This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/2UmZFRrJ0P-2mwYSao7Xzkep2iA.roa File: 2UmZFRrJ0P-2mwYSao7Xzkep2iA.roa (raw, json) Hash identifier: N9+wOT3ic7u1Pc0UnkkcEFa7DljVTAIJF/p2BSuaQHw= Subject key identifier: D9:49:99:15:1A:C9:D0:FF:B6:9B:06:12:6A:8E:D7:CE:47:A9:DA:20 Certificate issuer: /CN=2bbc002a2b359b1aa8879e1c4d70455b3192efac Certificate serial: 019B79EC0AEEB2F3A4F1F722B4391165F460 Authority key identifier: 2B:BC:00:2A:2B:35:9B:1A:A8:87:9E:1C:4D:70:45:5B:31:92:EF:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/2UmZFRrJ0P-2mwYSao7Xzkep2iA.roa Signing time: Thu 01 Jan 2026 14:17:50 +0000 ROA not before: Thu 01 Jan 2026 14:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3301 IP address blocks: 83.150.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.mft rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:0a:ee:b2:f3:a4:f1:f7:22:b4:39:11:65:f4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bbc002a2b359b1aa8879e1c4d70455b3192efac Validity Not Before: Jan 1 14:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d94999151ac9d0ffb69b06126a8ed7ce47a9da20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:7b:4b:21:f8:bd:c5:fd:32:3a:5a:f4:c9: af:c1:49:36:b7:05:89:c7:3d:e0:6b:16:26:f8:b4: 58:e7:37:5c:e6:c7:62:ad:14:e5:84:48:91:91:f6: 49:47:28:35:31:d9:ec:0f:72:9f:4b:b5:74:e7:17: a0:1f:0f:64:3d:c3:fb:51:f7:a6:a4:8c:0b:fc:06: ee:0f:c9:21:10:d9:c3:62:cf:c9:36:8b:4b:bc:c0: 01:c9:eb:a8:13:35:cd:de:ef:a9:e5:f0:4b:7b:8d: 7a:3b:02:aa:f7:f0:74:f5:06:3b:a6:c3:c3:e4:7a: ad:d8:9c:d7:36:0c:68:10:0b:cd:8c:34:58:84:c0: 1e:7d:00:37:f6:18:25:df:64:cb:61:b8:02:02:d1: 4a:23:a9:39:1e:ff:63:a9:cd:53:f3:fb:8e:83:94: 8f:2d:0e:b9:dc:de:f0:87:87:31:3b:2f:2f:b3:74: 04:74:42:f8:86:e4:af:fe:ab:1f:6c:c5:bc:b9:03: 80:58:15:19:46:91:6e:2c:4f:60:da:b1:73:12:14: da:ef:d3:59:1f:9e:5f:1a:63:1d:08:ab:0d:41:42: 80:6b:d4:4b:97:56:34:ab:21:84:93:cf:63:19:2b: 5a:7d:b9:35:3d:a7:88:4b:01:36:e4:c7:3b:0b:25: f3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:49:99:15:1A:C9:D0:FF:B6:9B:06:12:6A:8E:D7:CE:47:A9:DA:20 X509v3 Authority Key Identifier: keyid:2B:BC:00:2A:2B:35:9B:1A:A8:87:9E:1C:4D:70:45:5B:31:92:EF:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7wAKis1mxqoh54cTXBFWzGS76w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/2UmZFRrJ0P-2mwYSao7Xzkep2iA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/7c3726-2dbe-4174-b164-a89889ce5f84/1/K7wAKis1mxqoh54cTXBFWzGS76w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.150.176.0/21 Signature Algorithm: