This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6568c6-7dd8-441a-802f-63abf6198f58/1/AtMRbaWIM3vKIPajxlWDipBHtFE.roa File: AtMRbaWIM3vKIPajxlWDipBHtFE.roa (raw, json) Hash identifier: /F0mb64f4GvsT0V2gdRErVQNX5I6/07wWVDekslaiTQ= Subject key identifier: 02:D3:11:6D:A5:88:33:7B:CA:20:F6:A3:C6:55:83:8A:90:47:B4:51 Certificate issuer: /CN=f77390fc61608c01785d1a80685ae9e56a5b2583 Certificate serial: 019B7910C7A98A85BB64E9FBE9448A9B4C94 Authority key identifier: F7:73:90:FC:61:60:8C:01:78:5D:1A:80:68:5A:E9:E5:6A:5B:25:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93OQ_GFgjAF4XRqAaFrp5WpbJYM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6568c6-7dd8-441a-802f-63abf6198f58/1/AtMRbaWIM3vKIPajxlWDipBHtFE.roa Signing time: Thu 01 Jan 2026 10:18:21 +0000 ROA not before: Thu 01 Jan 2026 10:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47866 IP address blocks: 146.0.25.0/24 maxlen: 24 146.0.26.0/23 maxlen: 23 146.0.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6568c6-7dd8-441a-802f-63abf6198f58/1/93OQ_GFgjAF4XRqAaFrp5WpbJYM.crl rsync://rpki.ripe.net/repository/DEFAULT/27/6568c6-7dd8-441a-802f-63abf6198f58/1/93OQ_GFgjAF4XRqAaFrp5WpbJYM.mft rsync://rpki.ripe.net/repository/DEFAULT/93OQ_GFgjAF4XRqAaFrp5WpbJYM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:c7:a9:8a:85:bb:64:e9:fb:e9:44:8a:9b:4c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f77390fc61608c01785d1a80685ae9e56a5b2583 Validity Not Before: Jan 1 10:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02d3116da588337bca20f6a3c655838a9047b451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:bb:9c:a8:8c:75:c4:3d:f3:1e:58:ae:84:fb: 1c:4e:71:6b:67:47:38:81:24:93:4c:09:93:ca:cf: 0a:00:05:1d:b7:06:0d:74:e9:a1:07:2b:39:fc:10: d9:79:6e:cf:59:c8:c0:1d:6f:da:f8:d0:44:35:26: 86:fe:57:d1:42:29:46:52:a6:77:38:c2:3a:42:27: e3:2d:a7:53:43:73:0a:84:63:29:c0:a1:87:c2:37: 3d:b5:7d:b1:cf:c2:e0:b3:cf:27:d0:28:53:7e:f2: 80:bc:74:b0:55:08:39:ad:c5:3c:7c:82:8d:1b:73: 90:ea:2a:b3:95:b7:6d:35:0c:d7:35:6c:85:c0:94: 02:11:76:f6:df:ed:b5:b5:ee:e6:06:b4:b9:a9:48: 4a:aa:a7:f0:ba:d2:63:f6:bf:9f:57:0f:a5:f5:fb: 88:c3:84:83:39:32:7a:ef:2a:94:ca:0d:96:b6:3e: f3:54:bf:b4:00:28:1b:e7:e4:0e:10:dd:d2:99:7c: 6f:2d:1c:cb:db:fd:8b:e9:93:fa:28:9c:24:3e:4a: 85:88:c7:a3:5c:29:c5:4a:c4:21:1a:b0:2b:b8:4c: 8b:84:c5:a9:bd:eb:c6:0a:c4:8d:b9:f4:ab:d9:cf: 76:19:8b:5c:0b:03:0b:6a:7c:4a:7e:70:39:aa:14: 2c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D3:11:6D:A5:88:33:7B:CA:20:F6:A3:C6:55:83:8A:90:47:B4:51 X509v3 Authority Key Identifier: keyid:F7:73:90:FC:61:60:8C:01:78:5D:1A:80:68:5A:E9:E5:6A:5B:25:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93OQ_GFgjAF4XRqAaFrp5WpbJYM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6568c6-7dd8-441a-802f-63abf6198f58/1/AtMRbaWIM3vKIPajxlWDipBHtFE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6568c6-7dd8-441a-802f-63abf6198f58/1/93OQ_GFgjAF4XRqAaFrp5WpbJYM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.0.25.0-146.0.31.255 