This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/AtRHUu5djF_9THq1S347r70vIec.roa File: AtRHUu5djF_9THq1S347r70vIec.roa (raw, json) Hash identifier: 2rpIh+F0dzzUdJUnjgF+65AQ/tE0b6hNiw5NNKKZ9pU= Subject key identifier: 02:D4:47:52:EE:5D:8C:5F:FD:4C:7A:B5:4B:7E:3B:AF:BD:2F:21:E7 Certificate issuer: /CN=9bbae6e3ed766de47aba6693bb5af8a648974310 Certificate serial: 019B783546BE76DE5007FBC979C3C501F2EA Authority key identifier: 9B:BA:E6:E3:ED:76:6D:E4:7A:BA:66:93:BB:5A:F8:A6:48:97:43:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/AtRHUu5djF_9THq1S347r70vIec.roa Signing time: Thu 01 Jan 2026 06:18:36 +0000 ROA not before: Thu 01 Jan 2026 06:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35236 IP address blocks: 31.170.176.0/21 maxlen: 24 45.91.28.0/22 maxlen: 24 109.205.72.0/21 maxlen: 24 109.205.76.0/22 maxlen: 24 185.124.80.0/22 maxlen: 24 188.92.96.0/21 maxlen: 24 2a00:1238::/32 maxlen: 48 2a00:1238:3::/48 maxlen: 48 2a0e:25c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/m7rm4-12beR6umaTu1r4pkiXQxA.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/m7rm4-12beR6umaTu1r4pkiXQxA.mft rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:46:be:76:de:50:07:fb:c9:79:c3:c5:01:f2:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bbae6e3ed766de47aba6693bb5af8a648974310 Validity Not Before: Jan 1 06:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02d44752ee5d8c5ffd4c7ab54b7e3bafbd2f21e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:32:26:3f:59:ab:1c:b4:c9:dd:22:cf:09:68: f3:0f:5d:cd:41:b4:1f:89:d5:81:f6:05:14:69:b9: 9a:9a:69:2b:8d:8d:fd:4d:6b:12:6f:62:45:f6:f4: b2:f9:81:f0:81:40:c7:ce:d1:32:f8:2e:75:36:47: 46:6c:1b:e4:f3:7e:44:69:5f:7d:4a:cd:d6:9e:75: 88:be:3a:c9:ed:f1:73:46:e4:33:20:c6:a6:30:0b: cf:33:ec:1a:f5:04:f7:64:4f:3c:5c:63:c5:5c:15: 96:b8:6d:54:7c:09:ae:97:02:40:7f:81:c0:cb:34: 2c:3d:38:25:47:1b:3f:d9:45:66:47:e0:a5:80:c1: 5b:45:fd:e1:8e:1a:30:57:7d:f2:20:4f:fb:fd:32: 9e:fd:2d:a6:05:8c:28:e4:ee:8b:df:60:22:95:fe: d2:f7:ad:38:20:a0:ef:f1:45:a3:74:b1:dc:54:cc: 96:d4:4e:67:e7:98:50:e3:20:90:dc:bf:04:ec:11: 1d:53:d2:15:e6:82:a9:5e:a5:cb:77:36:75:8b:cc: f5:2f:70:79:5b:4a:a1:97:52:5b:36:81:74:84:19: 69:6e:4e:0d:05:88:7c:36:c4:57:bf:dc:0f:28:34: 0d:9f:56:76:09:a4:0e:44:fc:e7:36:4b:cf:fe:15: 9f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D4:47:52:EE:5D:8C:5F:FD:4C:7A:B5:4B:7E:3B:AF:BD:2F:21:E7 X509v3 Authority Key Identifier: keyid:9B:BA:E6:E3:ED:76:6D:E4:7A:BA:66:93:BB:5A:F8:A6:48:97:43:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/AtRHUu5djF_9THq1S347r70vIec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/m7rm4-12beR6umaTu1r4pkiXQxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.170.176.0/21 