This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/aMHGFENAlPywz4yGySAhFMuXjPc.roa File: aMHGFENAlPywz4yGySAhFMuXjPc.roa (raw, json) Hash identifier: DPHyXCs4i5aJvj9hnZOi2SWbWwxlFXt1wb0WRfOcyU0= Subject key identifier: 68:C1:C6:14:43:40:94:FC:B0:CF:8C:86:C9:20:21:14:CB:97:8C:F7 Certificate issuer: /CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Certificate serial: 019ADB8578208C02CCA8FAD4F795E78D2702 Authority key identifier: 51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/aMHGFENAlPywz4yGySAhFMuXjPc.roa Signing time: Mon 01 Dec 2025 20:05:48 +0000 ROA not before: Mon 01 Dec 2025 20:05:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133150 IP address blocks: 212.100.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.mft rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 21:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:db:85:78:20:8c:02:cc:a8:fa:d4:f7:95:e7:8d:27:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51b49ba0dd8615128618d50159cb0f3b5e9ee626 Validity Not Before: Dec 1 20:05:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68c1c614434094fcb0cf8c86c9202114cb978cf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8d:a9:b2:28:8a:21:ce:a2:01:49:7d:69:98: bb:20:a6:86:9a:b5:15:43:bd:e6:30:d6:3a:44:d1: 34:de:87:50:dd:2f:f4:3e:07:3d:33:42:ab:b2:cf: df:3a:a8:94:4b:04:25:ad:da:95:36:99:69:b6:6c: bd:91:4c:01:d2:5d:04:c6:b9:3d:2f:6d:ff:b8:58: ac:85:1e:cd:bf:27:33:12:85:4e:8b:3a:57:dc:9e: 68:34:ca:f5:e8:25:f0:56:cc:b6:bb:59:07:ba:ef: d4:cd:d0:47:78:e8:3f:1a:58:cb:82:5e:5a:13:22: df:5d:53:48:a9:b9:a1:9c:3f:66:a2:22:17:93:f1: 82:1e:55:3d:b4:1c:b5:8e:f2:ae:eb:d8:18:bc:e9: 2d:ef:cc:e2:9a:c4:7c:de:dc:f2:ee:02:f2:37:1d: 1a:38:73:a2:da:eb:65:43:c3:ef:1a:b1:25:28:d1: 46:a7:d2:47:c2:5b:aa:c9:da:7b:94:79:16:e2:5d: 1c:7e:02:28:3e:c4:1b:e2:e3:9c:14:29:a9:2d:40: e8:b1:d6:fb:db:92:7e:d0:bd:1a:bc:f0:f6:45:c7: 15:7d:8d:20:5f:d2:08:5f:32:a6:a2:a9:dc:7a:83: 7b:47:e8:e9:27:82:74:08:df:5c:ca:6d:16:ea:50: 09:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C1:C6:14:43:40:94:FC:B0:CF:8C:86:C9:20:21:14:CB:97:8C:F7 X509v3 Authority Key Identifier: keyid:51:B4:9B:A0:DD:86:15:12:86:18:D5:01:59:CB:0F:3B:5E:9E:E6:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UbSboN2GFRKGGNUBWcsPO16e5iY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/aMHGFENAlPywz4yGySAhFMuXjPc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/26c049-47ee-4886-9844-4ab9e8aa3262/1/UbSboN2GFRKGGNUBWcsPO16e5iY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.100.166.