Signature Algorithm: sha256WithRSAEncryption ad:da:9f:20:7c:b6:66:76:2c:fc:1c:57:17:23:71:a6:1a:1a: b5:24:f3:ff:7f:29:c5:ca:2b:89:7c:a7:85:2d:dc:5d:78:4a: c4:0f:a8:0f:1c:4a:86:7d:a8:e6:7a:b0:c2:a9:e2:06:33:2f: 58:ae:4d:31:6b:b1:54:7d:4a:6e:1f:ab:dc:62:cb:24:9f:c5: 7a:ee:34:69:3c:41:da:a5:80:87:6a:c0:91:08:c2:eb:84:c9: 73:ff:a7:4b:92:31:78:40:32:b0:66:d8:8a:79:f9:e1:ef:0a: 41:0e:ae:a2:6a:25:9f:54:c7:c1:50:c0:63:01:ee:8e:ba:44: ac:5f:f8:2b:40:f7:1b:65:0a:35:2e:07:b3:d8:34:34:0a:92: 01:1f:db:e1:2e:83:be:07:95:bf:e8:c1:8a:c3:bb:dd:ef:73: db:03:19:27:1a:62:f3:7b:bc:41:ec:37:00:19:af:13:57:16: a5:2e:6f:55:84:3f:ac:a8:ca:5f:43:9f:7c:7a:ec:95:ea:65: 4b:dc:d4:bc:16:65:b6:e8:2b:d1:01:cb:cb:0a:fc:5b:fd:33: 0e:a1:3b:fb:82:5a:13:d9:69:ea:bb:8c:41:ce:0c:26:c6:e8: 20:1c:6e:30:87:fa:8d:ac:8e:73:aa:11:ef:69:62:a0:f1:42: d9:f9:6b:ab -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt5EMepioW7ZOn76USKm0yUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3NzM5MGZjNjE2MDhjMDE3ODVkMWE4MDY4NWFlOWU1NmE1 YjI1ODMwHhcNMjYwMTAxMTAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmQzMTE2ZGE1ODgzMzdiY2EyMGY2YTNjNjU1ODM4YTkwNDdiNDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAirucqIx1xD3zHliuhPscTnFrZ0c4 gSSTTAmTys8KAAUdtwYNdOmhBys5/BDZeW7PWcjAHW/a+NBENSaG/lfRQilGUqZ3 OMI6QifjLadTQ3MKhGMpwKGHwjc9tX2xz8Lgs88n0ChTfvKAvHSwVQg5rcU8fIKN G3OQ6iqzlbdtNQzXNWyFwJQCEXb23+21te7mBrS5qUhKqqfwutJj9r+fVw+l9fuI w4SDOTJ67yqUyg2Wtj7zVL+0ACgb5+QOEN3SmXxvLRzL2/2L6ZP6KJwkPkqFiMej XCnFSsQhGrAruEyLhMWpvevGCsSNufSr2c92GYtcCwMLanxKfnA5qhQs6QIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFALTEW2liDN7yiD2o8ZVg4qQR7RRMB8GA1UdIwQY MBaAFPdzkPxhYIwBeF0agGha6eVqWyWDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTNPUV9HRmdqQUY0WFJxQWFGcnA1V3BiSllNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy82NTY4YzYtN2RkOC00NDFhLTgwMmYt NjNhYmY2MTk4ZjU4LzEvQXRNUmJhV0lNM3ZLSVBhanhsV0RpcEJIdEZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy82NTY4YzYtN2RkOC00NDFhLTgwMmYtNjNhYmY2MTk4ZjU4 LzEvOTNPUV9HRmdqQUY0WFJxQWFGcnA1V3BiSllNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACSABkD BAWSAAAwDQYJKoZIhvcNAQELBQADggEBAK3anyB8tmZ2LPwcVxcjcaYaGrUk8/9/ KcXKK4l8p4Ut3F14SsQPqA8cSoZ9qOZ6sMKp4gYzL1iuTTFrsVR9Sm4fq9xiyySf xXruNGk8QdqlgIdqwJEIwuuEyXP/p0uSMXhAMrBm2Ip5+eHvCkEOrqJqJZ9Ux8FQ wGMB7o66RKxf+CtA9xtlCjUuB7PYNDQKkgEf2+Eug74Hlb/owYrDu93vc9sDGSca YvN7vEHsNwAZrxNXFqUub1WEP6yoyl9Dn3x67JXqZUvc1LwWZbboK9EBy8sK/Fv9 Mw6hO/uCWhPZaeq7jEHODCbG6CAcbjCH+o2sjnOqEe9pYqDxQtn5a6s= -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:49 2026 by rpki-client