This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/25a179-2158-410a-9aaf-54079e732b0d/1/aVvwIvFhIA2YyxZBLI9kzTJE_PI.roa File: aVvwIvFhIA2YyxZBLI9kzTJE_PI.roa (raw, json) Hash identifier: Mj+NFBQcENFWKW7e7z2aigtw4XOb5IdgmVCiSgTc5lY= Subject key identifier: 69:5B:F0:22:F1:61:20:0D:98:CB:16:41:2C:8F:64:CD:32:44:FC:F2 Certificate issuer: /CN=a820f4345c0ee4d9d7fc6d69befbf455bec98742 Certificate serial: 019B7F15A60C1FC46D4DF30A75E13E877BCD Authority key identifier: A8:20:F4:34:5C:0E:E4:D9:D7:FC:6D:69:BE:FB:F4:55:BE:C9:87:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCD0NFwO5NnX_G1pvvv0Vb7Jh0I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/25a179-2158-410a-9aaf-54079e732b0d/1/aVvwIvFhIA2YyxZBLI9kzTJE_PI.roa Signing time: Fri 02 Jan 2026 14:21:23 +0000 ROA not before: Fri 02 Jan 2026 14:21:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48846 IP address blocks: 85.8.180.0/23 maxlen: 24 87.253.224.0/21 maxlen: 24 93.191.136.0/21 maxlen: 24 185.76.212.0/22 maxlen: 24 185.190.108.0/22 maxlen: 24 185.228.96.0/23 maxlen: 23 185.228.96.0/24 maxlen: 24 185.228.97.0/24 maxlen: 24 188.210.216.0/22 maxlen: 24 2a05:5c80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/25a179-2158-410a-9aaf-54079e732b0d/1/qCD0NFwO5NnX_G1pvvv0Vb7Jh0I.crl rsync://rpki.ripe.net/repository/DEFAULT/74/25a179-2158-410a-9aaf-54079e732b0d/1/qCD0NFwO5NnX_G1pvvv0Vb7Jh0I.mft rsync://rpki.ripe.net/repository/DEFAULT/qCD0NFwO5NnX_G1pvvv0Vb7Jh0I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:a6:0c:1f:c4:6d:4d:f3:0a:75:e1:3e:87:7b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a820f4345c0ee4d9d7fc6d69befbf455bec98742 Validity Not Before: Jan 2 14:21:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=695bf022f161200d98cb16412c8f64cd3244fcf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:93:77:e9:3d:b0:e6:be:93:2f:c1:fb:7a:a9: 5d:78:8e:44:1d:2e:23:84:fc:78:bc:50:de:08:ec: b7:d1:f8:59:4e:4b:28:c5:7f:5b:50:a1:14:f2:7b: 65:4d:25:37:af:89:1b:31:8a:0a:40:a0:3e:65:ce: 8c:e0:d0:9d:99:85:8a:d4:a9:6f:16:33:1f:fa:70: 8d:fe:ad:1c:89:dd:5c:4a:79:9b:54:10:27:a4:06: 91:e7:3e:c2:5b:33:4d:dd:7e:03:c4:be:f1:ce:28: f7:40:05:c8:8f:2b:25:45:97:2d:3c:4d:34:4a:5c: 69:9a:09:8d:0b:e9:c8:9c:3e:5d:ae:50:0c:2d:55: 41:35:a8:e9:55:39:fd:e5:e4:61:2e:10:e1:08:68: 2a:4c:7a:0c:e3:3a:4b:61:c8:bf:05:47:4a:bd:41: d0:f7:ee:92:78:1f:62:bd:86:b2:84:52:b3:af:8b: df:cb:e6:26:7e:96:05:99:52:89:05:06:e5:44:e0: 30:06:04:e3:94:c4:7c:44:f0:1d:ea:e9:92:2d:76: 39:6c:8b:5c:c3:d5:9b:47:57:f2:57:1e:88:52:89: 98:07:ec:a3:33:32:30:3e:e0:b8:a6:2d:4e:ca:4f: f4:af:e8:ef:be:be:b6:a6:b3:41:20:15:25:b2:4d: f8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5B:F0:22:F1:61:20:0D:98:CB:16:41:2C:8F:64:CD:32:44:FC:F2 X509v3 Authority Key Identifier: