This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa File: amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa (raw, json) Hash identifier: tbRCRQaFz7cg1epOgNM5Qx0T+ZaSIikRXHm5/Cmw7WQ= Subject key identifier: 6A:64:7F:D0:B9:F7:6F:AA:16:71:A6:7B:A1:B2:27:83:D6:7F:A3:45 Certificate issuer: /CN=4181c22eb7b32d901d125700e140eb6009dcc6da Certificate serial: 019B7CEE3534BDFAE53830AC6115BD7B08DB Authority key identifier: 41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa Signing time: Fri 02 Jan 2026 04:19:04 +0000 ROA not before: Fri 02 Jan 2026 04:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44460 IP address blocks: 92.43.200.0/21 maxlen: 21 185.68.72.0/22 maxlen: 22 185.68.72.0/24 maxlen: 24 185.68.73.0/24 maxlen: 24 185.68.74.0/24 maxlen: 24 185.68.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.mft rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:35:34:bd:fa:e5:38:30:ac:61:15:bd:7b:08:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4181c22eb7b32d901d125700e140eb6009dcc6da Validity Not Before: Jan 2 04:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a647fd0b9f76faa1671a67ba1b22783d67fa345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:72:3b:6d:5d:4c:25:68:bd:05:e0:bd:74:0c: 02:56:92:dd:76:40:c0:32:38:05:f8:7a:66:dc:e8: 95:10:de:a6:cc:3c:b4:e0:ba:06:cf:b3:84:21:e4: 37:3f:6e:5b:9c:10:45:c4:16:1a:a0:ca:a7:a0:b9: 77:67:ba:dc:22:44:91:c1:f2:c8:cf:c1:bc:a2:71: e5:50:c1:46:ec:91:6a:3a:71:65:03:01:89:b6:d4: 8a:c8:5b:a1:97:8f:c2:8c:ce:78:51:b0:a8:e2:d1: 83:40:27:63:bf:73:9e:18:8e:d6:53:e2:ab:14:30: de:7c:f7:a3:56:bb:a5:9b:2f:19:6e:1d:5a:8c:50: 98:dd:bc:bd:0c:84:18:29:51:62:59:56:c2:b7:d8: ff:67:34:d3:72:11:38:a9:56:59:96:82:29:96:61: ef:43:6f:0e:7f:1c:fc:8b:f6:69:b0:de:2a:1c:ed: 48:5e:87:03:3c:2e:82:73:68:b7:4c:05:6a:07:ea: 54:40:5d:87:ad:ff:d7:f9:00:e7:0c:ab:62:50:53: c4:85:37:e0:04:78:30:c8:e7:c5:9b:ee:00:43:d7: fa:b6:15:94:a5:0b:06:fa:91:98:16:93:ec:6b:56: af:97:68:b8:e7:7f:3a:f5:6f:e7:80:6b:e2:fb:30: b5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:64:7F:D0:B9:F7:6F:AA:16:71:A6:7B:A1:B2:27:83:D6:7F:A3:45 X509v3 Authority Key Identifier: keyid:41:81:C2:2E:B7:B3:2D:90:1D:12:57:00:E1:40:EB:60:09:DC:C6:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QYHCLrezLZAdElcA4UDrYAncxto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/amR_0Ln3b6oWcaZ7obIng9Z_o0U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/ffdaf5-acaa-4df3-9e6c-c21409442fac/1/QYHCLrezLZAdElcA4UDrYAncxto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.43.200.0/21 