This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/2dSMBioa0CJlE-_iiWI5yu7Yi7M.roa File: 2dSMBioa0CJlE-_iiWI5yu7Yi7M.roa (raw, json) Hash identifier: 8jy3SPSzF+c2UbKzDY/rfjIL+e/CbsBFRDuCRIAKo94= Subject key identifier: D9:D4:8C:06:2A:1A:D0:22:65:13:EF:E2:89:62:39:CA:EE:D8:8B:B3 Certificate issuer: /CN=25bbed0bff7ffeab67f302b411a00701854a6c30 Certificate serial: 019B7D5C9BCD16DB5788FFD9D9D22C2E9927 Authority key identifier: 25:BB:ED:0B:FF:7F:FE:AB:67:F3:02:B4:11:A0:07:01:85:4A:6C:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbvtC_9__qtn8wK0EaAHAYVKbDA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/2dSMBioa0CJlE-_iiWI5yu7Yi7M.roa Signing time: Fri 02 Jan 2026 06:19:39 +0000 ROA not before: Fri 02 Jan 2026 06:19:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43641 IP address blocks: 185.189.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/JbvtC_9__qtn8wK0EaAHAYVKbDA.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/JbvtC_9__qtn8wK0EaAHAYVKbDA.mft rsync://rpki.ripe.net/repository/DEFAULT/JbvtC_9__qtn8wK0EaAHAYVKbDA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:9b:cd:16:db:57:88:ff:d9:d9:d2:2c:2e:99:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25bbed0bff7ffeab67f302b411a00701854a6c30 Validity Not Before: Jan 2 06:19:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9d48c062a1ad0226513efe2896239caeed88bb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5d:c7:cb:6d:f3:61:bd:e9:e0:f1:74:20:6c: 8e:a5:da:35:c9:d9:b9:51:dd:74:e7:00:99:8e:5e: 77:19:09:a7:78:b1:3b:c7:c4:33:28:84:7c:af:44: ed:6f:35:4a:db:3f:3f:74:5e:d1:f5:b7:4c:91:fa: f9:ec:19:ad:9d:ed:2a:e9:5c:a8:fd:d8:9e:2b:9b: 5b:e4:19:d2:2e:3d:87:e9:e6:ae:19:1e:92:eb:7f: c7:55:2c:80:16:82:4d:43:6f:a3:e4:a8:c2:76:eb: d7:01:d9:b6:dc:36:f1:1d:4e:fa:2b:c4:f1:0f:3c: d4:0c:1f:d8:51:b7:77:98:48:ed:6e:c0:33:84:19: e6:da:2d:df:8c:49:e6:35:dc:53:ea:b2:d4:84:48: 3d:5d:99:fd:5b:4f:f2:44:cf:d4:71:a1:09:a4:30: aa:73:05:07:aa:b7:7d:4d:5c:74:25:6a:80:21:66: cd:2d:3b:21:fd:63:ee:73:b7:7b:c6:a4:54:05:84: a4:1b:a2:26:80:52:12:31:f2:98:59:90:7a:b1:d5: 33:43:04:79:db:b6:a5:c2:a9:2f:d6:9f:de:3f:86: 97:52:48:5e:b1:7c:22:f7:dc:7a:1b:2f:13:43:db: 58:8d:ad:99:53:cd:e5:fd:8b:e4:71:d8:43:3d:93: 07:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D4:8C:06:2A:1A:D0:22:65:13:EF:E2:89:62:39:CA:EE:D8:8B:B3 X509v3 Authority Key Identifier: keyid:25:BB:ED:0B:FF:7F:FE:AB:67:F3:02:B4:11:A0:07:01:85:4A:6C:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbvtC_9__qtn8wK0EaAHAYVKbDA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/2dSMBioa0CJlE-_iiWI5yu7Yi7M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/3b9aff-f00d-4187-af94-5717b4544237/1/JbvtC_9__qtn8wK0EaAHAYVKbDA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.189.246.