This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/2wjw6q1Z6ieoQ6Ri7ddk2gVLW7A.roa File: 2wjw6q1Z6ieoQ6Ri7ddk2gVLW7A.roa (raw, json) Hash identifier: 38S2TIIlL3d82H28IWOBD4ibW6zh/sHbCbgDZ7guq1c= Subject key identifier: DB:08:F0:EA:AD:59:EA:27:A8:43:A4:62:ED:D7:64:DA:05:4B:5B:B0 Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8CE2D0F71028334BFB1D8521AF4EF Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/2wjw6q1Z6ieoQ6Ri7ddk2gVLW7A.roa Signing time: Thu 01 Jan 2026 18:18:58 +0000 ROA not before: Thu 01 Jan 2026 18:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211424 IP address blocks: 80.233.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:ce:2d:0f:71:02:83:34:bf:b1:d8:52:1a:f4:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db08f0eaad59ea27a843a462edd764da054b5bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2a:74:ec:d8:62:f4:fa:9f:43:fb:63:d7:37: f1:ff:4d:91:7d:f1:9f:f4:3c:d5:3c:7c:bb:24:00: 43:b2:6d:38:d9:aa:08:a5:d8:f3:13:a1:a7:0c:ac: a5:a5:76:3b:79:4d:c0:ba:ed:70:3e:82:4d:48:2b: 39:02:b7:d1:df:4a:d6:64:0f:d3:f8:59:5c:c6:02: 0f:3b:1d:72:9a:1b:42:32:d4:af:40:cf:b8:13:88: 00:d0:61:4c:99:56:db:69:8c:cf:85:bc:4d:90:cc: 5b:00:9d:86:33:2c:ad:41:17:f8:c7:4e:f1:ca:4e: dc:c5:a5:ba:c6:6a:f5:10:de:85:4e:18:c0:d9:bf: 85:de:86:d5:a7:f0:e1:95:88:af:95:5a:6d:9f:b3: 40:86:c6:da:50:f0:16:3e:3d:a7:29:ab:07:a4:88: ef:6f:e6:c0:b5:2f:62:05:bd:a6:19:d2:e4:a6:23: 54:a4:28:aa:9a:3d:44:da:40:bb:24:a5:12:c9:78: bc:35:7e:e7:5d:a5:ac:55:85:da:64:53:2d:52:55: 55:e4:84:82:06:c8:a0:bf:9f:38:c0:bb:77:2e:f1: 8e:00:04:3e:c4:b0:eb:cb:1d:15:f1:7e:5f:cd:be: 95:30:9a:f5:e9:c0:74:47:40:38:30:47:42:63:06: cc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:08:F0:EA:AD:59:EA:27:A8:43:A4:62:ED:D7:64:DA:05:4B:5B:B0 X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/2wjw6q1Z6ieoQ6Ri7ddk2gVLW7A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.233.177.0/24 Signature Algorithm: sha256WithRSAEncryption 56:47:b0:23:c3:cf:03:da:5e:ba:5f:8b:7c:36:5f:c3:d0:dd: 5c:e0:14:3e:c6:f4:b0:68:2a:31:08:3b:e4:10:81:e3:e0:39: f4:b5:f1:81:2a:ce:29:d5:c3:72:b2:2f:0c:31:40:fc:69:b2: 40:9e:93:f8:11:03:4e:b3:fc:95:ff:db:86:d7:0f:6a:21:42: 6b:20:0c:b5:4e:32:59:40:2c:24:c4:50:72:8f:48:09:54:ac: f2:ff:02:d5:e3:d7:51:53:19:cf:e6:99:ee:3b:e4:49:b4:ee: 58:e2:6f:67:63:72:69:65:3e:1f:6b:64:6c:1c:e1:bf:8b:94: f8:ba:5d:b6:e7:67:3b:33:0c:f2:d7:27:7f:7d:22:ed:1e:4b: be:77:d2:01:71:b0:cc:fd:25:d9:03:ac:15:59:5d:b0:7e:94: d3:b6:2d:c9:f2:88:18:e6:b2:94:ff:95:e5:29:2d:63:d2:fc: a0:5d:b2:d7:b2:6d:4a:a3:75:a0:c3:4a:50:69:eb:2b:63:63: 8f:e1:f6:c3:5a:42:e0:02:7b:22:80:b3:50:b0:3c:dc:17:d7: 3a:a7:8d:8b:67:78:19:60:2d:d7:fe:3b:cc:28:2e:2d:5f:2f: 1f:64:71:28:32:f7:bd:25:59:24:bb:c7:ae:5a:f3:fe:ad:36: 7b:15:46:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yM4tD3ECgzS/sdhSGvTvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjA4ZjBlYWFkNTllYTI3YTg0M2E0NjJlZGQ3NjRkYTA1NGI1YmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyp07Nhi9PqfQ/tj1zfx/02RffGf 9DzVPHy7JABDsm042aoIpdjzE6GnDKylpXY7eU3Auu1wPoJNSCs5ArfR30rWZA/T +FlcxgIPOx1ymhtCMtSvQM+4E4gA0GFMmVbbaYzPhbxNkMxbAJ2GMyytQRf4x07x yk7cxaW6xmr1EN6FThjA2b+F3obVp/DhlYivlVptn7NAhsbaUPAWPj2nKasHpIjv b+bAtS9iBb2mGdLkpiNUpCiqmj1E2kC7JKUSyXi8NX7nXaWsVYXaZFMtUlVV5ISC Bsigv584wLt3LvGOAAQ+xLDryx0V8X5fzb6VMJr16cB0R0A4MEdCYwbMEwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNsI8OqtWeonqEOkYu3XZNoFS1uwMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvMndqdzZxMVo2aWVvUTZSaTdkZGsyZ1ZMVzdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUOmxMA0G CSqGSIb3DQEBCwUAA4IBAQBWR7Ajw88D2l66X4t8Nl/D0N1c4BQ+xvSwaCoxCDvk EIHj4Dn0tfGBKs4p1cNysi8MMUD8abJAnpP4EQNOs/yV/9uG1w9qIUJrIAy1TjJZ QCwkxFByj0gJVKzy/wLV49dRUxnP5pnuO+RJtO5Y4m9nY3JpZT4fa2RsHOG/i5T4 ul2252c7Mwzy1yd/fSLtHku+d9IBcbDM/SXZA6wVWV2wfpTTti3J8ogY5rKU/5Xl KS1j0vygXbLXsm1Ko3Wgw0pQaesrY2OP4fbDWkLgAnsigLNQsDzcF9c6p42LZ3gZ YC3X/jvMKC4tXy8fZHEoMve9JVkku8euWvP+rTZ7FUbe -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:07 2026 by rpki-client