This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/1c67ef-e83d-4427-864b-c59825bbcb32/1/AWwDu6FL1ks2X0XopEuhSC18J0I.roa File: AWwDu6FL1ks2X0XopEuhSC18J0I.roa (raw, json) Hash identifier: 57csFM1uZZXe/mYO8g/OQP+rXA2geXjp4DOgnDWmXrk= Subject key identifier: 01:6C:03:BB:A1:4B:D6:4B:36:5F:45:E8:A4:4B:A1:48:2D:7C:27:42 Certificate issuer: /CN=d4afe3f0c9e555e52d3505d6163278df3da18cee Certificate serial: 019B79EC5BB570DC59B9B7CDE1C4A7D3CF43 Authority key identifier: D4:AF:E3:F0:C9:E5:55:E5:2D:35:05:D6:16:32:78:DF:3D:A1:8C:EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1K_j8MnlVeUtNQXWFjJ43z2hjO4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/1c67ef-e83d-4427-864b-c59825bbcb32/1/AWwDu6FL1ks2X0XopEuhSC18J0I.roa Signing time: Thu 01 Jan 2026 14:18:11 +0000 ROA not before: Thu 01 Jan 2026 14:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211373 IP address blocks: 194.53.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/1c67ef-e83d-4427-864b-c59825bbcb32/1/1K_j8MnlVeUtNQXWFjJ43z2hjO4.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/1c67ef-e83d-4427-864b-c59825bbcb32/1/1K_j8MnlVeUtNQXWFjJ43z2hjO4.mft rsync://rpki.ripe.net/repository/DEFAULT/1K_j8MnlVeUtNQXWFjJ43z2hjO4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:5b:b5:70:dc:59:b9:b7:cd:e1:c4:a7:d3:cf:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4afe3f0c9e555e52d3505d6163278df3da18cee Validity Not Before: Jan 1 14:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=016c03bba14bd64b365f45e8a44ba1482d7c2742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:1b:52:b1:40:cc:08:bc:d6:f3:43:80:70:b3: 2e:cc:93:9d:cb:fd:4c:c3:80:ff:bd:7c:7c:39:53: 6b:1a:e3:21:ef:2b:fb:d0:0b:97:27:76:c4:fd:cf: c9:fc:cc:cb:ad:44:bf:a1:6b:40:a0:b6:0c:fe:f5: f4:86:ab:41:5f:40:e7:33:17:08:92:48:dd:c9:ef: 4f:6e:9e:2e:1e:93:ef:15:af:a6:da:d6:94:55:1c: 9b:32:b9:ee:3d:39:cc:3e:7b:50:e7:52:67:78:99: 25:77:21:6b:33:cc:78:b0:f1:7f:85:8b:e1:11:93: 95:c0:0d:e4:ac:8a:24:8d:00:53:35:84:92:94:95: a1:ce:0b:b9:cc:c5:a9:1e:72:f5:5d:d9:75:3d:3f: ea:84:1d:06:5e:73:b5:ef:44:14:da:b3:ae:6a:7d: f4:45:f2:cb:87:8b:52:22:c8:71:ed:3e:b6:42:92: 30:60:75:4f:df:8b:ab:af:3c:70:6d:cc:f2:20:1a: 02:d3:b7:50:4a:80:6a:9c:de:11:b1:cf:6b:50:b9: 21:07:af:ff:54:bc:5a:d9:6b:63:a6:72:26:91:3c: 16:8d:58:94:5b:3a:07:d9:f4:a9:c0:5a:13:4c:35: 44:1f:dd:a2:95:08:5c:b2:79:d5:c6:24:4a:ae:40: 71:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6C:03:BB:A1:4B:D6:4B:36:5F:45:E8:A4:4B:A1:48:2D:7C:27:42 X509v3 Authority Key Identifier: keyid:D4:AF:E3:F0:C9:E5:55:E5:2D:35:05:D6:16:32:78:DF:3D:A1:8C:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1K_j8MnlVeUtNQXWFjJ43z2hjO4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1c67ef-e83d-4427-864b-c59825bbcb32/1/AWwDu6FL1ks2X0XopEuhSC18J0I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/1c67ef-e83d-4427-864b-c59825bbcb32/1/1K_j8MnlVeUtNQXWFjJ43z2hjO4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.53.139.