This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/l2v4PMgche6PmMtMOC23cD4fvMk.roa File: l2v4PMgche6PmMtMOC23cD4fvMk.roa (raw, json) Hash identifier: h7RmNWqQIkYYdlzGtKAOjEz+jTEWe9NjQLWfgzz+cDE= Subject key identifier: 97:6B:F8:3C:C8:1C:85:EE:8F:98:CB:4C:38:2D:B7:70:3E:1F:BC:C9 Certificate issuer: /CN=2989647851efcd198972ed3d149ccbbde9c55c00 Certificate serial: 019B7CEE51C6E556FD0F2F006B3D11F5E9BB Authority key identifier: 29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/l2v4PMgche6PmMtMOC23cD4fvMk.roa Signing time: Fri 02 Jan 2026 04:19:11 +0000 ROA not before: Fri 02 Jan 2026 04:19:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41993 IP address blocks: 185.82.144.0/22 maxlen: 22 2a05:9100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:51:c6:e5:56:fd:0f:2f:00:6b:3d:11:f5:e9:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2989647851efcd198972ed3d149ccbbde9c55c00 Validity Not Before: Jan 2 04:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=976bf83cc81c85ee8f98cb4c382db7703e1fbcc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bb:6f:04:5b:cf:40:7d:88:95:38:e5:9d:39: ad:b8:24:4f:91:3e:68:96:54:34:3f:24:f9:08:f5: 96:33:e1:d8:34:e0:67:ab:35:65:ad:67:25:6d:71: ee:6f:bd:3d:c8:d5:6a:9e:9c:d9:e6:09:dd:5c:ce: 50:6b:ff:63:40:4d:c3:66:4c:e1:c3:2d:63:56:13: 2a:0e:10:c3:2c:c2:18:ca:64:07:11:4d:5d:70:ff: 25:e8:c6:35:5b:d0:1d:73:01:50:5e:66:d8:02:94: 8b:ce:04:52:10:df:1a:90:66:c1:1a:f5:90:d1:dd: ed:93:02:28:a1:3a:80:b1:a7:13:fc:d7:3b:34:25: bb:3c:ff:8c:48:b0:d1:87:9a:e5:56:43:1a:91:16: 66:62:2c:37:89:26:31:a1:d3:c9:22:f2:4c:f6:21: b8:ec:3d:6c:ea:c0:d1:3d:d5:19:1d:17:12:75:62: 3e:8d:34:f1:bb:6a:b7:30:e7:ef:fa:2f:2d:8b:15: 41:c5:e7:28:de:de:ab:4c:50:93:19:3d:b0:66:e7: 87:bb:eb:b0:3c:37:ba:f1:20:c3:0a:0a:a8:e6:2b: 70:56:47:8d:50:00:52:0d:26:82:c0:9f:7c:5f:70: fb:c1:35:e0:6b:bb:a8:91:d9:04:02:9f:6c:7e:c9: d3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6B:F8:3C:C8:1C:85:EE:8F:98:CB:4C:38:2D:B7:70:3E:1F:BC:C9 X509v3 Authority Key Identifier: keyid:29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/l2v4PMgche6PmMtMOC23cD4fvMk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.82.144.0/22 IPv6: 2a05:9100::/29 Signature Algorithm: sha256WithRSAEncryption 56:57:98:dd:ac:33:a1:85:84:24:7b:09:b4:8d:a4:17:b8:e1: 19:47:4e:f6:d4:6e:de:31:71:1d:17:86:6e:0b:1c:aa:bc:6e: 60:10:cf:17:58:d6:c5:81:66:11:ac:fc:67:2e:1f:9f:d0:d1: 7d:6a:ae:52:31:54:9f:02:52:32:7b:1e:e1:51:5e:c3:bc:d8: bf:76:29:d2:15:b3:d6:6b:52:02:60:d5:86:2c:2f:56:d3:43: 85:ce:cf:69:72:f5:79:a9:38:94:73:8d:e2:51:c2:19:00:04: 79:b2:5f:68:31:59:b7:c6:36:cc:3d:7e:e2:70:66:2b:64:5a: b2:a6:ae:db:ef:c9:30:7f:cb:6d:d4:75:23:64:31:b6:bb:2e: 4e:80:02:35:5f:1d:aa:71:9b:3a:fd:16:ed:72:aa:e6:04:8b: 9a:97:3c:70:9a:95:34:31:0b:ba:99:d6:e2:e4:e4:0a:c0:c1: 58:4e:24:82:bc:d3:00:86:e4:81:05:64:40:f4:97:0b:57:42: 6f:44:95:cf:05:dd:d1:c6:76:02:9f:db:79:29:01:aa:c3:54: d3:d9:1c:16:8f:9b:06:de:0b:e5:62:3c:4d:b6:e5:d0:d0:3f: 36:30:7f:2a:20:cd:43:1f:e4:25:d6:f9:98:e5:13:4f:78:cf: f7:7d:96:70 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87lHG5Vb9Dy8Aaz0R9em7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODk2NDc4NTFlZmNkMTk4OTcyZWQzZDE0OWNjYmJkZTlj NTVjMDAwHhcNMjYwMTAyMDQxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NzZiZjgzY2M4MWM4NWVlOGY5OGNiNGMzODJkYjc3MDNlMWZiY2M5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17tvBFvPQH2IlTjlnTmtuCRPkT5o llQ0PyT5CPWWM+HYNOBnqzVlrWclbXHub709yNVqnpzZ5gndXM5Qa/9jQE3DZkzh wy1jVhMqDhDDLMIYymQHEU1dcP8l6MY1W9AdcwFQXmbYApSLzgRSEN8akGbBGvWQ 0d3tkwIooTqAsacT/Nc7NCW7PP+MSLDRh5rlVkMakRZmYiw3iSYxodPJIvJM9iG4 7D1s6sDRPdUZHRcSdWI+jTTxu2q3MOfv+i8tixVBxeco3t6rTFCTGT2wZueHu+uw PDe68SDDCgqo5itwVkeNUABSDSaCwJ98X3D7wTXga7uokdkEAp9sfsnTkwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJdr+DzIHIXuj5jLTDgtt3A+H7zJMB8GA1UdIwQY MBaAFCmJZHhR780ZiXLtPRScy73pxVwAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTIt YTRjYjFjZmQwMGI4LzEvbDJ2NFBNZ2NoZTZQbU10TU9DMjNjRDRmdk1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTItYTRjYjFjZmQwMGI4 LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuVKQMA0E AgACMAcDBQMqBZEAMA0GCSqGSIb3DQEBCwUAA4IBAQBWV5jdrDOhhYQkewm0jaQX uOEZR0721G7eMXEdF4ZuCxyqvG5gEM8XWNbFgWYRrPxnLh+f0NF9aq5SMVSfAlIy ex7hUV7DvNi/dinSFbPWa1ICYNWGLC9W00OFzs9pcvV5qTiUc43iUcIZAAR5sl9o MVm3xjbMPX7icGYrZFqypq7b78kwf8tt1HUjZDG2uy5OgAI1Xx2qcZs6/Rbtcqrm BIualzxwmpU0MQu6mdbi5OQKwMFYTiSCvNMAhuSBBWRA9JcLV0JvRJXPBd3RxnYC n9t5KQGqw1TT2RwWj5sG3gvlYjxNtuXQ0D82MH8qIM1DH+Ql1vmY5RNPeM/3fZZw -----END CERTIFICATE-----Generated at Tue Feb 10 03:09:38 2026 by rpki-client