This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f38a3e-53be-41d5-9c85-201d507345d9/1/aBV45nCtW7muN7ru-bpxU44kM1s.roa File: aBV45nCtW7muN7ru-bpxU44kM1s.roa (raw, json) Hash identifier: /y1XWSIqCBMFz5YEZLL16VNYk0h7Lda5evGQctWGrH0= Subject key identifier: 68:15:78:E6:70:AD:5B:B9:AE:37:BA:EE:F9:BA:71:53:8E:24:33:5B Certificate issuer: /CN=15ad6f24bcecdc8daec3e7454bc1283dc0cd931f Certificate serial: 019B7834D2D234FB9EF7D65223179F06DE4F Authority key identifier: 15:AD:6F:24:BC:EC:DC:8D:AE:C3:E7:45:4B:C1:28:3D:C0:CD:93:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fa1vJLzs3I2uw-dFS8EoPcDNkx8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f38a3e-53be-41d5-9c85-201d507345d9/1/aBV45nCtW7muN7ru-bpxU44kM1s.roa Signing time: Thu 01 Jan 2026 06:18:06 +0000 ROA not before: Thu 01 Jan 2026 06:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50766 IP address blocks: 185.51.21.0/24 maxlen: 24 2a13:dbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f38a3e-53be-41d5-9c85-201d507345d9/1/Fa1vJLzs3I2uw-dFS8EoPcDNkx8.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/f38a3e-53be-41d5-9c85-201d507345d9/1/Fa1vJLzs3I2uw-dFS8EoPcDNkx8.mft rsync://rpki.ripe.net/repository/DEFAULT/Fa1vJLzs3I2uw-dFS8EoPcDNkx8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:d2:d2:34:fb:9e:f7:d6:52:23:17:9f:06:de:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15ad6f24bcecdc8daec3e7454bc1283dc0cd931f Validity Not Before: Jan 1 06:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=681578e670ad5bb9ae37baeef9ba71538e24335b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b8:36:bd:70:b3:53:ba:ad:bf:a2:47:97:7b: 0e:bb:ee:aa:cf:6b:9f:4d:fb:58:75:64:1e:df:cf: 67:5c:73:82:dd:7e:50:81:4b:8c:ec:3a:20:67:1f: 06:02:f5:61:bc:65:e7:76:59:94:74:ee:69:9d:c6: 7d:07:28:49:ad:74:37:7c:30:ce:1b:4e:b0:49:2a: e7:1e:63:b0:04:73:79:4d:17:06:ac:1b:86:ac:b2: 66:97:59:5e:87:a8:4f:ad:9f:8a:a3:8f:62:d4:92: ba:9e:7b:ec:3c:16:1a:b3:fc:52:30:2a:a2:ab:48: a1:9e:b4:7e:fd:3c:4e:7d:f6:45:3e:47:bf:42:34: be:b3:07:0f:54:0c:47:95:e4:68:87:70:6e:52:a2: 47:5d:7f:ea:ee:1e:cd:11:80:6d:bb:da:4d:17:f4: 3d:a1:22:2a:d4:f8:b4:2b:27:b3:0a:53:30:24:44: bb:46:af:ee:53:08:a7:e9:ba:a9:a4:01:4d:89:cb: 45:5d:d8:93:26:7a:8c:51:94:f6:83:95:ce:5a:4a: 82:e4:24:38:57:c8:f3:ea:4b:54:32:c7:68:eb:f6: 29:a4:4f:60:57:79:e8:6d:55:e8:51:64:49:cb:e6: bd:81:3b:ee:1c:5d:ce:93:4e:f4:8b:54:13:bb:5c: 0f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:15:78:E6:70:AD:5B:B9:AE:37:BA:EE:F9:BA:71:53:8E:24:33:5B X509v3 Authority Key Identifier: keyid:15:AD:6F:24:BC:EC:DC:8D:AE:C3:E7:45:4B:C1:28:3D:C0:CD:93:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fa1vJLzs3I2uw-dFS8EoPcDNkx8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f38a3e-53be-41d5-9c85-201d507345d9/1/aBV45nCtW7muN7ru-bpxU44kM1s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f38a3e-53be-41d5-9c85-201d507345d9/1/Fa1vJLzs3I2uw-dFS8EoPcDNkx8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.51.21.0/24 