sha256WithRSAEncryption b5:ed:bb:70:dc:f7:43:ee:6e:0c:0e:ab:a2:8c:de:cc:db:ed: a1:2f:ad:d1:46:83:09:79:2a:bf:05:fa:f4:ac:2b:2d:71:a0: a0:ec:ec:a2:7b:89:d8:ab:e1:de:7f:e3:e3:7b:69:55:6f:26: 89:e0:49:f8:37:55:53:5a:c5:9f:84:3d:94:55:67:7d:63:a6: bc:5f:87:73:bc:31:c4:2c:b4:dd:29:77:6f:30:2f:b9:15:0e: 5e:93:23:72:09:5d:8c:95:1e:74:27:2a:a0:34:77:87:c0:39: 61:a3:74:f1:6f:69:dd:44:8a:8c:ca:53:84:e6:fb:c9:20:3e: 34:a3:07:fa:b8:9f:5a:a9:9e:11:43:62:ea:f6:2a:76:fe:14: 94:52:4e:6d:ea:af:08:b0:49:b7:ed:05:9c:99:85:de:f2:37: ef:7a:06:4e:0b:0b:b8:57:0e:9a:ef:34:c9:bd:a3:7e:fe:53: bb:33:6a:09:5d:b7:28:96:2c:30:0d:85:80:b1:01:60:b0:c4: 3e:d7:6d:30:e8:45:4c:a5:d4:24:35:02:aa:33:d6:dc:fd:69: 10:95:d0:8a:5a:56:57:f6:e5:10:2a:26:14:ae:f4:06:bf:dd: 3b:6c:36:20:9f:1b:96:66:af:b3:35:5c:53:fc:7d:69:d0:e9: 2f:17:3a:10 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57ArusvOk8fcitDkRZfRgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYmMwMDJhMmIzNTliMWFhODg3OWUxYzRkNzA0NTViMzE5 MmVmYWMwHhcNMjYwMTAxMTQxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTQ5OTkxNTFhYzlkMGZmYjY5YjA2MTI2YThlZDdjZTQ3YTlkYTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojx7SyH4vcX9Mjpa9MmvwUk2twWJ xz3gaxYm+LRY5zdc5sdirRTlhEiRkfZJRyg1MdnsD3KfS7V05xegHw9kPcP7Ufem pIwL/AbuD8khENnDYs/JNotLvMAByeuoEzXN3u+p5fBLe416OwKq9/B09QY7psPD 5Hqt2JzXNgxoEAvNjDRYhMAefQA39hgl32TLYbgCAtFKI6k5Hv9jqc1T8/uOg5SP LQ653N7wh4cxOy8vs3QEdEL4huSv/qsfbMW8uQOAWBUZRpFuLE9g2rFzEhTa79NZ H55fGmMdCKsNQUKAa9RLl1Y0qyGEk89jGStafbk1PaeISwE25Mc7CyXzyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNlJmRUaydD/tpsGEmqO185HqdogMB8GA1UdIwQY MBaAFCu8ACorNZsaqIeeHE1wRVsxku+sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzd3QUtpczFteHFvaDU0Y1RYQkZXekdTNzZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83YzM3MjYtMmRiZS00MTc0LWIxNjQt YTg5ODg5Y2U1Zjg0LzEvMlVtWkZSckowUC0ybXdZU2FvN1h6a2VwMmlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi83YzM3MjYtMmRiZS00MTc0LWIxNjQtYTg5ODg5Y2U1Zjg0 LzEvSzd3QUtpczFteHFvaDU0Y1RYQkZXekdTNzZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDU5awMA0G CSqGSIb3DQEBCwUAA4IBAQC17btw3PdD7m4MDquijN7M2+2hL63RRoMJeSq/Bfr0 rCstcaCg7Oyie4nYq+Hef+Pje2lVbyaJ4En4N1VTWsWfhD2UVWd9Y6a8X4dzvDHE LLTdKXdvMC+5FQ5ekyNyCV2MlR50JyqgNHeHwDlho3Txb2ndRIqMylOE5vvJID40 owf6uJ9aqZ4RQ2Lq9ip2/hSUUk5t6q8IsEm37QWcmYXe8jfvegZOCwu4Vw6a7zTJ vaN+/lO7M2oJXbcoliwwDYWAsQFgsMQ+120w6EVMpdQkNQKqM9bc/WkQldCKWlZX 9uUQKiYUrvQGv907bDYgnxuWZq+zNVxT/H1p0OkvFzoQ -----END CERTIFICATE-----Generated at Mon Jan 26 11:44:26 2026 by rpki-client