This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/AwmDmb643WvdlkbYmY_2gHmqTqc.roa File: AwmDmb643WvdlkbYmY_2gHmqTqc.roa (raw, json) Hash identifier: O5KzGeBVdBXIOC5DisowlXBHxvcBR+18w3kCmfDfci0= Subject key identifier: 03:09:83:99:BE:B8:DD:6B:DD:96:46:D8:99:8F:F6:80:79:AA:4E:A7 Certificate issuer: /CN=053d04e72bb249c79eb1168cf1d43a3ca548c206 Certificate serial: 019B783544A6E04F38BD381878B9EA0ADEDA Authority key identifier: 05:3D:04:E7:2B:B2:49:C7:9E:B1:16:8C:F1:D4:3A:3C:A5:48:C2:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BT0E5yuySceesRaM8dQ6PKVIwgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/AwmDmb643WvdlkbYmY_2gHmqTqc.roa Signing time: Thu 01 Jan 2026 06:18:35 +0000 ROA not before: Thu 01 Jan 2026 06:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29422 IP address blocks: 77.86.128.0/17 maxlen: 17 77.91.209.0/24 maxlen: 24 77.91.210.0/23 maxlen: 23 77.91.212.0/22 maxlen: 22 80.69.160.0/21 maxlen: 21 80.69.168.0/22 maxlen: 22 81.17.192.0/21 maxlen: 21 83.145.192.0/18 maxlen: 18 83.150.64.0/18 maxlen: 18 84.20.128.0/19 maxlen: 19 84.239.128.0/17 maxlen: 17 84.239.208.0/20 maxlen: 20 94.101.0.0/20 maxlen: 20 109.75.224.0/21 maxlen: 21 185.123.116.0/22 maxlen: 22 188.117.0.0/18 maxlen: 18 193.104.38.0/24 maxlen: 24 194.29.192.0/21 maxlen: 21 194.79.16.0/22 maxlen: 22 213.157.64.0/19 maxlen: 19 217.30.176.0/20 maxlen: 20 217.149.48.0/20 maxlen: 20 2001:67c:70::/48 maxlen: 48 2001:1bc8::/29 maxlen: 29 2001:1bc8::/32 maxlen: 32 2a01:51c0::/29 maxlen: 29 2a01:51c0::/32 maxlen: 32 2a01:51c1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/BT0E5yuySceesRaM8dQ6PKVIwgY.crl rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/BT0E5yuySceesRaM8dQ6PKVIwgY.mft rsync://rpki.ripe.net/repository/DEFAULT/BT0E5yuySceesRaM8dQ6PKVIwgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:44:a6:e0:4f:38:bd:38:18:78:b9:ea:0a:de:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=053d04e72bb249c79eb1168cf1d43a3ca548c206 Validity Not Before: Jan 1 06:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03098399beb8dd6bdd9646d8998ff68079aa4ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:bd:df:76:e5:e7:dd:58:43:69:2b:23:2f: 65:9d:a8:d9:d9:4a:60:67:29:56:43:fc:35:8c:ca: 08:e9:fc:64:b9:d0:98:c4:8b:da:a7:2a:37:c1:98: e1:8d:de:5d:81:3c:59:d4:33:b3:70:a7:37:5c:37: 11:7e:f3:f3:b1:e7:9b:4b:ae:75:af:7a:34:df:d8: 92:30:48:5e:a4:2c:46:c9:92:26:8f:f6:7c:84:3d: d5:78:fc:e6:a5:1d:3a:f3:25:1f:72:53:36:f2:92: 38:07:cb:eb:c5:f5:39:fc:ed:46:b7:d7:b6:6d:a0: d6:a0:70:43:fe:7e:ec:23:f7:37:57:4e:51:43:a3: d6:5b:40:06:91:d5:f8:ad:11:ba:7b:92:90:89:a7: 7a:12:51:06:7b:49:df:47:a2:a1:7c:97:b1:07:88: 8c:2e:7d:81:41:79:cc:c1:f3:86:0d:ee:8b:79:78: 89:20:45:e2:11:46:e7:20:81:7c:ae:c6:5c:be:2f: fb:80:89:8b:3c:a0:ff:70:ee:ec:ff:6a:18:e6:7b: 28:61:ae:32:41:9f:f1:c9:93:07:84:a9:d3:7e:6a: f8:9d:b0:6b:91:cf:4b:89:71:29:75:3d:c8:11:11: 6b:8b:be:16:78:48:47:bd:cb:26:6d:98:b1:d1:72: 12:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:09:83:99:BE:B8:DD:6B:DD:96:46:D8:99:8F:F6:80:79:AA:4E:A7 X509v3 Authority Key Identifier: keyid:05:3D:04:E7:2B:B2:49:C7:9E:B1:16:8C:F1:D4:3A:3C:A5:48:C2:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BT0E5yuySceesRaM8dQ6PKVIwgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/AwmDmb643WvdlkbYmY_2gHmqTqc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/BT0E5yuySceesRaM8dQ6PKVIwgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.86.128.0/17 