This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/2xwSBwS6RDNnNKRZKOi0MbfjwVc.roa File: 2xwSBwS6RDNnNKRZKOi0MbfjwVc.roa (raw, json) Hash identifier: RMcEguGLwOa0BQU2j27En5sOEwzBOElDccZLVB4NNcw= Subject key identifier: DB:1C:12:07:04:BA:44:33:67:34:A4:59:28:E8:B4:31:B7:E3:C1:57 Certificate issuer: /CN=7a1bb036db40d799d861198a5243b3c03d56c20a Certificate serial: 019B7BA470433D4414018E5E074729709C73 Authority key identifier: 7A:1B:B0:36:DB:40:D7:99:D8:61:19:8A:52:43:B3:C0:3D:56:C2:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/2xwSBwS6RDNnNKRZKOi0MbfjwVc.roa Signing time: Thu 01 Jan 2026 22:18:52 +0000 ROA not before: Thu 01 Jan 2026 22:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6461 IP address blocks: 176.57.249.0/24 maxlen: 24 176.57.250.0/24 maxlen: 24 176.57.251.0/24 maxlen: 24 176.57.252.0/24 maxlen: 24 176.57.253.0/24 maxlen: 24 176.57.254.0/24 maxlen: 24 176.57.255.0/24 maxlen: 24 185.181.144.0/24 maxlen: 24 185.181.145.0/24 maxlen: 24 185.181.146.0/24 maxlen: 24 185.181.147.0/24 maxlen: 24 195.60.196.0/24 maxlen: 24 195.60.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.mft rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:70:43:3d:44:14:01:8e:5e:07:47:29:70:9c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a1bb036db40d799d861198a5243b3c03d56c20a Validity Not Before: Jan 1 22:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db1c120704ba44336734a45928e8b431b7e3c157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:39:d4:96:d9:fb:e9:77:9d:20:63:8c:a5:f3: 23:b7:6e:28:29:83:10:a9:19:27:41:3a:f8:28:cb: 8a:1e:6d:55:4f:2d:d5:a4:1d:4c:51:10:66:6f:d1: cb:11:f9:25:e9:f7:32:e7:a7:27:83:37:63:74:49: 18:e9:1e:73:0f:bc:fa:6c:21:fe:0f:24:1c:78:38: 6b:72:0f:7c:28:39:aa:15:2a:08:36:2f:c0:ec:2c: ec:5f:45:f5:17:9e:f6:4a:a7:91:89:5a:8a:3c:71: 35:ac:64:9f:a0:75:50:93:9f:0c:e2:2b:2e:b4:6b: 2b:e1:26:de:10:d2:4c:bd:99:45:78:88:db:85:3e: e1:4f:63:f2:25:08:30:2d:c9:cf:d1:ec:48:7e:b3: 44:79:a5:d2:7e:2f:6b:99:4e:16:7e:2c:26:bd:75: a2:c5:dd:b7:d7:90:9a:5c:9b:82:e8:4d:71:9a:c4: 80:7c:e9:7b:ea:aa:a6:19:1e:2b:f3:24:66:40:3a: d9:80:81:c9:cd:b3:58:d0:7e:c2:58:92:93:9e:b6: ed:62:19:e9:25:cd:51:a9:2f:35:4b:f9:30:60:e3: d2:75:90:29:44:7c:d7:48:02:77:e0:d6:46:7a:a8: f3:8c:1d:3f:3e:ab:6d:37:14:c3:ea:35:b0:8a:86: cc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1C:12:07:04:BA:44:33:67:34:A4:59:28:E8:B4:31:B7:E3:C1:57 X509v3 Authority Key Identifier: keyid:7A:1B:B0:36:DB:40:D7:99:D8:61:19:8A:52:43:B3:C0:3D:56:C2:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/2xwSBwS6RDNnNKRZKOi0MbfjwVc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.57.249.0-176.57.255.255 