This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/8b5dbf-458d-4326-9302-5aaac2cb0df1/1/K2XVYjuCC16kI2DcwZ23G4lWyWY.roa File: K2XVYjuCC16kI2DcwZ23G4lWyWY.roa (raw, json) Hash identifier: km9TZqs9IRWovA2npNy5FMThdKzihzT6NuN6LQAI69Q= Subject key identifier: 2B:65:D5:62:3B:82:0B:5E:A4:23:60:DC:C1:9D:B7:1B:89:56:C9:66 Certificate issuer: /CN=b7848cd2393c1783657a05777ab315e398ebb23f Certificate serial: 019B7C1164643034177B727F94EAE5CDA67E Authority key identifier: B7:84:8C:D2:39:3C:17:83:65:7A:05:77:7A:B3:15:E3:98:EB:B2:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4SM0jk8F4NlegV3erMV45jrsj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/8b5dbf-458d-4326-9302-5aaac2cb0df1/1/K2XVYjuCC16kI2DcwZ23G4lWyWY.roa Signing time: Fri 02 Jan 2026 00:17:53 +0000 ROA not before: Fri 02 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29559 IP address blocks: 195.177.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/8b5dbf-458d-4326-9302-5aaac2cb0df1/1/t4SM0jk8F4NlegV3erMV45jrsj8.crl rsync://rpki.ripe.net/repository/DEFAULT/97/8b5dbf-458d-4326-9302-5aaac2cb0df1/1/t4SM0jk8F4NlegV3erMV45jrsj8.mft rsync://rpki.ripe.net/repository/DEFAULT/t4SM0jk8F4NlegV3erMV45jrsj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:64:64:30:34:17:7b:72:7f:94:ea:e5:cd:a6:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b7848cd2393c1783657a05777ab315e398ebb23f Validity Not Before: Jan 2 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b65d5623b820b5ea42360dcc19db71b8956c966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ed:b9:6f:83:10:f1:5d:dd:3f:62:c8:66:85: 85:29:63:fe:f9:34:27:53:36:90:3d:34:54:43:8e: 4f:dd:0c:51:45:00:93:f0:2f:4c:ab:1b:f6:06:c6: bd:ba:87:3d:41:cc:f6:61:30:ed:a3:ee:6c:7c:60: 27:67:fe:5f:03:77:30:42:f6:bf:46:0e:26:3c:39: 69:f8:cc:44:c3:b1:1d:7a:18:ad:5d:e7:ce:54:e1: 1c:be:8c:eb:64:df:37:1f:49:23:7a:5a:ac:e8:bd: 8f:ce:b8:b8:0e:85:f4:42:a5:ea:9d:21:d3:41:9c: 78:db:a0:44:bf:e1:df:8b:b1:43:2f:16:a2:37:61: 1d:d2:e1:52:a5:c2:c1:86:2f:8e:ec:3c:c2:40:ea: 27:ef:18:d7:31:45:66:15:89:3f:c3:64:5f:be:58: be:12:bb:29:3f:33:e8:c7:7c:5a:7b:df:cb:20:54: d1:cb:29:8e:07:6a:38:37:45:b5:95:54:b6:98:5d: d2:16:3e:67:c0:4b:18:78:d7:0f:a0:78:98:75:52: 05:3f:4a:5c:31:5d:4c:25:f7:cc:b2:3a:b0:9a:15: c7:1b:52:ea:ce:f0:c6:4d:0f:b4:81:73:51:ba:89: 2a:ce:09:03:27:bc:b8:d8:45:c2:7a:2c:91:25:cb: 3c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:65:D5:62:3B:82:0B:5E:A4:23:60:DC:C1:9D:B7:1B:89:56:C9:66 X509v3 Authority Key Identifier: keyid:B7:84:8C:D2:39:3C:17:83:65:7A:05:77:7A:B3:15:E3:98:EB:B2:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4SM0jk8F4NlegV3erMV45jrsj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/8b5dbf-458d-4326-9302-5aaac2cb0df1/1/K2XVYjuCC16kI2DcwZ23G4lWyWY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/8b5dbf-458d-4326-9302-5aaac2cb0df1/1/t4SM0jk8F4NlegV3erMV45jrsj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.177.208.