This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/AtAXGCvNCAThimBZUvqE1sNfYmU.roa File: AtAXGCvNCAThimBZUvqE1sNfYmU.roa (raw, json) Hash identifier: HNkaL9T4koPCGsK9MPf3A/AnCaKr3npyM2dTfq3bNt0= Subject key identifier: 02:D0:17:18:2B:CD:08:04:E1:8A:60:59:52:FA:84:D6:C3:5F:62:65 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37BD9C9E6F8BCF5452D91691641809 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/AtAXGCvNCAThimBZUvqE1sNfYmU.roa Signing time: Fri 02 Jan 2026 10:19:00 +0000 ROA not before: Fri 02 Jan 2026 10:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62240 IP address blocks: 45.150.181.0/24 maxlen: 24 45.150.182.0/24 maxlen: 24 45.150.183.0/24 maxlen: 24 84.51.232.0/24 maxlen: 24 92.51.234.0/24 maxlen: 24 92.51.235.0/24 maxlen: 24 92.51.255.0/24 maxlen: 24 103.210.196.0/24 maxlen: 24 107.150.166.0/24 maxlen: 24 155.2.180.0/24 maxlen: 24 155.2.181.0/24 maxlen: 24 185.161.111.0/24 maxlen: 24 192.140.220.0/24 maxlen: 24 192.140.221.0/24 maxlen: 24 203.188.165.0/24 maxlen: 24 203.188.181.0/24 maxlen: 24 213.254.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:bd:9c:9e:6f:8b:cf:54:52:d9:16:91:64:18:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02d017182bcd0804e18a605952fa84d6c35f6265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:47:ea:65:5f:14:f8:51:6f:3b:02:62:59:c9: 1e:61:fa:64:eb:90:62:16:6e:1c:77:d2:a3:a5:b2: 3b:ef:41:11:6e:d0:28:40:d7:5c:36:45:b4:12:60: e4:06:13:b6:8c:12:f6:08:78:fb:d8:69:ab:08:b3: aa:97:46:db:e1:7d:a2:0b:e2:f0:3b:50:96:9c:f9: e4:90:e3:c9:61:17:77:95:1f:98:44:22:43:97:9b: ce:ea:a5:77:1a:21:f4:ff:e6:66:8b:e3:d6:81:c2: 2e:0b:93:45:4b:80:c8:f6:ff:f2:9b:b3:23:6a:aa: fc:51:4d:3d:39:05:bc:98:58:b3:ea:39:1d:0c:82: f1:8a:58:a4:58:b6:8b:b3:22:83:ba:72:af:77:43: e8:d9:b8:30:03:e1:48:f3:33:da:50:70:ca:b7:d6: de:1a:7a:e2:ba:77:8a:d7:cc:f2:86:92:95:1e:41: 24:a5:95:85:a9:ad:53:4f:8a:25:99:3d:bf:63:0b: 23:40:4b:eb:c4:da:fa:32:4f:fe:0e:44:53:1c:e2: 6a:e1:53:59:95:09:1b:ea:d0:a0:ba:1d:d3:33:13: 7a:7c:39:b9:a6:18:8b:de:8c:85:b1:dd:eb:11:8b: 9e:8c:1e:e2:ef:ca:a8:ca:11:09:a1:46:bf:e1:8d: fa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D0:17:18:2B:CD:08:04:E1:8A:60:59:52:FA:84:D6:C3:5F:62:65 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/AtAXGCvNCAThimBZUvqE1sNfYmU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.150.181.0-45.150.183.255 84.51.232.0/24 92.51.234.0/23 92.51.255.0/24 103.210.196.0/24 107.150.166.0/24 155.2.180.0/23 185.161.111.0/24 192.140.220.0/23 203.188.165.0/24 203.188.181.0/24 213.254.160.