3NNxMtFdzV+Phpz5zQXMB8GA1UdIwQY MBaAFBw3qQJuRbaP5HNaRpt1Y2EwrRJcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQt NDhkNjcyOTczYjEzLzEvMmswNjF0R0hjMDNFeTBWM05YNC1HblBuTkJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQtNDhkNjcyOTczYjEz LzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAU+VnAwQA U+VvAwQAjeI3AwQAjeJHAwQBk+xiAwQCk+zkMA0EAgACMAcDBQMqE1TAMA0GCSqG SIb3DQEBCwUAA4IBAQA0MD81567rqbgVO1AVhr45pQ9lO+dPlcA7eZ2iLm62KGJc YTiXLUHsFvyVPsXbpCZo7wLSiCwExOCpAHYCD8cFHh3CZbJGfia2iVu3eQQ0uOHB q80ZKQ+sDoGsduOlzC2wA21lp8dEYSrHYtyqwhGFsY0S+d0SXDK8LLCF1k4s/Pfw +o4gkW5Jl1I/EwLUouY/mGCQ5z1uWILWKwzfMYR+f5NQFxgnmJ9BhSRMBkGEqAFB jDyOoAi/eW1fhlpPWSwbmAwIZp/JHGUtNmb/jmoGpP1QJJuTvPAH8ZYwlg7UUToS Lw6ZmfpC51Fn0hZE4VPb4q+6kuaRFC9+GCGlxQzh -----END CERTIFICATE-----Generated at Wed Jan 21 03:31:49 2026 by rpki-client