This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/aUcHGsfbW0LISPIyDevqEjn1Mp8.roa File: aUcHGsfbW0LISPIyDevqEjn1Mp8.roa (raw, json) Hash identifier: fbCvEiA8MdH3odLJSEwrCK+swIxRtwa+tYa7l/mkrVw= Subject key identifier: 69:47:07:1A:C7:DB:5B:42:C8:48:F2:32:0D:EB:EA:12:39:F5:32:9F Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9 Certificate serial: 019B7BA3540A864B52E2EB2F05EDEF823540 Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/aUcHGsfbW0LISPIyDevqEjn1Mp8.roa Signing time: Thu 01 Jan 2026 22:17:39 +0000 ROA not before: Thu 01 Jan 2026 22:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 159.197.224.0/19 maxlen: 24 161.8.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.mft rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:54:0a:86:4b:52:e2:eb:2f:05:ed:ef:82:35:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9 Validity Not Before: Jan 1 22:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6947071ac7db5b42c848f2320debea1239f5329f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:12:bb:d3:74:fb:80:76:3a:ff:db:d6:92:b2: 7f:9c:35:00:8e:dc:02:ed:06:e2:ba:6c:84:bf:42: a3:3e:3f:5b:9b:8f:52:3e:04:a2:b6:8a:77:22:f0: d7:4a:fe:b5:f3:3f:c7:7f:19:bd:cf:7b:b2:69:54: 0b:d7:50:9b:4a:73:5b:24:82:85:15:d1:c4:91:3c: ae:18:2b:b2:9d:d4:e7:73:b8:32:0e:a3:09:ce:81: f0:45:92:8a:16:80:f3:01:e3:d6:86:85:16:5a:f0: 45:d1:53:aa:2e:e7:64:27:f2:b4:dd:2e:c3:28:64: ea:50:f0:75:f7:98:1e:2a:68:2d:ef:0c:4f:f9:d6: 56:3e:c0:88:18:df:5f:6b:91:dd:05:ce:64:ed:44: cf:07:21:67:d1:fb:19:53:16:14:ac:f3:fb:1f:79: 50:e3:99:61:44:ce:69:f3:c2:8f:66:c8:38:36:db: 78:f9:79:f0:04:db:22:9e:3a:ac:02:29:80:2c:c0: 9a:22:9f:95:3a:1d:74:a2:ed:cf:e6:59:4f:fd:ae: 72:04:10:40:51:3e:ca:54:45:49:60:14:e0:5d:39: 4b:cb:69:86:38:9e:74:95:a5:b6:c9:dd:15:a0:57: c4:6f:3a:1d:c9:fe:b2:33:4f:b9:cd:32:55:3f:39: 0f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:47:07:1A:C7:DB:5B:42:C8:48:F2:32:0D:EB:EA:12:39:F5:32:9F X509v3 Authority Key Identifier: keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/aUcHGsfbW0LISPIyDevqEjn1Mp8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.197.224.0/19 161.8.128.0/19 Signature Algorithm: sha256WithRSAEncryption 97:06:4f:e3:3c:e0:d3:5b:53:b9:ef:4a:6f:41:81:f0:5f:58: aa:74:e1:3b:76:94:9d:62:54:8e:dd:85:21:5a:91:e9:63:e8: 0a:22:e9:5e:9b:cd:43:1d:5c:3c:15:c1:c1:eb:4a:4c:fe:43: 22:ae:86:38:75:6e:f2:38:34:20:ba:a6:70:d7:50:27:f1:af: 71:f5:1e:35:e8:69:2b:ee:dc:78:ea:99:f9:ce:ef:de:99:ae: a6:d9:eb:64:24:97:16:e7:10:df:e8:c2:93:db:32:f8:aa:56: 97:a1:ed:4a:b2:2f:26:80:e0:25:09:26:05:36:05:bd:0e:65: ae:78:3b:c1:06:43:59:2d:6f:ee:83:99:49:8e:d7:9d:f8:28: ea:77:04:c0:de:16:c5:01:aa:ec:75:59:86:4c:5a:3f:04:f5: d9:21:01:11:d0:14:84:e1:79:91:b5:43:4a:89:6a:de:45:44: 5f:03:c8:21:dd:9e:b1:a8:ac:e4:18:6a:bb:76:18:4c:4a:06: be:13:d7:db:49:78:f2:f1:8c:35:2b:a4:2f:d2:a5:f2:2e:3c: 7b:30:cb:2c:52:93:78:5d:63:67:dc:bf:eb:7b:b7:e4:f2:a7: 84:f4:38:3e:c8:95:28:5f:ee:11:ce:02:09:4a:e3:a2:d8:c7: 9f:80:28:09 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7o1QKhktS4usvBe3vgjVAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDk1NGQzYzc3YzljNGUzN2VlYmY3NTNkODZmM2RjZjA5 MWQ0YTkwHhcNMjYwMTAxMjIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTQ3MDcxYWM3ZGI1YjQyYzg0OGYyMzIwZGViZWExMjM5ZjUzMjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8hK703T7gHY6/9vWkrJ/nDUAjtwC 7QbiumyEv0KjPj9bm49SPgSitop3IvDXSv618z/Hfxm9z3uyaVQL11CbSnNbJIKF FdHEkTyuGCuyndTnc7gyDqMJzoHwRZKKFoDzAePWhoUWWvBF0VOqLudkJ/K03S7D KGTqUPB195geKmgt7wxP+dZWPsCIGN9fa5HdBc5k7UTPByFn0fsZUxYUrPP7H3lQ 45lhRM5p88KPZsg4Ntt4+XnwBNsinjqsAimALMCaIp+VOh10ou3P5llP/a5yBBBA UT7KVEVJYBTgXTlLy2mGOJ50laW2yd0VoFfEbzodyf6yM0+5zTJVPzkP8wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGlHBxrH21tCyEjyMg3r6hI59TKfMB8GA1UdIwQY MBaAFE3ZVNPHfJxON+6/dT2G89zwkdSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDIt ZWI3YWFhNjgyOGJlLzEvYVVjSEdzZmJXMExJU1BJeURldnFFam4xTXA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDItZWI3YWFhNjgyOGJl LzEvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFn8XgAwQF oQiAMA0GCSqGSIb3DQEBCwUAA4IBAQCXBk/jPODTW1O570pvQYHwX1iqdOE7dpSd YlSO3YUhWpHpY+gKIulem81DHVw8FcHB60pM/kMiroY4dW7yODQguqZw11An8a9x 9R416Gkr7tx46pn5zu/ema6m2etkJJcW5xDf6MKT2zL4qlaXoe1Ksi8mgOAlCSYF NgW9DmWueDvBBkNZLW/ug5lJjted+CjqdwTA3hbFAarsdVmGTFo/BPXZIQER0BSE 4XmRtUNKiWreRURfA8gh3Z6xqKzkGGq7dhhMSga+E9fbSXjy8Yw1K6Qv0qXyLjx7 MMssUpN4XWNn3L/re7fk8qeE9Dg+yJUoX+4RzgIJSuOi2MefgCgJ -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:17 2026 by rpki-client