This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/pZ2DG9liFeCKNbzetKHvN52UJO0.roa File: pZ2DG9liFeCKNbzetKHvN52UJO0.roa (raw, json) Hash identifier: ngpoJdoTiDK1ogZAlMttmztrBQw9vwYksg/OwsA6X2E= Subject key identifier: A5:9D:83:1B:D9:62:15:E0:8A:35:BC:DE:B4:A1:EF:37:9D:94:24:ED Certificate issuer: /CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be Certificate serial: 019B775969657E81E0E937FA89CBED390EB4 Authority key identifier: E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/pZ2DG9liFeCKNbzetKHvN52UJO0.roa Signing time: Thu 01 Jan 2026 02:18:26 +0000 ROA not before: Thu 01 Jan 2026 02:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197706 IP address blocks: 2a0d:1dc0::/29 maxlen: 48 2a0d:4940::/29 maxlen: 48 2a0d:4941::/32 maxlen: 48 2a0d:4942::/32 maxlen: 48 2a0d:4943::/32 maxlen: 48 2a0d:4944::/32 maxlen: 48 2a0d:4945::/32 maxlen: 48 2a0d:4946::/32 maxlen: 48 2a0d:4947::/32 maxlen: 48 2a0e:abc0::/29 maxlen: 48 2a0e:abc1::/32 maxlen: 32 2a0f:4780::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.mft rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:69:65:7e:81:e0:e9:37:fa:89:cb:ed:39:0e:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be Validity Not Before: Jan 1 02:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a59d831bd96215e08a35bcdeb4a1ef379d9424ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:ed:e5:6a:04:2b:06:79:8f:3a:fb:de:16: c1:6d:bf:4a:55:ea:73:a1:3d:6d:c8:73:30:78:5a: 91:21:84:7a:9c:c1:85:1b:ef:a5:f0:f5:3f:ad:53: f6:dd:ad:9a:bd:b5:c6:2f:25:fb:8c:9d:93:84:b5: 94:37:80:df:15:6b:cd:43:36:ce:6a:b8:2c:fc:ed: 75:10:45:fb:69:76:e3:6b:16:ac:00:89:56:d2:6f: 58:25:c1:17:28:1c:3b:bf:4f:63:ff:f2:b1:7d:cb: 52:02:ae:71:a4:ff:08:46:7f:6f:7d:24:e3:82:66: 72:9d:36:6b:01:32:f7:ea:8e:4a:dc:35:18:2b:7c: 15:31:79:b7:01:18:eb:e9:11:fd:2d:81:c7:3b:cc: ba:00:35:32:58:7b:45:4f:b7:77:50:14:0f:b0:c8: 93:d7:23:04:35:af:f5:93:2d:43:d0:72:57:e9:3a: 8e:bb:d7:84:df:6b:c3:4c:53:1c:72:8c:38:26:ac: 1d:ac:bb:81:ab:a3:80:b2:46:45:9e:74:0e:1e:f0: 50:62:c8:8b:5e:10:fd:74:55:23:66:12:c7:ed:06: 37:71:03:80:f1:bf:f4:ab:ae:3f:12:31:9a:28:78: 97:64:3b:9c:94:96:45:f1:f9:60:88:86:5c:30:58: 6c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9D:83:1B:D9:62:15:E0:8A:35:BC:DE:B4:A1:EF:37:9D:94:24:ED X509v3 Authority Key Identifier: keyid:E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/pZ2DG9liFeCKNbzetKHvN52UJO0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:1dc0::/29 2a0d:4940::/29 2a0e:abc0::/29 2a0f:4780::/29 Signature Algorithm: sha256WithRSAEncryption 