185.68.72.0/22 Signature Algorithm: sha256WithRSAEncryption 84:11:f3:26:5e:de:a8:a6:a1:2d:05:17:7a:bb:20:eb:e9:e6: 45:e0:2d:5a:63:41:24:0d:41:ea:be:cd:4c:18:db:3a:68:81: 4a:81:83:1c:0c:24:50:16:ef:a7:0e:0d:de:66:8f:5f:4c:09: 23:f6:a4:38:55:08:a8:9a:c4:cb:81:0f:61:c8:02:a6:20:7c: 51:61:21:8b:71:a5:5f:b8:63:4a:d2:c7:c5:a8:eb:b1:da:ce: ec:26:45:21:91:c8:5e:47:cd:e6:9e:58:a7:12:22:f0:da:50: 54:59:0b:2a:c0:59:8e:9f:d3:1b:37:1e:7f:21:aa:00:71:53: ca:89:c1:bd:11:90:0e:b3:a2:b7:31:c8:b1:81:fc:c5:98:1e: 47:5b:87:df:ac:50:52:bf:ee:6d:22:0e:78:b0:64:0d:69:dc: 10:2a:50:10:e5:5a:e1:da:de:04:1f:03:c7:e5:8a:c7:6f:ef: e3:78:9d:db:bc:4d:d6:b4:68:f2:78:69:c5:ec:80:e4:6a:f3: 4e:f6:0f:2a:7a:b6:8a:5c:e4:6a:82:9a:41:1a:c1:d3:88:d5: cd:43:4a:b6:69:cb:63:89:14:cc:4a:85:f4:24:bf:05:f2:3e: fe:16:ff:32:6c:2c:9a:f2:c3:75:c7:a0:d0:ef:23:c3:d3:16: b3:c2:fd:48 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87jU0vfrlODCsYRW9ewjbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxODFjMjJlYjdiMzJkOTAxZDEyNTcwMGUxNDBlYjYwMDlk Y2M2ZGEwHhcNMjYwMTAyMDQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTY0N2ZkMGI5Zjc2ZmFhMTY3MWE2N2JhMWIyMjc4M2Q2N2ZhMzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3XI7bV1MJWi9BeC9dAwCVpLddkDA MjgF+Hpm3OiVEN6mzDy04LoGz7OEIeQ3P25bnBBFxBYaoMqnoLl3Z7rcIkSRwfLI z8G8onHlUMFG7JFqOnFlAwGJttSKyFuhl4/CjM54UbCo4tGDQCdjv3OeGI7WU+Kr FDDefPejVrulmy8Zbh1ajFCY3by9DIQYKVFiWVbCt9j/ZzTTchE4qVZZloIplmHv Q28Ofxz8i/ZpsN4qHO1IXocDPC6Cc2i3TAVqB+pUQF2Hrf/X+QDnDKtiUFPEhTfg BHgwyOfFm+4AQ9f6thWUpQsG+pGYFpPsa1avl2i453869W/ngGvi+zC1dQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGpkf9C592+qFnGme6GyJ4PWf6NFMB8GA1UdIwQY MBaAFEGBwi63sy2QHRJXAOFA62AJ3MbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMt YzIxNDA5NDQyZmFjLzEvYW1SXzBMbjNiNm9XY2FaN29iSW5nOVpfbzBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9mZmRhZjUtYWNhYS00ZGYzLTllNmMtYzIxNDA5NDQyZmFj LzEvUVlIQ0xyZXpMWkFkRWxjQTRVRHJZQW5jeHRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDXCvIAwQC uURIMA0GCSqGSIb3DQEBCwUAA4IBAQCEEfMmXt6opqEtBRd6uyDr6eZF4C1aY0Ek DUHqvs1MGNs6aIFKgYMcDCRQFu+nDg3eZo9fTAkj9qQ4VQiomsTLgQ9hyAKmIHxR YSGLcaVfuGNK0sfFqOux2s7sJkUhkcheR83mnlinEiLw2lBUWQsqwFmOn9MbNx5/ IaoAcVPKicG9EZAOs6K3McixgfzFmB5HW4ffrFBSv+5tIg54sGQNadwQKlAQ5Vrh 2t4EHwPH5YrHb+/jeJ3bvE3WtGjyeGnF7IDkavNO9g8qeraKXORqgppBGsHTiNXN Q0q2actjiRTMSoX0JL8F8j7+Fv8ybCya8sN1x6DQ7yPD0xazwv1I -----END CERTIFICATE-----Generated at Mon Jan 26 23:22:46 2026 by rpki-client