This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/C_AvtSnRCKwvl2SpLUtFVcIH_w8.roa File: C_AvtSnRCKwvl2SpLUtFVcIH_w8.roa (raw, json) Hash identifier: Ey0Vszsa81W+PEv7/mryXgBI5kc8rCJJuGeJRL0U9AY= Subject key identifier: 0B:F0:2F:B5:29:D1:08:AC:2F:97:64:A9:2D:4B:45:55:C2:07:FF:0F Certificate issuer: /CN=053d04e72bb249c79eb1168cf1d43a3ca548c206 Certificate serial: 019B7835453B3AE1AB15B03E26EF02B94194 Authority key identifier: 05:3D:04:E7:2B:B2:49:C7:9E:B1:16:8C:F1:D4:3A:3C:A5:48:C2:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BT0E5yuySceesRaM8dQ6PKVIwgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/C_AvtSnRCKwvl2SpLUtFVcIH_w8.roa Signing time: Thu 01 Jan 2026 06:18:35 +0000 ROA not before: Thu 01 Jan 2026 06:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200711 IP address blocks: 185.50.88.0/22 maxlen: 22 2a01:a7e0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/BT0E5yuySceesRaM8dQ6PKVIwgY.crl rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/BT0E5yuySceesRaM8dQ6PKVIwgY.mft rsync://rpki.ripe.net/repository/DEFAULT/BT0E5yuySceesRaM8dQ6PKVIwgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:45:3b:3a:e1:ab:15:b0:3e:26:ef:02:b9:41:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=053d04e72bb249c79eb1168cf1d43a3ca548c206 Validity Not Before: Jan 1 06:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0bf02fb529d108ac2f9764a92d4b4555c207ff0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:51:7a:50:2c:be:e4:17:cd:6e:91:5f:89:11: b3:05:06:d8:6a:76:85:61:83:a2:6c:3d:5c:ba:6d: 22:4b:54:61:80:af:71:83:4a:99:99:5c:ac:30:a9: 41:4a:2c:6b:18:17:1b:8d:28:9d:4e:92:cc:68:40: 95:78:a9:fd:cc:eb:66:51:bd:26:d6:fe:63:80:e9: a4:18:32:ec:df:1d:5d:18:af:d5:b3:d8:a2:0d:7a: 2b:4e:64:da:78:92:92:69:94:5e:ac:4c:07:fe:07: da:16:8b:4c:03:ab:96:f4:b2:3d:4a:b7:ee:1c:18: b4:5d:96:d9:79:6b:1f:e4:42:db:9e:dd:7d:b0:c9: 9a:25:e6:e2:86:41:01:1a:e0:3f:88:e7:12:06:cb: 27:26:23:a6:b3:21:84:c0:e2:93:34:99:9a:bd:02: 29:87:2c:89:fa:a8:1e:e8:c1:1e:cc:56:23:05:f6: 18:49:a5:d7:3d:2d:8d:58:41:d0:1a:05:75:c9:7f: 9e:55:19:fc:a5:16:2b:fa:0f:01:38:7f:10:cf:09: d0:6d:34:89:0e:41:71:42:35:c2:97:d0:e9:0e:fa: 0e:dd:6e:91:70:0e:bd:db:e5:7a:74:b7:ab:9c:d7: b1:19:88:94:76:2d:cf:72:c1:9e:d9:de:bc:9a:32: 76:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F0:2F:B5:29:D1:08:AC:2F:97:64:A9:2D:4B:45:55:C2:07:FF:0F X509v3 Authority Key Identifier: keyid:05:3D:04:E7:2B:B2:49:C7:9E:B1:16:8C:F1:D4:3A:3C:A5:48:C2:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BT0E5yuySceesRaM8dQ6PKVIwgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/C_AvtSnRCKwvl2SpLUtFVcIH_w8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/3550b4-51b5-448b-ab62-2a813dbf4582/1/BT0E5yuySceesRaM8dQ6PKVIwgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.88.0/22 