This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/aPlZnQWtj-q04HWeqXabAKMT6h4.roa File: aPlZnQWtj-q04HWeqXabAKMT6h4.roa (raw, json) Hash identifier: qMB7kiStIsp5/ItJSnoaHMSnB7QpqZcmeaPW1lPudSI= Subject key identifier: 68:F9:59:9D:05:AD:8F:EA:B4:E0:75:9E:A9:76:9B:00:A3:13:EA:1E Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Certificate serial: 019B7CED9D12386F2FAB27EFEA2D614FB0F0 Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/aPlZnQWtj-q04HWeqXabAKMT6h4.roa Signing time: Fri 02 Jan 2026 04:18:25 +0000 ROA not before: Fri 02 Jan 2026 04:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204831 IP address blocks: 147.234.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.mft rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:9d:12:38:6f:2f:ab:27:ef:ea:2d:61:4f:b0:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6 Validity Not Before: Jan 2 04:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68f9599d05ad8feab4e0759ea9769b00a313ea1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:db:9c:f1:29:20:39:39:e5:58:bc:24:b4: 7c:d3:62:47:46:c7:39:e6:08:cc:1c:79:94:ea:85: 50:68:65:ac:c7:dc:af:4e:3f:47:a9:44:8a:66:45: fb:3d:96:52:26:8d:25:64:b8:98:2d:17:fd:4f:e1: 6a:a3:93:99:c7:5c:8c:af:0e:79:97:5a:6b:b9:4f: 29:bf:7a:fb:cb:79:b6:48:15:40:85:3b:ce:b7:16: e3:61:c8:48:d7:b0:c2:ce:e9:6e:fd:ba:5b:fa:79: 1c:33:cb:bb:2a:57:11:e8:63:10:1c:df:d4:69:2a: 03:db:3a:3a:87:f4:65:7c:1a:3f:58:a5:3c:8b:81: 2b:94:ad:a8:6c:34:bf:7d:2f:67:e9:23:d4:15:c6: 0d:52:62:d1:b6:90:bc:03:15:a3:20:48:b6:e0:44: ee:57:27:30:1a:c2:68:39:ba:f8:69:69:bb:8f:b6: c7:15:ea:4a:cb:80:91:9e:2a:04:89:01:91:8e:fb: 42:6c:8f:83:d6:7a:ab:8a:7a:75:36:cb:6c:31:d6: 26:b2:50:91:bd:5e:c1:cd:d1:66:1c:98:0a:6c:3f: c2:74:81:67:46:12:f2:e1:be:95:4e:bd:ab:43:26: fe:c5:8a:68:e1:0f:79:f0:a4:01:01:f1:50:59:84: 40:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F9:59:9D:05:AD:8F:EA:B4:E0:75:9E:A9:76:9B:00:A3:13:EA:1E X509v3 Authority Key Identifier: keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/aPlZnQWtj-q04HWeqXabAKMT6h4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.234.25.0/24 Signature Algorithm: sha256WithRSAEncryption 88:51:83:a9:1a:db:4f:32:93:00:a7:c8:9d:23:8b:45:31:0f: 2b:60:72:86:8d:66:07:5f:28:10:14:9d:aa:11:09:a9:25:c6: 75:62:92:12:01:48:2d:5d:0e:0d:00:e6:9b:18:a6:34:2e:2c: c2:b7:02:e1:82:ff:ac:14:67:bc:8d:7f:f4:78:6e:41:59:c7: b0:21:5c:96:02:0b:eb:09:41:e6:bf:e0:cb:20:64:90:6f:f9: ce:92:65:07:bd:69:9f:25:e1:82:12:77:0d:44:b5:66:a2:1d: ee:79:9f:de:b2:f8:85:a3:ac:b2:73:47:6b:dc:94:3f:3b:a9: d3:cd:c3:c4:c1:ec:67:8b:79:f0:76:38:8d:82:d3:65:d3:55: 9d:26:91:36:69:23:bb:db:41:ba:c3:a9:33:13:2f:dc:0a:4f: 9d:0c:89:cd:87:52:ea:bb:26:39:bd:7a:b0:31:ee:3f:26:62: 12:47:57:33:c1:cf:8e:21:6f:64:f6:b1:30:27:24:12:d2:76: a2:34:ef:8a:be:52:ff:5a:0c:0f:b5:49:e7:ac:15:ef:8a:ba: 63:66:4f:69:d5:fb:21:93:6d:5e:61:c0:d6:0a:0b:38:fb:80: 7b:12:b0:36:91:3a:85:ad:8c:78:b4:58:80:ba:8c:a4:ad:dc: 24:84:61:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87Z0SOG8vqyfv6i1hT7DwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi NDUwZTYwHhcNMjYwMTAyMDQxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGY5NTk5ZDA1YWQ4ZmVhYjRlMDc1OWVhOTc2OWIwMGEzMTNlYTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu77bnPEpIDk55Vi8JLR802JHRsc5 5gjMHHmU6oVQaGWsx9yvTj9HqUSKZkX7PZZSJo0lZLiYLRf9T+Fqo5OZx1yMrw55 l1pruU8pv3r7y3m2SBVAhTvOtxbjYchI17DCzulu/bpb+nkcM8u7KlcR6GMQHN/U aSoD2zo6h/RlfBo/WKU8i4ErlK2obDS/fS9n6SPUFcYNUmLRtpC8AxWjIEi24ETu VycwGsJoObr4aWm7j7bHFepKy4CRnioEiQGRjvtCbI+D1nqrinp1NstsMdYmslCR vV7BzdFmHJgKbD/CdIFnRhLy4b6VTr2rQyb+xYpo4Q958KQBAfFQWYRAsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGj5WZ0FrY/qtOB1nql2mwCjE+oeMB8GA1UdIwQY MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt NDQzMzIyOWE4NDczLzEvYVBsWm5RV3RqLXEwNEhXZXFYYWJBS01UNmg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+oZMA0G CSqGSIb3DQEBCwUAA4IBAQCIUYOpGttPMpMAp8idI4tFMQ8rYHKGjWYHXygQFJ2q EQmpJcZ1YpISAUgtXQ4NAOabGKY0LizCtwLhgv+sFGe8jX/0eG5BWcewIVyWAgvr CUHmv+DLIGSQb/nOkmUHvWmfJeGCEncNRLVmoh3ueZ/esviFo6yyc0dr3JQ/O6nT zcPEwexni3nwdjiNgtNl01WdJpE2aSO720G6w6kzEy/cCk+dDInNh1LquyY5vXqw Me4/JmISR1czwc+OIW9k9rEwJyQS0naiNO+KvlL/WgwPtUnnrBXvirpjZk9p1fsh k21eYcDWCgs4+4B7ErA2kTqFrYx4tFiAuoykrdwkhGHx -----END CERTIFICATE-----Generated at Mon Jan 26 23:46:08 2026 by rpki-client