45.91.28.0/22 109.205.72.0/21 185.124.80.0/22 188.92.96.0/21 IPv6: 2a00:1238::/32 2a0e:25c0::/29 Signature Algorithm: sha256WithRSAEncryption 63:cb:23:39:f8:87:df:bc:e0:d4:f6:1d:7a:1c:4f:e5:cd:f8: 2f:68:02:45:26:4a:70:d8:c1:89:d2:06:7b:33:25:29:f9:89: f5:36:cc:a6:e6:47:2f:da:fc:12:3d:2a:1b:81:6a:10:3e:4f: 69:4b:b5:50:fc:ba:4f:39:9a:4c:f3:61:82:01:da:16:ca:ff: 83:d5:f5:8e:90:1c:67:5a:cc:d2:59:81:fa:f4:99:05:29:d4: 11:5f:24:b9:e1:81:7c:03:49:a2:63:f6:63:b0:01:3c:41:4a: 3b:f2:47:a7:81:b7:3c:1b:2b:8e:10:b7:b7:ba:90:9b:cb:f6: c5:b1:3e:49:f7:9e:20:0d:39:2a:9c:eb:e7:26:98:04:76:75: fb:96:fb:98:a0:d4:5a:4e:db:4c:b5:60:2b:d8:97:81:01:46: 60:cb:a5:ca:dd:a4:2d:a5:fe:fd:fb:dd:a6:af:c6:89:83:1e: 06:0b:ed:51:1a:df:94:d5:cc:20:3e:df:0d:1d:a3:4f:bf:29: 9d:c0:eb:23:09:56:a2:4d:65:41:c2:13:81:d9:da:fa:6b:55: 01:ae:67:93:bb:36:d5:e8:92:05:e5:4a:9d:14:fd:56:a8:3a: 2b:5d:26:11:94:34:97:d4:45:1b:bd:63:82:13:61:ff:e4:5a: 6e:60:3a:c0 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt4NUa+dt5QB/vJecPFAfLqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliYmFlNmUzZWQ3NjZkZTQ3YWJhNjY5M2JiNWFmOGE2NDg5 NzQzMTAwHhcNMjYwMTAxMDYxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmQ0NDc1MmVlNWQ4YzVmZmQ0YzdhYjU0YjdlM2JhZmJkMmYyMWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjImP1mrHLTJ3SLPCWjzD13NQbQf idWB9gUUabmammkrjY39TWsSb2JF9vSy+YHwgUDHztEy+C51NkdGbBvk835EaV99 Ss3WnnWIvjrJ7fFzRuQzIMamMAvPM+wa9QT3ZE88XGPFXBWWuG1UfAmulwJAf4HA yzQsPTglRxs/2UVmR+ClgMFbRf3hjhowV33yIE/7/TKe/S2mBYwo5O6L32Ailf7S 9604IKDv8UWjdLHcVMyW1E5n55hQ4yCQ3L8E7BEdU9IV5oKpXqXLdzZ1i8z1L3B5 W0qhl1JbNoF0hBlpbk4NBYh8NsRXv9wPKDQNn1Z2CaQORPznNkvP/hWfVQIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFALUR1LuXYxf/Ux6tUt+O6+9LyHnMB8GA1UdIwQY MBaAFJu65uPtdm3kerpmk7ta+KZIl0MQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTdybTQtMTJiZVI2dW1hVHUxcjRwa2lYUXhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9kMzk1M2ItYjk0Mi00Yjc1LTljOWQt OTg1YzY0ZmUyN2VlLzEvQXRSSFV1NWRqRl85VEhxMVMzNDdyNzB2SWVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9kMzk1M2ItYjk0Mi00Yjc1LTljOWQtOTg1YzY0ZmUyN2Vl LzEvbTdybTQtMTJiZVI2dW1hVHUxcjRwa2lYUXhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAkBAIAATAeAwQDH6qwAwQC LVscAwQDbc1IAwQCuXxQAwQDvFxgMBQEAgACMA4DBQAqABI4AwUDKg4lwDANBgkq hkiG9w0BAQsFAAOCAQEAY8sjOfiH37zg1PYdehxP5c34L2gCRSZKcNjBidIGezMl KfmJ9TbMpuZHL9r8Ej0qG4FqED5PaUu1UPy6TzmaTPNhggHaFsr/g9X1jpAcZ1rM 0lmB+vSZBSnUEV8kueGBfANJomP2Y7ABPEFKO/JHp4G3PBsrjhC3t7qQm8v2xbE+ SfeeIA05Kpzr5yaYBHZ1+5b7mKDUWk7bTLVgK9iXgQFGYMulyt2kLaX+/fvdpq/G iYMeBgvtURrflNXMID7fDR2jT78pncDrIwlWok1lQcITgdna+mtVAa5nk7s21eiS BeVKnRT9Vqg6K10mEZQ0l9RFG71jghNh/+RabmA6wA== -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:23 2026 by rpki-client