This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/aP6TZ2IqLVgF0VWuJ9T3yCaCqpk.roa File: aP6TZ2IqLVgF0VWuJ9T3yCaCqpk.roa (raw, json) Hash identifier: j6iM/mIBztj8GmnOe76w3rlLqYEbhzCf5n/E02uuQng= Subject key identifier: 68:FE:93:67:62:2A:2D:58:05:D1:55:AE:27:D4:F7:C8:26:82:AA:99 Certificate issuer: /CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Certificate serial: 019B7B369B5FEA2B010AD25570240CA39EF1 Authority key identifier: 96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/aP6TZ2IqLVgF0VWuJ9T3yCaCqpk.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39855 IP address blocks: 85.203.9.0/24 maxlen: 24 85.203.16.0/24 maxlen: 24 85.203.25.0/24 maxlen: 24 85.203.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.mft rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:9b:5f:ea:2b:01:0a:d2:55:70:24:0c:a3:9e:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68fe9367622a2d5805d155ae27d4f7c82682aa99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4e:2e:9b:45:a8:e0:3d:fa:f1:db:74:62:42: c1:21:de:e5:06:d0:8d:10:34:bf:ab:d6:21:a4:78: ea:59:46:85:07:f2:ca:43:a9:96:bc:54:3f:73:d6: 3c:05:21:03:80:97:cc:b9:be:02:40:98:63:af:c7: 5f:0e:74:3c:5e:15:32:83:10:cc:80:51:4c:37:f9: 8a:8e:17:a1:da:7e:d9:c0:e1:88:71:a6:17:38:58: 75:e0:0f:e5:f7:45:b1:cb:c4:d3:3b:e1:06:02:a2: b6:9d:62:a0:3d:dc:6d:6e:f9:39:5b:34:40:c3:68: 7e:be:61:1a:2a:46:04:fe:55:b2:f8:95:78:f5:2b: b5:aa:14:23:d6:a4:df:1a:86:66:86:f2:20:20:5a: 00:6e:15:39:87:9d:90:34:56:c3:88:30:2d:8f:08: 00:23:92:50:56:c4:04:38:f9:34:50:fb:be:93:81: 4f:c5:03:9a:48:55:e0:27:f9:1d:ab:9c:04:bb:74: be:30:f2:04:73:eb:04:c5:d5:21:18:3e:72:27:4b: e8:c7:a9:9f:48:c9:28:89:0d:e5:9d:9e:66:8d:04: bb:13:6b:da:79:54:f4:d5:e4:17:40:fd:5a:98:54: 07:56:5a:30:07:db:7d:b5:1c:47:09:51:ae:0a:a7: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FE:93:67:62:2A:2D:58:05:D1:55:AE:27:D4:F7:C8:26:82:AA:99 X509v3 Authority Key Identifier: keyid:96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/aP6TZ2IqLVgF0VWuJ9T3yCaCqpk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.203.9.0/24 85.203.16.0/24 85.203.25.0/24 85.203.38.0/24 Signature Algorithm: sha256WithRSAEncryption 16:de:cd:a7:3d:eb:6b:d4:27:ce:47:05:c1:8c:4b:72:06:e4: 13:89:2e:20:84:71:0a:06:01:43:e5:6e:1c:e8:d9:c6:c0:37: 62:27:86:96:81:4b:83:6d:a9:6f:fb:6e:8b:26:e2:37:dd:22: 6b:b4:fe:37:76:3c:e2:c4:c4:ab:2b:5d:da:17:01:e9:b7:17: 4a:ae:46:99:10:58:87:b1:4d:22:57:fd:85:6f:6f:13:67:35: 27:0e:78:41:fc:7e:0a:17:e2:69:fb:66:a3:0c:8c:ef:05:77: e1:18:95:47:ec:bd:7c:b8:4f:41:c1:6a:1d:90:c1:9c:cd:87: 79:29:ec:ec:12:04:99:5d:68:b0:05:dd:56:e5:a6:41:3a:14: 13:a3:fe:1c:36:d9:c5:47:93:d0:ea:84:4a:58:ea:a2:43:1d: 9d:f3:9f:ae:cb:c4:51:a5:ef:cd:6a:ba:14:1c:15:91:14:3f: c9:00:4b:61:87:19:61:04:ae:35:e5:bb:0b:de:fc:ee:60:a5: 4f:67:85:3c:ca:f9:28:e4:95:8b:d7:6a:8d:d3:89:89:61:e2: 27:b7:e3:2d:95:48:53:7e:be:3b:fb:e5:a4:2a:5a:30:b4:1d: df:c2:0f:e0:9d:7a:9b:8e:5a:0b:4b:4f:49:76:82:ce:74:70: 4c:c3:dc:ee -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt7Nptf6isBCtJVcCQMo57xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MmJkNzZhNWNhYzI4M2VjZTBhMGY4ZWFiMmM5NzAyMTQw MWZiODkwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGZlOTM2NzYyMmEyZDU4MDVkMTU1YWUyN2Q0ZjdjODI2ODJhYTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk4um0Wo4D368dt0YkLBId7lBtCN EDS/q9YhpHjqWUaFB/LKQ6mWvFQ/c9Y8BSEDgJfMub4CQJhjr8dfDnQ8XhUygxDM gFFMN/mKjheh2n7ZwOGIcaYXOFh14A/l90Wxy8TTO+EGAqK2nWKgPdxtbvk5WzRA w2h+vmEaKkYE/lWy+JV49Su1qhQj1qTfGoZmhvIgIFoAbhU5h52QNFbDiDAtjwgA I5JQVsQEOPk0UPu+k4FPxQOaSFXgJ/kdq5wEu3S+MPIEc+sExdUhGD5yJ0vox6mf SMkoiQ3lnZ5mjQS7E2vaeVT01eQXQP1amFQHVlowB9t9tRxHCVGuCqf9zwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFGj+k2diKi1YBdFVrifU98gmgqqZMB8GA1UdIwQY MBaAFJYr12pcrCg+zgoPjqsslwIUAfuJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGl2WGFseXNLRDdPQ2ctT3F5eVhBaFFCLTRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8wNDY0NjAtMTAyYy00OTMwLTg0MmMt NmFiMTExNTVmNmZiLzEvYVA2VFoySXFMVmdGMFZXdUo5VDN5Q2FDcXBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC8wNDY0NjAtMTAyYy00OTMwLTg0MmMtNmFiMTExNTVmNmZi LzEvbGl2WGFseXNLRDdPQ2ctT3F5eVhBaFFCLTRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAVcsJAwQA VcsQAwQAVcsZAwQAVcsmMA0GCSqGSIb3DQEBCwUAA4IBAQAW3s2nPetr1CfORwXB jEtyBuQTiS4ghHEKBgFD5W4c6NnGwDdiJ4aWgUuDbalv+26LJuI33SJrtP43djzi xMSrK13aFwHptxdKrkaZEFiHsU0iV/2Fb28TZzUnDnhB/H4KF+Jp+2ajDIzvBXfh GJVH7L18uE9BwWodkMGczYd5KezsEgSZXWiwBd1W5aZBOhQTo/4cNtnFR5PQ6oRK WOqiQx2d85+uy8RRpe/NaroUHBWRFD/JAEthhxlhBK415bsL3vzuYKVPZ4U8yvko 5JWL12qN04mJYeInt+MtlUhTfr47++WkKlowtB3fwg/gnXqbjloLS09JdoLOdHBM w9zu -----END CERTIFICATE-----Generated at Mon Jan 19 23:23:20 2026 by rpki-client