This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/57ffc5-584f-4bfa-ab85-b9153b3320c1/1/aolEbo2qB2S6A6P1jzACXp478EQ.roa File: aolEbo2qB2S6A6P1jzACXp478EQ.roa (raw, json) Hash identifier: oA7ghnRZDo0Fz0lfj+1EUdXsdtQn6tS/8aJp7ap6T0k= Subject key identifier: 6A:89:44:6E:8D:AA:07:64:BA:03:A3:F5:8F:30:02:5E:9E:3B:F0:44 Certificate issuer: /CN=ed850483cce1337b1c6c2fddea9c5dbb4a7e191a Certificate serial: 019B79ED03997E41442AD9BA442489CAEFBD Authority key identifier: ED:85:04:83:CC:E1:33:7B:1C:6C:2F:DD:EA:9C:5D:BB:4A:7E:19:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YUEg8zhM3scbC_d6pxdu0p-GRo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/57ffc5-584f-4bfa-ab85-b9153b3320c1/1/aolEbo2qB2S6A6P1jzACXp478EQ.roa Signing time: Thu 01 Jan 2026 14:18:54 +0000 ROA not before: Thu 01 Jan 2026 14:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15600 IP address blocks: 185.73.120.0/22 maxlen: 24 2a05:41c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/57ffc5-584f-4bfa-ab85-b9153b3320c1/1/7YUEg8zhM3scbC_d6pxdu0p-GRo.crl rsync://rpki.ripe.net/repository/DEFAULT/97/57ffc5-584f-4bfa-ab85-b9153b3320c1/1/7YUEg8zhM3scbC_d6pxdu0p-GRo.mft rsync://rpki.ripe.net/repository/DEFAULT/7YUEg8zhM3scbC_d6pxdu0p-GRo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:03:99:7e:41:44:2a:d9:ba:44:24:89:ca:ef:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ed850483cce1337b1c6c2fddea9c5dbb4a7e191a Validity Not Before: Jan 1 14:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a89446e8daa0764ba03a3f58f30025e9e3bf044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:cc:d9:20:a5:3d:c5:3e:ec:e4:43:7c:be: 30:75:fe:76:35:99:75:46:7e:aa:cb:54:27:b6:b8: f9:ad:84:c4:31:e2:fa:d7:70:12:52:29:17:a5:d5: 38:9f:33:24:df:a6:60:63:22:80:b1:79:f6:28:fe: fa:5a:49:f1:02:9b:0f:c6:d8:1f:cd:9f:83:af:23: ba:6a:58:60:d7:cf:19:b8:96:19:6a:d7:f1:67:fe: 3b:04:57:69:87:92:ca:0f:77:9d:47:1f:b2:22:f3: 55:2d:df:c0:26:64:89:b7:d5:2c:25:7e:31:20:61: fa:74:e2:45:e2:8a:b6:a8:5b:5c:54:86:0f:5f:b4: f5:d7:a2:1d:d8:ad:6e:3c:64:33:f1:09:04:1a:a6: ce:11:8d:9a:95:6e:76:7e:6f:d8:6a:db:50:d9:0f: 2f:a7:ec:fd:b6:8b:20:ae:93:52:44:a5:0a:5f:40: be:2c:6f:1f:2b:6a:1a:e0:c5:f8:67:4f:ef:6a:9d: 26:e8:b5:ca:d2:7f:f0:c3:8f:56:ba:f6:36:00:97: 24:c0:2e:70:4f:fa:96:8b:09:75:5f:ac:0e:29:3a: f7:2c:14:d5:f3:12:6d:55:6c:b9:c3:df:93:16:26: f4:93:a7:1a:04:7b:88:d2:51:1e:4c:24:ca:42:f0: 58:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:89:44:6E:8D:AA:07:64:BA:03:A3:F5:8F:30:02:5E:9E:3B:F0:44 X509v3 Authority Key Identifier: keyid:ED:85:04:83:CC:E1:33:7B:1C:6C:2F:DD:EA:9C:5D:BB:4A:7E:19:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YUEg8zhM3scbC_d6pxdu0p-GRo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/57ffc5-584f-4bfa-ab85-b9153b3320c1/1/aolEbo2qB2S6A6P1jzACXp478EQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/57ffc5-584f-4bfa-ab85-b9153b3320c1/1/7YUEg8zhM3scbC_d6pxdu0p-GRo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.73.120.0/22 