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:c1:c0:24:5e:c5:63:47:3e:04:38:49:a3:2c:69:dc:b9:6e: 75:5d:94:34:0b:73:bf:af:71:a8:2b:98:e6:e2:d5:17:e8:a6: 24:fb:07:b9:02:86:72:88:f8:6d:58:38:ad:96:7b:5c:67:91: 9a:ef:97:e1:34:14:52:01:e0:e4:f8:7e:c6:7c:69:65:17:bb: 7d:b7:cc:6e:00:d1:d8:48:b4:6d:fd:c6:1e:08:d0:40:7d:7d: 11:fc:4e:78:46:a9:54:0c:0c:b0:f5:08:4e:48:94:e8:bd:52: e6:25:bd:c7:ed:1f:8d:17:4c:d1:38:46:40:e3:36:f5:89:ca: e7:98:40:dd:2d:f4:63:01:5a:4d:7f:f9:ec:be:8e:f4:62:01: d0:86:2b:a0:4b:b5:35:5b:d8:74:d5:70:88:7f:b7:ee:32:42: 4b:70:32:b3:01:3d:0c:f5:f2:de:f0:fd:1c:1c:ce:35:22:49: e6:b0:27:98:28:b8:c7:31:61:c7:87:e0:39:4a:d7:e8:23:77: 42:e4:07:2e:dc:af:90:cb:aa:c0:32:44:8a:ab:fa:01:52:fb: df:13:54:30:a6:86:b4:b8:bc:d4:90:a7:3c:58:f1:e8:75:59: 83:02:59:24:d2:73:19:30:89:59:27:95:f5:17:35:ea:7c:e0: 84:7a:63:bd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Fu1cNxZubfN4cSn089DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0YWZlM2YwYzllNTU1ZTUyZDM1MDVkNjE2MzI3OGRmM2Rh MThjZWUwHhcNMjYwMTAxMTQxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTZjMDNiYmExNGJkNjRiMzY1ZjQ1ZThhNDRiYTE0ODJkN2MyNzQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+xtSsUDMCLzW80OAcLMuzJOdy/1M w4D/vXx8OVNrGuMh7yv70AuXJ3bE/c/J/MzLrUS/oWtAoLYM/vX0hqtBX0DnMxcI kkjdye9Pbp4uHpPvFa+m2taUVRybMrnuPTnMPntQ51JneJkldyFrM8x4sPF/hYvh EZOVwA3krIokjQBTNYSSlJWhzgu5zMWpHnL1Xdl1PT/qhB0GXnO170QU2rOuan30 RfLLh4tSIshx7T62QpIwYHVP34urrzxwbczyIBoC07dQSoBqnN4Rsc9rULkhB6// VLxa2WtjpnImkTwWjViUWzoH2fSpwFoTTDVEH92ilQhcsnnVxiRKrkBxFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAFsA7uhS9ZLNl9F6KRLoUgtfCdCMB8GA1UdIwQY MBaAFNSv4/DJ5VXlLTUF1hYyeN89oYzuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUtfajhNbmxWZVV0TlFYV0ZqSjQzejJoak80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xYzY3ZWYtZTgzZC00NDI3LTg2NGIt YzU5ODI1YmJjYjMyLzEvQVd3RHU2Rkwxa3MyWDBYb3BFdWhTQzE4SjBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8xYzY3ZWYtZTgzZC00NDI3LTg2NGItYzU5ODI1YmJjYjMy LzEvMUtfajhNbmxWZVV0TlFYV0ZqSjQzejJoak80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjWLMA0G CSqGSIb3DQEBCwUAA4IBAQBMwcAkXsVjRz4EOEmjLGncuW51XZQ0C3O/r3GoK5jm 4tUX6KYk+we5AoZyiPhtWDitlntcZ5Ga75fhNBRSAeDk+H7GfGllF7t9t8xuANHY SLRt/cYeCNBAfX0R/E54RqlUDAyw9QhOSJTovVLmJb3H7R+NF0zROEZA4zb1icrn mEDdLfRjAVpNf/nsvo70YgHQhiugS7U1W9h01XCIf7fuMkJLcDKzAT0M9fLe8P0c HM41IknmsCeYKLjHMWHHh+A5StfoI3dC5Acu3K+Qy6rAMkSKq/oBUvvfE1Qwpoa0 uLzUkKc8WPHodVmDAlkk0nMZMIlZJ5X1FzXqfOCEemO9 -----END CERTIFICATE-----Generated at Mon Jan 19 10:56:37 2026 by rpki-client