This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/Aq2uYBM38caP1COB9dDvXovJtxs.roa File: Aq2uYBM38caP1COB9dDvXovJtxs.roa (raw, json) Hash identifier: xNEtL6mGQtXdg7pfWA/jWJFTi74bGAiMyDEPSZKrj8A= Subject key identifier: 02:AD:AE:60:13:37:F1:C6:8F:D4:23:81:F5:D0:EF:5E:8B:C9:B7:1B Certificate issuer: /CN=4d73d94019a3c235877df6bc1b29c76a0b64c9d0 Certificate serial: 019B79ED20FF4CF1DDBBCCF521BA7A574BC2 Authority key identifier: 4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/Aq2uYBM38caP1COB9dDvXovJtxs.roa Signing time: Thu 01 Jan 2026 14:19:02 +0000 ROA not before: Thu 01 Jan 2026 14:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200851 IP address blocks: 45.11.160.0/22 maxlen: 22 45.66.244.0/22 maxlen: 24 84.38.255.0/24 maxlen: 24 185.93.244.0/22 maxlen: 24 2a04:23c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.crl rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.mft rsync://rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:20:ff:4c:f1:dd:bb:cc:f5:21:ba:7a:57:4b:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d73d94019a3c235877df6bc1b29c76a0b64c9d0 Validity Not Before: Jan 1 14:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02adae601337f1c68fd42381f5d0ef5e8bc9b71b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a1:b7:ca:8c:f2:2e:7d:c2:72:b5:f7:c2:15: 2c:c7:e6:12:01:9f:cd:62:ff:e8:39:28:0a:0a:8a: 5f:1e:16:5b:7f:f8:3b:93:f8:f5:09:48:25:53:03: 88:19:ca:f3:d8:08:0d:83:39:d1:a2:b8:1c:82:ae: 66:6f:1e:f0:75:76:77:c2:2d:c2:ed:b7:91:34:86: 2e:a1:10:da:55:e5:b6:db:bf:a4:7f:d7:37:9c:09: 2b:c8:bc:8a:61:7a:9f:81:23:48:70:0f:3e:6a:a7: bf:4d:8e:96:49:7d:86:28:57:00:d5:da:a0:b1:91: 28:cf:93:4f:45:31:2e:fb:b0:1d:a3:dc:64:ab:b1: d8:16:a0:0f:3f:ec:41:3e:ac:de:27:83:ed:43:98: ad:83:ac:77:b8:43:11:ae:1d:06:95:97:d6:2c:4e: c3:96:f1:06:1d:1c:3f:28:2d:8b:e0:da:99:8c:95: 20:e8:f0:54:59:07:a8:58:b0:04:92:5e:49:d6:ad: 44:4a:3e:ff:66:4b:0b:61:28:01:95:86:ab:b7:7e: 1e:da:6e:68:a2:40:a7:d3:14:54:4b:e8:c6:34:b3: ec:3f:09:ad:61:25:1f:86:27:9a:fa:39:57:0c:41: ad:c4:c9:e6:61:ca:2b:e1:69:5f:83:c8:d7:53:7e: 0a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AD:AE:60:13:37:F1:C6:8F:D4:23:81:F5:D0:EF:5E:8B:C9:B7:1B X509v3 Authority Key Identifier: keyid:4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/Aq2uYBM38caP1COB9dDvXovJtxs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.160.0/22 45.66.244.0/22 84.38.255.0/24 185.93.244.0/22 IPv6: 2a04:23c0::/29 Signature Algorithm: sha256WithRSAEncryption c5:d4:a5:28:31:99:fe:2e:1d:b3:21:ad:64:84:0a:91:4f:87: