This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/c2pf-8gnIVssNR2Fszo2TqJi6d0.roa File: c2pf-8gnIVssNR2Fszo2TqJi6d0.roa (raw, json) Hash identifier: IowSJi+va8Y25LFgorG9k/mNGeE6xbD9rUcPV47BscU= Subject key identifier: 73:6A:5F:FB:C8:27:21:5B:2C:35:1D:85:B3:3A:36:4E:A2:62:E9:DD Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E43CF2F2FABD07B2D4F72ADB83C08 Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/c2pf-8gnIVssNR2Fszo2TqJi6d0.roa Signing time: Thu 01 Jan 2026 12:17:56 +0000 ROA not before: Thu 01 Jan 2026 12:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215727 IP address blocks: 45.136.0.0/24 maxlen: 32 45.136.2.0/24 maxlen: 32 45.136.3.0/24 maxlen: 32 128.0.119.0/24 maxlen: 32 185.117.21.0/24 maxlen: 32 185.117.23.0/24 maxlen: 32 185.144.100.0/24 maxlen: 32 185.144.101.0/24 maxlen: 32 185.144.102.0/24 maxlen: 32 185.211.48.0/24 maxlen: 32 185.211.49.0/24 maxlen: 32 185.211.50.0/24 maxlen: 32 185.227.240.0/24 maxlen: 32 185.227.241.0/24 maxlen: 32 185.227.242.0/24 maxlen: 32 185.227.243.0/24 maxlen: 32 193.201.208.0/24 maxlen: 32 193.201.209.0/24 maxlen: 32 193.201.210.0/24 maxlen: 32 193.201.211.0/24 maxlen: 32 194.36.102.0/24 maxlen: 32 194.36.103.0/24 maxlen: 32 194.124.64.0/24 maxlen: 32 194.124.66.0/24 maxlen: 32 194.124.67.0/24 maxlen: 32 195.85.68.0/24 maxlen: 32 195.85.69.0/24 maxlen: 32 195.85.70.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:43:cf:2f:2f:ab:d0:7b:2d:4f:72:ad:b8:3c:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=736a5ffbc827215b2c351d85b33a364ea262e9dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:89:d1:60:9f:48:d6:17:a5:2e:57:51:ba:d5: 1e:49:eb:2e:df:da:21:89:33:11:d9:57:e7:b1:57: db:e1:d6:95:5e:8c:87:fa:a4:a2:0a:11:17:26:d8: 9d:26:0c:9f:b3:e7:83:e6:02:b7:13:aa:55:62:6d: d6:f2:24:9e:55:2a:d6:7f:c3:06:ad:37:44:98:58: d6:56:4e:17:fc:ff:45:54:ca:51:3f:64:ea:f8:fe: d4:03:29:49:d6:5c:86:92:b8:b7:42:7f:cc:90:64: 58:09:aa:ad:c2:0f:bb:c5:a2:fe:a2:ce:72:41:4c: c1:97:e1:c4:ed:6a:d8:0c:22:5c:fb:72:66:82:38: 2d:7f:ad:bb:05:4c:fd:a9:4d:e7:a7:31:8b:e1:e7: eb:19:9a:01:7d:50:e1:31:a7:89:69:69:eb:1e:3e: b5:d5:8c:36:76:c5:f9:af:d8:a5:24:8b:b8:75:e1: 8b:e2:22:73:4c:0f:18:53:94:6e:f8:1b:11:b9:64: d9:42:e2:c9:fd:75:ef:6b:57:2e:03:bd:26:dd:0b: 26:d8:30:75:b7:5d:7c:a9:1f:cb:0d:7e:23:a7:36: a2:ed:76:59:59:07:8a:b0:b9:eb:29:16:5b:f0:82: 57:2e:83:8c:5c:ac:81:fe:e4:de:f6:68:58:be:92: 36:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6A:5F:FB:C8:27:21:5B:2C:35:1D:85:B3:3A:36:4E:A2:62:E9:DD