This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/p1Z5ag1eRovSGpghiltah3wrLp8.roa File: p1Z5ag1eRovSGpghiltah3wrLp8.roa (raw, json) Hash identifier: fdCiGCU5t+2pHmKwq78C8J8Bdqj2StfkhlW4J0RllGM= Subject key identifier: A7:56:79:6A:0D:5E:46:8B:D2:1A:98:21:8A:5B:5A:87:7C:2B:2E:9F Certificate issuer: /CN=af002d6bb85a986bc88dbcd933209454e5b5e082 Certificate serial: 019B78344ACA26216E6FB5C42503F668B493 Authority key identifier: AF:00:2D:6B:B8:5A:98:6B:C8:8D:BC:D9:33:20:94:54:E5:B5:E0:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/p1Z5ag1eRovSGpghiltah3wrLp8.roa Signing time: Thu 01 Jan 2026 06:17:31 +0000 ROA not before: Thu 01 Jan 2026 06:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204383 IP address blocks: 185.250.172.0/22 maxlen: 22 2a0c:fc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/rwAta7hamGvIjbzZMyCUVOW14II.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/rwAta7hamGvIjbzZMyCUVOW14II.mft rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4a:ca:26:21:6e:6f:b5:c4:25:03:f6:68:b4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af002d6bb85a986bc88dbcd933209454e5b5e082 Validity Not Before: Jan 1 06:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a756796a0d5e468bd21a98218a5b5a877c2b2e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:12:e2:fc:a1:c4:71:fd:ae:16:26:08:e9: a9:a8:4a:76:a9:11:9f:d8:cf:6e:b9:16:ee:22:fc: 4f:df:02:20:e8:15:7a:e9:02:72:05:37:24:76:f3: 29:81:ec:ea:2c:4b:3d:9b:b5:77:72:20:f8:9e:49: f5:f4:9c:cd:8c:ce:e9:c7:ae:9e:5b:9b:d8:87:9f: e2:d2:9f:20:68:d0:1a:65:f6:1c:39:b9:e8:24:6e: 1a:34:ae:dc:4e:fa:12:4f:e5:de:0f:a2:c8:f5:9e: 26:23:b2:c3:f3:92:7c:b3:0b:f9:5d:b5:76:a9:64: 15:5c:84:12:0e:f9:e6:c6:03:bb:ed:24:5b:d2:1f: aa:af:12:d3:d7:04:c1:72:9f:e9:cf:a9:4a:b3:2a: e0:e0:32:fe:6b:63:db:57:91:7c:c9:26:62:48:13: 1a:ff:da:d5:d4:ad:97:d2:67:b0:18:d9:db:a4:50: 95:07:bc:45:db:94:35:06:cc:d3:d5:17:3a:1e:8d: 36:68:eb:da:dd:65:83:b8:bc:d8:df:41:70:2d:e4: 54:48:3f:d4:52:2b:d2:72:4e:da:99:b0:76:73:1f: a9:e1:62:f6:b6:64:d6:bb:bb:19:99:2b:3f:08:dc: a1:13:30:0d:f8:96:6e:e9:31:13:6b:91:b7:c8:ff: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:56:79:6A:0D:5E:46:8B:D2:1A:98:21:8A:5B:5A:87:7C:2B:2E:9F X509v3 Authority Key Identifier: keyid:AF:00:2D:6B:B8:5A:98:6B:C8:8D:BC:D9:33:20:94:54:E5:B5:E0:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/p1Z5ag1eRovSGpghiltah3wrLp8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/rwAta7hamGvIjbzZMyCUVOW14II.