This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/aZwxLLe27uK7ns0bAgvQ0s7Mqt4.roa File: aZwxLLe27uK7ns0bAgvQ0s7Mqt4.roa (raw, json) Hash identifier: IJFNHlYozh1R/6V0WKyYnkoCMR+po4mStHpa7SQZbq4= Subject key identifier: 69:9C:31:2C:B7:B6:EE:E2:BB:9E:CD:1B:02:0B:D0:D2:CE:CC:AA:DE Certificate issuer: /CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6 Certificate serial: 019B7B3664C30A4E3B58DAD2260B033FB4B4 Authority key identifier: 31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/aZwxLLe27uK7ns0bAgvQ0s7Mqt4.roa Signing time: Thu 01 Jan 2026 20:18:40 +0000 ROA not before: Thu 01 Jan 2026 20:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.50.140.0/24 maxlen: 24 185.50.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.mft rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:64:c3:0a:4e:3b:58:da:d2:26:0b:03:3f:b4:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6 Validity Not Before: Jan 1 20:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=699c312cb7b6eee2bb9ecd1b020bd0d2ceccaade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:15:7a:76:21:02:a2:28:6a:4d:a5:35:06:95: df:20:11:bd:92:c6:14:54:40:dd:5a:5e:46:42:ec: cb:e4:a2:90:0f:cf:a4:06:45:4b:f6:16:8e:6c:a9: f8:37:b2:8f:28:a0:77:68:42:f6:6b:9e:be:fb:3c: 11:fc:2d:0c:d3:41:19:c5:c1:c6:5a:4f:38:80:76: af:9b:21:cc:02:29:1d:aa:be:9c:d2:99:08:4e:e2: 6b:d9:08:87:cc:e3:ac:1b:56:a9:51:22:28:b4:a6: cb:d8:0f:b7:7f:f9:c2:99:9a:d8:45:86:f7:bb:11: 95:37:60:94:b5:dc:78:a8:14:a0:bc:41:ef:9c:30: 09:37:b6:cb:99:ad:76:32:b4:3b:a6:51:d7:3e:50: c6:cb:25:ef:1e:9c:41:b8:ed:61:1b:24:b0:1c:9a: 82:34:fe:91:5f:41:6e:9e:fc:29:3c:2c:9f:69:ce: d4:12:fd:8f:a3:57:f0:ab:76:3a:8c:4e:ec:08:b6: 19:83:2f:d7:2b:19:93:69:67:f8:3d:52:cd:fd:83: 36:ef:fc:4c:8b:9b:0d:17:20:2b:ab:50:f9:8c:21: 55:fb:32:21:d9:2a:ab:d7:bf:74:4b:14:bd:bc:f5: ea:ac:1c:57:e4:d9:75:c3:9b:11:e4:c6:0c:1d:d3: 6b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9C:31:2C:B7:B6:EE:E2:BB:9E:CD:1B:02:0B:D0:D2:CE:CC:AA:DE X509v3 Authority Key Identifier: keyid:31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/aZwxLLe27uK7ns0bAgvQ0s7Mqt4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.140.0/24 185.50.142.0/24 Signature Algorithm: sha256WithRSAEncryption 31:ff:bd:ac:2d:ce:20:89:71:96:c0:79:7a:cb:9b:29:fb:95: 09:67:8d:41:c8:52:2d:d5:7f:ec:6e:5e:2f:84:a9:43:1a:3e: 