This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9b2953-13b8-4706-81c4-075578c37aca/1/mR2p5e45av46CgVC8ySc8ptiq3w.roa File: mR2p5e45av46CgVC8ySc8ptiq3w.roa (raw, json) Hash identifier: HkKfgbvwzrYK3bDQighWrvWFH9JPW7Gk2xH/eoftL1w= Subject key identifier: 99:1D:A9:E5:EE:39:6A:FE:3A:0A:05:42:F3:24:9C:F2:9B:62:AB:7C Certificate issuer: /CN=7b47cdc21c7cb224674c0eafdec63a203eee3108 Certificate serial: 019B7EA556A6715F8D31BEC7A5FCC6393DE1 Authority key identifier: 7B:47:CD:C2:1C:7C:B2:24:67:4C:0E:AF:DE:C6:3A:20:3E:EE:31:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e0fNwhx8siRnTA6v3sY6ID7uMQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9b2953-13b8-4706-81c4-075578c37aca/1/mR2p5e45av46CgVC8ySc8ptiq3w.roa Signing time: Fri 02 Jan 2026 12:18:43 +0000 ROA not before: Fri 02 Jan 2026 12:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207421 IP address blocks: 94.231.214.0/24 maxlen: 24 2a10:b00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9b2953-13b8-4706-81c4-075578c37aca/1/e0fNwhx8siRnTA6v3sY6ID7uMQg.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/9b2953-13b8-4706-81c4-075578c37aca/1/e0fNwhx8siRnTA6v3sY6ID7uMQg.mft rsync://rpki.ripe.net/repository/DEFAULT/e0fNwhx8siRnTA6v3sY6ID7uMQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:56:a6:71:5f:8d:31:be:c7:a5:fc:c6:39:3d:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b47cdc21c7cb224674c0eafdec63a203eee3108 Validity Not Before: Jan 2 12:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=991da9e5ee396afe3a0a0542f3249cf29b62ab7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:01:68:a9:7e:71:b3:87:63:78:66:f6:ea:88: 2d:6a:53:29:cf:f6:e9:ab:d8:5f:a1:d4:16:a2:ff: 17:09:cd:2f:e6:80:de:64:08:1c:67:49:a2:db:9f: 0a:c0:ba:98:40:92:e1:75:01:02:df:87:2a:09:52: 49:b5:fd:96:bd:f6:4c:d4:ab:a2:36:c1:8f:f1:41: 3d:fe:85:58:e1:d4:23:f4:b1:02:d8:7f:61:99:2f: ce:dd:7c:da:59:c9:4a:13:e8:da:2c:8e:84:12:04: 19:56:fc:27:65:9a:d0:82:6a:d8:1a:9a:81:f4:89: 19:26:84:c3:71:96:98:4e:8b:cb:05:0f:82:01:95: 10:84:a7:18:b1:ee:30:f4:be:b2:b2:e7:5e:46:00: fc:7c:b0:12:7b:a8:c1:09:d4:e1:39:84:59:4d:82: d7:92:72:30:c5:66:1b:cf:6f:84:4e:88:50:04:1b: ce:65:7b:00:31:65:52:e8:7c:70:62:26:4d:4a:ed: 47:d3:47:8f:03:87:de:c1:b5:d0:3e:28:08:bd:97: 6b:94:14:41:74:45:0c:d0:62:e9:f5:ba:60:af:54: bd:39:98:b2:bf:12:dd:31:91:0b:15:f5:0a:8a:82: 07:96:67:44:24:b1:80:e8:ca:9c:c8:00:94:79:d7: bb:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:1D:A9:E5:EE:39:6A:FE:3A:0A:05:42:F3:24:9C:F2:9B:62:AB:7C X509v3 Authority Key Identifier: keyid:7B:47:CD:C2:1C:7C:B2:24:67:4C:0E:AF:DE:C6:3A:20:3E:EE:31:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0fNwhx8siRnTA6v3sY6ID7uMQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9b2953-13b8-4706-81c4-075578c37aca/1/mR2p5e45av46CgVC8ySc8ptiq3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9b2953-13b8-4706-81c4-075578c37aca/1/e0fNwhx8siRnTA6v3sY6ID7uMQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.231.214.0/24 