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:20:22:68:34:25:2b:42:8a:0c:68:97:71:af:c6:85:ba:f4: ee:b6:a0:c1:09:16:db:d5:33:29:d9:93:97:28:da:1b:63:82: e6:e0:2e:44:f2:b9:d0:e6:5a:07:42:04:f1:41:81:50:70:98: 4a:e0:47:2c:59:29:cd:c6:a3:33:2f:d7:90:65:ba:81:94:f5: 98:77:62:ec:3c:19:11:5a:a9:78:58:49:d1:03:2c:2a:c7:6f: f9:53:63:6e:2d:64:96:49:60:c4:30:9c:6a:5f:1b:3b:18:60: 5b:b9:2d:c4:80:a1:8a:b2:f3:6e:2a:cf:ac:36:e9:8d:2d:c5: 13:05:77:33:ad:88:9a:fa:cf:63:f1:48:e1:d4:7b:5e:e3:aa: 13:00:af:be:5c:03:e2:49:06:37:cf:65:7b:89:a3:15:4e:48: 85:1c:86:1f:fe:99:a3:38:d1:3b:f8:f9:51:f4:59:d9:72:2c: d0:f1:84:9d:0e:98:c2:ba:01:e1:8b:3c:ef:7b:cc:50:cd:04: 92:10:ff:54:b0:ca:58:d6:7d:1a:6c:ae:fb:28:98:64:8d:61: ef:f7:6d:03:54:15:75:27:26:3b:ad:6b:a0:ef:94:1d:a9:fc: 41:32:d1:fa:f2:1c:dc:96:c4:d3:20:b1:15:e8:f4:e1:b2:d8: 4b:4e:c2:eb -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgISAZt+N72cnm+Lz1RS2RaRZBgJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmQwMTcxODJiY2QwODA0ZTE4YTYwNTk1MmZhODRkNmMzNWY2MjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykfqZV8U+FFvOwJiWckeYfpk65Bi Fm4cd9KjpbI770ERbtAoQNdcNkW0EmDkBhO2jBL2CHj72GmrCLOql0bb4X2iC+Lw O1CWnPnkkOPJYRd3lR+YRCJDl5vO6qV3GiH0/+Zmi+PWgcIuC5NFS4DI9v/ym7Mj aqr8UU09OQW8mFiz6jkdDILxilikWLaLsyKDunKvd0Po2bgwA+FI8zPaUHDKt9be GnriuneK18zyhpKVHkEkpZWFqa1TT4olmT2/YwsjQEvrxNr6Mk/+DkRTHOJq4VNZ lQkb6tCguh3TMxN6fDm5phiL3oyFsd3rEYuejB7i78qoyhEJoUa/4Y36nwIDAQAB o4ICUzCCAk8wHQYDVR0OBBYEFALQFxgrzQgE4YpgWVL6hNbDX2JlMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvQXRBWEdDdk5DQVRoaW1CWlV2cUUxc05mWW1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDBWBAIAATBQMAwDBAAtlrUD BAMtlrADBABUM+gDBAFcM+oDBABcM/8DBABn0sQDBABrlqYDBAGbArQDBAC5oW8D BAHAjNwDBADLvKUDBADLvLUDBADV/qAwDQYJKoZIhvcNAQELBQADggEBAAogImg0 JStCigxol3GvxoW69O62oMEJFtvVMynZk5co2htjgubgLkTyudDmWgdCBPFBgVBw mErgRyxZKc3GozMv15BluoGU9Zh3Yuw8GRFaqXhYSdEDLCrHb/lTY24tZJZJYMQw nGpfGzsYYFu5LcSAoYqy824qz6w26Y0txRMFdzOtiJr6z2PxSOHUe17jqhMAr75c A+JJBjfPZXuJoxVOSIUchh/+maM40Tv4+VH0WdlyLNDxhJ0OmMK6AeGLPO97zFDN BJIQ/1SwyljWfRpsrvsomGSNYe/3bQNUFXUnJjuta6DvlB2p/EEy0fryHNyWxNMg sRXo9OGy2EtOwus= -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:06 2026 by rpki-client