IPv6: 2a01:a7e0::/36 Signature Algorithm: sha256WithRSAEncryption a4:bb:2f:03:c9:59:75:ad:f8:9a:61:e3:47:86:b5:6c:b2:aa: b4:7b:b4:ac:bf:ba:bf:97:7c:f5:e5:c2:61:c1:c9:c2:fa:6d: b8:a1:49:a8:2b:74:5b:46:c0:0a:0a:61:9c:45:e0:37:a0:e8: e6:a7:2f:f5:77:5e:b0:8f:a1:98:7b:52:fb:73:fc:38:9a:12: 6d:0d:e6:a9:00:2d:dc:ba:59:f9:91:0b:e8:5a:a3:15:8b:27: 31:cc:cb:4d:b4:25:88:08:3c:52:f3:95:14:3f:cb:54:bc:34: f0:c1:81:92:89:63:7d:9f:34:9e:82:ec:2a:13:e0:5e:b3:e8: e9:04:97:1a:2f:74:97:4a:1f:f2:53:c6:48:a0:85:54:5a:bb: 0e:01:6e:64:13:89:f7:18:5d:7e:95:f7:0a:b2:9d:08:31:a3: c1:cc:b4:d1:8e:6b:89:ca:8c:00:c1:5a:0b:1c:00:e7:a3:c7: bc:28:f3:5e:b8:7d:ae:5e:ca:d3:76:37:61:0d:b9:72:ff:b4: 2d:08:f5:14:66:57:34:3e:43:32:c8:c3:95:76:71:98:fc:31: 89:b5:c3:ad:4d:76:f8:bb:b8:72:00:6e:65:84:a0:99:d0:9b: 2c:ec:14:66:ca:b1:05:e3:bd:b0:67:c0:85:29:b8:c2:21:a4: 40:05:4e:fe -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NUU7OuGrFbA+Ju8CuUGUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1M2QwNGU3MmJiMjQ5Yzc5ZWIxMTY4Y2YxZDQzYTNjYTU0 OGMyMDYwHhcNMjYwMTAxMDYxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYmYwMmZiNTI5ZDEwOGFjMmY5NzY0YTkyZDRiNDU1NWMyMDdmZjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVF6UCy+5BfNbpFfiRGzBQbYanaF YYOibD1cum0iS1RhgK9xg0qZmVysMKlBSixrGBcbjSidTpLMaECVeKn9zOtmUb0m 1v5jgOmkGDLs3x1dGK/Vs9iiDXorTmTaeJKSaZRerEwH/gfaFotMA6uW9LI9Srfu HBi0XZbZeWsf5ELbnt19sMmaJebihkEBGuA/iOcSBssnJiOmsyGEwOKTNJmavQIp hyyJ+qge6MEezFYjBfYYSaXXPS2NWEHQGgV1yX+eVRn8pRYr+g8BOH8QzwnQbTSJ DkFxQjXCl9DpDvoO3W6RcA692+V6dLernNexGYiUdi3PcsGe2d68mjJ2JwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFAvwL7Up0QisL5dkqS1LRVXCB/8PMB8GA1UdIwQY MBaAFAU9BOcrsknHnrEWjPHUOjylSMIGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlQwRTV5dXlTY2Vlc1JhTThkUTZQS1ZJd2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zNTUwYjQtNTFiNS00NDhiLWFiNjIt MmE4MTNkYmY0NTgyLzEvQ19BdnRTblJDS3d2bDJTcExVdEZWY0lIX3c4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8zNTUwYjQtNTFiNS00NDhiLWFiNjItMmE4MTNkYmY0NTgy LzEvQlQwRTV5dXlTY2Vlc1JhTThkUTZQS1ZJd2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQCuTJYMA4E AgACMAgDBgQqAafgADANBgkqhkiG9w0BAQsFAAOCAQEApLsvA8lZda34mmHjR4a1 bLKqtHu0rL+6v5d89eXCYcHJwvptuKFJqCt0W0bACgphnEXgN6Do5qcv9XdesI+h mHtS+3P8OJoSbQ3mqQAt3LpZ+ZEL6FqjFYsnMczLTbQliAg8UvOVFD/LVLw08MGB koljfZ80noLsKhPgXrPo6QSXGi90l0of8lPGSKCFVFq7DgFuZBOJ9xhdfpX3CrKd CDGjwcy00Y5ricqMAMFaCxwA56PHvCjzXrh9rl7K03Y3YQ25cv+0LQj1FGZXND5D MsjDlXZxmPwxibXDrU12+Lu4cgBuZYSgmdCbLOwUZsqxBeO9sGfAhSm4wiGkQAVO /g== -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:51 2026 by rpki-client