This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/913089-8986-42a6-881e-2e0eb4f46fa4/1/2cBhd1gBV9HgikgWzune9EFx0jU.roa File: 2cBhd1gBV9HgikgWzune9EFx0jU.roa (raw, json) Hash identifier: My4ngSBmWV0M6j/mqZZ0DTBHeDv9BoOmJfdYEK9/Zhk= Subject key identifier: D9:C0:61:77:58:01:57:D1:E0:8A:48:16:CE:E9:DE:F4:41:71:D2:35 Certificate issuer: /CN=08d2bc3e397289ce9c3aa02e156e20c03d4d7342 Certificate serial: 019B7C124F0FC9692B77E02C5F8D72BDAB2C Authority key identifier: 08:D2:BC:3E:39:72:89:CE:9C:3A:A0:2E:15:6E:20:C0:3D:4D:73:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNK8Pjlyic6cOqAuFW4gwD1Nc0I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/913089-8986-42a6-881e-2e0eb4f46fa4/1/2cBhd1gBV9HgikgWzune9EFx0jU.roa Signing time: Fri 02 Jan 2026 00:18:53 +0000 ROA not before: Fri 02 Jan 2026 00:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 195.69.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/913089-8986-42a6-881e-2e0eb4f46fa4/1/CNK8Pjlyic6cOqAuFW4gwD1Nc0I.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/913089-8986-42a6-881e-2e0eb4f46fa4/1/CNK8Pjlyic6cOqAuFW4gwD1Nc0I.mft rsync://rpki.ripe.net/repository/DEFAULT/CNK8Pjlyic6cOqAuFW4gwD1Nc0I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:4f:0f:c9:69:2b:77:e0:2c:5f:8d:72:bd:ab:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08d2bc3e397289ce9c3aa02e156e20c03d4d7342 Validity Not Before: Jan 2 00:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9c06177580157d1e08a4816cee9def44171d235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:71:ef:af:ea:64:5c:a4:8b:10:0e:e2:f6:b6: cc:35:14:59:91:af:6e:f1:5c:9d:2c:b3:71:58:a3: aa:5e:ca:1a:7e:8d:99:9e:56:ce:7b:e9:cc:18:ca: 6a:16:1f:a7:51:f1:92:67:10:8c:01:89:f2:1a:d8: be:58:ca:40:e9:cc:61:b1:3a:23:82:43:0b:11:c8: ec:6a:74:73:0b:4e:f1:2c:81:0f:01:cb:5e:5c:f9: 53:91:e8:3b:bd:db:d8:63:b2:42:73:42:79:d4:56: 8d:a6:6b:ad:ce:cb:88:aa:ac:b1:b9:e8:d7:54:be: 6e:ba:94:a2:e8:36:5f:ef:7c:e7:58:ac:97:61:9e: 11:af:3d:67:1b:1e:c0:ec:80:2b:1e:a0:2d:52:0a: a0:e4:77:94:6d:3b:88:40:a6:60:43:6b:8a:1c:07: c3:fb:cc:de:b0:9e:39:87:c1:f7:fb:76:0f:31:ed: 90:00:41:53:d7:09:c2:90:a0:3a:de:2b:92:61:b2: 45:bc:2d:0d:d2:bd:3e:ff:2e:cd:dd:45:ec:16:28: 1d:85:92:69:0c:9f:0f:b1:80:43:49:6f:cd:9a:d3: 30:25:0c:26:4b:02:8a:b3:84:42:6b:5d:8f:8a:6b: 85:41:e1:06:74:4a:8e:dc:fd:c2:98:3f:38:8b:12: fa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C0:61:77:58:01:57:D1:E0:8A:48:16:CE:E9:DE:F4:41:71:D2:35 X509v3 Authority Key Identifier: keyid:08:D2:BC:3E:39:72:89:CE:9C:3A:A0:2E:15:6E:20:C0:3D:4D:73:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNK8Pjlyic6cOqAuFW4gwD1Nc0I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/913089-8986-42a6-881e-2e0eb4f46fa4/1/2cBhd1gBV9HgikgWzune9EFx0jU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/913089-8986-42a6-881e-2e0eb4f46fa4/1/CNK8Pjlyic6cOqAuFW4gwD1Nc0I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.69.163.