This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/2tsTvhof1N7xxWHZwqce1_CKqWg.roa File: 2tsTvhof1N7xxWHZwqce1_CKqWg.roa (raw, json) Hash identifier: Gzqm3Zoggpcodpf2TMfLxD8ct+rjSuttBn/n8Xb0tb8= Subject key identifier: DA:DB:13:BE:1A:1F:D4:DE:F1:C5:61:D9:C2:A7:1E:D7:F0:8A:A9:68 Certificate issuer: /CN=9b2e6fd50ddc817abbac5a64f7c6a12546859ce2 Certificate serial: 019B7D5B390CF1F3C5DC4F1D972CECDEF775 Authority key identifier: 9B:2E:6F:D5:0D:DC:81:7A:BB:AC:5A:64:F7:C6:A1:25:46:85:9C:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/my5v1Q3cgXq7rFpk98ahJUaFnOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/2tsTvhof1N7xxWHZwqce1_CKqWg.roa Signing time: Fri 02 Jan 2026 06:18:08 +0000 ROA not before: Fri 02 Jan 2026 06:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47875 IP address blocks: 94.124.32.0/21 maxlen: 21 94.124.32.0/22 maxlen: 22 94.124.32.0/24 maxlen: 24 94.124.33.0/24 maxlen: 24 94.124.34.0/24 maxlen: 24 94.124.35.0/24 maxlen: 24 94.124.36.0/22 maxlen: 24 94.124.36.0/24 maxlen: 24 94.124.37.0/24 maxlen: 24 94.124.38.0/24 maxlen: 24 94.124.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/my5v1Q3cgXq7rFpk98ahJUaFnOI.crl rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/my5v1Q3cgXq7rFpk98ahJUaFnOI.mft rsync://rpki.ripe.net/repository/DEFAULT/my5v1Q3cgXq7rFpk98ahJUaFnOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:39:0c:f1:f3:c5:dc:4f:1d:97:2c:ec:de:f7:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b2e6fd50ddc817abbac5a64f7c6a12546859ce2 Validity Not Before: Jan 2 06:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dadb13be1a1fd4def1c561d9c2a71ed7f08aa968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:86:f9:23:b7:96:5d:af:5b:b0:a3:2d:a2:92: 63:c5:69:ac:c3:0f:f0:bb:be:c8:6c:f7:58:ae:8a: dc:64:ec:f6:78:af:d2:c2:ab:60:43:20:6a:59:c5: 61:93:00:44:b3:0d:f6:00:36:32:cb:1a:db:e6:ec: 64:fa:3f:c0:aa:2d:d9:7f:ed:94:71:12:72:5e:c3: 80:ad:3d:10:31:e0:67:22:73:4c:8f:f0:49:67:5c: 0c:9f:b1:82:d6:be:11:e0:bb:89:d5:5f:fe:fc:79: b2:89:01:4b:c2:d3:a6:80:d7:c4:9c:86:cf:9c:b2: 52:39:aa:18:ec:5d:ed:88:ad:34:44:00:06:3f:cb: 77:12:13:21:10:b2:f3:ad:dc:69:98:d8:67:07:35: 11:b9:8d:c7:d9:89:bd:0a:7d:d1:97:76:67:cd:14: 94:54:1f:94:01:a2:16:a4:2f:72:fb:0d:02:4c:55: d2:3f:13:95:1f:2d:01:5e:4c:58:8b:0a:96:a2:56: 27:92:0b:5b:d5:8c:d7:75:28:35:3b:20:42:b1:f4: 51:5f:86:d5:d0:b4:e2:7b:10:6d:bf:11:2b:2a:97: 87:66:43:0c:55:d5:00:5d:bb:33:8c:70:a1:c8:8b: 8e:fd:aa:c1:3d:25:6f:61:2f:b9:f8:62:34:81:b7: ed:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DB:13:BE:1A:1F:D4:DE:F1:C5:61:D9:C2:A7:1E:D7:F0:8A:A9:68 X509v3 Authority Key Identifier: