This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/2a860c-1005-4423-95bd-3079d588aa99/1/Avk57mm87GqNbPdcL2nyb6gEN5g.roa File: Avk57mm87GqNbPdcL2nyb6gEN5g.roa (raw, json) Hash identifier: egwNzFpWwwhBkaTCld6VT7LDccEkUzZxN7q55tye/20= Subject key identifier: 02:F9:39:EE:69:BC:EC:6A:8D:6C:F7:5C:2F:69:F2:6F:A8:04:37:98 Certificate issuer: /CN=d67f1283b630e588cb039ba652b90299d71a8e78 Certificate serial: 019B7D5C608C733FDCF5EC02EBCF17CA5EA6 Authority key identifier: D6:7F:12:83:B6:30:E5:88:CB:03:9B:A6:52:B9:02:99:D7:1A:8E:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1n8Sg7Yw5YjLA5umUrkCmdcajng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/2a860c-1005-4423-95bd-3079d588aa99/1/Avk57mm87GqNbPdcL2nyb6gEN5g.roa Signing time: Fri 02 Jan 2026 06:19:24 +0000 ROA not before: Fri 02 Jan 2026 06:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 188.92.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/2a860c-1005-4423-95bd-3079d588aa99/1/1n8Sg7Yw5YjLA5umUrkCmdcajng.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/2a860c-1005-4423-95bd-3079d588aa99/1/1n8Sg7Yw5YjLA5umUrkCmdcajng.mft rsync://rpki.ripe.net/repository/DEFAULT/1n8Sg7Yw5YjLA5umUrkCmdcajng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:60:8c:73:3f:dc:f5:ec:02:eb:cf:17:ca:5e:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d67f1283b630e588cb039ba652b90299d71a8e78 Validity Not Before: Jan 2 06:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02f939ee69bcec6a8d6cf75c2f69f26fa8043798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:44:2e:b1:f4:85:80:4b:a4:e1:ef:40:7d:ed: 45:a8:17:2e:7a:e7:3e:fa:7c:51:bc:e3:4e:0a:79: 4b:5b:4c:de:02:cd:86:7b:e1:e6:1e:6f:79:29:77: 29:47:54:22:d6:92:7b:a8:e1:a5:08:fd:15:20:7e: 83:97:aa:89:f5:44:7f:a9:e1:46:c2:11:1d:44:49: 23:11:61:30:20:de:0b:23:d7:90:ec:0a:94:b6:4a: eb:8d:47:27:b0:e7:be:67:b6:b0:b7:cb:86:24:c0: e2:4f:ad:43:35:e8:3f:e9:e0:b7:56:10:d1:2e:a5: 57:70:7c:24:6f:17:cf:dc:3c:da:7a:0e:b6:dc:7e: 14:c6:66:40:7a:7a:d1:8f:9e:65:0d:48:da:ec:8a: 39:8d:a9:b3:0c:64:5f:50:c8:c0:3b:40:2f:93:c1: 94:8a:7b:f9:b5:f7:84:39:9a:3b:f9:b9:60:fd:94: 6b:0d:83:f2:cb:66:4e:95:55:ee:c0:48:10:b3:74: ca:29:e5:7f:94:fe:6e:c8:f7:7a:ec:e3:27:8e:01: eb:8e:42:4b:9e:6d:ac:0c:7a:0a:5b:15:e5:11:34: 28:6e:b1:9f:0c:69:12:8a:69:9f:7f:40:db:1e:ee: db:14:bc:99:15:30:6d:75:34:fb:f6:7b:f0:05:69: f9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F9:39:EE:69:BC:EC:6A:8D:6C:F7:5C:2F:69:F2:6F:A8:04:37:98 X509v3 Authority Key Identifier: keyid:D6:7F:12:83:B6:30:E5:88:CB:03:9B:A6:52:B9:02:99:D7:1A:8E:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1n8Sg7Yw5YjLA5umUrkCmdcajng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2a860c-1005-4423-95bd-3079d588aa99/1/Avk57mm87GqNbPdcL2nyb6gEN5g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/2a860c-1005-4423-95bd-3079d588aa99/1/1n8Sg7Yw5YjLA5umUrkCmdcajng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.92.25.0/24 