This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/2i6zWb34lFP74zuKjfx43_CZktA.roa File: 2i6zWb34lFP74zuKjfx43_CZktA.roa (raw, json) Hash identifier: SyIPJNrwpK4gLULaUZ1q9R1c7xsI2Dmeouc4YZXDwwY= Subject key identifier: DA:2E:B3:59:BD:F8:94:53:FB:E3:3B:8A:8D:FC:78:DF:F0:99:92:D0 Certificate issuer: /CN=df62bbf15de344acdb5f7800450f2c82d797d798 Certificate serial: 019B79EC28C222E954206524BE516E1FBE20 Authority key identifier: DF:62:BB:F1:5D:E3:44:AC:DB:5F:78:00:45:0F:2C:82:D7:97:D7:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32K78V3jRKzbX3gARQ8sgteX15g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/2i6zWb34lFP74zuKjfx43_CZktA.roa Signing time: Thu 01 Jan 2026 14:17:58 +0000 ROA not before: Thu 01 Jan 2026 14:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60155 IP address blocks: 185.55.200.0/22 maxlen: 22 2a04:d640::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/32K78V3jRKzbX3gARQ8sgteX15g.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/32K78V3jRKzbX3gARQ8sgteX15g.mft rsync://rpki.ripe.net/repository/DEFAULT/32K78V3jRKzbX3gARQ8sgteX15g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:28:c2:22:e9:54:20:65:24:be:51:6e:1f:be:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df62bbf15de344acdb5f7800450f2c82d797d798 Validity Not Before: Jan 1 14:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da2eb359bdf89453fbe33b8a8dfc78dff09992d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:e9:2a:f6:d9:06:92:49:54:5a:e7:71:46: 63:1a:96:a5:34:ff:79:e3:03:63:07:60:0b:f4:ce: d0:78:f3:6e:e6:c1:db:69:00:18:7a:54:36:4e:49: 21:11:25:d3:0c:d4:43:78:1c:0e:09:94:a1:2b:19: 14:d3:3c:03:7e:6b:aa:59:25:a5:d6:e0:17:fb:d9: db:1e:25:0f:59:bc:31:f7:96:b5:ec:ae:1c:53:99: 1e:aa:dd:e4:1d:58:0e:28:41:16:de:68:e7:62:2f: d6:ef:82:2c:03:2d:db:fa:40:2a:72:4e:04:17:36: be:57:9f:ad:ed:b0:d4:3f:24:29:e9:d0:fd:ff:c6: 7c:fd:31:cf:d9:71:94:3d:47:31:d9:fb:94:ea:7c: 28:ba:81:4e:cb:14:9c:08:69:4b:cd:df:6d:48:d6: e8:ba:8b:25:f2:90:b9:c7:5e:0b:a6:75:6c:99:40: 46:87:f3:70:67:67:90:57:72:df:e1:1b:ec:a4:10: 9b:dc:63:4d:fb:bc:67:f5:bb:73:28:c2:1f:86:85: c3:0b:ab:63:38:e5:af:19:71:c0:8d:0f:05:0b:f4: 9b:4b:e3:63:59:7a:d5:1d:8c:c7:5b:0d:c8:3f:0c: 59:e0:84:19:87:17:f4:0f:e7:21:05:38:d8:ce:60: 60:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2E:B3:59:BD:F8:94:53:FB:E3:3B:8A:8D:FC:78:DF:F0:99:92:D0 X509v3 Authority Key Identifier: keyid:DF:62:BB:F1:5D:E3:44:AC:DB:5F:78:00:45:0F:2C:82:D7:97:D7:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32K78V3jRKzbX3gARQ8sgteX15g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/2i6zWb34lFP74zuKjfx43_CZktA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a00c46-8031-411f-8503-a0f2591dd2bd/1/32K78V3jRKzbX3gARQ8sgteX15g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.55.200.0/22 