This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/_R2YtsXhjupE0hcW9bNNJiDQBEM.roa File: _R2YtsXhjupE0hcW9bNNJiDQBEM.roa (raw, json) Hash identifier: aONA2g6qprSauXKa7RQpDMRLeFJGsXaUAKCwoPMDClY= Subject key identifier: FD:1D:98:B6:C5:E1:8E:EA:44:D2:17:16:F5:B3:4D:26:20:D0:04:43 Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb Certificate serial: 019B7758EEB1107388E000A0CAEE6D692420 Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/_R2YtsXhjupE0hcW9bNNJiDQBEM.roa Signing time: Thu 01 Jan 2026 02:17:55 +0000 ROA not before: Thu 01 Jan 2026 02:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201061 IP address blocks: 5.1.92.0/24 maxlen: 32 2a00:f826:25::/48 maxlen: 48 2a01:367:abcd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.mft rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 14:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:ee:b1:10:73:88:e0:00:a0:ca:ee:6d:69:24:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb Validity Not Before: Jan 1 02:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd1d98b6c5e18eea44d21716f5b34d2620d00443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:56:4e:7c:88:25:24:c8:23:ed:63:c5:5c:79: f4:16:5b:b5:62:7b:66:60:af:72:59:5b:2c:0b:1f: f2:f7:e6:ca:8c:e9:b1:f6:fb:f5:d9:2c:f3:31:3f: 34:98:97:47:f2:d8:ea:c4:45:dc:87:dc:35:e1:d2: 13:3f:94:c3:4d:ff:b4:2e:ab:fd:e6:48:82:ca:49: ec:70:68:8a:fd:0a:5e:76:82:25:09:13:bb:b8:91: d1:68:38:04:67:31:c5:95:94:93:16:33:ea:a0:32: 64:36:84:62:1c:0e:99:52:73:54:25:34:40:21:88: 14:63:22:d7:4a:97:3a:c9:e5:d3:67:52:fa:79:be: 66:79:d8:e3:44:36:4e:b6:15:67:11:60:7f:a5:bd: 8b:01:c9:76:10:64:06:a6:c6:d9:90:91:88:2f:48: 3e:74:f0:8a:ac:fd:51:fa:5e:3b:56:84:c1:c5:09: 08:15:47:50:99:12:13:38:7a:3b:91:89:b1:17:40: 2b:15:ee:32:aa:ef:f2:d2:e2:c7:e5:f0:68:50:6d: 10:6f:3d:25:76:8d:79:3a:1f:7d:22:bd:12:8d:8a: de:49:46:63:29:bb:c1:d0:46:58:7c:a3:20:fa:29: a2:f8:d5:75:fe:c9:d9:53:c7:ce:83:62:ac:eb:a8: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1D:98:B6:C5:E1:8E:EA:44:D2:17:16:F5:B3:4D:26:20:D0:04:43 X509v3 Authority Key Identifier: keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/_R2YtsXhjupE0hcW9bNNJiDQBEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.1.92.0/24 IPv6: 2a00:f826:25::/48 2a01:367:abcd::/48 Signature Algorithm: sha256WithRSAEncryption 24:7f:8a:b7:d9:d2:be:78:cd:f2:51:bc:7b:3e:12:39:21:38: 9e:5d:b1:24:2e:14:95:8d:98:97:7d:f6:57:95:06:a9:b4:1f: 92:4a:25:36:51:e1:b0:08:9f:67:c6:35:94:d6:6d:4a:fe:27: 0c:5f:e6:77:fb:96:e7:5d:49:e7:ea:03:76:e9:71:6e:d6:12: 49:b7:27:1b:dd:2d:8b:c5:13:49:88:ad:e1:8b:2e:83:35:c7: 3b:93:47:4d:e3:41:0a:0b:2b:3b:c5:13:3c:06:c5:41:05:71: c5:38:e8:aa:ff:b5:7b:5c:6c:e7:25:c2:54:f3:bd:b5:23:70: 1e:6a:b6:48:af:45:7e:2c:f5:fa:f0:bc:3b:23:53:61:80:db: 51:67:70:bd:85:98:34:ac:2e:34:04:0c:54:7c:e0:0d:d4:9f: d8:de:2f:4a:82:ce:76:92:a1:49:12:a3:e0:df:60:d4:20:61: f1:9b:f2:a4:32:4c:47:a0:f1:15:e7:74:47:56:c5:65:b4:6b: 0e:66:82:6c:f1:ea:af:e7:b5:45:1a:1e:56:43:61:56:ea:58: 14:c7:23:fb:50:6c:9e:23:b9:b3:25:e5:02:a3:44:4e:26:d8: 5d:5e:3d:eb:b5:4e:fb:1b:d1:d2:b6:65:cf:0c:c8:a3:1f:3a: 7b:dc:6b:77 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt3WO6xEHOI4ACgyu5taSQgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MjUzYzRmMjMzY2U5ODQ3Njk5YWU2OGVjYmY1ZDc1MTRi MGZhZGIwHhcNMjYwMTAxMDIxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDFkOThiNmM1ZTE4ZWVhNDRkMjE3MTZmNWIzNGQyNjIwZDAwNDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lZOfIglJMgj7WPFXHn0Flu1Yntm YK9yWVssCx/y9+bKjOmx9vv12SzzMT80mJdH8tjqxEXch9w14dITP5TDTf+0Lqv9 5kiCyknscGiK/QpedoIlCRO7uJHRaDgEZzHFlZSTFjPqoDJkNoRiHA6ZUnNUJTRA IYgUYyLXSpc6yeXTZ1L6eb5medjjRDZOthVnEWB/pb2LAcl2EGQGpsbZkJGIL0g+ dPCKrP1R+l47VoTBxQkIFUdQmRITOHo7kYmxF0ArFe4yqu/y0uLH5fBoUG0Qbz0l do15Oh99Ir0SjYreSUZjKbvB0EZYfKMg+imi+NV1/snZU8fOg2Ks66iIEQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFP0dmLbF4Y7qRNIXFvWzTSYg0ARDMB8GA1UdIwQY MBaAFLQlPE8jPOmEdpmuaOy/XXUUsPrbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMt NThiMzhmNWFjODBiLzEvX1IyWXRzWGhqdXBFMGhjVzliTk5KaURRQkVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMtNThiMzhmNWFjODBi LzEvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQABQFcMBgE AgACMBIDBwAqAPgmACUDBwAqAQNnq80wDQYJKoZIhvcNAQELBQADggEBACR/irfZ 0r54zfJRvHs+EjkhOJ5dsSQuFJWNmJd99leVBqm0H5JKJTZR4bAIn2fGNZTWbUr+ Jwxf5nf7luddSefqA3bpcW7WEkm3JxvdLYvFE0mIreGLLoM1xzuTR03jQQoLKzvF EzwGxUEFccU46Kr/tXtcbOclwlTzvbUjcB5qtkivRX4s9frwvDsjU2GA21FncL2F mDSsLjQEDFR84A3Un9jeL0qCznaSoUkSo+DfYNQgYfGb8qQyTEeg8RXndEdWxWW0 aw5mgmzx6q/ntUUaHlZDYVbqWBTHI/tQbJ4jubMl5QKjRE4m2F1ePeu1Tvsb0dK2 Zc8MyKMfOnvca3c= -----END CERTIFICATE-----Generated at Wed Jan 21 00:03:47 2026 by rpki-client