keyid:A8:20:F4:34:5C:0E:E4:D9:D7:FC:6D:69:BE:FB:F4:55:BE:C9:87:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCD0NFwO5NnX_G1pvvv0Vb7Jh0I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/25a179-2158-410a-9aaf-54079e732b0d/1/aVvwIvFhIA2YyxZBLI9kzTJE_PI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/25a179-2158-410a-9aaf-54079e732b0d/1/qCD0NFwO5NnX_G1pvvv0Vb7Jh0I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.8.180.0/23 87.253.224.0/21 93.191.136.0/21 185.76.212.0/22 185.190.108.0/22 185.228.96.0/23 188.210.216.0/22 IPv6: 2a05:5c80::/29 Signature Algorithm: sha256WithRSAEncryption 1d:ec:6c:3a:ab:b8:f4:da:ef:59:1f:09:7c:64:9a:2a:ff:fd: ff:f2:83:fd:9f:4e:c8:6f:05:56:af:6c:b9:ee:96:8b:c1:90: aa:e5:2e:2c:2d:0a:6c:5b:10:9d:ac:9d:b1:56:c9:6d:c5:af: 45:aa:07:98:e3:c0:61:e1:c0:12:5b:ce:c6:b0:d5:42:3f:35: 90:2d:ea:7f:6d:78:76:ed:c0:8d:ab:9b:30:95:92:49:48:29: ae:1a:b9:c6:12:f9:3a:37:f6:0b:08:fe:10:dd:56:27:8b:ae: 54:60:8d:d8:8c:6c:50:d9:18:88:be:bf:ea:8d:8a:1a:87:b3: 66:5b:a7:6e:77:eb:da:fb:68:26:2d:7d:64:3b:46:a5:51:80: db:09:0e:dc:d1:cc:ba:b0:ad:d8:21:d7:74:72:1b:97:dc:93: b5:8f:5c:c2:0d:0b:b5:9e:a6:03:9f:a2:fb:61:b9:e0:27:fe: 0c:7d:8c:e9:c2:24:b4:b3:cc:ac:12:2c:ef:76:41:a2:02:69: a7:50:8b:14:f7:b8:c2:4c:55:d5:aa:f4:67:c4:01:be:13:a1: e1:44:09:b2:58:5d:55:12:c4:14:f4:c6:e0:95:54:e7:b9:8d: 4c:c3:9f:93:52:e7:85:14:24:cc:b8:43:a1:81:7a:d2:58:06: 86:9f:0a:2c -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt/FaYMH8RtTfMKdeE+h3vNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MjBmNDM0NWMwZWU0ZDlkN2ZjNmQ2OWJlZmJmNDU1YmVj OTg3NDIwHhcNMjYwMTAyMTQyMTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTViZjAyMmYxNjEyMDBkOThjYjE2NDEyYzhmNjRjZDMyNDRmY2YyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJN36T2w5r6TL8H7eqldeI5EHS4j hPx4vFDeCOy30fhZTksoxX9bUKEU8ntlTSU3r4kbMYoKQKA+Zc6M4NCdmYWK1Klv FjMf+nCN/q0cid1cSnmbVBAnpAaR5z7CWzNN3X4DxL7xzij3QAXIjyslRZctPE00 SlxpmgmNC+nInD5drlAMLVVBNajpVTn95eRhLhDhCGgqTHoM4zpLYci/BUdKvUHQ 9+6SeB9ivYayhFKzr4vfy+YmfpYFmVKJBQblROAwBgTjlMR8RPAd6umSLXY5bItc w9WbR1fyVx6IUomYB+yjMzIwPuC4pi1Oyk/0r+jvvr62prNBIBUlsk347wIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFGlb8CLxYSANmMsWQSyPZM0yRPzyMB8GA1UdIwQY MBaAFKgg9DRcDuTZ1/xtab779FW+yYdCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUNEME5Gd081Tm5YX0cxcHZ2djBWYjdKaDBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8yNWExNzktMjE1OC00MTBhLTlhYWYt NTQwNzllNzMyYjBkLzEvYVZ2d0l2RmhJQTJZeXhaQkxJOWt6VEpFX1BJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC8yNWExNzktMjE1OC00MTBhLTlhYWYtNTQwNzllNzMyYjBk LzEvcUNEME5Gd081Tm5YX0cxcHZ2djBWYjdKaDBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQBVQi0AwQD V/3gAwQDXb+IAwQCuUzUAwQCub5sAwQBueRgAwQCvNLYMA0EAgACMAcDBQMqBVyA MA0GCSqGSIb3DQEBCwUAA4IBAQAd7Gw6q7j02u9ZHwl8ZJoq//3/8oP9n07IbwVW r2y57paLwZCq5S4sLQpsWxCdrJ2xVsltxa9FqgeY48Bh4cASW87GsNVCPzWQLep/ bXh27cCNq5swlZJJSCmuGrnGEvk6N/YLCP4Q3VYni65UYI3YjGxQ2RiIvr/qjYoa h7NmW6dud+va+2gmLX1kO0alUYDbCQ7c0cy6sK3YIdd0chuX3JO1j1zCDQu1nqYD n6L7YbngJ/4MfYzpwiS0s8ysEizvdkGiAmmnUIsU97jCTFXVqvRnxAG+E6HhRAmy WF1VEsQU9MbglVTnuY1Mw5+TUueFFCTMuEOhgXrSWAaGnwos -----END CERTIFICATE-----Generated at Tue Feb 10 06:06:54 2026 by rpki-client