keyid:9B:2E:6F:D5:0D:DC:81:7A:BB:AC:5A:64:F7:C6:A1:25:46:85:9C:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/my5v1Q3cgXq7rFpk98ahJUaFnOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/2tsTvhof1N7xxWHZwqce1_CKqWg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/3ba2d9-74ce-4881-b23f-7cb0723da0bd/1/my5v1Q3cgXq7rFpk98ahJUaFnOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.124.32.0/21 Signature Algorithm: sha256WithRSAEncryption 13:a3:6f:db:84:14:9f:6d:72:1e:55:4e:29:e2:fb:d8:8c:65: c3:4c:a5:66:cb:b5:0b:84:94:b2:e5:d4:13:f0:1e:59:3f:0b: c3:a7:4d:31:ba:e7:72:3d:2e:fe:12:8c:33:f0:4f:ae:fd:d1: f3:ce:f7:ab:a7:8a:47:cb:cc:19:7b:aa:59:1b:2b:d0:f1:c3: ea:63:e0:b6:5f:ea:06:77:be:42:f8:83:db:2d:b0:11:50:10: 81:1c:29:02:b4:f2:90:03:ca:ff:56:72:99:29:79:5b:3a:9b: bf:4d:25:e2:d3:11:bd:27:8c:9d:33:0c:59:c0:70:bc:29:8c: b0:73:4b:4d:84:1d:68:e4:a7:8b:e5:fc:8a:e9:fb:96:01:b0: d6:bc:f3:d4:ec:ae:cc:c1:0f:f5:9d:70:4f:d5:d3:c6:de:65: 33:88:7a:72:f4:a5:8a:18:da:a9:70:7c:c2:24:b9:08:08:33: 8b:5c:33:c3:d4:a4:a3:16:6e:db:a4:40:89:96:f1:2e:78:ef: 05:fe:fa:7e:b3:e3:0c:e7:73:f6:9e:2c:cf:60:42:57:b1:60: 2b:7b:cb:23:29:d5:83:da:30:c0:e6:7f:9b:88:cc:75:c2:e8: 43:c2:38:db:fa:b6:8c:fd:91:a0:d6:b7:48:10:06:06:79:9c: 42:85:4f:97 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WzkM8fPF3E8dlyzs3vd1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliMmU2ZmQ1MGRkYzgxN2FiYmFjNWE2NGY3YzZhMTI1NDY4 NTljZTIwHhcNMjYwMTAyMDYxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWRiMTNiZTFhMWZkNGRlZjFjNTYxZDljMmE3MWVkN2YwOGFhOTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArob5I7eWXa9bsKMtopJjxWmsww/w u77IbPdYrorcZOz2eK/SwqtgQyBqWcVhkwBEsw32ADYyyxrb5uxk+j/Aqi3Zf+2U cRJyXsOArT0QMeBnInNMj/BJZ1wMn7GC1r4R4LuJ1V/+/HmyiQFLwtOmgNfEnIbP nLJSOaoY7F3tiK00RAAGP8t3EhMhELLzrdxpmNhnBzURuY3H2Ym9Cn3Rl3ZnzRSU VB+UAaIWpC9y+w0CTFXSPxOVHy0BXkxYiwqWolYnkgtb1YzXdSg1OyBCsfRRX4bV 0LTiexBtvxErKpeHZkMMVdUAXbszjHChyIuO/arBPSVvYS+5+GI0gbft4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNrbE74aH9Te8cVh2cKnHtfwiqloMB8GA1UdIwQY MBaAFJsub9UN3IF6u6xaZPfGoSVGhZziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXk1djFRM2NnWHE3ckZwazk4YWhKVWFGbk9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8zYmEyZDktNzRjZS00ODgxLWIyM2Yt N2NiMDcyM2RhMGJkLzEvMnRzVHZob2YxTjd4eFdIWndxY2UxX0NLcVdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8zYmEyZDktNzRjZS00ODgxLWIyM2YtN2NiMDcyM2RhMGJk LzEvbXk1djFRM2NnWHE3ckZwazk4YWhKVWFGbk9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXnwgMA0G CSqGSIb3DQEBCwUAA4IBAQATo2/bhBSfbXIeVU4p4vvYjGXDTKVmy7ULhJSy5dQT 8B5ZPwvDp00xuudyPS7+Eowz8E+u/dHzzverp4pHy8wZe6pZGyvQ8cPqY+C2X+oG d75C+IPbLbARUBCBHCkCtPKQA8r/VnKZKXlbOpu/TSXi0xG9J4ydMwxZwHC8KYyw c0tNhB1o5KeL5fyK6fuWAbDWvPPU7K7MwQ/1nXBP1dPG3mUziHpy9KWKGNqpcHzC JLkICDOLXDPD1KSjFm7bpECJlvEueO8F/vp+s+MM53P2nizPYEJXsWAre8sjKdWD 2jDA5n+biMx1wuhDwjjb+raM/ZGg1rdIEAYGeZxChU+X -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:23 2026 by rpki-client