This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/q2x6Xc8ZZACW9fJu899MsKHJMM8.roa File: q2x6Xc8ZZACW9fJu899MsKHJMM8.roa (raw, json) Hash identifier: pwMpRh3wZ+J+ajZgUW7mCK8jkEGxvenqPQjzyuBapnU= Subject key identifier: AB:6C:7A:5D:CF:19:64:00:96:F5:F2:6E:F3:DF:4C:B0:A1:C9:30:CF Certificate issuer: /CN=f8a2b605c58e0746aadc5bf0d7cbc36c9307f74d Certificate serial: 019B7B3632934136F906365E4E0439E125E6 Authority key identifier: F8:A2:B6:05:C5:8E:07:46:AA:DC:5B:F0:D7:CB:C3:6C:93:07:F7:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KK2BcWOB0aq3Fvw18vDbJMH900.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/q2x6Xc8ZZACW9fJu899MsKHJMM8.roa Signing time: Thu 01 Jan 2026 20:18:28 +0000 ROA not before: Thu 01 Jan 2026 20:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13215 IP address blocks: 185.97.164.0/22 maxlen: 22 185.97.164.0/24 maxlen: 24 185.97.165.0/24 maxlen: 24 185.97.166.0/24 maxlen: 24 185.97.167.0/24 maxlen: 24 2a0b:a8c0::/29 maxlen: 29 2a0b:a8c0:cdc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/1-KK2BcWOB0aq3Fvw18vDbJMH900.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/1-KK2BcWOB0aq3Fvw18vDbJMH900.mft rsync://rpki.ripe.net/repository/DEFAULT/1-KK2BcWOB0aq3Fvw18vDbJMH900.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:32:93:41:36:f9:06:36:5e:4e:04:39:e1:25:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8a2b605c58e0746aadc5bf0d7cbc36c9307f74d Validity Not Before: Jan 1 20:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab6c7a5dcf19640096f5f26ef3df4cb0a1c930cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d2:4b:e5:7f:36:98:7b:70:c9:59:40:0e:70: 6c:10:76:9f:63:a5:ae:a9:6b:30:48:00:ae:2a:eb: 51:18:e0:50:fe:92:34:1f:ee:12:0d:8e:01:2b:98: 6f:9a:75:fd:f5:24:21:29:ea:cb:64:74:c4:e5:09: a4:c4:82:ce:5a:f1:d5:1f:12:82:e9:97:41:7d:a2: 61:b2:a6:df:b6:3b:19:11:f3:36:b0:11:48:40:4d: 33:02:46:ea:61:e6:ee:db:45:4f:1b:52:8b:d6:7e: c7:65:27:de:2b:69:57:42:35:8b:42:50:b0:8e:4b: f4:e7:f0:83:0b:d1:53:08:89:78:65:a3:91:75:dd: 77:b7:7f:a7:af:e3:73:1d:8d:24:96:0d:2b:96:ff: 0f:ea:f1:dc:e4:ab:7b:30:72:fa:c3:ec:5c:e6:03: 1e:8f:86:7d:a4:d0:a5:02:db:e2:42:42:64:34:b0: cc:ed:85:14:39:c5:20:cf:d2:39:6c:94:3d:96:b6: 59:c3:19:c5:58:0b:37:49:da:26:e4:08:27:6d:4c: d5:91:9f:64:11:01:f0:92:06:d8:fb:e5:42:5e:c9: bb:ea:b0:d1:6b:e5:f3:e2:9c:87:93:d9:ff:1b:6f: 30:f0:ce:8c:be:3a:d7:85:46:fa:74:f1:ed:59:a8: 8d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6C:7A:5D:CF:19:64:00:96:F5:F2:6E:F3:DF:4C:B0:A1:C9:30:CF X509v3 Authority Key Identifier: keyid:F8:A2:B6:05:C5:8E:07:46:AA:DC:5B:F0:D7:CB:C3:6C:93:07:F7:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KK2BcWOB0aq3Fvw18vDbJMH900.