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.250.172.0/22 IPv6: 2a0c:fc0::/29 Signature Algorithm: sha256WithRSAEncryption 42:d1:fd:7b:47:62:ae:e0:6d:ed:ab:d6:ac:7d:a0:06:22:ac: 90:f2:8d:09:df:86:e6:5d:59:4f:6c:18:68:04:d3:81:df:17: 6f:70:20:5e:47:29:94:4f:99:5b:6e:99:54:4c:86:80:e2:6f: 96:10:f4:03:2c:e9:ce:6d:da:77:41:f1:57:c5:a2:44:4d:4f: e2:f3:64:b5:32:2e:f4:2d:81:8b:4f:28:8a:f7:bb:2b:2e:42: 66:7c:18:26:4a:2b:c1:0d:90:20:92:8d:2f:34:2b:76:8d:81: 86:ad:33:a0:a7:12:54:dc:ba:fc:43:6a:6b:a8:4b:b4:d4:b0: a4:84:6b:80:e7:3e:34:4e:ca:80:25:9f:29:f9:38:f8:9d:ce: 98:d3:ff:3b:c5:1e:3d:1e:11:0a:be:5b:b7:e3:5d:be:13:11: 77:da:cf:b9:e2:82:7e:6d:e4:c0:44:5d:67:ec:f5:3f:8f:26: 88:f4:08:64:32:ef:66:97:47:da:dd:78:bc:e9:f9:20:81:86: 56:6a:74:b3:02:1a:d0:99:22:5c:81:1e:72:bd:99:ba:2f:1a: ed:5b:78:1d:b8:dc:6d:04:6e:2e:b0:b7:1f:55:48:2b:fa:76: 4b:56:72:21:2d:c0:14:87:e4:f6:de:93:a7:a9:e2:b9:81:a8: 87:6a:e3:75 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NErKJiFub7XEJQP2aLSTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMDAyZDZiYjg1YTk4NmJjODhkYmNkOTMzMjA5NDU0ZTVi NWUwODIwHhcNMjYwMTAxMDYxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzU2Nzk2YTBkNWU0NjhiZDIxYTk4MjE4YTViNWE4NzdjMmIyZTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLAS4vyhxHH9rhYmCOmpqEp2qRGf 2M9uuRbuIvxP3wIg6BV66QJyBTckdvMpgezqLEs9m7V3ciD4nkn19JzNjM7px66e W5vYh5/i0p8gaNAaZfYcObnoJG4aNK7cTvoST+XeD6LI9Z4mI7LD85J8swv5XbV2 qWQVXIQSDvnmxgO77SRb0h+qrxLT1wTBcp/pz6lKsyrg4DL+a2PbV5F8ySZiSBMa /9rV1K2X0mewGNnbpFCVB7xF25Q1BszT1Rc6Ho02aOva3WWDuLzY30FwLeRUSD/U UivSck7ambB2cx+p4WL2tmTWu7sZmSs/CNyhEzAN+JZu6TETa5G3yP/YeQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKdWeWoNXkaL0hqYIYpbWod8Ky6fMB8GA1UdIwQY MBaAFK8ALWu4WphryI282TMglFTlteCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcndBdGE3aGFtR3ZJamJ6Wk15Q1VWT1cxNElJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9hMmVkYTItZTg4NS00NjQwLTljODQt ZDZlZjhlOTE0MzA3LzEvcDFaNWFnMWVSb3ZTR3BnaGlsdGFoM3dyTHA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9hMmVkYTItZTg4NS00NjQwLTljODQtZDZlZjhlOTE0MzA3 LzEvcndBdGE3aGFtR3ZJamJ6Wk15Q1VWT1cxNElJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufqsMA0E AgACMAcDBQMqDA/AMA0GCSqGSIb3DQEBCwUAA4IBAQBC0f17R2Ku4G3tq9asfaAG IqyQ8o0J34bmXVlPbBhoBNOB3xdvcCBeRymUT5lbbplUTIaA4m+WEPQDLOnObdp3 QfFXxaJETU/i82S1Mi70LYGLTyiK97srLkJmfBgmSivBDZAgko0vNCt2jYGGrTOg pxJU3Lr8Q2prqEu01LCkhGuA5z40TsqAJZ8p+Tj4nc6Y0/87xR49HhEKvlu3412+ ExF32s+54oJ+beTARF1n7PU/jyaI9AhkMu9ml0fa3Xi86fkggYZWanSzAhrQmSJc gR5yvZm6LxrtW3gduNxtBG4usLcfVUgr+nZLVnIhLcAUh+T23pOnqeK5gaiHauN1 -----END CERTIFICATE-----Generated at Mon Feb 9 23:55:52 2026 by rpki-client