This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/aontSbFahoS7z7yeQkm0W4LHsPo.roa File: aontSbFahoS7z7yeQkm0W4LHsPo.roa (raw, json) Hash identifier: nj6whxPf9P8SD5zY0uyTbTulc/A+27qSNJjJoDzd5t0= Subject key identifier: 6A:89:ED:49:B1:5A:86:84:BB:CF:BC:9E:42:49:B4:5B:82:C7:B0:FA Certificate issuer: /CN=8b69fc6128be591401acf82bc2461af636ebe8e6 Certificate serial: 019B783466E286B1C1784E563F08D7DC5057 Authority key identifier: 8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/aontSbFahoS7z7yeQkm0W4LHsPo.roa Signing time: Thu 01 Jan 2026 06:17:38 +0000 ROA not before: Thu 01 Jan 2026 06:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205530 IP address blocks: 45.140.112.0/22 maxlen: 22 81.89.88.0/24 maxlen: 24 195.211.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.crl rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.mft rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 03:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:66:e2:86:b1:c1:78:4e:56:3f:08:d7:dc:50:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b69fc6128be591401acf82bc2461af636ebe8e6 Validity Not Before: Jan 1 06:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a89ed49b15a8684bbcfbc9e4249b45b82c7b0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:56:60:13:61:22:ca:2b:c4:ad:3b:9d:fc:5f: f9:f8:02:19:b4:23:35:b0:b5:68:36:a8:a7:26:1c: b6:22:b3:76:14:32:1d:76:93:de:e5:ca:db:e7:9d: a3:0f:ef:ef:1b:e2:d5:13:a6:9a:f3:73:43:93:7f: 20:87:2e:55:2c:4c:f5:d7:75:92:2b:70:e8:c5:61: 26:7f:f2:f8:e6:df:3a:8c:cb:39:d2:00:bd:c9:bc: 76:cd:59:98:8b:ba:98:08:9c:39:9f:e5:07:85:2f: fe:8a:6a:75:88:13:78:97:d4:60:15:06:e9:ca:45: 98:a6:96:e8:45:93:08:db:8d:17:b1:a4:fe:16:da: a9:39:ea:5f:a5:21:6a:1c:06:4a:fd:15:15:8c:6c: 9e:9d:b2:3f:33:20:46:82:b1:c4:4d:d2:57:8c:41: b9:19:5f:8b:6e:9d:94:93:d3:33:08:3f:1d:95:77: ed:98:fd:f9:85:39:6e:c2:6c:ed:f6:98:2b:4f:07: a6:0b:be:30:ad:e7:c1:bf:3c:49:3f:b0:85:60:70: 00:56:88:65:af:7c:78:1c:84:a8:92:7c:f0:1b:77: cc:29:c9:29:01:b3:4f:a1:21:8a:0a:92:fc:11:2f: 44:0e:c7:66:78:8f:a5:90:6f:ec:82:a7:e3:89:a0: e4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:89:ED:49:B1:5A:86:84:BB:CF:BC:9E:42:49:B4:5B:82:C7:B0:FA X509v3 Authority Key Identifier: keyid:8B:69:FC:61:28:BE:59:14:01:AC:F8:2B:C2:46:1A:F6:36:EB:E8:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2n8YSi-WRQBrPgrwkYa9jbr6OY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/aontSbFahoS7z7yeQkm0W4LHsPo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0aa6e6-3054-4888-865e-265f2bd0f8f3/1/i2n8YSi-WRQBrPgrwkYa9jbr6OY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.140.112.0/22 