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/q2x6Xc8ZZACW9fJu899MsKHJMM8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/076d37-4ab4-4ec3-a4b0-524025e13202/1/1-KK2BcWOB0aq3Fvw18vDbJMH900.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.97.164.0/22 IPv6: 2a0b:a8c0::/29 Signature Algorithm: sha256WithRSAEncryption 40:c8:c5:0c:e2:4e:66:ee:35:e4:6e:f7:fc:19:15:49:bc:c0: 8a:21:1c:cc:f2:28:f5:89:8b:2a:89:c1:4e:72:db:15:56:c7: df:a9:9d:89:b5:1d:2a:11:21:5e:f4:ff:fe:08:bb:96:76:71: f6:4a:31:d2:d4:71:ba:91:02:db:89:60:a7:ef:d8:45:e4:72: 90:09:9c:d1:8d:36:f7:8a:b9:54:d0:b0:c7:d0:e6:73:8a:c8: e1:f5:03:34:bb:83:01:3b:85:df:3f:b7:8e:90:87:a2:2b:30: 05:fa:10:50:f5:88:19:8a:1a:ad:bc:95:89:f9:e2:40:c1:5b: 73:7e:7c:13:e0:46:49:f2:37:88:13:4d:a5:1b:6f:38:17:7b: e5:ee:cb:72:1f:90:a2:b3:13:26:b7:72:ec:fe:78:95:7f:38: 32:2e:f6:22:de:3a:06:0a:1e:88:77:1c:5b:27:57:c5:1e:4b: dc:93:95:13:36:20:cd:83:78:8b:22:58:97:23:5c:c4:23:35: ea:d2:28:0c:01:c0:1b:e8:b5:36:d7:a7:79:61:c2:dd:e4:fd: a1:3b:98:05:65:60:36:4b:e4:4d:16:3e:6a:72:ea:9a:7e:4f: 1e:90:40:1b:2e:95:f2:e7:d3:a7:12:4b:29:e6:a8:97:7a:d2: 9f:f2:ea:64 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7NjKTQTb5BjZeTgQ54SXmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4YTJiNjA1YzU4ZTA3NDZhYWRjNWJmMGQ3Y2JjMzZjOTMw N2Y3NGQwHhcNMjYwMTAxMjAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjZjN2E1ZGNmMTk2NDAwOTZmNWYyNmVmM2RmNGNiMGExYzkzMGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstJL5X82mHtwyVlADnBsEHafY6Wu qWswSACuKutRGOBQ/pI0H+4SDY4BK5hvmnX99SQhKerLZHTE5QmkxILOWvHVHxKC 6ZdBfaJhsqbftjsZEfM2sBFIQE0zAkbqYebu20VPG1KL1n7HZSfeK2lXQjWLQlCw jkv05/CDC9FTCIl4ZaORdd13t3+nr+NzHY0klg0rlv8P6vHc5Kt7MHL6w+xc5gMe j4Z9pNClAtviQkJkNLDM7YUUOcUgz9I5bJQ9lrZZwxnFWAs3Sdom5AgnbUzVkZ9k EQHwkgbY++VCXsm76rDRa+Xz4pyHk9n/G28w8M6MvjrXhUb6dPHtWaiNNwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFKtsel3PGWQAlvXybvPfTLChyTDPMB8GA1UdIwQY MBaAFPiitgXFjgdGqtxb8NfLw2yTB/dNMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1LSzJCY1dPQjBhcTNGdncxOHZEYkpNSDkwMC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIvMDc2ZDM3LTRhYjQtNGVjMy1hNGIw LTUyNDAyNWUxMzIwMi8xL3EyeDZYYzhaWkFDVzlmSnU4OTlNc0tISk1NOC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZWIvMDc2ZDM3LTRhYjQtNGVjMy1hNGIwLTUyNDAyNWUxMzIw Mi8xLzEtS0syQmNXT0IwYXEzRnZ3MTh2RGJKTUg5MDAuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAK5YaQw DQQCAAIwBwMFAyoLqMAwDQYJKoZIhvcNAQELBQADggEBAEDIxQziTmbuNeRu9/wZ FUm8wIohHMzyKPWJiyqJwU5y2xVWx9+pnYm1HSoRIV70//4Iu5Z2cfZKMdLUcbqR AtuJYKfv2EXkcpAJnNGNNveKuVTQsMfQ5nOKyOH1AzS7gwE7hd8/t46Qh6IrMAX6 EFD1iBmKGq28lYn54kDBW3N+fBPgRknyN4gTTaUbbzgXe+Xuy3IfkKKzEya3cuz+ eJV/ODIu9iLeOgYKHoh3HFsnV8UeS9yTlRM2IM2DeIsiWJcjXMQjNerSKAwBwBvo tTbXp3lhwt3k/aE7mAVlYDZL5E0WPmpy6pp+Tx6QQBsulfLn06cSSynmqJd60p/y 6mQ= -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:49 2026 by rpki-client