This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hR2bEeprCUq99OIYUfFmgvCzFC4.roa File: hR2bEeprCUq99OIYUfFmgvCzFC4.roa (raw, json) Hash identifier: SQrDWNMomY25oxbiqkiy2+lfJhknY17GaG4khqaKluA= Subject key identifier: 85:1D:9B:11:EA:6B:09:4A:BD:F4:E2:18:51:F1:66:82:F0:B3:14:2E Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13A8BA20ED1A438F3338F75DBE4138 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hR2bEeprCUq99OIYUfFmgvCzFC4.roa Signing time: Fri 02 Jan 2026 00:20:21 +0000 ROA not before: Fri 02 Jan 2026 00:20:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399641 IP address blocks: 185.194.31.0/24 maxlen: 24 185.218.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:a8:ba:20:ed:1a:43:8f:33:38:f7:5d:be:41:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=851d9b11ea6b094abdf4e21851f16682f0b3142e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:62:f0:a9:4a:c8:0e:51:c7:60:f3:71:4c:a5: 63:2e:16:20:ac:3e:20:91:de:c4:7e:a5:bc:ae:df: b0:3d:63:47:31:21:b2:2b:c2:1a:b4:3d:02:af:34: b3:a2:f5:05:04:e6:60:e5:18:1c:64:81:08:9a:b6: a2:9d:8d:9b:4a:98:15:ca:09:67:e4:8b:8b:8e:73: a9:82:9c:94:5d:05:49:74:a4:3a:51:a4:f3:80:eb: 52:11:aa:0d:89:ab:71:d3:1f:4a:7b:5c:45:80:be: 66:e2:9f:5a:10:09:c8:ea:d3:04:8f:41:0d:ec:67: be:11:88:97:e3:42:2d:2f:f7:03:bf:7d:93:cf:24: 9c:1f:fa:4a:cc:98:98:07:84:45:1f:27:d4:7e:13: cf:d6:44:a9:77:97:02:41:8c:f8:3d:97:ed:73:90: 23:c0:f6:57:94:06:68:d5:90:f0:71:0e:0c:fb:ff: ce:00:13:ce:49:8c:b2:ab:d6:4e:7f:25:0e:d9:ae: be:dc:95:5d:f0:33:e1:74:68:fc:63:76:c9:99:2f: 00:fc:42:7f:03:c2:86:3c:f3:df:64:ff:29:2d:fd: 9c:50:18:7d:43:51:1e:4e:78:3c:de:d0:4f:10:40: ac:1b:26:2e:43:f1:d2:5a:eb:eb:57:19:db:4a:20: b1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1D:9B:11:EA:6B:09:4A:BD:F4:E2:18:51:F1:66:82:F0:B3:14:2E X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hR2bEeprCUq99OIYUfFmgvCzFC4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.194.31.0/24 185.218.103.0/24 Signature Algorithm: sha256WithRSAEncryption 72:7f:fa:e0:95:6a:79:49:12:b9:34:06:81:18:73:86:63:ca: c8:70:9b:ed:9d:4c:ad:53:73:10:07:52:46:c9:bb:78:c5:57: c7:6c:94:36:a3:5e:7c:14:4b:c0:cb:f1:b0:f2:5f:2f:9a:a8: 1d:76:7d:14:73:67:f2:d4:1e:1b:c6:1f:6f:f8:12:f6:a5:25: 5f:68:87:26:8b:a6:7d:d8:8b:29:f0:00:b4:b5:50:88:36:95: cb:33:e7:b9:49:f3:f7:54:16:51:06:6c:48:74:74:f9:e8:06: e9:90:2e:47:8e:83:15:6e:da:3c:70:6e:b8:20:9d:e6:e3:15: 6a:5c:b9:4e:07:0a:ff:ff:0e:4f:be:e3:41:0c:19:3c:2f:55: a7:d1:f2:ff:3c:29:27:f8:52:78:65:34:bd:19:69:cf:08:2a: a6:16:46:16:ec:44:e0:21:21:3b:43:79:26:9b:d2:47:4f:2a: 5e:74:73:6a:d7:ab:48:a7:d9:5e:51:9e:a8:e4:1a:13:4f:99: 40:d9:9c:b8:b8:75:ec:56:00:5e:a1:a9:c4:3b:4a:98:87:e1: f8:c7:ed:af:fe:57:84:5f:25:74:06:79:33:07:64:a6:24:4f: 6e:18:44:74:65:7b:eb:11:36:43:4b:6e:ca:c1:44:2a:57:f5: 88:a8:b0:6a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8E6i6IO0aQ48zOPddvkE4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTFkOWIxMWVhNmIwOTRhYmRmNGUyMTg1MWYxNjY4MmYwYjMxNDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGLwqUrIDlHHYPNxTKVjLhYgrD4g kd7EfqW8rt+wPWNHMSGyK8IatD0CrzSzovUFBOZg5RgcZIEImrainY2bSpgVygln 5IuLjnOpgpyUXQVJdKQ6UaTzgOtSEaoNiatx0x9Ke1xFgL5m4p9aEAnI6tMEj0EN 7Ge+EYiX40ItL/cDv32TzyScH/pKzJiYB4RFHyfUfhPP1kSpd5cCQYz4PZftc5Aj wPZXlAZo1ZDwcQ4M+//OABPOSYyyq9ZOfyUO2a6+3JVd8DPhdGj8Y3bJmS8A/EJ/ A8KGPPPfZP8pLf2cUBh9Q1EeTng83tBPEECsGyYuQ/HSWuvrVxnbSiCxzQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIUdmxHqawlKvfTiGFHxZoLwsxQuMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvaFIyYkVlcHJDVXE5OU9JWVVmRm1ndkN6RkM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAucIfAwQA udpnMA0GCSqGSIb3DQEBCwUAA4IBAQByf/rglWp5SRK5NAaBGHOGY8rIcJvtnUyt U3MQB1JGybt4xVfHbJQ2o158FEvAy/Gw8l8vmqgddn0Uc2fy1B4bxh9v+BL2pSVf aIcmi6Z92Isp8AC0tVCINpXLM+e5SfP3VBZRBmxIdHT56AbpkC5HjoMVbto8cG64 IJ3m4xVqXLlOBwr//w5PvuNBDBk8L1Wn0fL/PCkn+FJ4ZTS9GWnPCCqmFkYW7ETg ISE7Q3kmm9JHTypedHNq16tIp9leUZ6o5BoTT5lA2Zy4uHXsVgBeoanEO0qYh+H4 x+2v/leEXyV0BnkzB2SmJE9uGER0ZXvrETZDS27KwUQqV/WIqLBq -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:29 2026 by rpki-client