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:ea:3b:a7:e4:42:e1:10:39:52:a3:c9:46:ef:f9:cb:9c:45: 80:61:f6:c6:94:9f:55:2b:fd:d4:cc:6d:16:a5:77:04:1d:0d: e1:31:68:69:75:0e:20:3e:a3:83:c6:3d:e3:b3:bb:7f:aa:91: 1b:aa:5e:44:64:d2:94:95:cf:48:0f:0f:d4:4c:c6:c6:58:20: 97:73:e8:8f:1b:24:b7:8d:2a:f8:1f:7d:9c:e5:1e:ce:79:67: c6:c4:0d:8f:3a:97:18:a2:e1:1d:52:4d:9c:5f:de:8f:1b:6a: c5:97:75:a1:29:3c:1a:ab:c2:be:a5:92:d2:a7:4f:43:c4:52: b0:f1:e3:c1:f4:f6:03:c4:fd:fe:a5:a8:7b:81:e1:1b:89:60: 66:79:62:6d:c2:69:83:da:cf:11:56:d0:17:2b:d9:4d:e6:4d: ae:31:76:a2:43:6f:3c:31:b6:35:e4:88:dc:ca:4b:ee:a2:cd: fe:6b:27:ad:bf:d5:b3:fc:c2:60:67:cd:cf:4f:24:39:ef:d0: 99:7e:87:50:62:bc:d9:51:a7:a6:4b:de:9b:17:5c:ee:2f:b8: 9d:f9:4c:65:04:8c:b2:95:ca:e4:5e:ef:81:f6:bb:b2:30:b9: 0a:bc:01:fa:14:db:b4:ab:39:b3:12:b2:b1:49:3b:3d:44:c3: c0:3d:93:4e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EWRkMDQXe3J/lOrlzaZ+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3ODQ4Y2QyMzkzYzE3ODM2NTdhMDU3NzdhYjMxNWUzOThl YmIyM2YwHhcNMjYwMTAyMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjY1ZDU2MjNiODIwYjVlYTQyMzYwZGNjMTlkYjcxYjg5NTZjOTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqO25b4MQ8V3dP2LIZoWFKWP++TQn UzaQPTRUQ45P3QxRRQCT8C9Mqxv2Bsa9uoc9Qcz2YTDto+5sfGAnZ/5fA3cwQva/ Rg4mPDlp+MxEw7EdehitXefOVOEcvozrZN83H0kjelqs6L2Pzri4DoX0QqXqnSHT QZx426BEv+Hfi7FDLxaiN2Ed0uFSpcLBhi+O7DzCQOon7xjXMUVmFYk/w2Rfvli+ ErspPzPox3xae9/LIFTRyymOB2o4N0W1lVS2mF3SFj5nwEsYeNcPoHiYdVIFP0pc MV1MJffMsjqwmhXHG1LqzvDGTQ+0gXNRuokqzgkDJ7y42EXCeiyRJcs89QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCtl1WI7ggtepCNg3MGdtxuJVslmMB8GA1UdIwQY MBaAFLeEjNI5PBeDZXoFd3qzFeOY67I/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDRTTTBqazhGNE5sZWdWM2VyTVY0NWpyc2o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny84YjVkYmYtNDU4ZC00MzI2LTkzMDIt NWFhYWMyY2IwZGYxLzEvSzJYVllqdUNDMTZrSTJEY3daMjNHNGxXeVdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny84YjVkYmYtNDU4ZC00MzI2LTkzMDItNWFhYWMyY2IwZGYx LzEvdDRTTTBqazhGNE5sZWdWM2VyTVY0NWpyc2o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw7HQMA0G CSqGSIb3DQEBCwUAA4IBAQCc6jun5ELhEDlSo8lG7/nLnEWAYfbGlJ9VK/3UzG0W pXcEHQ3hMWhpdQ4gPqODxj3js7t/qpEbql5EZNKUlc9IDw/UTMbGWCCXc+iPGyS3 jSr4H32c5R7OeWfGxA2POpcYouEdUk2cX96PG2rFl3WhKTwaq8K+pZLSp09DxFKw 8ePB9PYDxP3+pah7geEbiWBmeWJtwmmD2s8RVtAXK9lN5k2uMXaiQ288MbY15Ijc ykvuos3+ayetv9Wz/MJgZ83PTyQ579CZfodQYrzZUaemS96bF1zuL7id+UxlBIyy lcrkXu+B9ruyMLkKvAH6FNu0qzmzErKxSTs9RMPAPZNO -----END CERTIFICATE-----Generated at Tue Feb 10 04:26:32 2026 by rpki-client