This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/ajon7HfMyCMWYs_XyTvW8ijDVT0.roa File: ajon7HfMyCMWYs_XyTvW8ijDVT0.roa (raw, json) Hash identifier: 6kA6NTDj4UuaXw9M4gCIjbYb1Ltp3bpLAiofee1qf4M= Subject key identifier: 6A:3A:27:EC:77:CC:C8:23:16:62:CF:D7:C9:3B:D6:F2:28:C3:55:3D Certificate issuer: /CN=5bf81435ed13789895f375dc34d04ce91aca4744 Certificate serial: 019C42216D670B30153C7705907373278EA4 Authority key identifier: 5B:F8:14:35:ED:13:78:98:95:F3:75:DC:34:D0:4C:E9:1A:CA:47:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W_gUNe0TeJiV83XcNNBM6RrKR0Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/ajon7HfMyCMWYs_XyTvW8ijDVT0.roa Signing time: Mon 09 Feb 2026 11:20:12 +0000 ROA not before: Mon 09 Feb 2026 11:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3301 IP address blocks: 158.233.228.0/24 maxlen: 24 158.233.229.0/24 maxlen: 24 158.233.230.0/24 maxlen: 24 158.233.231.0/24 maxlen: 24 158.233.242.0/24 maxlen: 24 158.233.243.0/24 maxlen: 24 158.233.244.0/24 maxlen: 24 158.233.245.0/24 maxlen: 24 158.233.246.0/24 maxlen: 24 158.233.247.0/24 maxlen: 24 158.233.248.0/24 maxlen: 24 158.233.249.0/24 maxlen: 24 158.233.250.0/24 maxlen: 24 158.233.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/W_gUNe0TeJiV83XcNNBM6RrKR0Q.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/W_gUNe0TeJiV83XcNNBM6RrKR0Q.mft rsync://rpki.ripe.net/repository/DEFAULT/W_gUNe0TeJiV83XcNNBM6RrKR0Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:21:6d:67:0b:30:15:3c:77:05:90:73:73:27:8e:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bf81435ed13789895f375dc34d04ce91aca4744 Validity Not Before: Feb 9 11:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a3a27ec77ccc8231662cfd7c93bd6f228c3553d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7a:e1:36:56:b8:eb:7f:ce:78:fa:e0:36:1c: 60:cd:7a:d4:e2:e2:ac:ed:19:e5:61:df:10:fc:4f: b1:bd:ef:a2:aa:72:f5:cd:bd:3a:aa:8a:8d:a7:64: 1e:69:87:20:c7:fc:b0:9e:75:94:81:33:db:52:72: c1:b8:ff:8e:e6:c2:a0:9e:da:65:c9:cc:3b:26:fe: d0:61:f7:8e:ad:e4:0a:ce:32:d5:98:ae:95:68:ce: d4:c4:ac:43:94:fe:b1:77:3f:de:fa:93:8a:2d:80: ff:81:e1:e9:2b:76:b2:10:38:75:fd:5f:ee:7c:1d: df:21:77:23:2c:74:dd:f4:ea:1f:95:ac:95:2e:bb: df:ff:44:e4:ce:49:20:9b:a5:61:67:9d:f9:aa:79: f6:42:83:31:85:2f:d9:ad:aa:1b:93:6e:82:7c:82: 7a:bb:3f:97:c3:d7:dd:5f:74:51:01:4f:a2:a2:36: 3a:f8:10:4c:6d:35:db:8f:c8:df:75:fa:30:e4:12: d6:50:80:b0:bc:99:36:df:10:de:bb:04:aa:57:83: 6f:d0:35:fe:c3:27:56:9e:e0:f6:42:2f:44:83:fd: d1:a6:3d:df:31:fc:61:fc:fa:25:cf:d1:9f:fe:43: fc:51:eb:40:dc:8a:a6:e8:4f:4f:62:7b:1c:79:01: 3d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3A:27:EC:77:CC:C8:23:16:62:CF:D7:C9:3B:D6:F2:28:C3:55:3D X509v3 Authority Key Identifier: