This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/AyrzSBhcVdLjrtpgaPtvfCo2cgk.roa File: AyrzSBhcVdLjrtpgaPtvfCo2cgk.roa (raw, json) Hash identifier: FPSdxwJlvKxB9usaAhQQLpbdSK3miP+bPkK1Uge0pAo= Subject key identifier: 03:2A:F3:48:18:5C:55:D2:E3:AE:DA:60:68:FB:6F:7C:2A:36:72:09 Certificate issuer: /CN=449e4252bcb22ea2c6cfb3924c8f84bdde7a7471 Certificate serial: 019B775963395870B800FE49049475E744BF Authority key identifier: 44:9E:42:52:BC:B2:2E:A2:C6:CF:B3:92:4C:8F:84:BD:DE:7A:74:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RJ5CUryyLqLGz7OSTI-Evd56dHE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/AyrzSBhcVdLjrtpgaPtvfCo2cgk.roa Signing time: Thu 01 Jan 2026 02:18:25 +0000 ROA not before: Thu 01 Jan 2026 02:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59407 IP address blocks: 5.134.16.0/21 maxlen: 21 91.192.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/RJ5CUryyLqLGz7OSTI-Evd56dHE.crl rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/RJ5CUryyLqLGz7OSTI-Evd56dHE.mft rsync://rpki.ripe.net/repository/DEFAULT/RJ5CUryyLqLGz7OSTI-Evd56dHE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:63:39:58:70:b8:00:fe:49:04:94:75:e7:44:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=449e4252bcb22ea2c6cfb3924c8f84bdde7a7471 Validity Not Before: Jan 1 02:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=032af348185c55d2e3aeda6068fb6f7c2a367209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5a:bf:2a:15:b6:d5:d2:73:b7:23:c8:07:c8: 6d:a4:7b:11:56:42:93:f4:50:68:79:de:a0:64:74: de:d0:66:01:ae:ae:6e:55:08:0f:f7:95:4f:a0:89: 6f:9c:4c:fd:18:3c:04:ca:e8:f9:26:ad:03:b3:01: 00:e7:6d:89:21:7b:10:89:27:b4:4f:be:49:80:02: d8:78:53:e5:67:85:a5:90:ee:4e:7a:7f:14:31:f3: 58:14:d6:fd:0a:b5:c9:e1:50:b6:09:7f:c5:d1:96: ec:9b:5b:b5:be:81:08:95:53:49:fa:bf:86:1d:f2: ef:6f:7f:7b:e7:2c:fb:fc:83:49:c3:9c:ea:db:15: ee:89:c1:82:7a:21:db:72:52:79:ac:88:3b:ec:c5: 91:59:56:19:8a:c2:cb:52:3b:32:af:d3:01:61:2f: fe:7b:29:4e:13:3d:17:d2:1b:3e:6f:45:7a:b1:f3: 72:fb:03:c0:25:57:25:cc:db:39:86:4b:e0:9e:0f: b9:d9:40:13:ff:f1:68:17:a9:c0:0d:ff:8c:ea:e3: ca:90:49:b6:f9:24:3b:98:c2:6c:22:1c:73:fb:bb: b5:57:85:0b:8b:58:63:d8:e1:58:34:42:d7:97:0f: 82:43:f9:74:17:74:2d:90:49:27:86:f4:a3:4d:c9: eb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2A:F3:48:18:5C:55:D2:E3:AE:DA:60:68:FB:6F:7C:2A:36:72:09 X509v3 Authority Key Identifier: keyid:44:9E:42:52:BC:B2:2E:A2:C6:CF:B3:92:4C:8F:84:BD:DE:7A:74:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RJ5CUryyLqLGz7OSTI-Evd56dHE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/AyrzSBhcVdLjrtpgaPtvfCo2cgk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9e9559-8f3c-45d0-851c-68f2174c79ee/1/RJ5CUryyLqLGz7OSTI-Evd56dHE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.134.16.0/21 