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:57:19:e9:00:f1:7d:7c:84:fa:e7:ad:16:7b:e9:db:22:d0: 68:d6:9a:59:1e:4f:24:6d:a3:e9:05:53:20:ba:b6:52:f4:37: 59:e4:5b:d0:17:ad:0e:05:96:85:b0:50:07:89:0e:46:b5:83: 97:28:72:71:3f:d9:f6:c7:be:7d:4f:8a:4d:3a:0b:fe:f3:47: 51:30:4b:0e:00:c2:aa:4c:5b:95:20:11:65:ec:e8:70:32:91: 78:07:96:9b:5e:00:fc:8c:29:3b:63:c7:05:27:fc:4e:bd:3f: 5f:56:5c:7e:36:35:a6:bf:d0:40:61:91:20:0a:54:84:a8:38: 85:e5:bc:60:74:03:96:ce:4f:ec:c7:a3:fb:fb:69:a4:d5:ae: 87:1b:1c:c5:1a:84:5b:7d:2a:5b:eb:c1:1e:39:00:9e:5c:ec: e0:59:8b:10:f5:95:18:e6:0a:09:52:a1:ca:48:62:96:64:43: bd:fb:18:41:4a:6d:48:d5:3d:10:b1:e5:3f:9b:26:4f:20:49: f4:46:59:5b:45:e0:97:f4:5d:53:63:4f:09:e1:a0:95:b6:8b: a6:f9:83:bd:97:48:20:31:ef:1d:93:b5:17:76:59:21:19:73: 85:f2:c6:b0:0c:6a:73:a4:5e:b6:76:2a:00:5b:76:1f:2f:ce: 36:82:5d:f0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ek8PyWkrd+AsX41yvassMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ZDJiYzNlMzk3Mjg5Y2U5YzNhYTAyZTE1NmUyMGMwM2Q0 ZDczNDIwHhcNMjYwMTAyMDAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOWMwNjE3NzU4MDE1N2QxZTA4YTQ4MTZjZWU5ZGVmNDQxNzFkMjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3Hvr+pkXKSLEA7i9rbMNRRZka9u 8VydLLNxWKOqXsoafo2ZnlbOe+nMGMpqFh+nUfGSZxCMAYnyGti+WMpA6cxhsToj gkMLEcjsanRzC07xLIEPActeXPlTkeg7vdvYY7JCc0J51FaNpmutzsuIqqyxuejX VL5uupSi6DZf73znWKyXYZ4Rrz1nGx7A7IArHqAtUgqg5HeUbTuIQKZgQ2uKHAfD +8zesJ45h8H3+3YPMe2QAEFT1wnCkKA63iuSYbJFvC0N0r0+/y7N3UXsFigdhZJp DJ8PsYBDSW/NmtMwJQwmSwKKs4RCa12PimuFQeEGdEqO3P3CmD84ixL6qQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNnAYXdYAVfR4IpIFs7p3vRBcdI1MB8GA1UdIwQY MBaAFAjSvD45conOnDqgLhVuIMA9TXNCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ05LOFBqbHlpYzZjT3FBdUZXNGd3RDFOYzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS85MTMwODktODk4Ni00MmE2LTg4MWUt MmUwZWI0ZjQ2ZmE0LzEvMmNCaGQxZ0JWOUhnaWtnV3p1bmU5RUZ4MGpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS85MTMwODktODk4Ni00MmE2LTg4MWUtMmUwZWI0ZjQ2ZmE0 LzEvQ05LOFBqbHlpYzZjT3FBdUZXNGd3RDFOYzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0WjMA0G CSqGSIb3DQEBCwUAA4IBAQAqVxnpAPF9fIT6560We+nbItBo1ppZHk8kbaPpBVMg urZS9DdZ5FvQF60OBZaFsFAHiQ5GtYOXKHJxP9n2x759T4pNOgv+80dRMEsOAMKq TFuVIBFl7OhwMpF4B5abXgD8jCk7Y8cFJ/xOvT9fVlx+NjWmv9BAYZEgClSEqDiF 5bxgdAOWzk/sx6P7+2mk1a6HGxzFGoRbfSpb68EeOQCeXOzgWYsQ9ZUY5goJUqHK SGKWZEO9+xhBSm1I1T0QseU/myZPIEn0RllbReCX9F1TY08J4aCVtoum+YO9l0gg Me8dk7UXdlkhGXOF8sawDGpzpF62dioAW3YfL842gl3w -----END CERTIFICATE-----Generated at Sat Jan 3 01:33:28 2026 by rpki-client