df:00:dd:d7:a2:27:e6:f8:9e:b6:9a:c1:00:b6:c2:ff:a0:f2: 5f:0f:fe:af:e4:4e:50:34:94:ab:9e:4e:35:e0:87:67:cb:a0: 8e:ef:cb:7a:38:68:f3:57:f2:60:22:cc:2a:05:b0:1e:64:39: 1a:36:50:ef:80:c6:7e:7c:c5:a5:dc:ce:93:fc:94:71:c0:2e: 39:12:18:f3:48:df:0e:6b:f2:41:14:d6:08:28:67:e7:a0:af: fe:af:d0:f4:6b:65:d8:e2:88:64:f2:4b:9a:ea:c4:e3:1c:b5: 03:ac:a9:36:48:96:d1:f3:a7:bc:03:dc:e5:b7:a3:ce:03:22: 3a:d4:52:e3:a6:a6:fe:f5:8c:78:16:fc:8b:c5:b8:d1:73:6c: 4f:e8:19:66:a3:92:3e:cc:9e:57:69:74:5d:ac:b3:27:9c:14: 45:51:20:56:e0:4e:cb:7b:e4:1a:56:46:04:ed:89:f6:69:ed: 4d:e4:3a:37:a1:cd:f5:b1:34:08:d2:ba:6b:f9:9f:99:1c:55: e4:44:6f:00:da:dc:00:97:01:f3:be:50:51:da:54:13:e5:51: 24:08:3e:3f:e5:77:69:5a:08:50:3e:9e:16:63:ce:7c:68:23: 92:9d:14:db -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt57SD/TPHdu8z1Ibp6V0vCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNzNkOTQwMTlhM2MyMzU4NzdkZjZiYzFiMjljNzZhMGI2 NGM5ZDAwHhcNMjYwMTAxMTQxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmFkYWU2MDEzMzdmMWM2OGZkNDIzODFmNWQwZWY1ZThiYzliNzFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqG3yozyLn3CcrX3whUsx+YSAZ/N Yv/oOSgKCopfHhZbf/g7k/j1CUglUwOIGcrz2AgNgznRorgcgq5mbx7wdXZ3wi3C 7beRNIYuoRDaVeW227+kf9c3nAkryLyKYXqfgSNIcA8+aqe/TY6WSX2GKFcA1dqg sZEoz5NPRTEu+7Ado9xkq7HYFqAPP+xBPqzeJ4PtQ5itg6x3uEMRrh0GlZfWLE7D lvEGHRw/KC2L4NqZjJUg6PBUWQeoWLAEkl5J1q1ESj7/ZksLYSgBlYart34e2m5o okCn0xRUS+jGNLPsPwmtYSUfhiea+jlXDEGtxMnmYcor4Wlfg8jXU34KSQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFAKtrmATN/HGj9QjgfXQ716LybcbMB8GA1UdIwQY MBaAFE1z2UAZo8I1h332vBspx2oLZMnQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFhQWlFCbWp3aldIZmZhOEd5bkhhZ3RreWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8wOTQ4MmItNGQyYS00ODkzLTgyOGQt OTZkYzVlYTBjYzgzLzEvQXEydVlCTTM4Y2FQMUNPQjlkRHZYb3ZKdHhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS8wOTQ4MmItNGQyYS00ODkzLTgyOGQtOTZkYzVlYTBjYzgz LzEvVFhQWlFCbWp3aldIZmZhOEd5bkhhZ3RreWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCLQugAwQC LUL0AwQAVCb/AwQCuV30MA0EAgACMAcDBQMqBCPAMA0GCSqGSIb3DQEBCwUAA4IB AQDF1KUoMZn+Lh2zIa1khAqRT4ffAN3Xoifm+J62msEAtsL/oPJfD/6v5E5QNJSr nk414Idny6CO78t6OGjzV/JgIswqBbAeZDkaNlDvgMZ+fMWl3M6T/JRxwC45Ehjz SN8Oa/JBFNYIKGfnoK/+r9D0a2XY4ohk8kua6sTjHLUDrKk2SJbR86e8A9zlt6PO AyI61FLjpqb+9Yx4FvyLxbjRc2xP6Blmo5I+zJ5XaXRdrLMnnBRFUSBW4E7Le+Qa VkYE7Yn2ae1N5Do3oc31sTQI0rpr+Z+ZHFXkRG8A2twAlwHzvlBR2lQT5VEkCD4/ 5XdpWghQPp4WY858aCOSnRTb -----END CERTIFICATE-----Generated at Tue Feb 10 05:47:30 2026 by rpki-client