91.192.202.0/23 Signature Algorithm: sha256WithRSAEncryption 01:8e:b2:9c:f5:0c:3f:47:d3:2d:fe:9a:e5:38:c9:5d:9c:53: 5d:1a:30:da:8c:85:60:29:77:3d:78:c4:52:99:13:ce:27:cf: d8:3c:07:a3:08:b2:2c:30:43:52:95:20:7c:c5:22:9b:a6:ff: 42:d9:9f:df:d4:3d:73:a0:4f:2a:9f:ac:fc:d9:26:ea:8a:c5: 4f:45:45:97:47:ea:c4:ab:f8:66:66:bd:50:05:84:90:31:f8: de:57:14:cc:42:34:51:2a:b6:cb:c4:5a:e3:98:64:0c:8b:1f: 56:77:3d:17:1d:67:7f:09:34:58:25:4a:6c:58:66:c5:fd:dd: 6a:e3:39:f4:1d:7a:e9:b3:78:c8:27:fb:3b:e6:93:62:e8:3b: c0:1d:00:c8:4c:77:82:49:fd:b5:d9:f6:84:29:ed:98:a0:ad: 2d:83:c8:ff:92:4f:9d:4a:c1:74:78:99:54:a3:61:12:ec:0c: 2e:31:88:eb:21:89:d4:fd:96:6e:d8:5b:6e:5d:f7:6a:8c:2c: e8:b9:ca:91:2c:6c:8d:f0:7c:02:f9:4a:e3:64:ab:58:55:13: 93:68:73:fb:f9:b3:5e:29:ce:4b:0a:32:7b:eb:4c:23:d4:fb: 58:7d:db:0f:df:ce:01:aa:8b:f2:7d:88:6d:e8:ae:52:1d:91: 66:27:46:69 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WWM5WHC4AP5JBJR150S/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0OWU0MjUyYmNiMjJlYTJjNmNmYjM5MjRjOGY4NGJkZGU3 YTc0NzEwHhcNMjYwMTAxMDIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzJhZjM0ODE4NWM1NWQyZTNhZWRhNjA2OGZiNmY3YzJhMzY3MjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVq/KhW21dJztyPIB8htpHsRVkKT 9FBoed6gZHTe0GYBrq5uVQgP95VPoIlvnEz9GDwEyuj5Jq0DswEA522JIXsQiSe0 T75JgALYeFPlZ4WlkO5Oen8UMfNYFNb9CrXJ4VC2CX/F0Zbsm1u1voEIlVNJ+r+G HfLvb3975yz7/INJw5zq2xXuicGCeiHbclJ5rIg77MWRWVYZisLLUjsyr9MBYS/+ eylOEz0X0hs+b0V6sfNy+wPAJVclzNs5hkvgng+52UAT//FoF6nADf+M6uPKkEm2 +SQ7mMJsIhxz+7u1V4ULi1hj2OFYNELXlw+CQ/l0F3QtkEknhvSjTcnrkwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAMq80gYXFXS467aYGj7b3wqNnIJMB8GA1UdIwQY MBaAFESeQlK8si6ixs+zkkyPhL3eenRxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUko1Q1VyeXlMcUxHejdPU1RJLUV2ZDU2ZEhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZTk1NTktOGYzYy00NWQwLTg1MWMt NjhmMjE3NGM3OWVlLzEvQXlyelNCaGNWZExqcnRwZ2FQdHZmQ28yY2drLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85ZTk1NTktOGYzYy00NWQwLTg1MWMtNjhmMjE3NGM3OWVl LzEvUko1Q1VyeXlMcUxHejdPU1RJLUV2ZDU2ZEhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDBYYQAwQB W8DKMA0GCSqGSIb3DQEBCwUAA4IBAQABjrKc9Qw/R9Mt/prlOMldnFNdGjDajIVg KXc9eMRSmRPOJ8/YPAejCLIsMENSlSB8xSKbpv9C2Z/f1D1zoE8qn6z82SbqisVP RUWXR+rEq/hmZr1QBYSQMfjeVxTMQjRRKrbLxFrjmGQMix9Wdz0XHWd/CTRYJUps WGbF/d1q4zn0HXrps3jIJ/s75pNi6DvAHQDITHeCSf212faEKe2YoK0tg8j/kk+d SsF0eJlUo2ES7AwuMYjrIYnU/ZZu2FtuXfdqjCzoucqRLGyN8HwC+UrjZKtYVROT aHP7+bNeKc5LCjJ760wj1PtYfdsP384BqovyfYht6K5SHZFmJ0Zp -----END CERTIFICATE-----Generated at Mon Feb 9 22:28:38 2026 by rpki-client