IPv6: 2a10:b00::/29 Signature Algorithm: sha256WithRSAEncryption 32:19:ee:c6:21:0b:ef:84:c9:64:88:40:01:cb:15:61:8a:2b: f8:f8:4f:bf:c2:dd:5e:d4:b9:2a:c1:2a:64:9e:9a:f3:c9:c1: 38:95:20:c6:02:26:98:d0:a7:04:5c:fd:22:ff:98:cf:58:c1: e9:5e:c9:bc:41:a7:3b:b3:98:82:64:50:b5:73:2b:cb:bf:aa: ed:9a:62:77:69:29:8f:b6:a4:95:b9:9f:3d:ce:6c:c8:91:cb: d2:b6:40:29:6b:54:e1:06:55:64:15:22:57:4d:70:40:5c:c9: 02:6a:92:dd:ba:5b:04:bd:7e:21:1b:5e:42:8e:3f:39:f7:da: 8a:c1:11:0e:bc:e1:fc:88:5a:93:8a:33:1a:9f:c5:3b:30:51: 40:de:7c:b3:f9:f3:30:22:14:1c:78:d8:bd:ea:0b:71:e4:5f: 82:e0:c8:5a:c7:58:83:77:bc:30:5a:72:21:58:e1:1c:97:5f: b9:61:12:9d:8f:6b:80:89:88:27:ea:a1:fd:43:6e:4e:af:9f: 48:81:c9:46:9d:45:31:fa:3e:56:e3:02:a4:b9:d5:25:af:8a: db:d4:5c:ca:b2:ab:60:fc:07:5f:66:30:51:c4:18:97:fc:58: 0e:fd:0e:77:52:a6:f0:e4:71:a8:7f:5c:b4:93:ab:9c:e7:ef: eb:89:3c:0d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pVamcV+NMb7HpfzGOT3hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNDdjZGMyMWM3Y2IyMjQ2NzRjMGVhZmRlYzYzYTIwM2Vl ZTMxMDgwHhcNMjYwMTAyMTIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OTFkYTllNWVlMzk2YWZlM2EwYTA1NDJmMzI0OWNmMjliNjJhYjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgFoqX5xs4djeGb26ogtalMpz/bp q9hfodQWov8XCc0v5oDeZAgcZ0mi258KwLqYQJLhdQEC34cqCVJJtf2WvfZM1Kui NsGP8UE9/oVY4dQj9LEC2H9hmS/O3XzaWclKE+jaLI6EEgQZVvwnZZrQgmrYGpqB 9IkZJoTDcZaYTovLBQ+CAZUQhKcYse4w9L6ysudeRgD8fLASe6jBCdThOYRZTYLX knIwxWYbz2+ETohQBBvOZXsAMWVS6HxwYiZNSu1H00ePA4fewbXQPigIvZdrlBRB dEUM0GLp9bpgr1S9OZiyvxLdMZELFfUKioIHlmdEJLGA6MqcyACUede71QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJkdqeXuOWr+OgoFQvMknPKbYqt8MB8GA1UdIwQY MBaAFHtHzcIcfLIkZ0wOr97GOiA+7jEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTBmTndoeDhzaVJuVEE2djNzWTZJRDd1TVFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi85YjI5NTMtMTNiOC00NzA2LTgxYzQt MDc1NTc4YzM3YWNhLzEvbVIycDVlNDVhdjQ2Q2dWQzh5U2M4cHRpcTN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi85YjI5NTMtMTNiOC00NzA2LTgxYzQtMDc1NTc4YzM3YWNh LzEvZTBmTndoeDhzaVJuVEE2djNzWTZJRDd1TVFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAXufWMA0E AgACMAcDBQMqEAsAMA0GCSqGSIb3DQEBCwUAA4IBAQAyGe7GIQvvhMlkiEAByxVh iiv4+E+/wt1e1LkqwSpknprzycE4lSDGAiaY0KcEXP0i/5jPWMHpXsm8Qac7s5iC ZFC1cyvLv6rtmmJ3aSmPtqSVuZ89zmzIkcvStkApa1ThBlVkFSJXTXBAXMkCapLd ulsEvX4hG15Cjj8599qKwREOvOH8iFqTijMan8U7MFFA3nyz+fMwIhQceNi96gtx 5F+C4Mhax1iDd7wwWnIhWOEcl1+5YRKdj2uAiYgn6qH9Q25Or59IgclGnUUx+j5W 4wKkudUlr4rb1FzKsqtg/AdfZjBRxBiX/FgO/Q53Uqbw5HGof1y0k6uc5+/riTwN -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:20 2026 by rpki-client