This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/c9d4bb-3135-4a9c-b371-bb0d04a27727/1/SKpYBqwn6udQHU20Uf2pG2NVjSc.roa File: SKpYBqwn6udQHU20Uf2pG2NVjSc.roa (raw, json) Hash identifier: 0Drji27vy2Cr4dvgFBfhAgVdOvdDdCwXZsDdSfaarcA= Subject key identifier: 48:AA:58:06:AC:27:EA:E7:50:1D:4D:B4:51:FD:A9:1B:63:55:8D:27 Certificate issuer: /CN=9bb4b98e359b4c92c31183fbf749238e6b6f08c2 Certificate serial: 019B7AC85B6BFE2F91BAA938225AED58F505 Authority key identifier: 9B:B4:B9:8E:35:9B:4C:92:C3:11:83:FB:F7:49:23:8E:6B:6F:08:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7S5jjWbTJLDEYP790kjjmtvCMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/c9d4bb-3135-4a9c-b371-bb0d04a27727/1/SKpYBqwn6udQHU20Uf2pG2NVjSc.roa Signing time: Thu 01 Jan 2026 18:18:29 +0000 ROA not before: Thu 01 Jan 2026 18:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2914 IP address blocks: 176.121.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/c9d4bb-3135-4a9c-b371-bb0d04a27727/1/m7S5jjWbTJLDEYP790kjjmtvCMI.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/c9d4bb-3135-4a9c-b371-bb0d04a27727/1/m7S5jjWbTJLDEYP790kjjmtvCMI.mft rsync://rpki.ripe.net/repository/DEFAULT/m7S5jjWbTJLDEYP790kjjmtvCMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:5b:6b:fe:2f:91:ba:a9:38:22:5a:ed:58:f5:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bb4b98e359b4c92c31183fbf749238e6b6f08c2 Validity Not Before: Jan 1 18:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48aa5806ac27eae7501d4db451fda91b63558d27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1b:7f:fa:24:b5:31:18:2b:3a:b6:8a:a6:5d: 8c:2b:e5:50:22:a8:d4:21:ef:51:e4:05:bf:ae:7a: 50:96:6b:75:8b:1c:7d:08:05:3d:18:73:4d:bd:99: 11:77:03:76:4e:92:e8:4b:05:67:13:1c:0e:79:b2: 86:b3:b0:16:76:0c:5d:31:c2:1e:ff:d2:14:4e:43: c7:ae:8d:8a:1d:8c:f2:8c:fa:c6:1a:85:a0:a8:2a: 84:2c:fa:71:1d:db:6c:e1:ef:89:46:d7:15:41:d9: 42:c5:eb:c0:6e:fa:42:7e:b2:83:b4:7d:4a:1e:cf: 8d:64:8e:ad:48:d4:3d:29:d5:22:6f:a2:63:00:6f: 0f:86:61:f2:e7:5f:a4:32:13:d2:22:e6:74:e5:db: 89:d1:49:5f:8d:83:a2:0d:44:07:b2:e6:8c:0d:a7: 64:d8:cc:90:22:28:e1:85:14:cb:54:38:ec:02:f4: d5:27:ce:4c:23:f5:62:fb:8d:5f:85:39:f8:65:87: f9:a0:71:46:f1:e3:ac:f3:37:c0:0a:12:a6:49:dd: cc:61:b2:53:14:c0:da:fe:1d:4e:ce:5c:c8:51:c3: 5a:eb:f4:dd:a6:b1:53:99:0f:81:b1:1c:54:76:52: 79:8a:21:da:7a:a3:70:88:fa:9d:28:d2:c5:fc:78: 6a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AA:58:06:AC:27:EA:E7:50:1D:4D:B4:51:FD:A9:1B:63:55:8D:27 X509v3 Authority Key Identifier: keyid:9B:B4:B9:8E:35:9B:4C:92:C3:11:83:FB:F7:49:23:8E:6B:6F:08:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7S5jjWbTJLDEYP790kjjmtvCMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c9d4bb-3135-4a9c-b371-bb0d04a27727/1/SKpYBqwn6udQHU20Uf2pG2NVjSc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c9d4bb-3135-4a9c-b371-bb0d04a27727/1/m7S5jjWbTJLDEYP790kjjmtvCMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.121.2.0/24 