This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AaMmUqQdjGOZgp-8SXWq1O1I6Tg.roa File: AaMmUqQdjGOZgp-8SXWq1O1I6Tg.roa (raw, json) Hash identifier: IzcBNPM1cB2xtU2c1dWeuDlMV5x3IC26Hy0DqD89KM8= Subject key identifier: 01:A3:26:52:A4:1D:8C:63:99:82:9F:BC:49:75:AA:D4:ED:48:E9:38 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C12F339E7E953B5427F749B9701F226 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AaMmUqQdjGOZgp-8SXWq1O1I6Tg.roa Signing time: Fri 02 Jan 2026 00:19:35 +0000 ROA not before: Fri 02 Jan 2026 00:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209193 IP address blocks: 5.175.144.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:f3:39:e7:e9:53:b5:42:7f:74:9b:97:01:f2:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=01a32652a41d8c6399829fbc4975aad4ed48e938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f0:83:c0:50:57:7c:60:dc:09:8e:0b:ed:2f: 09:78:c0:2b:3d:dc:ae:5a:12:37:a9:0c:2e:02:21: d7:79:cf:77:68:dd:81:cc:41:cf:aa:af:23:40:62: 79:11:b8:27:76:e5:f0:57:05:80:3e:84:7d:8d:f0: 66:49:50:fd:fe:f2:6c:66:8a:18:be:85:ee:76:a2: 59:1d:8d:fc:be:62:2c:54:0b:31:5d:15:6e:2f:a8: f3:24:ae:22:a6:78:b9:24:d6:c4:07:9b:e2:5d:ea: 2e:a8:34:56:05:52:d4:55:43:bb:c8:43:db:1d:32: 09:13:59:1f:f2:1e:0d:76:29:5a:34:ae:eb:93:70: 11:74:f4:6d:7d:2e:54:b7:eb:09:a6:9b:75:a7:dc: 39:94:85:3b:3c:f7:4b:3c:01:87:2a:7b:bc:c0:e9: 80:51:b0:83:c6:c5:c8:58:8d:a6:29:ed:bb:45:60: fd:a0:7c:79:88:e7:7d:2b:7a:d7:fd:52:4e:98:28: 6b:be:8b:90:a2:3b:c1:8c:76:57:f2:e9:89:01:71: ec:bf:54:33:bc:6f:2c:2e:1b:74:dd:83:41:7f:bc: d5:5d:78:b2:e4:8a:34:87:10:43:77:ea:eb:e3:22: 43:b4:a5:10:32:97:c0:95:c5:49:00:2b:7f:3c:90: ce:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A3:26:52:A4:1D:8C:63:99:82:9F:BC:49:75:AA:D4:ED:48:E9:38 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/AaMmUqQdjGOZgp-8SXWq1O1I6Tg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.175.144.0/20 Signature Algorithm: sha256WithRSAEncryption aa:c3:80:af:ee:c7:59:5b:35:0c:28:29:ad:98:58:bc:c5:2f: 37:1e:f9:7c:2c:3f:62:16:f6:a1:a4:e6:7a:a1:72:8a:8c:e4: da:fb:5a:5c:da:fd:e0:81:54:8b:82:d6:c7:58:2e:ca:18:84: 95:62:ab:19:c1:8f:6f:d9:73:9c:3b:30:9b:64:d6:1b:7f:f3: 42:2a:94:4d:3a:ef:a4:1a:2d:40:75:28:0e:ec:47:cb:38:b2: c0:e8:16:e8:d3:18:d7:eb:ab:67:b6:f9:30:62:b9:d7:2f:d8: c9:80:e6:63:e5:18:26:5a:03:0b:97:9d:12:f9:74:99:ac:30: 84:45:bf:07:0b:c4:de:68:a5:3d:4b:49:f4:34:32:5b:df:41: 33:21:9b:9b:9b:81:eb:53:28:66:73:10:4a:d8:78:f5:57:89: 51:e4:77:5a:f6:3d:f2:d9:09:52:5b:8c:4f:0a:86:97:65:25: 2c:68:46:78:fe:f6:ce:f0:2f:6a:40:27:88:94:1d:ba:5a:1d: f5:88:26:0b:89:7e:c2:1f:90:f8:30:ca:f3:e9:dc:99:d2:88: bb:1b:f8:3b:39:37:bd:6f:a1:e9:3b:f5:42:d9:2e:c1:5b:6c: af:46:ae:db:1e:36:14:96:fc:74:3f:01:59:62:d2:11:70:90: 5e:e3:cb:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EvM55+lTtUJ/dJuXAfImMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMWEzMjY1MmE0MWQ4YzYzOTk4MjlmYmM0OTc1YWFkNGVkNDhlOTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfCDwFBXfGDcCY4L7S8JeMArPdyu WhI3qQwuAiHXec93aN2BzEHPqq8jQGJ5EbgnduXwVwWAPoR9jfBmSVD9/vJsZooY voXudqJZHY38vmIsVAsxXRVuL6jzJK4ipni5JNbEB5viXeouqDRWBVLUVUO7yEPb HTIJE1kf8h4NdilaNK7rk3ARdPRtfS5Ut+sJppt1p9w5lIU7PPdLPAGHKnu8wOmA UbCDxsXIWI2mKe27RWD9oHx5iOd9K3rX/VJOmChrvouQojvBjHZX8umJAXHsv1Qz vG8sLht03YNBf7zVXXiy5Io0hxBDd+rr4yJDtKUQMpfAlcVJACt/PJDOkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAGjJlKkHYxjmYKfvEl1qtTtSOk4MB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvQWFNbVVxUWRqR09aZ3AtOFNYV3ExTzFJNlRnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEBa+QMA0G CSqGSIb3DQEBCwUAA4IBAQCqw4Cv7sdZWzUMKCmtmFi8xS83Hvl8LD9iFvahpOZ6 oXKKjOTa+1pc2v3ggVSLgtbHWC7KGISVYqsZwY9v2XOcOzCbZNYbf/NCKpRNOu+k Gi1AdSgO7EfLOLLA6Bbo0xjX66tntvkwYrnXL9jJgOZj5RgmWgMLl50S+XSZrDCE Rb8HC8TeaKU9S0n0NDJb30EzIZubm4HrUyhmcxBK2Hj1V4lR5Hda9j3y2QlSW4xP CoaXZSUsaEZ4/vbO8C9qQCeIlB26Wh31iCYLiX7CH5D4MMrz6dyZ0oi7G/g7OTe9 b6HpO/VC2S7BW2yvRq7bHjYUlvx0PwFZYtIRcJBe48uv -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:31 2026 by rpki-client