185.181.144.0/22 195.60.196.0/23 Signature Algorithm: sha256WithRSAEncryption c0:c2:11:b7:cb:95:2f:28:c7:72:c9:72:b3:48:93:78:a3:e2: 95:14:b0:87:0d:2f:1d:97:b9:90:fb:7c:d0:e9:a5:d7:30:2d: 0a:db:c4:fc:b2:73:58:5d:37:64:45:f3:43:fb:db:14:3b:a7: 36:34:3d:47:b9:73:51:5f:eb:bc:d2:4a:d5:63:94:9b:54:35: b7:86:ea:05:2b:f9:d8:8a:5b:0a:3e:db:05:aa:2f:fc:a7:d3: 95:5c:3d:83:c8:32:69:94:e7:54:d8:13:d8:3c:6b:40:1d:f5: 4b:bc:ab:a8:1b:ee:b1:e4:22:f3:4d:d6:2d:ca:3c:6f:d5:e0: 86:60:0b:06:ff:31:4e:e5:f3:4f:fa:1c:1e:85:57:bd:37:85: 8c:dc:d0:5a:4c:12:8d:51:48:8a:37:a9:2d:1f:28:a0:c3:53: 55:29:bb:18:0a:6b:fc:0d:bc:bc:98:b1:19:45:2d:74:cd:05: 83:51:4d:3a:b5:51:48:bc:3e:96:50:0f:72:2d:f0:af:1e:a9: 71:d9:8a:a0:4a:6b:1f:ed:86:49:bf:15:78:8b:d5:ef:10:62: f1:47:7c:63:5d:91:0f:45:d6:20:e4:29:6b:0a:1a:ca:9f:38: d2:b1:0c:e7:5e:de:21:29:2b:2e:2b:1c:de:3b:b7:f3:a8:d9: 76:ed:b5:dd -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgISAZt7pHBDPUQUAY5eB0cpcJxzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMWJiMDM2ZGI0MGQ3OTlkODYxMTk4YTUyNDNiM2MwM2Q1 NmMyMGEwHhcNMjYwMTAxMjIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjFjMTIwNzA0YmE0NDMzNjczNGE0NTkyOGU4YjQzMWI3ZTNjMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjnUltn76XedIGOMpfMjt24oKYMQ qRknQTr4KMuKHm1VTy3VpB1MURBmb9HLEfkl6fcy56cngzdjdEkY6R5zD7z6bCH+ DyQceDhrcg98KDmqFSoINi/A7CzsX0X1F572SqeRiVqKPHE1rGSfoHVQk58M4isu tGsr4SbeENJMvZlFeIjbhT7hT2PyJQgwLcnP0exIfrNEeaXSfi9rmU4WfiwmvXWi xd2315CaXJuC6E1xmsSAfOl76qqmGR4r8yRmQDrZgIHJzbNY0H7CWJKTnrbtYhnp Jc1RqS81S/kwYOPSdZApRHzXSAJ34NZGeqjzjB0/PqttNxTD6jWwiobMWQIDAQAB o4ICHDCCAhgwHQYDVR0OBBYEFNscEgcEukQzZzSkWSjotDG348FXMB8GA1UdIwQY MBaAFHobsDbbQNeZ2GEZilJDs8A9VsIKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWh1d050dEExNW5ZWVJtS1VrT3p3RDFXd2dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ZGE1YjMtMjRjNy00ZWU1LTk1ZGMt YjA4ZGIzYzM2ZmJiLzEvMnh3U0J3UzZSRE5uTktSWktPaTBNYmZqd1ZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ZGE1YjMtMjRjNy00ZWU1LTk1ZGMtYjA4ZGIzYzM2ZmJi LzEvZWh1d050dEExNW5ZWVJtS1VrT3p3RDFXd2dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAATAZMAsDBACwOfkD AwGwOAMEArm1kAMEAcM8xDANBgkqhkiG9w0BAQsFAAOCAQEAwMIRt8uVLyjHcsly s0iTeKPilRSwhw0vHZe5kPt80Oml1zAtCtvE/LJzWF03ZEXzQ/vbFDunNjQ9R7lz UV/rvNJK1WOUm1Q1t4bqBSv52IpbCj7bBaov/KfTlVw9g8gyaZTnVNgT2DxrQB31 S7yrqBvuseQi803WLco8b9XghmALBv8xTuXzT/ocHoVXvTeFjNzQWkwSjVFIijep LR8ooMNTVSm7GApr/A28vJixGUUtdM0Fg1FNOrVRSLw+llAPci3wrx6pcdmKoEpr H+2GSb8VeIvV7xBi8Ud8Y12RD0XWIOQpawoayp840rEM517eISkrLisc3ju386jZ du213Q== -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:11 2026 by rpki-client