This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/AMh4k1oWD7PnlfMavG7L6jv07hw.roa File: AMh4k1oWD7PnlfMavG7L6jv07hw.roa (raw, json) Hash identifier: +g6V9pdeR+6pG0sd9oadIWK01wzE9uV3/4JWPD1+Ejg= Subject key identifier: 00:C8:78:93:5A:16:0F:B3:E7:95:F3:1A:BC:6E:CB:EA:3B:F4:EE:1C Certificate issuer: /CN=f8d7213f3585b7112dff0cb43c192b1caf307d18 Certificate serial: 019B797E0E20EF0932006A7CC70B0DA4EF92 Authority key identifier: F8:D7:21:3F:35:85:B7:11:2D:FF:0C:B4:3C:19:2B:1C:AF:30:7D:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-NchPzWFtxEt_wy0PBkrHK8wfRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/AMh4k1oWD7PnlfMavG7L6jv07hw.roa Signing time: Thu 01 Jan 2026 12:17:42 +0000 ROA not before: Thu 01 Jan 2026 12:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7155 IP address blocks: 45.140.216.0/22 maxlen: 24 2a0f:1b00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/1-NchPzWFtxEt_wy0PBkrHK8wfRg.crl rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/1-NchPzWFtxEt_wy0PBkrHK8wfRg.mft rsync://rpki.ripe.net/repository/DEFAULT/1-NchPzWFtxEt_wy0PBkrHK8wfRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:0e:20:ef:09:32:00:6a:7c:c7:0b:0d:a4:ef:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8d7213f3585b7112dff0cb43c192b1caf307d18 Validity Not Before: Jan 1 12:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00c878935a160fb3e795f31abc6ecbea3bf4ee1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:95:7c:c1:ba:53:26:64:63:19:53:38:b2:4e: 72:b1:85:c4:7c:72:50:a3:68:15:1d:f8:cf:43:bf: 8a:29:2d:cf:d5:b8:f9:26:e4:9a:67:a9:3f:a4:a6: cf:49:6c:d3:a7:77:c2:24:80:cf:f4:67:61:4f:fd: 8d:1b:e2:03:2d:c4:3b:d1:de:37:b2:36:b3:e5:e8: 75:3e:44:07:e7:ba:b1:1c:13:5c:17:9a:09:8b:27: 41:0a:59:25:5e:5f:a8:8d:1f:9c:45:04:43:65:87: 3e:da:57:e1:29:0a:88:a2:52:7c:45:89:81:0a:00: 90:7e:46:69:d7:77:fa:a2:28:6f:8e:05:40:03:04: ef:20:8d:f0:48:d5:30:08:24:b4:4b:7e:59:d3:44: 64:1f:72:7c:5b:cb:e5:f1:56:9c:bb:45:39:c4:40: a4:06:66:c5:1c:42:b1:8b:3f:71:a5:8c:1d:2f:07: 6d:56:0b:0c:86:67:b8:0d:69:e0:6d:e8:5d:39:40: b0:ce:85:98:57:a3:03:b7:0c:b1:ec:0e:b9:a8:64: c9:53:58:98:f8:7a:d4:44:0e:5c:48:09:fb:2f:35: 39:ce:80:47:7f:63:8b:c6:f9:f0:db:4b:7d:93:d6: d5:34:29:7b:10:67:22:a3:be:ca:8e:b0:df:ff:65: 4c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C8:78:93:5A:16:0F:B3:E7:95:F3:1A:BC:6E:CB:EA:3B:F4:EE:1C X509v3 Authority Key Identifier: keyid:F8:D7:21:3F:35:85:B7:11:2D:FF:0C:B4:3C:19:2B:1C:AF:30:7D:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-NchPzWFtxEt_wy0PBkrHK8wfRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/AMh4k1oWD7PnlfMavG7L6jv07hw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/4953ee-910f-4b8e-b464-2650edd3013f/1/1-NchPzWFtxEt_wy0PBkrHK8wfRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.140.216.0/22 