89:03:92:f4:6f:56:9d:e3:23:d6:b8:c7:da:f9:a9:44:4b:52: 41:6f:f3:9b:9a:e6:fb:ce:8f:e6:6e:c0:7b:63:0e:cf:5f:94: 3c:14:84:5c:98:d2:5a:2c:58:e9:31:32:a3:5b:f2:d5:e5:3d: e2:6d:87:e2:cb:32:6f:cb:2a:27:6c:fc:0d:0b:8a:ed:ae:75: 58:71:9f:b3:4c:f0:53:16:8a:fd:3e:2f:07:33:47:c8:40:f8: 71:c6:d0:a7:d7:1f:c8:d3:f7:cb:db:ad:a9:45:27:8d:ea:7f: d3:61:24:c0:a2:a5:d3:ee:5a:78:95:92:c0:f7:dd:7a:e4:b4: ae:2b:f2:4e:54:a1:a5:aa:8b:d0:8e:e8:fd:6c:39:30:c9:56: 58:11:76:90:85:65:7e:4d:d4:c7:db:6e:5a:2b:aa:fa:43:4a: d8:9d:01:ca:74:f1:18:32:14:dc:a3:a6:7b:d7:05:c4:3a:07: 09:c8:35:82:36:94:ef:cf:27:8e:54:80:84:94:70:5b:23:64: dc:a6:e1:f4:f4:53:0f:7e:82:e9:9b:2f:f5:3b:f6:39:66:b0: 87:cc:a5:ee -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NmTDCk47WNrSJgsDP7S0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxZDRlZTRhZmZmNTVlNjc0NDRkNDdkNDliNTEyYTgzNjhi ZjllZjYwHhcNMjYwMTAxMjAxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTljMzEyY2I3YjZlZWUyYmI5ZWNkMWIwMjBiZDBkMmNlY2NhYWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxV6diECoihqTaU1BpXfIBG9ksYU VEDdWl5GQuzL5KKQD8+kBkVL9haObKn4N7KPKKB3aEL2a56++zwR/C0M00EZxcHG Wk84gHavmyHMAikdqr6c0pkITuJr2QiHzOOsG1apUSIotKbL2A+3f/nCmZrYRYb3 uxGVN2CUtdx4qBSgvEHvnDAJN7bLma12MrQ7plHXPlDGyyXvHpxBuO1hGySwHJqC NP6RX0FunvwpPCyfac7UEv2Po1fwq3Y6jE7sCLYZgy/XKxmTaWf4PVLN/YM27/xM i5sNFyArq1D5jCFV+zIh2Sqr1790SxS9vPXqrBxX5Nl1w5sR5MYMHdNrtwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGmcMSy3tu7iu57NGwIL0NLOzKreMB8GA1UdIwQY MBaAFDHU7kr/9V5nRE1H1JtRKoNov572MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWRUdVN2XzFYbWRFVFVmVW0xRXFnMmlfbnZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9lNDRkZWEtOGQ1MS00NDBhLWJjMDIt YmFiNTc2ZTIwMzkzLzEvYVp3eExMZTI3dUs3bnMwYkFndlEwczdNcXQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9lNDRkZWEtOGQ1MS00NDBhLWJjMDItYmFiNTc2ZTIwMzkz LzEvTWRUdVN2XzFYbWRFVFVmVW0xRXFnMmlfbnZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuTKMAwQA uTKOMA0GCSqGSIb3DQEBCwUAA4IBAQAx/72sLc4giXGWwHl6y5sp+5UJZ41ByFIt 1X/sbl4vhKlDGj6JA5L0b1ad4yPWuMfa+alES1JBb/Obmub7zo/mbsB7Yw7PX5Q8 FIRcmNJaLFjpMTKjW/LV5T3ibYfiyzJvyyonbPwNC4rtrnVYcZ+zTPBTFor9Pi8H M0fIQPhxxtCn1x/I0/fL262pRSeN6n/TYSTAoqXT7lp4lZLA99165LSuK/JOVKGl qovQjuj9bDkwyVZYEXaQhWV+TdTH225aK6r6Q0rYnQHKdPEYMhTco6Z71wXEOgcJ yDWCNpTvzyeOVICElHBbI2TcpuH09FMPfoLpmy/1O/Y5ZrCHzKXu -----END CERTIFICATE-----Generated at Fri Jan 2 11:04:02 2026 by rpki-client