Signature Algorithm: sha256WithRSAEncryption d2:d4:f8:fc:90:5f:7e:63:15:ce:fd:f2:9f:26:ea:47:32:d0: b8:36:b5:5a:13:be:d5:a9:b2:d7:2e:9e:4f:ae:84:d6:ae:53: f5:52:ed:62:1a:9c:a1:8f:4b:dc:b7:c1:a7:b2:bd:88:8c:28: 7d:0c:7c:56:34:4e:09:f3:fe:72:08:1c:45:04:ef:92:69:34: 5c:21:d4:f0:6c:e3:84:be:b3:c7:4b:aa:0b:37:cb:1f:a1:30: ba:b9:26:1a:37:a9:18:44:3c:c2:8b:35:af:88:65:74:3a:7c: 0b:9b:99:ab:62:ee:7e:17:07:f6:fc:58:1a:04:59:9f:42:e3: 28:41:dd:a6:8e:01:6f:da:f7:6f:3d:dd:ac:32:25:53:de:3f: 31:05:18:ef:37:05:66:dc:14:2f:13:bd:41:20:4d:2c:0a:70: ab:47:b4:2a:cd:8c:4a:99:37:f5:24:0d:37:80:1e:bf:c6:0c: bc:12:38:6c:43:a3:32:88:f0:31:bd:a9:b3:f8:8b:5a:54:8e: 2b:7f:48:63:4a:bc:d1:51:0d:6a:57:a8:0a:94:ee:af:6f:2b: 2b:d3:e9:4c:9c:c3:b3:4d:64:75:5f:13:6f:95:a6:bb:95:c5: 25:11:ce:0c:24:e9:c0:6b:17:53:f0:12:d8:9b:86:21:86:7f: dd:ea:15:c5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yFtr/i+Ruqk4IlrtWPUFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliYjRiOThlMzU5YjRjOTJjMzExODNmYmY3NDkyMzhlNmI2 ZjA4YzIwHhcNMjYwMTAxMTgxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OGFhNTgwNmFjMjdlYWU3NTAxZDRkYjQ1MWZkYTkxYjYzNTU4ZDI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsht/+iS1MRgrOraKpl2MK+VQIqjU Ie9R5AW/rnpQlmt1ixx9CAU9GHNNvZkRdwN2TpLoSwVnExwOebKGs7AWdgxdMcIe /9IUTkPHro2KHYzyjPrGGoWgqCqELPpxHdts4e+JRtcVQdlCxevAbvpCfrKDtH1K Hs+NZI6tSNQ9KdUib6JjAG8PhmHy51+kMhPSIuZ05duJ0UlfjYOiDUQHsuaMDadk 2MyQIijhhRTLVDjsAvTVJ85MI/Vi+41fhTn4ZYf5oHFG8eOs8zfAChKmSd3MYbJT FMDa/h1OzlzIUcNa6/TdprFTmQ+BsRxUdlJ5iiHaeqNwiPqdKNLF/HhqnwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEiqWAasJ+rnUB1NtFH9qRtjVY0nMB8GA1UdIwQY MBaAFJu0uY41m0ySwxGD+/dJI45rbwjCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTdTNWpqV2JUSkxERVlQNzkwa2pqbXR2Q01JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9jOWQ0YmItMzEzNS00YTljLWIzNzEt YmIwZDA0YTI3NzI3LzEvU0twWUJxd242dWRRSFUyMFVmMnBHMk5WalNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9jOWQ0YmItMzEzNS00YTljLWIzNzEtYmIwZDA0YTI3NzI3 LzEvbTdTNWpqV2JUSkxERVlQNzkwa2pqbXR2Q01JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHkCMA0G CSqGSIb3DQEBCwUAA4IBAQDS1Pj8kF9+YxXO/fKfJupHMtC4NrVaE77VqbLXLp5P roTWrlP1Uu1iGpyhj0vct8Gnsr2IjCh9DHxWNE4J8/5yCBxFBO+SaTRcIdTwbOOE vrPHS6oLN8sfoTC6uSYaN6kYRDzCizWviGV0OnwLm5mrYu5+Fwf2/FgaBFmfQuMo Qd2mjgFv2vdvPd2sMiVT3j8xBRjvNwVm3BQvE71BIE0sCnCrR7QqzYxKmTf1JA03 gB6/xgy8EjhsQ6MyiPAxvamz+ItaVI4rf0hjSrzRUQ1qV6gKlO6vbysr0+lMnMOz TWR1XxNvlaa7lcUlEc4MJOnAaxdT8BLYm4Yhhn/d6hXF -----END CERTIFICATE-----Generated at Thu Jan 8 00:11:50 2026 by rpki-client