This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/8a3bb5-9d95-4953-9388-031f407b3263/1/2vPfx8Li_NUBxFIa1sHLuZQFAz4.roa File: 2vPfx8Li_NUBxFIa1sHLuZQFAz4.roa (raw, json) Hash identifier: 0dmBzMyhuyOWC20lzdsr5tWctKrKudD/LXfTno/MKsQ= Subject key identifier: DA:F3:DF:C7:C2:E2:FC:D5:01:C4:52:1A:D6:C1:CB:B9:94:05:03:3E Certificate issuer: /CN=bc127864cd43048550ed1699c584b5c14d80e098 Certificate serial: 019B7C80D785521514E8CBBE497345524E22 Authority key identifier: BC:12:78:64:CD:43:04:85:50:ED:16:99:C5:84:B5:C1:4D:80:E0:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vBJ4ZM1DBIVQ7RaZxYS1wU2A4Jg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/8a3bb5-9d95-4953-9388-031f407b3263/1/2vPfx8Li_NUBxFIa1sHLuZQFAz4.roa Signing time: Fri 02 Jan 2026 02:19:37 +0000 ROA not before: Fri 02 Jan 2026 02:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205831 IP address blocks: 185.210.208.0/22 maxlen: 22 185.210.210.0/24 maxlen: 24 2a0b:2c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/8a3bb5-9d95-4953-9388-031f407b3263/1/vBJ4ZM1DBIVQ7RaZxYS1wU2A4Jg.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/8a3bb5-9d95-4953-9388-031f407b3263/1/vBJ4ZM1DBIVQ7RaZxYS1wU2A4Jg.mft rsync://rpki.ripe.net/repository/DEFAULT/vBJ4ZM1DBIVQ7RaZxYS1wU2A4Jg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:d7:85:52:15:14:e8:cb:be:49:73:45:52:4e:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc127864cd43048550ed1699c584b5c14d80e098 Validity Not Before: Jan 2 02:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=daf3dfc7c2e2fcd501c4521ad6c1cbb99405033e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:20:03:af:69:fb:5b:98:fa:44:dc:e1:9a:ad: 0b:58:57:f6:db:34:8f:c1:30:44:36:4c:d1:a4:03: 08:ee:d3:af:11:ad:82:46:e8:b6:45:ea:1c:0c:b0: 67:09:99:3b:91:d9:05:20:c7:17:f4:b5:7f:90:36: 71:1b:45:4f:a6:de:66:f0:35:ba:83:18:74:59:01: 77:94:d3:e0:cd:9b:60:88:c3:85:ae:15:2e:10:b2: 4d:d5:f2:69:9c:5c:0a:40:92:98:5a:4b:ca:6e:c7: f1:b3:a8:f9:cd:3c:09:a1:7a:ac:50:07:71:25:b8: 2f:53:6f:c2:6b:e7:1c:af:eb:05:29:c0:b2:60:27: 4e:2d:b1:98:a2:d7:75:f8:01:d8:61:2c:0c:b1:24: 91:99:9e:d2:45:33:11:a0:e4:3a:c6:ed:e3:0e:82: fb:bf:c0:1f:52:67:10:4c:1b:54:ce:0d:4e:91:7f: ad:54:69:fd:c9:d8:65:5a:81:c7:58:e9:ad:dd:0a: c3:cf:d4:5b:a3:86:03:48:d9:f7:01:4a:cc:fa:82: 32:d7:38:7d:d5:3a:73:c0:18:2c:f0:ec:4c:2c:72: 30:16:4a:d0:57:b6:f5:f9:83:9e:61:2e:2d:55:49: 2a:9f:a0:15:73:f0:3b:5a:66:b6:dc:a5:ee:8f:a5: 65:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F3:DF:C7:C2:E2:FC:D5:01:C4:52:1A:D6:C1:CB:B9:94:05:03:3E X509v3 Authority Key Identifier: keyid:BC:12:78:64:CD:43:04:85:50:ED:16:99:C5:84:B5:C1:4D:80:E0:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vBJ4ZM1DBIVQ7RaZxYS1wU2A4Jg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/8a3bb5-9d95-4953-9388-031f407b3263/1/2vPfx8Li_NUBxFIa1sHLuZQFAz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/8a3bb5-9d95-4953-9388-031f407b3263/1/vBJ4ZM1DBIVQ7RaZxYS1wU2A4Jg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.210.208.0/22 