81.89.88.0/24 195.211.56.0/22 Signature Algorithm: sha256WithRSAEncryption 15:a2:8c:5e:d8:19:9f:11:cb:6d:ed:9e:4f:d2:2c:f5:5c:b0: 86:75:e5:10:59:24:92:95:39:2b:dc:a7:ba:31:b4:52:93:a6: 9c:eb:39:36:e7:c5:b9:f9:56:3c:9f:f3:90:f7:5b:25:c8:fd: 46:b0:87:e0:bf:d5:61:c4:7c:f4:be:47:2d:4d:d8:fa:01:85: 5f:24:4e:89:4f:e1:24:c2:67:88:2e:89:81:17:73:19:a3:b4: 41:3e:91:eb:dc:8b:e7:fd:a7:98:d8:58:ff:84:d9:9a:66:39: ff:8c:90:a1:18:7c:22:87:5f:ed:ae:15:f7:69:d3:1a:d1:ae: b5:d8:7b:ef:49:ef:14:58:df:f3:fc:87:18:85:4b:fa:ae:c4: bc:2f:d5:e5:22:a8:2b:58:db:47:28:4e:df:7d:28:9a:5b:3d: 88:4b:54:fe:19:03:7a:60:84:87:23:53:7a:2d:58:75:d7:77: 82:d2:5d:ea:f9:7c:1a:89:61:db:ad:34:4f:43:31:20:7a:f5: 5d:43:9b:c6:22:0d:70:7d:4b:4f:2f:cb:93:ce:9a:75:78:38: be:6e:9a:5e:8f:b0:72:75:e7:ea:7f:b1:1a:44:f5:9d:40:e1: 04:5d:1d:a9:e6:93:9a:3b:d7:1a:3e:99:a4:4b:93:4f:30:eb: 19:d0:0a:ad -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NGbihrHBeE5WPwjX3FBXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiNjlmYzYxMjhiZTU5MTQwMWFjZjgyYmMyNDYxYWY2MzZl YmU4ZTYwHhcNMjYwMTAxMDYxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTg5ZWQ0OWIxNWE4Njg0YmJjZmJjOWU0MjQ5YjQ1YjgyYzdiMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFZgE2EiyivErTud/F/5+AIZtCM1 sLVoNqinJhy2IrN2FDIddpPe5crb552jD+/vG+LVE6aa83NDk38ghy5VLEz113WS K3DoxWEmf/L45t86jMs50gC9ybx2zVmYi7qYCJw5n+UHhS/+imp1iBN4l9RgFQbp ykWYppboRZMI240XsaT+FtqpOepfpSFqHAZK/RUVjGyenbI/MyBGgrHETdJXjEG5 GV+Lbp2Uk9MzCD8dlXftmP35hTluwmzt9pgrTwemC74wrefBvzxJP7CFYHAAVohl r3x4HISoknzwG3fMKckpAbNPoSGKCpL8ES9EDsdmeI+lkG/sgqfjiaDkIQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFGqJ7UmxWoaEu8+8nkJJtFuCx7D6MB8GA1UdIwQY MBaAFItp/GEovlkUAaz4K8JGGvY26+jmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTJuOFlTaS1XUlFCclBncndrWWE5amJyNk9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wYWE2ZTYtMzA1NC00ODg4LTg2NWUt MjY1ZjJiZDBmOGYzLzEvYW9udFNiRmFob1M3ejd5ZVFrbTBXNExIc1BvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8wYWE2ZTYtMzA1NC00ODg4LTg2NWUtMjY1ZjJiZDBmOGYz LzEvaTJuOFlTaS1XUlFCclBncndrWWE5amJyNk9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCLYxwAwQA UVlYAwQCw9M4MA0GCSqGSIb3DQEBCwUAA4IBAQAVooxe2BmfEctt7Z5P0iz1XLCG deUQWSSSlTkr3Ke6MbRSk6ac6zk258W5+VY8n/OQ91slyP1GsIfgv9VhxHz0vkct Tdj6AYVfJE6JT+EkwmeILomBF3MZo7RBPpHr3Ivn/aeY2Fj/hNmaZjn/jJChGHwi h1/trhX3adMa0a612HvvSe8UWN/z/IcYhUv6rsS8L9XlIqgrWNtHKE7ffSiaWz2I S1T+GQN6YISHI1N6LVh113eC0l3q+XwaiWHbrTRPQzEgevVdQ5vGIg1wfUtPL8uT zpp1eDi+bppej7Bydefqf7EaRPWdQOEEXR2p5pOaO9caPpmkS5NPMOsZ0Aqt -----END CERTIFICATE-----Generated at Mon Feb 2 09:53:05 2026 by rpki-client