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:bc:b2:90:e7:31:19:70:20:b8:9b:18:82:0b:1f:ae:4c:98: 61:40:c2:e8:fd:cf:9e:fd:b4:be:ec:af:11:2d:0c:d1:1d:ce: c5:49:01:61:ce:d5:98:a9:f9:8f:38:03:ad:52:e4:ff:cc:a9: 4d:c5:3c:75:ef:59:81:9d:77:9d:59:98:84:8f:a2:b5:b7:40: 15:ca:2b:a8:3f:6a:23:b1:b5:bc:67:1c:30:5d:a8:75:e6:80: 9d:1b:c5:f2:5c:7a:9e:1a:6f:71:3e:9c:99:26:17:36:96:80: de:d2:ed:2c:23:46:ff:c8:cf:3b:eb:2d:87:f5:67:1e:36:c3: 9f:8f:9d:48:2a:5a:bd:28:bb:b4:0f:89:e5:0c:e6:5a:9d:79: dd:e8:28:eb:ba:6e:0a:bd:ce:84:f3:88:2a:15:b0:f4:b4:74: b9:97:a2:44:07:1f:ee:bb:99:c1:d9:06:c7:39:8c:ed:fd:dc: 19:61:94:d8:ee:cf:c5:7d:70:cd:aa:79:72:d2:a3:b8:82:9e: 10:f7:b4:e7:bd:d1:cf:b1:3e:37:a5:4a:c4:4b:21:0b:e9:a9: 5d:60:8e:71:84:c6:d4:ac:c4:c1:c8:b0:16:66:56:6f:63:8a: a0:9f:1c:fd:a6:a1:77:a9:1d:6d:ac:b3:e0:9e:55:55:cc:a4: 21:36:73:ee -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrbhXggjALMqPrU95XnjScCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYjQ5YmEwZGQ4NjE1MTI4NjE4ZDUwMTU5Y2IwZjNiNWU5 ZWU2MjYwHhcNMjUxMjAxMjAwNTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGMxYzYxNDQzNDA5NGZjYjBjZjhjODZjOTIwMjExNGNiOTc4Y2Y3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAko2psiiKIc6iAUl9aZi7IKaGmrUV Q73mMNY6RNE03odQ3S/0Pgc9M0Krss/fOqiUSwQlrdqVNplptmy9kUwB0l0Exrk9 L23/uFishR7NvyczEoVOizpX3J5oNMr16CXwVsy2u1kHuu/UzdBHeOg/GljLgl5a EyLfXVNIqbmhnD9moiIXk/GCHlU9tBy1jvKu69gYvOkt78zimsR83tzy7gLyNx0a OHOi2utlQ8PvGrElKNFGp9JHwluqydp7lHkW4l0cfgIoPsQb4uOcFCmpLUDosdb7 25J+0L0avPD2RccVfY0gX9IIXzKmoqnceoN7R+jpJ4J0CN9cym0W6lAJTwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGjBxhRDQJT8sM+MhskgIRTLl4z3MB8GA1UdIwQY MBaAFFG0m6DdhhUShhjVAVnLDztenuYmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQt NGFiOWU4YWEzMjYyLzEvYU1IR0ZFTkFsUHl3ejR5R3lTQWhGTXVYalBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8yNmMwNDktNDdlZS00ODg2LTk4NDQtNGFiOWU4YWEzMjYy LzEvVWJTYm9OMkdGUktHR05VQldjc1BPMTZlNWlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GSmMA0G CSqGSIb3DQEBCwUAA4IBAQCevLKQ5zEZcCC4mxiCCx+uTJhhQMLo/c+e/bS+7K8R LQzRHc7FSQFhztWYqfmPOAOtUuT/zKlNxTx171mBnXedWZiEj6K1t0AVyiuoP2oj sbW8ZxwwXah15oCdG8XyXHqeGm9xPpyZJhc2loDe0u0sI0b/yM876y2H9WceNsOf j51IKlq9KLu0D4nlDOZanXnd6Cjrum4Kvc6E84gqFbD0tHS5l6JEBx/uu5nB2QbH OYzt/dwZYZTY7s/FfXDNqnly0qO4gp4Q97TnvdHPsT43pUrESyEL6aldYI5xhMbU rMTByLAWZlZvY4qgnxz9pqF3qR1trLPgnlVVzKQhNnPu -----END CERTIFICATE-----Generated at Fri Dec 5 07:01:36 2025 by rpki-client