keyid:5B:F8:14:35:ED:13:78:98:95:F3:75:DC:34:D0:4C:E9:1A:CA:47:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W_gUNe0TeJiV83XcNNBM6RrKR0Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/ajon7HfMyCMWYs_XyTvW8ijDVT0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/W_gUNe0TeJiV83XcNNBM6RrKR0Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.233.228.0/22 158.233.242.0-158.233.251.255 Signature Algorithm: sha256WithRSAEncryption c3:a0:8a:39:d1:e9:28:bd:45:2a:0b:30:4a:15:c2:df:51:73: 02:0d:69:03:a0:55:86:a1:09:f6:75:4b:0f:19:96:bd:54:52: 42:b3:b9:aa:5b:f8:f3:60:4c:88:8a:f3:32:96:9f:9a:fd:65: 85:61:e8:e3:72:9c:df:4d:31:1c:b6:ee:ba:c6:9f:83:45:0e: d4:3b:de:5b:ba:c4:92:d8:a1:b5:73:cc:99:e3:f6:23:3f:5d: ad:f2:5a:f9:7a:41:fa:8a:42:e7:09:69:15:85:5d:ea:e8:5e: 41:65:24:50:c4:10:e7:cd:49:df:e6:54:51:69:0b:fe:22:a6: 81:ee:f9:a8:45:21:b8:62:85:eb:e4:7f:c1:98:7b:fe:74:98: d7:47:f7:70:40:66:b5:07:12:09:92:95:db:2e:ec:28:65:82: 28:9e:f5:04:88:b0:a2:e1:a7:66:f3:c6:64:cd:a3:1a:ff:ba: 50:40:8e:24:30:4f:02:f6:37:d5:63:a1:4d:76:20:04:ba:f0: de:6c:ab:fc:da:fd:76:7b:63:3e:13:3b:41:01:1a:af:9d:8e: 5a:19:ff:66:24:8a:c3:83:1d:e6:50:a2:e6:e1:8a:f5:b8:90: 51:0a:d9:93:6e:35:21:92:f1:8d:67:03:0c:57:50:ac:48:bf: 86:fe:25:46 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZxCIW1nCzAVPHcFkHNzJ46kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZjgxNDM1ZWQxMzc4OTg5NWYzNzVkYzM0ZDA0Y2U5MWFj YTQ3NDQwHhcNMjYwMjA5MTEyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTNhMjdlYzc3Y2NjODIzMTY2MmNmZDdjOTNiZDZmMjI4YzM1NTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nrhNla463/OePrgNhxgzXrU4uKs 7RnlYd8Q/E+xve+iqnL1zb06qoqNp2QeaYcgx/ywnnWUgTPbUnLBuP+O5sKgntpl ycw7Jv7QYfeOreQKzjLVmK6VaM7UxKxDlP6xdz/e+pOKLYD/geHpK3ayEDh1/V/u fB3fIXcjLHTd9OoflayVLrvf/0Tkzkkgm6VhZ535qnn2QoMxhS/Zraobk26CfIJ6 uz+Xw9fdX3RRAU+iojY6+BBMbTXbj8jfdfow5BLWUICwvJk23xDeuwSqV4Nv0DX+ wydWnuD2Qi9Eg/3Rpj3fMfxh/Polz9Gf/kP8UetA3Iqm6E9PYnsceQE9UwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFGo6J+x3zMgjFmLP18k71vIow1U9MB8GA1UdIwQY MBaAFFv4FDXtE3iYlfN13DTQTOkaykdEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV19nVU5lMFRlSmlWODNYY05OQk02UnJLUjBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8zZDRiYzUtYzM2My00MTVmLWIzZGEt NDhlNGNjNmIzM2EzLzEvYWpvbjdIZk15Q01XWXNfWHlUdlc4aWpEVlQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8zZDRiYzUtYzM2My00MTVmLWIzZGEtNDhlNGNjNmIzM2Ez LzEvV19nVU5lMFRlSmlWODNYY05OQk02UnJLUjBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCnunkMAwD BAGe6fIDBAKe6fgwDQYJKoZIhvcNAQELBQADggEBAMOgijnR6Si9RSoLMEoVwt9R cwINaQOgVYahCfZ1Sw8Zlr1UUkKzuapb+PNgTIiK8zKWn5r9ZYVh6ONynN9NMRy2 7rrGn4NFDtQ73lu6xJLYobVzzJnj9iM/Xa3yWvl6QfqKQucJaRWFXeroXkFlJFDE EOfNSd/mVFFpC/4ipoHu+ahFIbhihevkf8GYe/50mNdH93BAZrUHEgmSldsu7Chl giie9QSIsKLhp2bzxmTNoxr/ulBAjiQwTwL2N9VjoU12IAS68N5sq/za/XZ7Yz4T O0EBGq+djloZ/2YkisODHeZQoubhivW4kFEK2ZNuNSGS8Y1nAwxXUKxIv4b+JUY= -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:16 2026 by rpki-client