IPv6: 2a13:dbc0::/32 Signature Algorithm: sha256WithRSAEncryption 88:a9:77:52:c1:7a:5c:fc:32:ed:d4:04:50:53:d6:f3:7c:16: 59:a9:0a:f3:04:20:18:91:54:43:3a:47:06:0b:45:81:99:f5: d9:56:7b:94:e8:89:a3:7a:c9:04:be:4b:39:90:4a:59:ad:86: 52:cf:7c:de:5c:16:05:78:c2:65:a3:f2:93:2b:dc:63:83:35: c0:ec:e8:83:ad:0f:be:a7:bf:83:6b:8e:ce:9a:0f:35:f8:6c: 10:61:8d:5d:74:f4:78:f3:f9:00:18:00:e1:3a:8d:88:79:0b: bd:71:34:5e:73:a2:0c:eb:51:1e:a4:cf:14:bd:c6:39:4e:6f: 31:48:aa:e5:31:db:c3:ce:0c:2c:3e:94:99:00:7d:a5:a2:9b: 04:00:d5:8e:87:87:ef:34:da:8b:23:60:b2:f6:5b:ca:91:a9: 29:18:fd:7e:11:d9:e9:14:3f:9d:ab:c6:66:8a:17:e5:e8:82: c3:d2:3e:92:c2:a4:0f:a0:13:f2:63:e0:bd:af:ad:88:75:48: 64:f1:87:c2:25:00:f4:1a:fb:9b:dc:f3:a3:51:50:8b:0c:ad: 79:c9:d7:fb:c8:2e:af:90:70:c7:3c:f1:b3:a0:cb:05:fc:bb: 0d:45:5b:01:e2:4a:8d:f6:2e:0b:32:1a:fd:f9:d5:f4:0d:da: 02:7e:0d:59 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NNLSNPue99ZSIxefBt5PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1YWQ2ZjI0YmNlY2RjOGRhZWMzZTc0NTRiYzEyODNkYzBj ZDkzMWYwHhcNMjYwMTAxMDYxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODE1NzhlNjcwYWQ1YmI5YWUzN2JhZWVmOWJhNzE1MzhlMjQzMzViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bg2vXCzU7qtv6JHl3sOu+6qz2uf TftYdWQe389nXHOC3X5QgUuM7DogZx8GAvVhvGXndlmUdO5pncZ9ByhJrXQ3fDDO G06wSSrnHmOwBHN5TRcGrBuGrLJml1leh6hPrZ+Ko49i1JK6nnvsPBYas/xSMCqi q0ihnrR+/TxOffZFPke/QjS+swcPVAxHleRoh3BuUqJHXX/q7h7NEYBtu9pNF/Q9 oSIq1Pi0KyezClMwJES7Rq/uUwin6bqppAFNictFXdiTJnqMUZT2g5XOWkqC5CQ4 V8jz6ktUMsdo6/YppE9gV3nobVXoUWRJy+a9gTvuHF3Ok070i1QTu1wPCQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGgVeOZwrVu5rje67vm6cVOOJDNbMB8GA1UdIwQY MBaAFBWtbyS87NyNrsPnRUvBKD3AzZMfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmExdkpMenMzSTJ1dy1kRlM4RW9QY0ROa3g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMzhhM2UtNTNiZS00MWQ1LTljODUt MjAxZDUwNzM0NWQ5LzEvYUJWNDVuQ3RXN211TjdydS1icHhVNDRrTTFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9mMzhhM2UtNTNiZS00MWQ1LTljODUtMjAxZDUwNzM0NWQ5 LzEvRmExdkpMenMzSTJ1dy1kRlM4RW9QY0ROa3g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuTMVMA0E AgACMAcDBQAqE9vAMA0GCSqGSIb3DQEBCwUAA4IBAQCIqXdSwXpc/DLt1ARQU9bz fBZZqQrzBCAYkVRDOkcGC0WBmfXZVnuU6ImjeskEvks5kEpZrYZSz3zeXBYFeMJl o/KTK9xjgzXA7OiDrQ++p7+Da47Omg81+GwQYY1ddPR48/kAGADhOo2IeQu9cTRe c6IM61EepM8UvcY5Tm8xSKrlMdvDzgwsPpSZAH2lopsEANWOh4fvNNqLI2Cy9lvK kakpGP1+EdnpFD+dq8Zmihfl6ILD0j6SwqQPoBPyY+C9r62IdUhk8YfCJQD0Gvub 3POjUVCLDK15ydf7yC6vkHDHPPGzoMsF/LsNRVsB4kqN9i4LMhr9+dX0DdoCfg1Z -----END CERTIFICATE-----Generated at Tue Feb 10 00:14:30 2026 by rpki-client