Signature Algorithm: sha256WithRSAEncryption 60:b4:4e:dd:6b:c5:a8:c1:4a:1d:b9:e7:4c:e4:cd:57:ab:12: a2:13:a9:65:83:8c:bd:24:9c:46:a4:e7:99:8c:2b:7a:53:94: 50:f0:8b:2b:a9:a8:b7:0f:df:22:80:cf:69:b5:d5:0f:ad:a3: 7a:c2:68:d5:12:7a:17:98:02:1e:c3:16:21:39:1a:69:80:e8: 42:2f:0a:d9:3a:3b:35:3d:bc:86:de:0e:84:8a:30:44:c7:4a: 30:d6:5e:b4:55:62:87:04:ee:fd:2e:ba:d6:61:09:bb:5a:4e: 6d:65:1b:35:c3:f9:88:44:58:a3:96:a9:a7:cf:a7:42:30:bd: da:5b:69:5d:cc:82:18:5d:ea:43:03:05:b9:65:7b:ec:74:93: 28:67:af:7d:c8:12:71:2c:cf:c6:56:35:61:37:c0:d5:ff:99: e6:80:e1:1f:ce:d4:03:21:3a:dd:b2:6c:ce:ad:23:84:04:ee: 38:61:8d:69:4c:58:7d:f9:7f:c7:b3:15:e4:4f:e2:f5:81:99: 94:2a:bf:04:e5:d4:0c:13:63:68:02:0e:90:36:1e:91:89:7c: 4a:99:01:f5:e8:7d:70:9e:ff:37:72:29:fa:c3:49:ee:0f:b0: e5:ef:65:27:35:d2:21:4d:ec:e4:1b:16:6f:6e:44:0a:31:74: 7c:7a:e9:55 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XGCMcz/c9ewC688Xyl6mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2N2YxMjgzYjYzMGU1ODhjYjAzOWJhNjUyYjkwMjk5ZDcx YThlNzgwHhcNMjYwMTAyMDYxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmY5MzllZTY5YmNlYzZhOGQ2Y2Y3NWMyZjY5ZjI2ZmE4MDQzNzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUQusfSFgEuk4e9Afe1FqBcueuc+ +nxRvONOCnlLW0zeAs2Ge+HmHm95KXcpR1Qi1pJ7qOGlCP0VIH6Dl6qJ9UR/qeFG whEdREkjEWEwIN4LI9eQ7AqUtkrrjUcnsOe+Z7awt8uGJMDiT61DNeg/6eC3VhDR LqVXcHwkbxfP3Dzaeg623H4UxmZAenrRj55lDUja7Io5jamzDGRfUMjAO0Avk8GU inv5tfeEOZo7+blg/ZRrDYPyy2ZOlVXuwEgQs3TKKeV/lP5uyPd67OMnjgHrjkJL nm2sDHoKWxXlETQobrGfDGkSimmff0DbHu7bFLyZFTBtdTT79nvwBWn59QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAL5Oe5pvOxqjWz3XC9p8m+oBDeYMB8GA1UdIwQY MBaAFNZ/EoO2MOWIywObplK5ApnXGo54MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMW44U2c3WXc1WWpMQTV1bVVya0NtZGNham5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8yYTg2MGMtMTAwNS00NDIzLTk1YmQt MzA3OWQ1ODhhYTk5LzEvQXZrNTdtbTg3R3FOYlBkY0wybnliNmdFTjVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8yYTg2MGMtMTAwNS00NDIzLTk1YmQtMzA3OWQ1ODhhYTk5 LzEvMW44U2c3WXc1WWpMQTV1bVVya0NtZGNham5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvFwZMA0G CSqGSIb3DQEBCwUAA4IBAQBgtE7da8WowUoduedM5M1XqxKiE6llg4y9JJxGpOeZ jCt6U5RQ8Isrqai3D98igM9ptdUPraN6wmjVEnoXmAIewxYhORppgOhCLwrZOjs1 PbyG3g6EijBEx0ow1l60VWKHBO79LrrWYQm7Wk5tZRs1w/mIRFijlqmnz6dCML3a W2ldzIIYXepDAwW5ZXvsdJMoZ699yBJxLM/GVjVhN8DV/5nmgOEfztQDITrdsmzO rSOEBO44YY1pTFh9+X/HsxXkT+L1gZmUKr8E5dQME2NoAg6QNh6RiXxKmQH16H1w nv83cin6w0nuD7Dl72UnNdIhTezkGxZvbkQKMXR8eulV -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:22 2026 by rpki-client