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:ee:db:ca:aa:d4:5e:6c:f5:e2:97:69:8f:ed:3a:c9:f7:de: a3:98:d1:03:b4:19:df:95:d9:ae:b0:9a:3a:35:11:97:7d:4d: db:8e:69:80:4d:7b:74:5a:01:61:39:b2:34:70:79:f4:85:21: e4:ab:c5:de:32:c1:8b:9b:d0:91:dd:fd:98:85:5a:d4:8f:5c: 5e:e7:76:8a:c3:81:c9:4e:d6:d3:ee:fd:18:1f:af:e8:2f:dc: 66:39:ba:68:41:36:ad:98:7d:00:de:67:29:fd:94:36:04:ab: c4:68:fe:56:4d:d3:84:8c:e4:79:8c:dc:18:2d:4a:16:9b:da: c9:17:ef:67:5e:47:22:78:4e:26:b3:c7:5e:bb:95:ce:0c:b6: 1e:99:e1:0c:05:9f:2a:69:3c:c1:3e:cb:eb:8c:76:bd:83:67: 21:8c:d0:a8:a7:a1:32:86:c9:f8:4d:ae:e4:77:71:b4:7e:9f: f3:41:9a:c7:13:fb:57:f9:de:f4:37:02:3d:67:75:35:92:60: 83:89:00:07:7d:f2:1c:b6:5f:b6:eb:f6:86:fc:fe:c0:0d:8b: f6:5f:98:d6:d4:f4:b6:66:43:74:df:89:9a:c1:e0:c3:79:bd: 73:e2:91:7c:35:33:a4:04:19:3c:e6:4c:30:90:85:99:d8:79: e8:f1:f8:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XJvNFttXiP/Z2dIsLpknMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1YmJlZDBiZmY3ZmZlYWI2N2YzMDJiNDExYTAwNzAxODU0 YTZjMzAwHhcNMjYwMTAyMDYxOTM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOWQ0OGMwNjJhMWFkMDIyNjUxM2VmZTI4OTYyMzljYWVlZDg4YmIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4F3Hy23zYb3p4PF0IGyOpdo1ydm5 Ud105wCZjl53GQmneLE7x8QzKIR8r0TtbzVK2z8/dF7R9bdMkfr57Bmtne0q6Vyo /dieK5tb5BnSLj2H6eauGR6S63/HVSyAFoJNQ2+j5KjCduvXAdm23DbxHU76K8Tx DzzUDB/YUbd3mEjtbsAzhBnm2i3fjEnmNdxT6rLUhEg9XZn9W0/yRM/UcaEJpDCq cwUHqrd9TVx0JWqAIWbNLTsh/WPuc7d7xqRUBYSkG6ImgFISMfKYWZB6sdUzQwR5 27alwqkv1p/eP4aXUkhesXwi99x6Gy8TQ9tYja2ZU83l/YvkcdhDPZMH2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNnUjAYqGtAiZRPv4oliOcru2IuzMB8GA1UdIwQY MBaAFCW77Qv/f/6rZ/MCtBGgBwGFSmwwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmJ2dENfOV9fcXRuOHdLMEVhQUhBWVZLYkRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8zYjlhZmYtZjAwZC00MTg3LWFmOTQt NTcxN2I0NTQ0MjM3LzEvMmRTTUJpb2EwQ0psRS1faWlXSTV5dTdZaTdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8zYjlhZmYtZjAwZC00MTg3LWFmOTQtNTcxN2I0NTQ0MjM3 LzEvSmJ2dENfOV9fcXRuOHdLMEVhQUhBWVZLYkRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBub32MA0G CSqGSIb3DQEBCwUAA4IBAQBK7tvKqtRebPXil2mP7TrJ996jmNEDtBnfldmusJo6 NRGXfU3bjmmATXt0WgFhObI0cHn0hSHkq8XeMsGLm9CR3f2YhVrUj1xe53aKw4HJ TtbT7v0YH6/oL9xmObpoQTatmH0A3mcp/ZQ2BKvEaP5WTdOEjOR5jNwYLUoWm9rJ F+9nXkcieE4ms8deu5XODLYemeEMBZ8qaTzBPsvrjHa9g2chjNCop6Eyhsn4Ta7k d3G0fp/zQZrHE/tX+d70NwI9Z3U1kmCDiQAHffIctl+26/aG/P7ADYv2X5jW1PS2 ZkN034maweDDeb1z4pF8NTOkBBk85kwwkIWZ2Hno8fjj -----END CERTIFICATE-----Generated at Mon Jan 19 11:25:03 2026 by rpki-client