IPv6: 2a0b:2c0::/29 Signature Algorithm: sha256WithRSAEncryption 8d:cb:f0:b3:24:d4:30:a7:ea:50:45:ab:9b:e9:7f:f6:ca:df: 20:64:1d:61:c4:c0:cd:b1:96:f2:c8:81:4c:f0:65:ac:bf:7d: e9:8f:f6:1a:e4:66:e4:10:6d:34:e3:b5:1a:38:db:ed:e1:16: b9:b0:f5:3e:97:b7:c1:14:24:b2:27:ab:34:de:23:f7:a6:7a: 74:73:e4:a3:46:6b:59:e2:0e:28:96:8d:34:0a:ec:a5:8a:74: c0:a9:35:0b:51:01:c1:f6:1b:e9:ec:87:cb:db:d3:a1:7d:e2: 54:36:e5:41:10:e2:23:51:65:bd:35:2c:03:5a:5c:90:b6:0a: f9:ab:e2:90:f9:b5:aa:18:8d:dd:25:e5:68:59:4c:a6:09:b5: 32:5a:20:2e:cb:3a:9f:31:4f:50:2f:a6:bf:95:2e:f0:e5:9c: 3e:55:00:d0:46:41:c1:b9:f5:c5:0c:e6:d1:ef:1c:d2:5b:1d: cd:32:69:a1:c2:6f:d7:91:5c:b4:cf:a3:b8:64:5b:cd:3f:6e: fe:d5:4e:17:a2:d7:3f:30:dd:67:a3:44:3e:0e:59:02:e8:33: 15:cc:5b:4e:77:30:83:bf:c0:a7:b8:fa:98:0c:36:1f:72:47: 45:41:24:c3:2b:45:dd:53:e9:53:cf:26:a2:86:48:e0:fb:3e: f2:4d:4e:a7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gNeFUhUU6Mu+SXNFUk4iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjMTI3ODY0Y2Q0MzA0ODU1MGVkMTY5OWM1ODRiNWMxNGQ4 MGUwOTgwHhcNMjYwMTAyMDIxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWYzZGZjN2MyZTJmY2Q1MDFjNDUyMWFkNmMxY2JiOTk0MDUwMzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyADr2n7W5j6RNzhmq0LWFf22zSP wTBENkzRpAMI7tOvEa2CRui2ReocDLBnCZk7kdkFIMcX9LV/kDZxG0VPpt5m8DW6 gxh0WQF3lNPgzZtgiMOFrhUuELJN1fJpnFwKQJKYWkvKbsfxs6j5zTwJoXqsUAdx JbgvU2/Ca+ccr+sFKcCyYCdOLbGYotd1+AHYYSwMsSSRmZ7SRTMRoOQ6xu3jDoL7 v8AfUmcQTBtUzg1OkX+tVGn9ydhlWoHHWOmt3QrDz9Rbo4YDSNn3AUrM+oIy1zh9 1TpzwBgs8OxMLHIwFkrQV7b1+YOeYS4tVUkqn6AVc/A7Wma23KXuj6VlpwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNrz38fC4vzVAcRSGtbBy7mUBQM+MB8GA1UdIwQY MBaAFLwSeGTNQwSFUO0WmcWEtcFNgOCYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkJKNFpNMURCSVZRN1JhWnhZUzF3VTJBNEpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC84YTNiYjUtOWQ5NS00OTUzLTkzODgt MDMxZjQwN2IzMjYzLzEvMnZQZng4TGlfTlVCeEZJYTFzSEx1WlFGQXo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC84YTNiYjUtOWQ5NS00OTUzLTkzODgtMDMxZjQwN2IzMjYz LzEvdkJKNFpNMURCSVZRN1JhWnhZUzF3VTJBNEpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudLQMA0E AgACMAcDBQMqCwLAMA0GCSqGSIb3DQEBCwUAA4IBAQCNy/CzJNQwp+pQRaub6X/2 yt8gZB1hxMDNsZbyyIFM8GWsv33pj/Ya5GbkEG0047UaONvt4Ra5sPU+l7fBFCSy J6s03iP3pnp0c+SjRmtZ4g4olo00CuylinTAqTULUQHB9hvp7IfL29OhfeJUNuVB EOIjUWW9NSwDWlyQtgr5q+KQ+bWqGI3dJeVoWUymCbUyWiAuyzqfMU9QL6a/lS7w 5Zw+VQDQRkHBufXFDObR7xzSWx3NMmmhwm/XkVy0z6O4ZFvNP27+1U4Xotc/MN1n o0Q+DlkC6DMVzFtOdzCDv8CnuPqYDDYfckdFQSTDK0XdU+lTzyaihkjg+z7yTU6n -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:27 2026 by rpki-client