This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/AoBRPXbG5pKu5AAvqVysvx9mLiU.roa File: AoBRPXbG5pKu5AAvqVysvx9mLiU.roa (raw, json) Hash identifier: O98GwMh4t71nHe2YCs9Jlw2h9chx4Ly2jC1HdVtt8xs= Subject key identifier: 02:80:51:3D:76:C6:E6:92:AE:E4:00:2F:A9:5C:AC:BF:1F:66:2E:25 Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7 Certificate serial: 019B7CEDE5D1FAE7704E5A86A9C5BC99CAD0 Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/AoBRPXbG5pKu5AAvqVysvx9mLiU.roa Signing time: Fri 02 Jan 2026 04:18:44 +0000 ROA not before: Fri 02 Jan 2026 04:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200019 IP address blocks: 176.57.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:e5:d1:fa:e7:70:4e:5a:86:a9:c5:bc:99:ca:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7 Validity Not Before: Jan 2 04:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0280513d76c6e692aee4002fa95cacbf1f662e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:05:b4:ea:45:1c:0e:57:14:7a:a2:ea:93:55: 75:12:3d:52:28:26:6b:75:d5:1c:1b:1a:a2:ef:0c: 76:0d:88:49:30:60:ad:1e:f5:c4:ca:e8:a3:b0:4b: e1:72:9b:b9:16:d2:b7:58:83:9c:36:ae:32:6a:8b: a9:38:b2:81:de:49:60:47:1c:6e:11:59:3d:69:55: a2:b4:36:c6:48:46:ab:a8:46:07:e8:6b:fd:f9:5c: dc:08:f5:65:a4:b7:03:2a:bb:8e:71:0d:17:b4:29: 36:4f:dc:82:9d:82:e3:42:cf:9d:0e:b2:a2:98:35: 8d:fe:ab:86:1e:e2:f8:fd:b8:1f:f3:24:7e:61:73: 01:70:5e:8a:cf:be:d3:0a:ed:8a:72:e1:35:c5:0b: 95:93:d7:c1:58:9d:9a:df:24:5a:70:14:07:a0:4e: dc:a2:17:cd:8d:a2:82:6a:29:a2:51:c4:d6:a3:34: dc:bd:2d:51:8a:93:04:e8:8c:dc:37:e9:9e:6d:7e: e1:7b:6f:70:30:d2:75:8f:d3:fd:41:f1:9e:0c:4d: cb:99:c2:1b:a1:36:0a:a8:cc:f5:57:0c:d6:09:9d: 02:66:e2:3d:64:f9:92:ff:c0:d1:c8:c8:14:be:53: a4:06:c0:50:84:1a:b2:8e:04:33:eb:61:3f:4a:cb: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:80:51:3D:76:C6:E6:92:AE:E4:00:2F:A9:5C:AC:BF:1F:66:2E:25 X509v3 Authority Key Identifier: keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/AoBRPXbG5pKu5AAvqVysvx9mLiU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.57.48.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:e5:8e:3a:6a:b4:ae:6e:7a:04:46:f2:8c:79:5f:57:db:fe: bf:ac:4b:f7:59:2e:f9:9b:52:a6:9d:d2:75:e7:a5:7a:87:d3: ce:d4:53:bb:02:1d:4e:d2:f3:79:44:f3:e2:23:f5:90:8f:24: e4:d9:91:4f:bb:b8:c4:bc:ae:de:c7:f9:65:1f:0c:52:a2:38: 48:d7:ab:7a:50:ac:b9:c5:0e:37:85:17:a2:22:8e:54:5c:ff: 5c:88:6c:26:52:29:6e:48:21:86:35:0e:c6:78:59:75:66:ab: 00:29:24:0a:50:e2:c2:80:1f:b0:e7:f9:3b:46:9f:44:b2:ee: b7:05:4c:d8:32:11:b5:84:49:31:07:78:ba:11:aa:b6:7a:50: 03:55:f1:15:49:02:cf:f3:45:68:50:ea:83:77:94:be:56:3b: ac:b9:7b:17:1e:14:d8:ef:db:d8:eb:48:a1:0c:6f:a7:89:08: d1:f9:79:5c:c1:d4:da:6a:ef:3f:9c:be:cf:ed:39:4b:d0:d3: 05:f6:03:0e:e7:45:da:bd:77:73:1c:2c:a9:42:1f:7c:fd:d5: dd:85:c3:27:c5:01:c9:ab:c2:0c:30:e8:b9:37:60:ce:ea:3f: d1:e6:29:0a:97:68:db:ca:5a:2a:e1:d9:01:cb:75:70:7f:e8: 0d:cd:e0:ad -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87eXR+udwTlqGqcW8mcrQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ZjE5MDc0NTQ4ZDJhMjk0ZTQzODVkOTVjZDY3NTI0OTBl ZTQ2ZDcwHhcNMjYwMTAyMDQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjgwNTEzZDc2YzZlNjkyYWVlNDAwMmZhOTVjYWNiZjFmNjYyZTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgW06kUcDlcUeqLqk1V1Ej1SKCZr ddUcGxqi7wx2DYhJMGCtHvXEyuijsEvhcpu5FtK3WIOcNq4yaoupOLKB3klgRxxu EVk9aVWitDbGSEarqEYH6Gv9+VzcCPVlpLcDKruOcQ0XtCk2T9yCnYLjQs+dDrKi mDWN/quGHuL4/bgf8yR+YXMBcF6Kz77TCu2KcuE1xQuVk9fBWJ2a3yRacBQHoE7c ohfNjaKCaimiUcTWozTcvS1RipME6IzcN+mebX7he29wMNJ1j9P9QfGeDE3LmcIb oTYKqMz1VwzWCZ0CZuI9ZPmS/8DRyMgUvlOkBsBQhBqyjgQz62E/Sst71QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAKAUT12xuaSruQAL6lcrL8fZi4lMB8GA1UdIwQY MBaAFBXxkHRUjSopTkOF2VzWdSSQ7kbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2Qt NTYyNDRmNDMwZGNjLzEvQW9CUlBYYkc1cEt1NUFBdnFWeXN2eDltTGlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8wMDYyNDEtODA4ZC00YTQ5LWIwY2QtNTYyNDRmNDMwZGNj LzEvRmZHUWRGU05LaWxPUTRYWlhOWjFKSkR1UnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCsDkwMA0G CSqGSIb3DQEBCwUAA4IBAQCc5Y46arSubnoERvKMeV9X2/6/rEv3WS75m1KmndJ1 56V6h9PO1FO7Ah1O0vN5RPPiI/WQjyTk2ZFPu7jEvK7ex/llHwxSojhI16t6UKy5 xQ43hReiIo5UXP9ciGwmUiluSCGGNQ7GeFl1ZqsAKSQKUOLCgB+w5/k7Rp9Esu63 BUzYMhG1hEkxB3i6Eaq2elADVfEVSQLP80VoUOqDd5S+VjusuXsXHhTY79vY60ih DG+niQjR+XlcwdTaau8/nL7P7TlL0NMF9gMO50XavXdzHCypQh98/dXdhcMnxQHJ q8IMMOi5N2DO6j/R5ikKl2jbyloq4dkBy3Vwf+gNzeCt -----END CERTIFICATE-----Generated at Fri Jan 2 17:50:50 2026 by rpki-client