IPv6: 2a04:d640::/29 Signature Algorithm: sha256WithRSAEncryption 2d:e4:e8:2f:d8:97:30:75:75:b2:de:1c:2d:73:0c:22:22:eb: b5:3b:95:67:6e:b9:9e:b5:1e:bd:cb:b0:ab:3a:57:71:37:91: 8e:5e:bf:fa:d1:a7:e8:7f:9b:1e:41:26:c8:10:12:38:88:46: 2b:20:f7:90:8e:de:30:c8:85:2c:3a:03:0d:b3:64:91:56:1c: c8:33:c2:c4:a6:5c:45:fe:10:5f:07:8b:f7:bc:2e:95:7d:d1: 6e:1f:0a:a1:93:57:25:ba:a9:d0:ce:cc:85:a8:34:e5:01:7f: be:75:b5:54:f5:56:d7:c6:c6:54:4f:2c:26:f8:3a:1e:bb:02: a0:7f:8b:e6:30:d5:25:4e:c3:87:ab:8a:fc:71:54:10:fc:76: 63:a6:ea:a0:d5:a6:60:06:3e:71:39:60:62:7a:eb:fa:dc:f6: a6:c1:e6:ac:af:6f:93:b6:e6:70:69:e1:06:85:19:04:2e:09: 4a:b4:77:e3:dd:70:8b:19:63:c5:30:25:45:3d:51:d3:7a:17: 6f:18:20:cc:c9:84:db:88:93:14:8b:c3:8d:bb:50:cb:98:5b: e9:89:ec:1c:33:07:e7:20:ce:05:e9:e6:6a:2a:55:0c:24:32: 05:f3:71:b1:9e:b8:4b:78:2d:7f:13:79:09:81:dd:6a:2e:38: d8:a3:cb:6a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57CjCIulUIGUkvlFuH74gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNjJiYmYxNWRlMzQ0YWNkYjVmNzgwMDQ1MGYyYzgyZDc5 N2Q3OTgwHhcNMjYwMTAxMTQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTJlYjM1OWJkZjg5NDUzZmJlMzNiOGE4ZGZjNzhkZmYwOTk5MmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcvpKvbZBpJJVFrncUZjGpalNP95 4wNjB2AL9M7QePNu5sHbaQAYelQ2TkkhESXTDNRDeBwOCZShKxkU0zwDfmuqWSWl 1uAX+9nbHiUPWbwx95a17K4cU5keqt3kHVgOKEEW3mjnYi/W74IsAy3b+kAqck4E Fza+V5+t7bDUPyQp6dD9/8Z8/THP2XGUPUcx2fuU6nwouoFOyxScCGlLzd9tSNbo uosl8pC5x14LpnVsmUBGh/NwZ2eQV3Lf4RvspBCb3GNN+7xn9btzKMIfhoXDC6tj OOWvGXHAjQ8FC/SbS+NjWXrVHYzHWw3IPwxZ4IQZhxf0D+chBTjYzmBgjwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNous1m9+JRT++M7io38eN/wmZLQMB8GA1UdIwQY MBaAFN9iu/Fd40Ss2194AEUPLILXl9eYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzJLNzhWM2pSS3piWDNnQVJROHNndGVYMTVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS9hMDBjNDYtODAzMS00MTFmLTg1MDMt YTBmMjU5MWRkMmJkLzEvMmk2eldiMzRsRlA3NHp1S2pmeDQzX0Naa3RBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS9hMDBjNDYtODAzMS00MTFmLTg1MDMtYTBmMjU5MWRkMmJk LzEvMzJLNzhWM2pSS3piWDNnQVJROHNndGVYMTVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTfIMA0E AgACMAcDBQMqBNZAMA0GCSqGSIb3DQEBCwUAA4IBAQAt5Ogv2JcwdXWy3hwtcwwi Iuu1O5VnbrmetR69y7CrOldxN5GOXr/60afof5seQSbIEBI4iEYrIPeQjt4wyIUs OgMNs2SRVhzIM8LEplxF/hBfB4v3vC6VfdFuHwqhk1cluqnQzsyFqDTlAX++dbVU 9VbXxsZUTywm+DoeuwKgf4vmMNUlTsOHq4r8cVQQ/HZjpuqg1aZgBj5xOWBieuv6 3Pamweasr2+TtuZwaeEGhRkELglKtHfj3XCLGWPFMCVFPVHTehdvGCDMyYTbiJMU i8ONu1DLmFvpiewcMwfnIM4F6eZqKlUMJDIF83GxnrhLeC1/E3kJgd1qLjjYo8tq -----END CERTIFICATE-----Generated at Mon Feb 9 18:43:51 2026 by rpki-client