This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ABd9GDowX7PGdLjlNBJasHXJPtY.roa File: ABd9GDowX7PGdLjlNBJasHXJPtY.roa (raw, json) Hash identifier: LoKdHpHwuy8Yw0WetAR6aw7g71iaTbqPnohzU0rUoQM= Subject key identifier: 00:17:7D:18:3A:30:5F:B3:C6:74:B8:E5:34:12:5A:B0:75:C9:3E:D6 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37C759193F024980F036D859E78258 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ABd9GDowX7PGdLjlNBJasHXJPtY.roa Signing time: Fri 02 Jan 2026 10:19:03 +0000 ROA not before: Fri 02 Jan 2026 10:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209155 IP address blocks: 158.173.161.0/24 maxlen: 24 203.188.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:c7:59:19:3f:02:49:80:f0:36:d8:59:e7:82:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00177d183a305fb3c674b8e534125ab075c93ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:17:5b:71:cd:36:a4:93:34:79:1e:9c:78:b5: 71:ab:b5:49:0d:e9:ae:91:12:0c:0c:2a:99:b5:ae: 9f:2e:3e:4e:58:0e:87:2c:90:4f:c0:71:bd:df:1b: b0:9c:62:8e:08:ea:84:c5:0c:72:60:2c:4e:ce:a6: dc:66:14:f7:ed:5b:14:80:f7:68:51:a5:cc:fd:6b: 79:9c:7c:a4:57:65:f2:b0:77:a3:57:99:a8:53:e2: 90:b1:a9:5f:29:46:ba:c4:c9:cd:24:02:57:0d:66: e5:db:b9:12:c0:31:58:1b:25:f1:c1:04:25:6b:1a: 1b:37:65:27:21:07:6d:4e:85:78:3f:43:36:a2:93: c5:5e:ea:63:9c:e6:40:8c:e2:0d:f5:6c:a0:f7:45: 82:db:af:b4:ab:24:58:3e:a1:91:95:e4:72:c2:f7: 57:77:e0:d5:cc:50:1e:7d:26:e0:fa:f5:9a:d6:bb: c1:e5:b9:ea:2d:89:a6:ee:04:39:68:cb:29:cf:1d: b9:54:e3:44:d5:64:4f:a0:5d:cf:11:3e:48:c0:d7: b2:93:c6:b5:ff:ff:3d:ce:11:0e:0c:46:0a:e7:20: 3f:1d:76:a3:2f:2a:e1:41:ba:d4:a5:59:64:06:52: 20:4f:2a:75:32:0c:c4:ac:f1:4f:02:88:6f:26:47: 8f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:17:7D:18:3A:30:5F:B3:C6:74:B8:E5:34:12:5A:B0:75:C9:3E:D6 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ABd9GDowX7PGdLjlNBJasHXJPtY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.173.161.0/24 203.188.166.0/24 Signature Algorithm: sha256WithRSAEncryption 21:e5:55:50:c4:3d:09:18:82:2b:be:11:fd:b6:16:ac:b7:7c: e8:33:35:e6:ea:54:e4:40:47:24:a8:78:11:a6:51:12:01:f5: b4:e0:fa:21:90:3a:be:58:57:de:69:7e:0e:58:d0:71:2b:36: fe:0a:40:11:2d:bd:fa:b6:dc:f6:87:15:05:bb:62:8a:3d:e3: 87:5e:f1:14:3a:fb:6b:1f:f9:ab:80:a3:91:e8:46:3a:ed:ac: d2:d2:6f:76:0c:47:a1:36:7e:a1:7b:ac:d9:ad:01:89:c0:66: 1b:c7:0b:48:0b:9f:f7:27:77:6a:e8:56:b6:9f:fe:d8:31:fa: 09:31:ac:9a:ee:c8:e2:d3:01:b1:56:a1:f1:59:36:7d:4c:4e: 83:3c:7d:be:50:3f:97:c0:6e:cc:68:a3:73:b4:51:8e:74:a4: bb:57:d3:07:ed:84:7a:ac:b1:e0:b9:b4:9f:f9:0e:9e:47:d8: 4e:5e:22:f8:d8:22:4d:2b:9b:dc:58:9e:f5:7d:53:2c:c5:46: 19:4b:5d:fe:81:71:6a:a4:8d:86:e7:5f:89:c8:7c:e0:6c:99: 6c:d3:01:d5:af:81:03:fe:29:64:cf:6a:1e:da:b2:b4:98:68: 22:1a:e8:03:62:c3:84:ba:4f:b5:a8:cf:5d:85:32:84:20:2a: d9:9e:8e:3f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N8dZGT8CSYDwNthZ54JYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDE3N2QxODNhMzA1ZmIzYzY3NGI4ZTUzNDEyNWFiMDc1YzkzZWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRdbcc02pJM0eR6ceLVxq7VJDemu kRIMDCqZta6fLj5OWA6HLJBPwHG93xuwnGKOCOqExQxyYCxOzqbcZhT37VsUgPdo UaXM/Wt5nHykV2XysHejV5moU+KQsalfKUa6xMnNJAJXDWbl27kSwDFYGyXxwQQl axobN2UnIQdtToV4P0M2opPFXupjnOZAjOIN9Wyg90WC26+0qyRYPqGRleRywvdX d+DVzFAefSbg+vWa1rvB5bnqLYmm7gQ5aMspzx25VONE1WRPoF3PET5IwNeyk8a1 //89zhEODEYK5yA/HXajLyrhQbrUpVlkBlIgTyp1MgzErPFPAohvJkePzQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAAXfRg6MF+zxnS45TQSWrB1yT7WMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvQUJkOUdEb3dYN1BHZExqbE5CSmFzSFhKUHRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAnq2hAwQA y7ymMA0GCSqGSIb3DQEBCwUAA4IBAQAh5VVQxD0JGIIrvhH9thast3zoMzXm6lTk QEckqHgRplESAfW04PohkDq+WFfeaX4OWNBxKzb+CkARLb36ttz2hxUFu2KKPeOH XvEUOvtrH/mrgKOR6EY67azS0m92DEehNn6he6zZrQGJwGYbxwtIC5/3J3dq6Fa2 n/7YMfoJMaya7sji0wGxVqHxWTZ9TE6DPH2+UD+XwG7MaKNztFGOdKS7V9MH7YR6 rLHgubSf+Q6eR9hOXiL42CJNK5vcWJ71fVMsxUYZS13+gXFqpI2G51+JyHzgbJls 0wHVr4ED/ilkz2oe2rK0mGgiGugDYsOEuk+1qM9dhTKEICrZno4/ -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:05 2026 by rpki-client