IPv6: 2a05:41c0::/29 Signature Algorithm: sha256WithRSAEncryption 40:32:43:47:6f:9b:0d:f4:b6:90:77:12:0a:fb:81:01:8a:cf: 85:0f:bc:3b:f7:72:d2:2f:d5:93:20:27:d0:7a:cb:75:17:51: 5f:ba:93:b9:cb:a8:af:3d:0e:3a:a7:4e:46:a5:1c:8a:87:4f: 1a:cb:c6:9b:cb:07:f4:d3:89:b8:19:cb:b1:94:fb:a7:e9:83: 34:ef:04:46:44:87:80:d4:2f:1b:62:eb:12:73:cd:f4:43:68: 15:d6:ac:2e:c5:67:59:8f:b4:4d:63:1e:90:05:54:43:ad:a7: 2a:d1:c3:30:98:9e:6d:98:ac:b3:f0:c0:49:5c:74:76:dd:1a: 19:ea:2f:05:72:cd:4e:bf:23:2f:f7:16:76:9f:1c:92:74:88: 33:83:c4:34:e7:8a:bc:04:1e:69:9d:12:2d:84:d1:04:c2:47: be:d1:a1:54:f9:a7:62:28:f2:5f:99:ad:06:30:5d:73:70:08: 27:72:fc:35:6b:2c:36:75:f3:99:b3:d7:c8:7b:70:e5:c4:54: 47:f8:92:1f:08:24:d3:27:2f:0d:64:e2:d2:9a:db:b7:5b:cc: 0c:1d:eb:ed:56:57:3a:79:e0:aa:cd:cd:68:9e:5d:81:48:76: 67:e8:36:93:cb:44:9e:ad:69:32:04:26:f5:8a:02:b0:01:07: a7:b6:cf:76 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57QOZfkFEKtm6RCSJyu+9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkODUwNDgzY2NlMTMzN2IxYzZjMmZkZGVhOWM1ZGJiNGE3 ZTE5MWEwHhcNMjYwMTAxMTQxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTg5NDQ2ZThkYWEwNzY0YmEwM2EzZjU4ZjMwMDI1ZTllM2JmMDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtf3M2SClPcU+7ORDfL4wdf52NZl1 Rn6qy1Qntrj5rYTEMeL613ASUikXpdU4nzMk36ZgYyKAsXn2KP76WknxApsPxtgf zZ+DryO6alhg188ZuJYZatfxZ/47BFdph5LKD3edRx+yIvNVLd/AJmSJt9UsJX4x IGH6dOJF4oq2qFtcVIYPX7T116Id2K1uPGQz8QkEGqbOEY2alW52fm/YattQ2Q8v p+z9tosgrpNSRKUKX0C+LG8fK2oa4MX4Z0/vap0m6LXK0n/ww49WuvY2AJckwC5w T/qWiwl1X6wOKTr3LBTV8xJtVWy5w9+TFib0k6caBHuI0lEeTCTKQvBYGwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGqJRG6NqgdkugOj9Y8wAl6eO/BEMB8GA1UdIwQY MBaAFO2FBIPM4TN7HGwv3eqcXbtKfhkaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN1lVRWc4emhNM3NjYkNfZDZweGR1MHAtR1JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny81N2ZmYzUtNTg0Zi00YmZhLWFiODUt YjkxNTNiMzMyMGMxLzEvYW9sRWJvMnFCMlM2QTZQMWp6QUNYcDQ3OEVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny81N2ZmYzUtNTg0Zi00YmZhLWFiODUtYjkxNTNiMzMyMGMx LzEvN1lVRWc4emhNM3NjYkNfZDZweGR1MHAtR1JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUl4MA0E AgACMAcDBQMqBUHAMA0GCSqGSIb3DQEBCwUAA4IBAQBAMkNHb5sN9LaQdxIK+4EB is+FD7w793LSL9WTICfQest1F1FfupO5y6ivPQ46p05GpRyKh08ay8abywf004m4 GcuxlPun6YM07wRGRIeA1C8bYusSc830Q2gV1qwuxWdZj7RNYx6QBVRDracq0cMw mJ5tmKyz8MBJXHR23RoZ6i8Fcs1OvyMv9xZ2nxySdIgzg8Q054q8BB5pnRIthNEE wke+0aFU+adiKPJfma0GMF1zcAgncvw1ayw2dfOZs9fIe3DlxFRH+JIfCCTTJy8N ZOLSmtu3W8wMHevtVlc6eeCqzc1onl2BSHZn6DaTy0SerWkyBCb1igKwAQents92 -----END CERTIFICATE-----Generated at Mon Jan 26 20:42:27 2026 by rpki-client