This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/P2qXZb4unz4t_ffkJ66DvxkSc-w.roa File: P2qXZb4unz4t_ffkJ66DvxkSc-w.roa (raw, json) Hash identifier: jADgNnhxEcd4oC2Bi6gWCSut/y1BMwx5vJwAYz9dGvM= Subject key identifier: 3F:6A:97:65:BE:2E:9F:3E:2D:FD:F7:E4:27:AE:83:BF:19:12:73:EC Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019C25665C27CBB50CB371E0DCEAA5C0574C Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/P2qXZb4unz4t_ffkJ66DvxkSc-w.roa Signing time: Tue 03 Feb 2026 21:26:31 +0000 ROA not before: Tue 03 Feb 2026 21:26:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 45.90.17.0/24 maxlen: 24 185.222.30.0/24 maxlen: 24 185.223.82.0/24 maxlen: 24 185.226.105.0/24 maxlen: 24 185.228.72.0/24 maxlen: 24 185.230.65.0/24 maxlen: 24 185.230.66.0/24 maxlen: 24 194.76.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 18:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:25:66:5c:27:cb:b5:0c:b3:71:e0:dc:ea:a5:c0:57:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Feb 3 21:26:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f6a9765be2e9f3e2dfdf7e427ae83bf191273ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0b:bd:62:ab:c5:de:8e:51:ad:d2:f4:8f:81: 15:7f:be:63:84:00:01:24:73:d3:e6:a2:fd:14:37: 19:ba:c5:2a:78:73:f5:cc:00:52:7d:6a:48:0d:80: 3b:2e:f2:cf:d4:09:fc:9b:ed:02:bc:60:c0:39:9c: 62:94:c0:97:c5:49:78:f5:58:f2:ff:b9:4f:1c:99: 6e:7c:a4:c6:a6:f4:d3:e4:f8:09:5a:76:66:99:de: 93:c0:67:ab:b6:86:cb:71:51:24:fe:39:30:72:be: ac:c0:2c:57:ba:c6:d9:68:95:e0:09:a7:de:14:61: 7a:ac:27:7b:f7:5e:4d:e7:76:1c:84:42:4b:82:f2: ff:9a:ab:80:1e:97:02:a1:65:9c:ed:1c:e6:cb:60: 84:76:94:26:be:31:98:ed:c1:35:12:ee:82:68:d8: 70:6b:d5:10:72:72:2c:a7:f5:3a:91:0f:9d:99:0a: 68:cf:4f:7d:4a:34:6a:42:ff:ad:84:d8:5f:86:2e: ab:e2:a7:89:e4:46:5e:49:d6:a8:1e:11:1f:14:3f: 1c:1d:49:29:2b:21:5d:f9:68:0a:a4:4c:08:3b:04: 58:d4:76:be:ae:ff:16:25:9d:86:07:ae:a5:24:6a: 16:f7:6c:c8:1c:f1:53:d0:92:21:7a:dc:8e:15:0c: 30:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6A:97:65:BE:2E:9F:3E:2D:FD:F7:E4:27:AE:83:BF:19:12:73:EC X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/P2qXZb4unz4t_ffkJ66DvxkSc-w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.17.0/24 185.222.30.0/24 185.223.82.0/24 185.226.105.0/24 185.228.72.0/24 185.230.65.0-185.230.66.255 194.76.172.0/24 Signature Algorithm: sha256WithRSAEncryption ae:5d:5c:e3:85:11:d9:76:46:8c:34:84:2e:44:95:80:eb:53: 83:59:70:a0:87:ca:05:ed:6f:d1:08:8b:ce:b4:45:2a:6d:25: 57:04:e3:19:e1:56:e7:61:34:c0:e2:f3:54:01:14:ae:43:b3: 22:bc:1b:78:c1:8c:8b:f5:30:87:5e:17:6a:ec:c7:83:30:ca: 56:dc:f6:ee:48:6e:f6:64:48:11:99:0b:86:b0:03:40:69:e8: a4:66:07:cd:9f:21:10:d1:92:b1:58:68:d9:0c:d1:48:c5:e5: 8f:a6:7f:08:ae:f0:91:1f:29:8e:3b:a0:43:e5:af:94:27:9b: 51:a0:b3:70:c9:b3:64:5e:1e:30:ce:42:33:9c:23:7a:29:09: d4:e5:8c:5a:ce:0b:54:d6:8c:58:bc:ff:3a:a6:eb:e3:39:9e: d4:d3:d5:4e:57:c1:8b:85:06:17:52:9e:5a:cb:5c:41:59:63: a0:f5:d3:e9:13:4b:cc:72:ce:cd:30:24:05:1e:55:4a:fa:e0: 62:b6:18:a8:60:bd:87:0f:67:c1:b3:e7:7e:cd:ad:f7:a7:73: 7b:8a:ae:42:a8:c4:03:c5:2e:85:01:7d:bc:9f:58:f1:fd:fc: 6a:6e:bb:be:80:04:03:6f:ae:d1:73:ce:d7:6b:1a:45:fa:61: 05:1a:05:f4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZwlZlwny7UMs3Hg3OqlwFdMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMjAzMjEyNjMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjZhOTc2NWJlMmU5ZjNlMmRmZGY3ZTQyN2FlODNiZjE5MTI3M2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgu9YqvF3o5RrdL0j4EVf75jhAAB JHPT5qL9FDcZusUqeHP1zABSfWpIDYA7LvLP1An8m+0CvGDAOZxilMCXxUl49Vjy /7lPHJlufKTGpvTT5PgJWnZmmd6TwGertobLcVEk/jkwcr6swCxXusbZaJXgCafe FGF6rCd7915N53YchEJLgvL/mquAHpcCoWWc7Rzmy2CEdpQmvjGY7cE1Eu6CaNhw a9UQcnIsp/U6kQ+dmQpoz099SjRqQv+thNhfhi6r4qeJ5EZeSdaoHhEfFD8cHUkp KyFd+WgKpEwIOwRY1Ha+rv8WJZ2GB66lJGoW92zIHPFT0JIhetyOFQwwfQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFD9ql2W+Lp8+Lf335Ceug78ZEnPsMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvUDJxWFpiNHVuejR0X2Zma0o2NkR2eGtTYy13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQALVoRAwQA ud4eAwQAud9SAwQAueJpAwQAueRIMAwDBAC55kEDBAC55kIDBADCTKwwDQYJKoZI hvcNAQELBQADggEBAK5dXOOFEdl2Row0hC5ElYDrU4NZcKCHygXtb9EIi860RSpt JVcE4xnhVudhNMDi81QBFK5DsyK8G3jBjIv1MIdeF2rsx4Mwylbc9u5IbvZkSBGZ C4awA0Bp6KRmB82fIRDRkrFYaNkM0UjF5Y+mfwiu8JEfKY47oEPlr5Qnm1Ggs3DJ s2ReHjDOQjOcI3opCdTljFrOC1TWjFi8/zqm6+M5ntTT1U5XwYuFBhdSnlrLXEFZ Y6D10+kTS8xyzs0wJAUeVUr64GK2GKhgvYcPZ8Gz537Nrfenc3uKrkKoxAPFLoUB fbyfWPH9/Gpuu76ABANvrtFzztdrGkX6YQUaBfQ= -----END CERTIFICATE-----Generated at Thu Feb 5 02:34:59 2026 by rpki-client