86:e0:93:9e:81:f8:e1:d9:27:da:12:86:f2:11:83:f7:9f:97: de:7c:12:20:3b:ef:b5:1c:ca:25:5b:cd:6c:ee:f0:7f:25:f0: 42:c4:16:c4:83:60:78:d8:61:1e:31:02:25:51:29:47:6f:cd: 5e:06:97:13:48:59:05:05:0d:b1:10:57:5c:89:bb:84:6c:e9: 8a:39:80:6f:33:58:f2:c2:a3:ac:47:1a:c2:ce:f3:19:82:00: a8:25:01:22:10:72:ba:f0:e8:28:d7:e7:a9:fb:5c:ef:fa:e1: 43:30:d9:d7:b3:6f:2a:5f:e6:09:bc:b9:22:8e:a6:ba:95:e0: 70:49:2f:07:fc:7b:e8:2a:93:ff:ba:e3:48:70:76:24:b4:71: cc:e8:2c:2c:dc:32:01:77:54:7e:c5:77:c6:8d:d7:80:f4:75: 60:b2:ad:cb:4f:46:28:a5:be:c2:10:17:6b:1c:a1:1f:c2:00: 1e:48:a5:87:3d:99:af:3a:e4:05:0e:11:91:82:d9:0b:4d:26: 30:ea:e9:3f:07:40:33:93:35:b4:38:a9:2c:6e:a6:f7:8c:e7: 92:8e:e2:16:11:ce:a8:82:98:8a:1b:b5:06:57:2f:dd:dd:e5: 27:b3:43:f6:04:e3:5d:74:ac:68:f2:45:0f:d5:cd:56:0e:cd: bf:32:f6:6d -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZt3WWllfoHg6Tf6icvtOQ60MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxYjlhM2NlMGY1OTM5MTA4MTljMzI3MWUxZThkMGJkMTM3 MWE2YmUwHhcNMjYwMTAxMDIxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNTlkODMxYmQ5NjIxNWUwOGEzNWJjZGViNGExZWYzNzlkOTQyNGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYft5WoEKwZ5jzr73hbBbb9KVepz oT1tyHMweFqRIYR6nMGFG++l8PU/rVP23a2avbXGLyX7jJ2ThLWUN4DfFWvNQzbO args/O11EEX7aXbjaxasAIlW0m9YJcEXKBw7v09j//KxfctSAq5xpP8IRn9vfSTj gmZynTZrATL36o5K3DUYK3wVMXm3ARjr6RH9LYHHO8y6ADUyWHtFT7d3UBQPsMiT 1yMENa/1ky1D0HJX6TqOu9eE32vDTFMccow4JqwdrLuBq6OAskZFnnQOHvBQYsiL XhD9dFUjZhLH7QY3cQOA8b/0q64/EjGaKHiXZDuclJZF8flgiIZcMFhs9QIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFKWdgxvZYhXgijW83rSh7zedlCTtMB8GA1UdIwQY MBaAFOG5o84PWTkQgZwyceHo0L0Tcaa+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGJtanpnOVpPUkNCbkRKeDRlalF2Uk54cHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8wZDhiZTgtYjRiNC00MzZlLTg2ZTIt YmE0YzU2ZDhjMGNlLzEvcFoyREc5bGlGZUNLTmJ6ZXRLSHZONTJVSk8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC8wZDhiZTgtYjRiNC00MzZlLTg2ZTItYmE0YzU2ZDhjMGNl LzEvNGJtanpnOVpPUkNCbkRKeDRlalF2Uk54cHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAAjAcAwUDKg0dwAMF AyoNSUADBQMqDqvAAwUDKg9HgDANBgkqhkiG9w0BAQsFAAOCAQEAhuCTnoH44dkn 2hKG8hGD95+X3nwSIDvvtRzKJVvNbO7wfyXwQsQWxINgeNhhHjECJVEpR2/NXgaX E0hZBQUNsRBXXIm7hGzpijmAbzNY8sKjrEcaws7zGYIAqCUBIhByuvDoKNfnqftc 7/rhQzDZ17NvKl/mCby5Io6mupXgcEkvB/x76CqT/7rjSHB2JLRxzOgsLNwyAXdU fsV3xo3XgPR1YLKty09GKKW+whAXaxyhH8IAHkilhz2ZrzrkBQ4RkYLZC00mMOrp PwdAM5M1tDipLG6m94znko7iFhHOqIKYihu1Blcv3d3lJ7ND9gTjXXSsaPJFD9XN Vg7NvzL2bQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:43:04 2026 by rpki-client