This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/AP29ZUhTpSq5v5F29RLmfRluGGg.roa File: AP29ZUhTpSq5v5F29RLmfRluGGg.roa (raw, json) Hash identifier: Srhc1Pf/7fMSsd5MEwDg1pq9CSvUw5bMKTeun0cG0k0= Subject key identifier: 00:FD:BD:65:48:53:A5:2A:B9:BF:91:76:F5:12:E6:7D:19:6E:18:68 Certificate issuer: /CN=e4c86da3f483246518d368034bc86113906a55a3 Certificate serial: 019B7C127A4B938B4BADAF919F1205D3E30D Authority key identifier: E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/AP29ZUhTpSq5v5F29RLmfRluGGg.roa Signing time: Fri 02 Jan 2026 00:19:04 +0000 ROA not before: Fri 02 Jan 2026 00:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20115 IP address blocks: 185.10.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.crl rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.mft rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:7a:4b:93:8b:4b:ad:af:91:9f:12:05:d3:e3:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4c86da3f483246518d368034bc86113906a55a3 Validity Not Before: Jan 2 00:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00fdbd654853a52ab9bf9176f512e67d196e1868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:f4:f2:e4:a4:1b:c5:c9:61:37:83:6e:11: ce:60:2f:5c:83:de:cd:20:f5:30:08:b7:2f:87:bf: a9:e0:13:ab:88:e0:bf:10:18:16:da:83:f2:6f:4c: ac:ad:c4:9e:1e:b2:6e:7c:53:29:ad:47:55:f4:38: 52:b6:c0:b4:37:81:a2:b8:42:4d:e7:5d:da:a7:e4: 53:27:6d:9f:29:d4:91:b0:b1:3d:c7:64:e6:05:80: f2:ac:e2:f7:e9:51:cf:d9:33:9d:f6:3f:4d:b1:41: 55:a9:1b:8c:d7:50:b6:99:19:8f:c2:d9:5f:80:52: a2:ea:16:12:b3:8c:af:75:aa:19:8f:83:0d:82:8e: 73:b7:7c:8f:88:cb:80:8d:04:e8:0f:a9:89:9c:c6: 1b:c9:17:0b:c4:a3:44:0f:76:5a:9c:11:07:c7:cb: 98:36:e4:bd:d4:04:10:10:dc:14:07:37:29:a2:47: fb:4d:f9:3d:2d:fc:8a:b1:3f:17:d0:67:5b:a2:d4: c7:db:56:dd:3c:5f:c4:45:e1:fe:fc:26:5d:5f:c0: 8f:72:43:a5:c2:a5:53:dc:ba:42:55:33:47:a0:6a: 23:6a:f8:d9:e9:b1:dd:16:d5:f7:2a:09:b9:da:36: 0d:f8:5f:95:1f:bf:8e:55:80:7c:c0:ea:8f:89:5b: a0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FD:BD:65:48:53:A5:2A:B9:BF:91:76:F5:12:E6:7D:19:6E:18:68 X509v3 Authority Key Identifier: keyid:E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/AP29ZUhTpSq5v5F29RLmfRluGGg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.10.122.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:2b:d2:da:ce:1f:cd:1b:af:95:a7:6e:9c:1d:e3:02:06:36: 83:7e:26:2b:73:e7:4b:cb:66:5b:ee:c2:f4:dd:15:c7:2b:7f: fc:26:c6:95:f9:07:b2:6c:a2:6b:95:31:3c:bb:93:70:ea:cf: b0:81:fa:d9:0d:6b:bb:4e:d4:e4:e2:fd:07:d8:00:d5:fb:40: 14:22:8f:ce:0d:95:a6:ea:89:3a:fa:85:6f:90:ea:8a:af:7f: 02:94:18:13:ba:9b:77:3b:75:b0:f6:0b:eb:43:65:b4:76:f4: ed:7f:10:40:4c:a1:ad:1a:7a:c0:2e:ae:c8:f3:41:8d:72:bd: 4f:1d:25:7c:77:08:08:bb:1c:12:96:09:9c:ad:48:c6:09:f1: dc:f8:f4:36:9b:1c:86:b8:46:1f:68:51:51:73:1b:ad:58:f8: b5:e5:cc:f6:52:89:8e:93:af:df:54:9d:03:dc:30:ff:dd:c7: 3f:69:43:85:79:33:b1:c2:35:3a:09:ef:9b:b2:8a:88:71:7f: e3:b2:a1:67:fe:e5:c2:7c:de:51:9d:07:19:a8:b4:f4:9e:61: 76:72:2c:37:d7:fb:20:de:bd:bc:ab:f1:0a:58:d9:2f:ef:4c: 57:7f:26:9e:69:c5:55:2a:94:94:e5:98:b6:63:a3:48:75:86: 9f:15:67:83 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EnpLk4tLra+RnxIF0+MNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0Yzg2ZGEzZjQ4MzI0NjUxOGQzNjgwMzRiYzg2MTEzOTA2 YTU1YTMwHhcNMjYwMTAyMDAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMGZkYmQ2NTQ4NTNhNTJhYjliZjkxNzZmNTEyZTY3ZDE5NmUxODY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYf08uSkG8XJYTeDbhHOYC9cg97N IPUwCLcvh7+p4BOriOC/EBgW2oPyb0ysrcSeHrJufFMprUdV9DhStsC0N4GiuEJN 513ap+RTJ22fKdSRsLE9x2TmBYDyrOL36VHP2TOd9j9NsUFVqRuM11C2mRmPwtlf gFKi6hYSs4yvdaoZj4MNgo5zt3yPiMuAjQToD6mJnMYbyRcLxKNED3ZanBEHx8uY NuS91AQQENwUBzcpokf7Tfk9LfyKsT8X0GdbotTH21bdPF/EReH+/CZdX8CPckOl wqVT3LpCVTNHoGojavjZ6bHdFtX3Kgm52jYN+F+VH7+OVYB8wOqPiVugawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAD9vWVIU6Uqub+RdvUS5n0ZbhhoMB8GA1UdIwQY MBaAFOTIbaP0gyRlGNNoA0vIYROQalWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNU1odG9fU0RKR1VZMDJnRFM4aGhFNUJxVmFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iNGU1MDMtNTc0Yi00NTY1LTkyMTct YzUxMWEzZTkxMmI2LzEvQVAyOVpVaFRwU3E1djVGMjlSTG1mUmx1R0dnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9iNGU1MDMtNTc0Yi00NTY1LTkyMTctYzUxMWEzZTkxMmI2 LzEvNU1odG9fU0RKR1VZMDJnRFM4aGhFNUJxVmFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuQp6MA0G CSqGSIb3DQEBCwUAA4IBAQB9K9Lazh/NG6+Vp26cHeMCBjaDfiYrc+dLy2Zb7sL0 3RXHK3/8JsaV+QeybKJrlTE8u5Nw6s+wgfrZDWu7TtTk4v0H2ADV+0AUIo/ODZWm 6ok6+oVvkOqKr38ClBgTupt3O3Ww9gvrQ2W0dvTtfxBATKGtGnrALq7I80GNcr1P HSV8dwgIuxwSlgmcrUjGCfHc+PQ2mxyGuEYfaFFRcxutWPi15cz2UomOk6/fVJ0D 3DD/3cc/aUOFeTOxwjU6Ce+bsoqIcX/jsqFn/uXCfN5RnQcZqLT0nmF2ciw31/sg 3r28q/EKWNkv70xXfyaeacVVKpSU5Zi2Y6NIdYafFWeD -----END CERTIFICATE-----Generated at Tue Jan 20 12:27:28 2026 by rpki-client