This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/acIBV25wleouQFLnYANRGKgCFdc.roa File: acIBV25wleouQFLnYANRGKgCFdc.roa (raw, json) Hash identifier: 7nYQbCKP9uGsK9Gx4ubzKlSxzYFLeuWnuTIQ0SJy5Fg= Subject key identifier: 69:C2:01:57:6E:70:95:EA:2E:40:52:E7:60:03:51:18:A8:02:15:D7 Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA52F227D2B07458051AEA6E923077D Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/acIBV25wleouQFLnYANRGKgCFdc.roa Signing time: Thu 01 Jan 2026 22:19:41 +0000 ROA not before: Thu 01 Jan 2026 22:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31250 IP address blocks: 93.152.128.0/18 maxlen: 24 93.152.151.0/24 maxlen: 24 93.152.162.0/23 maxlen: 23 93.152.172.0/24 maxlen: 24 93.152.173.0/24 maxlen: 24 93.152.175.0/24 maxlen: 24 93.152.180.0/24 maxlen: 24 93.152.181.0/24 maxlen: 24 93.152.192.0/21 maxlen: 21 93.152.200.0/22 maxlen: 22 93.152.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:2f:22:7d:2b:07:45:80:51:ae:a6:e9:23:07:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69c201576e7095ea2e4052e760035118a80215d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:68:89:c5:55:a2:66:3d:8f:f9:12:c8:4f:91: 5d:cc:ac:68:72:34:15:49:32:e0:c1:0e:04:63:cb: 2b:5d:ff:9e:87:3e:ea:0b:3b:a0:05:91:19:14:5b: d9:e6:51:c9:74:3a:a0:80:82:fd:98:b7:a8:71:50: 1f:0a:a1:ae:42:2e:c6:3f:f3:83:9c:02:d0:c2:8e: 58:12:7c:15:9b:10:26:00:52:20:07:2f:fa:66:e8: 76:d8:ce:7c:bd:f7:64:dd:b7:16:95:04:54:96:75: 79:5e:79:ea:1b:30:da:20:2b:7a:a9:a7:4e:be:ef: ff:72:14:bb:69:7b:c1:9f:ae:a2:3e:74:20:2e:36: c4:8a:53:4b:39:e1:d6:c2:51:3f:eb:a6:e5:a8:d3: fe:bd:73:15:4f:18:ef:5e:cd:f4:81:49:25:5b:d6: 74:63:90:1a:29:4d:fd:ad:1c:fc:69:26:3b:f9:b6: 52:cc:f9:c2:34:70:ff:69:c6:59:a4:81:86:43:c5: ab:73:81:36:9e:08:1e:42:ba:2d:5c:fd:a4:82:0b: 9a:c4:d5:b5:43:8b:0c:c7:74:90:81:f3:40:ad:eb: 59:cc:90:e2:43:9e:fd:ca:57:73:44:b1:5d:55:5f: 9f:5a:92:54:67:2d:2c:1e:5b:41:4d:0d:50:67:c4: 78:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C2:01:57:6E:70:95:EA:2E:40:52:E7:60:03:51:18:A8:02:15:D7 X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/acIBV25wleouQFLnYANRGKgCFdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.152.128.0-93.152.204.255 Signature Algorithm: sha256WithRSAEncryption 66:d4:10:cd:f3:cc:12:5d:04:a4:bb:42:7f:6a:1b:bc:d3:0a: 03:3a:33:1e:7b:33:90:f2:0b:3e:83:c5:ae:0d:13:df:49:45: df:47:dd:aa:4b:02:85:7e:21:7b:e2:d5:4d:09:b2:9f:d9:24: b1:97:f7:dd:1d:87:4c:b9:a8:cb:39:4d:11:12:52:ad:50:20: 22:54:89:c9:7f:25:46:b6:48:38:aa:ce:49:e1:62:f3:7c:86: 8b:af:12:07:d9:ee:71:97:13:0c:12:c4:91:9c:5c:a9:67:78: 5f:b2:19:08:a4:bf:15:9d:ef:55:be:13:c1:1d:83:20:38:0a: f0:64:6e:6e:da:55:33:d5:e2:3f:ff:3d:7b:32:9a:d4:d8:ad: 3f:e6:e0:39:67:6f:94:c5:69:6b:49:d8:f2:6e:1e:97:22:c4: 06:2a:3d:ad:8b:b1:be:3c:b3:c3:b5:22:41:d4:92:71:2e:e4: 91:f9:aa:d9:d3:34:49:45:06:bc:98:f1:4f:47:db:dc:45:c4: 03:4c:73:d3:d8:3b:dd:a0:4c:d9:ce:fc:1f:9d:61:96:4f:8a: af:21:f6:b8:79:9f:5a:78:a2:10:1d:a0:af:f9:e7:e7:1a:68: 3e:0f:7b:e2:fd:9c:b2:7a:bf:7c:d5:17:7a:79:89:81:b3:17: 3a:45:2a:89 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt7pS8ifSsHRYBRrqbpIwd9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OWMyMDE1NzZlNzA5NWVhMmU0MDUyZTc2MDAzNTExOGE4MDIxNWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2iJxVWiZj2P+RLIT5FdzKxocjQV STLgwQ4EY8srXf+ehz7qCzugBZEZFFvZ5lHJdDqggIL9mLeocVAfCqGuQi7GP/OD nALQwo5YEnwVmxAmAFIgBy/6Zuh22M58vfdk3bcWlQRUlnV5XnnqGzDaICt6qadO vu//chS7aXvBn66iPnQgLjbEilNLOeHWwlE/66blqNP+vXMVTxjvXs30gUklW9Z0 Y5AaKU39rRz8aSY7+bZSzPnCNHD/acZZpIGGQ8Wrc4E2nggeQrotXP2kgguaxNW1 Q4sMx3SQgfNAretZzJDiQ579yldzRLFdVV+fWpJUZy0sHltBTQ1QZ8R4bQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFGnCAVducJXqLkBS52ADURioAhXXMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvYWNJQlYyNXdsZW91UUZMbllBTlJHS2dDRmRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAddmIAD BABdmMwwDQYJKoZIhvcNAQELBQADggEBAGbUEM3zzBJdBKS7Qn9qG7zTCgM6Mx57 M5DyCz6Dxa4NE99JRd9H3apLAoV+IXvi1U0Jsp/ZJLGX990dh0y5qMs5TRESUq1Q ICJUicl/JUa2SDiqzknhYvN8houvEgfZ7nGXEwwSxJGcXKlneF+yGQikvxWd71W+ E8EdgyA4CvBkbm7aVTPV4j//PXsymtTYrT/m4Dlnb5TFaWtJ2PJuHpcixAYqPa2L sb48s8O1IkHUknEu5JH5qtnTNElFBryY8U9H29xFxANMc9PYO92gTNnO/B+dYZZP iq8h9rh5n1p4ohAdoK/55+caaD4Pe+L9nLJ6v3zVF3p5iYGzFzpFKok= -----END CERTIFICATE-----Generated at Mon Jan 26 11:44:24 2026 by rpki-client