This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/AWHMjmic5cEKV8bVpt2xGeWTmJw.roa File: AWHMjmic5cEKV8bVpt2xGeWTmJw.roa (raw, json) Hash identifier: iFYqoLqjFem2aNEBBJqDmHNGhtphtI842p4krYOCFlM= Subject key identifier: 01:61:CC:8E:68:9C:E5:C1:0A:57:C6:D5:A6:DD:B1:19:E5:93:98:9C Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4 Certificate serial: 019B7DCB0CAE81C3CE56F3003F37B8F4F60B Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/AWHMjmic5cEKV8bVpt2xGeWTmJw.roa Signing time: Fri 02 Jan 2026 08:20:17 +0000 ROA not before: Fri 02 Jan 2026 08:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39511 IP address blocks: 2a05:91c3:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:0c:ae:81:c3:ce:56:f3:00:3f:37:b8:f4:f6:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4 Validity Not Before: Jan 2 08:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0161cc8e689ce5c10a57c6d5a6ddb119e593989c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:80:10:9a:2f:7c:ff:91:b4:4a:52:c6:b0:17: b2:88:f1:86:aa:51:8c:c4:99:28:be:cc:ab:6e:b3: 1b:07:15:25:71:26:b8:f7:84:01:d6:09:d4:00:e8: 2f:81:c1:ed:a7:de:f7:cb:83:6c:ed:85:c5:bf:b6: 22:cd:39:61:0d:52:6f:3b:0c:35:f3:eb:95:d2:41: 38:6f:57:ae:b4:36:cf:1f:12:c5:d5:0d:da:d5:ea: 10:26:05:cd:99:ac:cf:24:a5:77:46:a2:59:01:9e: 43:05:32:99:84:cd:cb:8d:17:16:bd:79:44:b2:28: ff:58:d0:ce:5d:6d:ef:07:09:84:a4:af:db:18:05: 83:42:07:7d:22:6b:2f:fd:ef:0d:ba:53:45:3a:11: d2:98:34:c7:f2:42:71:63:c3:7c:c3:23:39:0e:ad: b2:0b:61:4e:7e:f9:11:b5:8f:22:45:da:3b:60:69: f0:b3:51:d9:7a:b5:10:cb:c6:6f:bb:7d:41:f3:84: fe:5a:21:b7:44:a9:9d:c4:12:bb:4a:25:d2:49:6f: 21:8f:f0:50:40:ae:83:b8:c6:fe:8a:b8:e9:73:0a: 20:00:d7:52:d3:5d:7d:c3:80:1e:3e:dd:9b:12:b6: 94:7e:0f:18:23:78:1f:76:05:1e:fd:19:c2:75:9e: 33:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:61:CC:8E:68:9C:E5:C1:0A:57:C6:D5:A6:DD:B1:19:E5:93:98:9C X509v3 Authority Key Identifier: keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/AWHMjmic5cEKV8bVpt2xGeWTmJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:91c3:1::/48 Signature Algorithm: sha256WithRSAEncryption 7a:40:d5:ff:c0:55:63:73:be:6b:6e:65:7a:59:fc:c1:51:d4: ba:5c:0a:9a:62:e7:b8:70:5f:3f:df:d0:80:a3:df:3e:95:1a: 5e:31:a0:7d:94:1c:91:49:0c:7c:db:c2:a4:e9:45:10:80:66: 29:c0:6f:8e:83:c4:74:e1:04:7d:48:47:c8:2d:6e:ac:e7:a2: b4:0a:e0:3d:07:63:98:09:a7:3a:50:fe:0d:30:3f:20:96:2f: 17:2e:f7:d4:54:77:7f:ef:21:0e:7e:6c:6a:83:21:c1:75:0a: 02:10:dc:3a:15:cc:77:12:a0:b7:8e:41:dd:15:28:a4:20:eb: 8e:04:7e:ee:c5:09:2b:13:85:a0:12:39:64:96:8e:44:e3:9f: 5b:8b:ce:5b:b1:16:d5:16:17:5f:71:5b:91:cb:e3:ee:c2:c3: 0c:06:61:a7:08:e4:e8:74:55:1b:33:85:b9:af:f1:5f:05:90: c1:2e:00:60:c4:3a:87:7d:ba:ad:59:b8:a0:4b:09:19:15:38: cd:91:cf:d0:be:0e:95:e7:2a:b9:ce:1c:e8:6f:0f:54:26:e7: d3:f9:d2:0c:f3:ed:02:a3:bc:07:1a:de:4f:2a:04:32:d1:25: bf:d9:e0:4f:47:13:9f:f9:1a:b4:f9:fd:2a:9b:64:f5:64:30: 48:41:4b:30 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt9ywyugcPOVvMAPze49PYLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MWExNGNlOWQyNTIzOWI5MmZlNWFiY2U1MzI1MTUwNDRj MWFiYTQwHhcNMjYwMTAyMDgyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTYxY2M4ZTY4OWNlNWMxMGE1N2M2ZDVhNmRkYjExOWU1OTM5ODljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04AQmi98/5G0SlLGsBeyiPGGqlGM xJkovsyrbrMbBxUlcSa494QB1gnUAOgvgcHtp973y4Ns7YXFv7YizTlhDVJvOww1 8+uV0kE4b1eutDbPHxLF1Q3a1eoQJgXNmazPJKV3RqJZAZ5DBTKZhM3LjRcWvXlE sij/WNDOXW3vBwmEpK/bGAWDQgd9Imsv/e8NulNFOhHSmDTH8kJxY8N8wyM5Dq2y C2FOfvkRtY8iRdo7YGnws1HZerUQy8Zvu31B84T+WiG3RKmdxBK7SiXSSW8hj/BQ QK6DuMb+irjpcwogANdS0119w4AePt2bEraUfg8YI3gfdgUe/RnCdZ4z1QIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAFhzI5onOXBClfG1abdsRnlk5icMB8GA1UdIwQY MBaAFDUaFM6dJSObkv5avOUyUVBEwaukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEt Mjk1Mzg5NGIxZjZkLzEvQVdITWptaWM1Y0VLVjhiVnB0MnhHZVdUbUp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEtMjk1Mzg5NGIxZjZk LzEvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgWRwwAB MA0GCSqGSIb3DQEBCwUAA4IBAQB6QNX/wFVjc75rbmV6WfzBUdS6XAqaYue4cF8/ 39CAo98+lRpeMaB9lByRSQx828Kk6UUQgGYpwG+Og8R04QR9SEfILW6s56K0CuA9 B2OYCac6UP4NMD8gli8XLvfUVHd/7yEOfmxqgyHBdQoCENw6Fcx3EqC3jkHdFSik IOuOBH7uxQkrE4WgEjlklo5E459bi85bsRbVFhdfcVuRy+PuwsMMBmGnCOTodFUb M4W5r/FfBZDBLgBgxDqHfbqtWbigSwkZFTjNkc/Qvg6V5yq5zhzobw9UJufT+dIM 8+0Co7wHGt5PKgQy0SW/2eBPRxOf+Rq0+f0qm2T1ZDBIQUsw -----END CERTIFICATE-----Generated at Mon Jan 26 17:24:31 2026 by rpki-client