77.91.209.0-77.91.215.255 80.69.160.0-80.69.171.255 81.17.192.0/21 83.145.192.0/18 83.150.64.0/18 84.20.128.0/19 84.239.128.0/17 94.101.0.0/20 109.75.224.0/21 185.123.116.0/22 188.117.0.0/18 193.104.38.0/24 194.29.192.0/21 194.79.16.0/22 213.157.64.0/19 217.30.176.0/20 217.149.48.0/20 IPv6: 2001:67c:70::/48 2001:1bc8::/29 2a01:51c0::/29 Signature Algorithm: sha256WithRSAEncryption 47:f7:2c:45:bf:fb:78:0c:a0:00:b9:97:3a:0b:ae:6c:4b:2d: 8b:45:ee:92:37:43:de:4a:33:0c:74:44:ee:ac:80:26:3a:0b: 5e:57:fe:40:6e:a4:73:29:f8:59:53:41:fc:8a:73:61:b7:25: 2d:c5:13:de:ff:4d:49:45:8c:6f:da:56:dc:17:46:56:20:52: e8:0d:3a:f3:b8:36:28:bc:ad:8d:e3:02:65:44:92:51:3a:1a: 49:df:c9:74:f9:53:b4:ed:95:3c:d7:23:6c:70:26:4a:e5:84: 89:3d:45:95:40:d6:db:f5:bb:18:e3:c6:9c:61:10:19:a9:72: c2:8c:04:92:c0:71:c4:89:8b:21:37:82:06:bf:4f:f9:d7:39: 48:e3:18:5d:23:40:8f:6e:cc:d3:53:50:1f:3b:22:21:04:15: a9:f5:31:63:8a:c9:d3:50:c5:35:e8:f9:a6:21:ee:71:75:a9: 5b:a4:5a:ce:04:2e:22:38:c4:cb:6d:4c:5e:0e:d0:4e:f7:58: e8:95:bc:ec:9b:90:ce:7b:3b:94:bf:d7:a0:4b:13:96:e8:7b: 0f:16:f5:4f:8c:b9:83:6a:cd:63:56:08:64:de:60:4f:e4:92: bf:4c:fb:a8:d5:66:20:74:20:9e:d9:c9:3d:c5:04:b6:70:e1: 46:9b:46:80 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgISAZt4NUSm4E84vTgYeLnqCt7aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1M2QwNGU3MmJiMjQ5Yzc5ZWIxMTY4Y2YxZDQzYTNjYTU0 OGMyMDYwHhcNMjYwMTAxMDYxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzA5ODM5OWJlYjhkZDZiZGQ5NjQ2ZDg5OThmZjY4MDc5YWE0ZWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Re933bl591YQ2krIy9lnajZ2Upg ZylWQ/w1jMoI6fxkudCYxIvapyo3wZjhjd5dgTxZ1DOzcKc3XDcRfvPzseebS651 r3o039iSMEhepCxGyZImj/Z8hD3VePzmpR068yUfclM28pI4B8vrxfU5/O1Gt9e2 baDWoHBD/n7sI/c3V05RQ6PWW0AGkdX4rRG6e5KQiad6ElEGe0nfR6KhfJexB4iM Ln2BQXnMwfOGDe6LeXiJIEXiEUbnIIF8rsZcvi/7gImLPKD/cO7s/2oY5nsoYa4y QZ/xyZMHhKnTfmr4nbBrkc9LiXEpdT3IERFri74WeEhHvcsmbZix0XISuwIDAQAB o4ICojCCAp4wHQYDVR0OBBYEFAMJg5m+uN1r3ZZG2JmP9oB5qk6nMB8GA1UdIwQY MBaAFAU9BOcrsknHnrEWjPHUOjylSMIGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlQwRTV5dXlTY2Vlc1JhTThkUTZQS1ZJd2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zNTUwYjQtNTFiNS00NDhiLWFiNjIt MmE4MTNkYmY0NTgyLzEvQXdtRG1iNjQzV3ZkbGtiWW1ZXzJnSG1xVHFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8zNTUwYjQtNTFiNS00NDhiLWFiNjItMmE4MTNkYmY0NTgy LzEvQlQwRTV5dXlTY2Vlc1JhTThkUTZQS1ZJd2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDCBggQCAAEwfAMEB01W gDAMAwQATVvRAwQDTVvQMAwDBAVQRaADBAJQRagDBANREcADBAZTkcADBAZTlkAD BAVUFIADBAdU74ADBAReZQADBANtS+ADBAK5e3QDBAa8dQADBADBaCYDBAPCHcAD BALCTxADBAXVnUADBATZHrADBATZlTAwHQQCAAIwFwMHACABBnwAcAMFAyABG8gD BQMqAVHAMA0GCSqGSIb3DQEBCwUAA4IBAQBH9yxFv/t4DKAAuZc6C65sSy2LRe6S N0PeSjMMdETurIAmOgteV/5AbqRzKfhZU0H8inNhtyUtxRPe/01JRYxv2lbcF0ZW IFLoDTrzuDYovK2N4wJlRJJROhpJ38l0+VO07ZU81yNscCZK5YSJPUWVQNbb9bsY 48acYRAZqXLCjASSwHHEiYshN4IGv0/51zlI4xhdI0CPbszTU1AfOyIhBBWp9TFj isnTUMU16PmmIe5xdalbpFrOBC4iOMTLbUxeDtBO91jolbzsm5DOezuUv9egSxOW 6HsPFvVPjLmDas1jVghk3mBP5JK/TPuo1WYgdCCe2ck9xQS2cOFGm0aA -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:40 2026 by rpki-client