IPv6: 2a0f:1b00::/29 Signature Algorithm: sha256WithRSAEncryption 23:6a:e4:90:96:db:8f:32:72:58:1d:66:64:c9:14:57:11:a7: a7:8e:50:0a:23:df:8e:de:8c:53:a6:dc:62:80:d8:88:dd:91: cc:75:85:40:50:38:2c:35:9a:1f:df:33:80:58:4c:82:81:1b: 31:4d:00:e6:44:77:65:99:ac:fa:ce:ca:bf:c5:c3:0d:32:e3: 01:88:cc:cb:36:f0:7b:8b:5c:80:b1:25:5c:db:0e:fd:e8:48: 89:ff:17:be:1a:9e:34:42:20:9c:f1:0f:e1:7e:06:e1:e0:a0: ac:34:05:d1:01:93:cc:ec:36:48:42:47:af:9e:4f:2e:ec:10: fc:00:cd:1b:9b:cb:43:d8:e1:27:de:ef:42:e4:c6:88:b0:86: 88:78:b9:bf:91:8c:a7:b2:01:40:b3:86:d6:47:18:79:af:5e: 34:24:8e:b6:f1:a4:d8:49:48:98:f5:b2:a7:93:89:10:b3:e3: f0:92:7b:ac:65:62:c2:83:9e:cb:4f:05:9c:05:44:d3:de:36: 39:91:7b:2b:b9:c3:51:36:39:f0:63:fe:47:3f:f5:51:a4:c9: d2:c2:66:76:39:55:04:16:3a:5c:7a:17:ea:00:10:64:bf:dc: c2:48:78:1e:72:d1:6d:ed:06:80:62:ba:7b:01:4c:99:6f:4c: 15:a3:9d:94 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5fg4g7wkyAGp8xwsNpO+SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZDcyMTNmMzU4NWI3MTEyZGZmMGNiNDNjMTkyYjFjYWYz MDdkMTgwHhcNMjYwMTAxMTIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMGM4Nzg5MzVhMTYwZmIzZTc5NWYzMWFiYzZlY2JlYTNiZjRlZTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpV8wbpTJmRjGVM4sk5ysYXEfHJQ o2gVHfjPQ7+KKS3P1bj5JuSaZ6k/pKbPSWzTp3fCJIDP9GdhT/2NG+IDLcQ70d43 sjaz5eh1PkQH57qxHBNcF5oJiydBClklXl+ojR+cRQRDZYc+2lfhKQqIolJ8RYmB CgCQfkZp13f6oihvjgVAAwTvII3wSNUwCCS0S35Z00RkH3J8W8vl8Vacu0U5xECk BmbFHEKxiz9xpYwdLwdtVgsMhme4DWngbehdOUCwzoWYV6MDtwyx7A65qGTJU1iY +HrURA5cSAn7LzU5zoBHf2OLxvnw20t9k9bVNCl7EGcio77KjrDf/2VM8wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFADIeJNaFg+z55XzGrxuy+o79O4cMB8GA1UdIwQY MBaAFPjXIT81hbcRLf8MtDwZKxyvMH0YMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1OY2hQeldGdHhFdF93eTBQQmtySEs4d2ZSZy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvNDk1M2VlLTkxMGYtNGI4ZS1iNDY0 LTI2NTBlZGQzMDEzZi8xL0FNaDRrMW9XRDdQbmxmTWF2RzdMNmp2MDdody5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTkvNDk1M2VlLTkxMGYtNGI4ZS1iNDY0LTI2NTBlZGQzMDEz Zi8xLzEtTmNoUHpXRnR4RXRfd3kwUEJrckhLOHdmUmcuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAItjNgw DQQCAAIwBwMFAyoPGwAwDQYJKoZIhvcNAQELBQADggEBACNq5JCW248yclgdZmTJ FFcRp6eOUAoj347ejFOm3GKA2Ijdkcx1hUBQOCw1mh/fM4BYTIKBGzFNAOZEd2WZ rPrOyr/Fww0y4wGIzMs28HuLXICxJVzbDv3oSIn/F74anjRCIJzxD+F+BuHgoKw0 BdEBk8zsNkhCR6+eTy7sEPwAzRuby0PY4Sfe70Lkxoiwhoh4ub+RjKeyAUCzhtZH GHmvXjQkjrbxpNhJSJj1sqeTiRCz4/CSe6xlYsKDnstPBZwFRNPeNjmReyu5w1E2 OfBj/kc/9VGkydLCZnY5VQQWOlx6F+oAEGS/3MJIeB5y0W3tBoBiunsBTJlvTBWj nZQ= -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:08 2026 by rpki-client