X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/c2pf-8gnIVssNR2Fszo2TqJi6d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.136.0.0/24 45.136.2.0/23 128.0.119.0/24 185.117.21.0/24 185.117.23.0/24 185.144.100.0-185.144.102.255 185.211.48.0-185.211.50.255 185.227.240.0/22 193.201.208.0/22 194.36.102.0/23 194.124.64.0/24 194.124.66.0/23 195.85.68.0-195.85.70.255 Signature Algorithm: sha256WithRSAEncryption 68:c3:05:40:f8:84:c1:76:18:53:85:b4:30:e3:2b:45:ee:e5: 0d:d2:55:f4:67:bd:cc:89:5d:c7:45:ef:ad:65:08:1a:24:0a: 5d:a9:94:2f:f4:3b:f1:87:c2:a5:fc:4b:dc:da:6c:23:8b:d3: ba:11:a2:65:f3:cd:f2:ed:4a:b7:7f:f9:a2:2d:51:ab:a7:55: 20:a8:d5:43:69:2b:a1:a6:2e:57:0e:cc:a7:46:a3:24:ec:81: 1d:f4:7c:54:f2:c9:dd:43:06:01:14:1d:cb:1d:ec:bf:ea:ad: 93:3d:2d:6b:a7:a4:fb:5e:b1:8f:84:7a:c5:d7:e9:81:9c:83: 30:02:b8:42:4d:df:9c:59:c7:62:55:d5:e1:b1:d0:8d:11:29: 15:a2:85:15:91:a7:11:a7:51:8a:22:e8:44:2b:61:c7:95:14: 45:e6:e0:53:80:f0:0a:a7:8f:51:45:ee:7f:3e:a6:d9:52:4c: 11:74:f8:15:da:5e:df:00:ea:1c:39:2d:97:7e:b5:f1:f4:ee: c6:43:66:e9:77:a6:1b:9f:77:d9:11:05:50:60:9d:2b:35:de: 80:c6:a2:9f:5f:69:a7:91:2b:5f:73:63:79:9d:d9:ee:c6:88: 92:12:50:c6:dc:bc:8f:e3:1b:be:6a:a2:f1:8e:a4:e4:92:62: 19:62:67:30 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISAZt5fkPPLy+r0HstT3KtuDwIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzZhNWZmYmM4MjcyMTViMmMzNTFkODViMzNhMzY0ZWEyNjJlOWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14nRYJ9I1helLldRutUeSesu39oh iTMR2VfnsVfb4daVXoyH+qSiChEXJtidJgyfs+eD5gK3E6pVYm3W8iSeVSrWf8MG rTdEmFjWVk4X/P9FVMpRP2Tq+P7UAylJ1lyGkri3Qn/MkGRYCaqtwg+7xaL+os5y QUzBl+HE7WrYDCJc+3Jmgjgtf627BUz9qU3npzGL4efrGZoBfVDhMaeJaWnrHj61 1Yw2dsX5r9ilJIu4deGL4iJzTA8YU5Ru+BsRuWTZQuLJ/XXva1cuA70m3Qsm2DB1 t118qR/LDX4jpzai7XZZWQeKsLnrKRZb8IJXLoOMXKyB/uTe9mhYvpI2TwIDAQAB o4ICaTCCAmUwHQYDVR0OBBYEFHNqX/vIJyFbLDUdhbM6Nk6iYundMB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvYzJwZi04Z25JVnNzTlIyRnN6bzJUcUppNmQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQALYgAAwQB LYgCAwQAgAB3AwQAuXUVAwQAuXUXMAwDBAK5kGQDBAC5kGYwDAMEBLnTMAMEALnT MgMEArnj8AMEAsHJ0AMEAcIkZgMEAMJ8QAMEAcJ8QjAMAwQCw1VEAwQAw1VGMA0G CSqGSIb3DQEBCwUAA4IBAQBowwVA+ITBdhhThbQw4ytF7uUN0lX0Z73MiV3HRe+t ZQgaJApdqZQv9Dvxh8Kl/Evc2mwji9O6EaJl883y7Uq3f/miLVGrp1UgqNVDaSuh pi5XDsynRqMk7IEd9HxU8sndQwYBFB3LHey/6q2TPS1rp6T7XrGPhHrF1+mBnIMw ArhCTd+cWcdiVdXhsdCNESkVooUVkacRp1GKIuhEK2HHlRRF5uBTgPAKp49RRe5/ PqbZUkwRdPgV2l7fAOocOS2XfrXx9O7GQ2bpd6Ybn3fZEQVQYJ0rNd6AxqKfX2mn kStfc2N5ndnuxoiSElDG3LyP4xu+aqLxjqTkkmIZYmcw -----END CERTIFICATE-----Generated at Mon Jan 19 18:24:14 2026 by rpki-client