This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/Ag66ALejSbiH1pRxlS05WWGEZEg.roa File: Ag66ALejSbiH1pRxlS05WWGEZEg.roa (raw, json) Hash identifier: oqQLEmI1BDc7amRlULpva3qfjUZCTdLKCNzKPu2d6tI= Subject key identifier: 02:0E:BA:00:B7:A3:49:B8:87:D6:94:71:95:2D:39:59:61:84:64:48 Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96 Certificate serial: 019B7E38914C2056162011D54A1FB8A6E623 Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/Ag66ALejSbiH1pRxlS05WWGEZEg.roa Signing time: Fri 02 Jan 2026 10:19:54 +0000 ROA not before: Fri 02 Jan 2026 10:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21840 IP address blocks: 185.218.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:91:4c:20:56:16:20:11:d5:4a:1f:b8:a6:e6:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96 Validity Not Before: Jan 2 10:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=020eba00b7a349b887d69471952d395961846448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:82:05:2c:ee:d1:84:80:d9:e0:27:7a:3c:48: 38:ff:a9:f8:28:28:78:29:10:e9:66:41:ad:c4:6a: f8:b5:09:3f:8b:9b:a5:41:d4:fe:e2:bc:ab:9f:25: b1:30:ed:75:f6:47:26:f5:a6:93:21:41:69:79:4a: 94:c0:58:2e:65:74:30:98:b6:52:b7:44:f7:ab:ee: 6f:a7:bf:be:cf:05:16:41:a3:8d:b8:ca:34:19:09: af:e5:7e:b1:a7:ba:49:01:e4:f3:aa:92:14:cc:09: 17:2b:1d:20:ed:12:c6:19:28:31:5d:53:95:c3:ce: a6:f4:8e:66:0f:11:e3:49:55:14:06:56:17:8e:e0: 28:62:64:32:19:89:c6:ca:b3:62:96:c9:d6:cc:44: c1:8c:1e:de:96:74:5f:e1:ed:6c:c0:6d:94:ef:3f: 89:62:4e:3f:72:7a:c3:b0:2c:0f:80:9f:5f:b5:a1: f5:38:28:25:7c:4e:89:f2:74:0f:ca:15:75:90:e1: 11:c6:2b:24:d8:2a:15:5a:03:c1:26:31:71:68:4c: 92:0c:7d:aa:63:50:61:fc:60:56:9a:9a:12:88:6f: b8:a1:bb:74:f1:7c:02:35:44:39:1e:7e:60:e3:1d: 51:0f:cc:19:0b:87:6e:5e:5d:dc:2f:ed:10:14:71: b1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0E:BA:00:B7:A3:49:B8:87:D6:94:71:95:2D:39:59:61:84:64:48 X509v3 Authority Key Identifier: keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/Ag66ALejSbiH1pRxlS05WWGEZEg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.218.142.0/24 Signature Algorithm: sha256WithRSAEncryption 43:42:05:9b:38:bf:cb:e9:7a:41:66:b4:07:b6:e7:b3:5c:4e: 26:91:eb:1b:cf:23:20:ff:3a:7e:0a:4a:c0:06:4b:ed:f5:cc: c9:b6:06:9f:98:53:22:3b:03:22:7d:37:19:cc:2f:58:48:2e: bf:0d:2d:d1:37:d9:0b:d5:63:16:36:85:21:5f:42:ad:64:2a: 17:d0:7e:4f:27:f8:42:d5:e1:4f:5c:73:55:4f:e0:41:53:12: ad:82:30:92:33:98:c3:68:fd:31:3b:57:ec:d1:dd:14:90:9a: db:43:12:c0:e7:15:d6:6b:09:a8:14:73:77:89:27:83:18:20: 0c:44:47:7d:34:58:57:7d:d6:93:5c:cc:19:5b:6a:95:c0:15: df:14:28:a9:31:78:1b:ac:3c:84:bf:0d:52:df:b8:ef:7a:49: c8:d8:36:e4:fa:8a:0a:9e:65:11:6c:0a:6b:81:ac:30:8a:44: 21:0c:fb:ae:df:ef:67:a9:ed:57:67:8d:7b:0e:0d:a3:a6:8f: b1:27:d4:12:7f:d1:c2:7b:40:8d:f8:81:1f:45:76:0c:97:5a: 7d:9c:e8:49:bc:ad:bc:61:ca:c0:ed:c5:de:1a:1a:9b:78:88: fd:c3:e5:16:af:25:f1:18:1d:9c:1c:4e:3d:cc:64:a0:18:ca: d4:64:e3:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OJFMIFYWIBHVSh+4puYjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ODQ2NWIzN2IyZDRlOWY0MTNhMzFkYzdiN2U2Y2JhMmEz M2RiOTYwHhcNMjYwMTAyMTAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjBlYmEwMGI3YTM0OWI4ODdkNjk0NzE5NTJkMzk1OTYxODQ2NDQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYIFLO7RhIDZ4Cd6PEg4/6n4KCh4 KRDpZkGtxGr4tQk/i5ulQdT+4ryrnyWxMO119kcm9aaTIUFpeUqUwFguZXQwmLZS t0T3q+5vp7++zwUWQaONuMo0GQmv5X6xp7pJAeTzqpIUzAkXKx0g7RLGGSgxXVOV w86m9I5mDxHjSVUUBlYXjuAoYmQyGYnGyrNilsnWzETBjB7elnRf4e1swG2U7z+J Yk4/cnrDsCwPgJ9ftaH1OCglfE6J8nQPyhV1kOERxisk2CoVWgPBJjFxaEySDH2q Y1Bh/GBWmpoSiG+4obt08XwCNUQ5Hn5g4x1RD8wZC4duXl3cL+0QFHGxXQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAIOugC3o0m4h9aUcZUtOVlhhGRIMB8GA1UdIwQY MBaAFAiEZbN7LU6fQTox3Ht+bLoqM9uWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0lSbHMzc3RUcDlCT2pIY2UzNXN1aW96MjVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zZTJiMTgtNTVjOS00MTgwLThjNmUt MmM3MDg2ZmRlZDkzLzEvQWc2NkFMZWpTYmlIMXBSeGxTMDVXV0dFWkVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8zZTJiMTgtNTVjOS00MTgwLThjNmUtMmM3MDg2ZmRlZDkz LzEvQ0lSbHMzc3RUcDlCT2pIY2UzNXN1aW96MjVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudqOMA0G CSqGSIb3DQEBCwUAA4IBAQBDQgWbOL/L6XpBZrQHtuezXE4mkesbzyMg/zp+CkrA Bkvt9czJtgafmFMiOwMifTcZzC9YSC6/DS3RN9kL1WMWNoUhX0KtZCoX0H5PJ/hC 1eFPXHNVT+BBUxKtgjCSM5jDaP0xO1fs0d0UkJrbQxLA5xXWawmoFHN3iSeDGCAM REd9NFhXfdaTXMwZW2qVwBXfFCipMXgbrDyEvw1S37jveknI2Dbk+ooKnmURbApr gawwikQhDPuu3+9nqe1XZ417Dg2jpo+xJ9QSf9HCe0CN+IEfRXYMl1p9nOhJvK28 YcrA7cXeGhqbeIj9w+UWryXxGB2cHE49zGSgGMrUZOPX -----END CERTIFICATE-----Generated at Tue Jan 20 09:06:12 2026 by rpki-client