This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/ap-XVBzw4zZPatC0RYn5qlV_mrQ.roa File: ap-XVBzw4zZPatC0RYn5qlV_mrQ.roa (raw, json) Hash identifier: +C964lY3jvSC9YXuZCdEHQIGMY6YBYM0/bQTHHxKS1E= Subject key identifier: 6A:9F:97:54:1C:F0:E3:36:4F:6A:D0:B4:45:89:F9:AA:55:7F:9A:B4 Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865 Certificate serial: 019B7C800C510290C6444079C4C55533557A Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/ap-XVBzw4zZPatC0RYn5qlV_mrQ.roa Signing time: Fri 02 Jan 2026 02:18:45 +0000 ROA not before: Fri 02 Jan 2026 02:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9136 IP address blocks: 143.163.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.mft rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:0c:51:02:90:c6:44:40:79:c4:c5:55:33:55:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865 Validity Not Before: Jan 2 02:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a9f97541cf0e3364f6ad0b44589f9aa557f9ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:80:04:f5:6a:4c:cb:de:4a:11:39:0c:e6:96: 82:74:17:64:94:b8:dd:8d:38:2a:45:29:63:19:e9: b4:83:a1:17:46:2b:af:66:48:0e:fa:01:f9:31:bc: 36:83:d2:5f:56:03:d5:ec:e2:c1:44:c3:ea:88:c1: e7:09:16:40:bf:ec:17:97:c4:f9:a8:c9:bf:22:a5: cd:1e:07:52:af:ca:cd:8a:93:59:8a:c8:c4:61:53: 71:b8:8d:17:cf:45:e5:b6:d3:ee:de:0c:e9:35:e2: d2:2e:2a:f6:ba:ff:a6:6d:bc:f6:ec:9a:6b:9b:64: 76:fb:ea:37:3c:74:76:3b:9e:e3:5d:d3:02:76:67: 0a:a0:2f:78:19:51:aa:22:58:c2:92:e7:d2:18:77: 6d:5c:7b:22:f6:27:72:87:31:2d:b2:64:f9:09:67: 43:47:56:0b:e4:ca:88:17:97:95:fa:98:43:93:a9: 18:ed:3f:b8:42:6f:c9:9b:5f:81:41:ab:6c:76:56: 60:3e:94:1a:f2:8f:a6:04:81:f9:f2:af:39:91:23: a8:af:e2:11:75:a6:84:43:f3:10:be:94:12:5c:98: b9:a5:7d:1f:fb:f8:c0:16:2f:9f:97:9c:8d:89:ed: a8:ed:bf:f2:cc:e6:35:db:6f:94:47:af:6a:d4:36: 2c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9F:97:54:1C:F0:E3:36:4F:6A:D0:B4:45:89:F9:AA:55:7F:9A:B4 X509v3 Authority Key Identifier: keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/ap-XVBzw4zZPatC0RYn5qlV_mrQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.163.64.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:a7:78:25:24:78:26:76:2b:74:5b:ff:84:2c:5c:c6:e5:0b: e7:2f:1a:cb:70:6f:db:cc:18:e4:6c:a4:f6:39:d7:6a:1d:5f: fa:92:1b:a3:13:bd:87:3d:e0:d5:da:b2:82:e8:bf:ce:45:2f: 41:4d:62:43:59:ff:d3:de:5a:d8:b8:69:04:6d:ad:95:79:06: 56:e8:5e:ab:40:37:19:51:55:04:a6:e1:80:f8:37:8a:d0:82: 0e:ff:6e:c2:45:e1:13:89:ec:62:12:64:f5:3e:a8:f2:d5:47: ff:88:b4:73:6b:ed:5d:a5:03:0e:45:51:f6:c9:cc:30:b7:55: 26:6d:73:14:0f:5a:49:33:37:61:ee:91:aa:b0:03:b9:82:1b: 9b:17:c8:af:e7:f8:92:9f:3f:27:34:d1:e8:4b:7c:b5:3a:7b: 13:e6:b1:6f:ca:60:db:07:c8:60:56:c0:49:0f:83:db:f5:e9: 53:7f:33:eb:9d:00:97:1c:29:00:e5:2e:1a:8b:23:8b:b2:2f: 6a:b5:11:bb:75:2d:3a:fb:b8:de:92:0b:51:a1:b6:ee:ee:99: 25:ce:8f:65:0c:21:89:06:59:ba:84:92:e3:5b:d9:b1:aa:ad: e8:18:ad:10:dc:b0:8a:60:35:98:6f:3d:41:8c:8c:c8:0f:53: 9c:73:77:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gAxRApDGREB5xMVVM1V6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3ZjA0Yjc4YjJlZWRmOTk4ZWRkNWNjMWU4ODY3MWM4ZDEw ZjE4NjUwHhcNMjYwMTAyMDIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTlmOTc1NDFjZjBlMzM2NGY2YWQwYjQ0NTg5ZjlhYTU1N2Y5YWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oAE9WpMy95KETkM5paCdBdklLjd jTgqRSljGem0g6EXRiuvZkgO+gH5Mbw2g9JfVgPV7OLBRMPqiMHnCRZAv+wXl8T5 qMm/IqXNHgdSr8rNipNZisjEYVNxuI0Xz0XlttPu3gzpNeLSLir2uv+mbbz27Jpr m2R2++o3PHR2O57jXdMCdmcKoC94GVGqIljCkufSGHdtXHsi9idyhzEtsmT5CWdD R1YL5MqIF5eV+phDk6kY7T+4Qm/Jm1+BQatsdlZgPpQa8o+mBIH58q85kSOor+IR daaEQ/MQvpQSXJi5pX0f+/jAFi+fl5yNie2o7b/yzOY122+UR69q1DYsswIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGqfl1Qc8OM2T2rQtEWJ+apVf5q0MB8GA1UdIwQY MBaAFMfwS3iy7t+Zjt1cweiGccjRDxhlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveF9CTGVMTHUzNW1PM1Z6QjZJWnh5TkVQR0dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy80NzM5MjQtNmY5OS00NzNkLWEwNzct ZjQzNzgzOTA5NWQxLzEvYXAtWFZCenc0elpQYXRDMFJZbjVxbFZfbXJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy80NzM5MjQtNmY5OS00NzNkLWEwNzctZjQzNzgzOTA5NWQx LzEveF9CTGVMTHUzNW1PM1Z6QjZJWnh5TkVQR0dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBj6NAMA0G CSqGSIb3DQEBCwUAA4IBAQBKp3glJHgmdit0W/+ELFzG5QvnLxrLcG/bzBjkbKT2 OddqHV/6khujE72HPeDV2rKC6L/ORS9BTWJDWf/T3lrYuGkEba2VeQZW6F6rQDcZ UVUEpuGA+DeK0IIO/27CReETiexiEmT1Pqjy1Uf/iLRza+1dpQMORVH2ycwwt1Um bXMUD1pJMzdh7pGqsAO5ghubF8iv5/iSnz8nNNHoS3y1OnsT5rFvymDbB8hgVsBJ D4Pb9elTfzPrnQCXHCkA5S4aiyOLsi9qtRG7dS06+7jekgtRobbu7pklzo9lDCGJ Blm6hJLjW9mxqq3oGK0Q3LCKYDWYbz1BjIzID1Occ3fZ -----END CERTIFICATE-----Generated at Tue Jan 20 07:47:58 2026 by rpki-client