This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/2zvlLx0eZAbOYhxgIyqrlDoVC1g.roa File: 2zvlLx0eZAbOYhxgIyqrlDoVC1g.roa (raw, json) Hash identifier: KQYOWqTXbXwvtekOLsVc2rxud/hR8A87QDGRubzzTXw= Subject key identifier: DB:3B:E5:2F:1D:1E:64:06:CE:62:1C:60:23:2A:AB:94:3A:15:0B:58 Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Certificate serial: 019B783533804BE942FD48FC6F5AD805C3B2 Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/2zvlLx0eZAbOYhxgIyqrlDoVC1g.roa Signing time: Thu 01 Jan 2026 06:18:31 +0000 ROA not before: Thu 01 Jan 2026 06:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 176.121.88.0/21 maxlen: 21 185.94.240.0/23 maxlen: 23 185.94.242.0/23 maxlen: 23 185.124.96.0/24 maxlen: 24 185.124.97.0/24 maxlen: 24 185.124.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:33:80:4b:e9:42:fd:48:fc:6f:5a:d8:05:c3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Validity Not Before: Jan 1 06:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db3be52f1d1e6406ce621c60232aab943a150b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:81:5b:19:a4:f0:04:10:8b:37:6c:6d:90: 20:94:c7:3e:db:1a:56:b6:59:7f:17:a4:76:e8:4d: b8:15:2b:74:1a:28:c3:9a:91:dc:d3:42:71:8f:31: 21:d5:13:f6:56:3e:18:b8:e3:8f:1f:2e:97:c9:d5: 29:f5:01:0f:93:10:96:63:73:17:c7:08:c8:bf:e4: 48:8c:f6:60:69:25:5f:ed:93:70:d1:bb:7b:4c:be: c8:0d:a3:a7:b6:5e:7e:97:fb:08:8e:ae:2e:b0:a1: 1d:2d:9c:27:4e:13:e3:de:d2:ac:ad:80:46:5e:7f: 22:f0:44:36:7d:8e:ae:4d:ac:80:1c:e8:e0:44:03: 64:32:70:f9:e3:dd:b1:4b:d2:08:93:dc:cb:15:1e: 5f:04:9d:69:81:3a:ba:c4:56:d4:e3:f0:56:0e:e1: 1d:9d:57:48:b5:ce:d2:49:4f:e6:71:01:c8:51:12: 86:ad:0a:90:8d:70:3a:36:53:4a:22:dc:e9:99:e7: ff:9a:35:2e:67:e0:32:6a:1d:21:fc:86:30:fe:b9: 9c:c2:fc:22:44:30:f0:6f:c0:28:33:a1:f2:bd:66: 18:53:79:2a:7b:e1:e5:5d:5b:8a:ac:3a:ef:69:bf: 66:62:b6:7c:d4:90:88:80:e3:76:38:eb:0b:ba:0f: b9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3B:E5:2F:1D:1E:64:06:CE:62:1C:60:23:2A:AB:94:3A:15:0B:58 X509v3 Authority Key Identifier: keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/2zvlLx0eZAbOYhxgIyqrlDoVC1g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.121.88.0/21 185.94.240.0/22 185.124.96.0/23 185.124.99.0/24 Signature Algorithm: sha256WithRSAEncryption 22:48:a6:dd:0b:64:50:85:ce:b1:fb:75:59:e3:3c:ba:32:9c: 6a:70:0d:d3:84:d4:bc:b6:81:ec:54:0e:5a:f0:46:bd:d1:92: a3:f5:da:1c:a6:79:9d:78:85:fc:3c:90:4e:10:2c:07:ab:fd: 05:0e:f7:3f:0f:5f:5f:85:ec:10:56:e7:be:9a:40:cf:e7:66: 55:5c:c6:f4:cf:5e:fc:45:0f:6e:85:70:af:7a:b0:86:67:90: ae:aa:8e:3c:38:cc:4c:14:c7:d3:08:e0:fd:e9:e6:9d:32:50: be:ef:10:d6:b7:01:37:b4:a5:85:46:38:e6:38:ac:cf:aa:fe: 4a:b6:c6:47:27:77:0a:f4:47:96:ad:69:ca:84:bb:b4:e3:6d: 50:c9:3d:f0:66:9a:20:35:25:f3:0c:dc:52:5b:29:4c:fa:4e: ab:f1:7d:ef:b8:96:b7:00:94:d7:09:8b:25:13:d7:bc:8e:1a: fa:35:dc:13:77:17:92:42:bd:75:5d:7e:66:98:b6:8a:c6:4a: 38:7d:44:59:8d:f0:6e:56:09:6a:2d:77:c5:f9:7c:57:17:44: 00:69:d6:0e:b9:52:9c:c0:28:4a:02:7b:c2:fb:ec:4e:03:0c: 57:bd:e4:00:a1:8e:f5:cc:fc:6f:f9:86:0d:21:20:20:52:a7: 2e:b0:2e:2c -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt4NTOAS+lC/Uj8b1rYBcOyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzODllNzAzNWIwOGUxODFhMzQxZjM3ZWRhNzM0M2QyM2Yx Y2FmYTQwHhcNMjYwMTAxMDYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjNiZTUyZjFkMWU2NDA2Y2U2MjFjNjAyMzJhYWI5NDNhMTUwYjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06OBWxmk8AQQizdsbZAglMc+2xpW tll/F6R26E24FSt0GijDmpHc00JxjzEh1RP2Vj4YuOOPHy6XydUp9QEPkxCWY3MX xwjIv+RIjPZgaSVf7ZNw0bt7TL7IDaOntl5+l/sIjq4usKEdLZwnThPj3tKsrYBG Xn8i8EQ2fY6uTayAHOjgRANkMnD5492xS9IIk9zLFR5fBJ1pgTq6xFbU4/BWDuEd nVdItc7SSU/mcQHIURKGrQqQjXA6NlNKItzpmef/mjUuZ+Ayah0h/IYw/rmcwvwi RDDwb8AoM6HyvWYYU3kqe+HlXVuKrDrvab9mYrZ81JCIgON2OOsLug+52QIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFNs75S8dHmQGzmIcYCMqq5Q6FQtYMB8GA1UdIwQY MBaAFKOJ5wNbCOGBo0HzftpzQ9I/HK+kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWIt MGU3MjQxNmI0ZGM3LzEvMnp2bEx4MGVaQWJPWWh4Z0l5cXJsRG9WQzFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWItMGU3MjQxNmI0ZGM3 LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQDsHlYAwQC uV7wAwQBuXxgAwQAuXxjMA0GCSqGSIb3DQEBCwUAA4IBAQAiSKbdC2RQhc6x+3VZ 4zy6MpxqcA3ThNS8toHsVA5a8Ea90ZKj9docpnmdeIX8PJBOECwHq/0FDvc/D19f hewQVue+mkDP52ZVXMb0z178RQ9uhXCverCGZ5Cuqo48OMxMFMfTCOD96eadMlC+ 7xDWtwE3tKWFRjjmOKzPqv5KtsZHJ3cK9EeWrWnKhLu0421QyT3wZpogNSXzDNxS WylM+k6r8X3vuJa3AJTXCYslE9e8jhr6NdwTdxeSQr11XX5mmLaKxko4fURZjfBu VglqLXfF+XxXF0QAadYOuVKcwChKAnvC++xOAwxXveQAoY71zPxv+YYNISAgUqcu sC4s -----END CERTIFICATE-----Generated at Fri Jan 9 06:21:10 2026 by rpki-client