This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/4d1696-3341-4ddb-8e23-34e2279be765/1/ApB3AApTkd-CTxpkFDEIw_6nXz4.roa File: ApB3AApTkd-CTxpkFDEIw_6nXz4.roa (raw, json) Hash identifier: BHpUQQ7BEi0kv1fti7vIaRRcfrlm8kSIsZNfVucwYew= Subject key identifier: 02:90:77:00:0A:53:91:DF:82:4F:1A:64:14:31:08:C3:FE:A7:5F:3E Certificate issuer: /CN=cb12d8ba2e0894dd06ca143a5517234e584af8c7 Certificate serial: 019B7CEE4CD59BBD9F6AF6BCAA05CB1CC87D Authority key identifier: CB:12:D8:BA:2E:08:94:DD:06:CA:14:3A:55:17:23:4E:58:4A:F8:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxLYui4IlN0GyhQ6VRcjTlhK-Mc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/4d1696-3341-4ddb-8e23-34e2279be765/1/ApB3AApTkd-CTxpkFDEIw_6nXz4.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39512 IP address blocks: 81.24.208.0/20 maxlen: 20 2a00:c200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/4d1696-3341-4ddb-8e23-34e2279be765/1/yxLYui4IlN0GyhQ6VRcjTlhK-Mc.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/4d1696-3341-4ddb-8e23-34e2279be765/1/yxLYui4IlN0GyhQ6VRcjTlhK-Mc.mft rsync://rpki.ripe.net/repository/DEFAULT/yxLYui4IlN0GyhQ6VRcjTlhK-Mc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4c:d5:9b:bd:9f:6a:f6:bc:aa:05:cb:1c:c8:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb12d8ba2e0894dd06ca143a5517234e584af8c7 Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=029077000a5391df824f1a64143108c3fea75f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:35:8b:99:6e:07:5a:20:f3:24:1d:a1:c3:a4: 70:4a:6c:e1:9b:ed:45:bc:0e:3d:54:a6:2d:87:c4: 34:cd:4a:03:99:fe:2b:bf:3b:ed:49:38:50:38:36: 0b:37:4d:ae:dd:03:23:a8:b4:cc:e5:d4:63:2f:9a: 32:0c:3f:d7:b5:ad:dd:e7:48:ca:cd:ed:62:47:02: f9:a2:3b:5e:c0:eb:b5:db:72:5d:65:0e:92:7c:f8: b0:39:55:6c:a3:20:ea:28:c9:b5:cc:7d:a2:12:44: fc:82:64:13:07:fb:c9:8b:ba:00:49:ed:b8:86:ed: 0b:8b:c7:58:da:58:59:a8:ae:59:7d:c6:42:8b:68: bb:a6:b8:49:f8:86:da:ae:78:fe:4a:db:b0:95:c1: 57:1d:c7:83:02:8b:ca:d6:79:14:83:36:1d:47:f7: 7d:94:59:00:57:45:0d:d1:e4:8f:5b:56:d6:d8:c4: 12:6b:80:4e:8a:c6:24:f5:a2:b5:6d:e6:9b:58:f1: 7d:0f:51:40:9d:9b:bd:b9:d9:7a:62:cf:05:2b:00: 38:57:7c:e7:fa:d3:25:d1:89:bb:ce:8d:cb:fb:37: 42:05:49:67:15:20:94:a1:74:1f:a1:67:7f:b4:a9: cc:fc:3c:3c:f4:f3:52:69:e3:01:d4:6b:04:13:55: 2d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:90:77:00:0A:53:91:DF:82:4F:1A:64:14:31:08:C3:FE:A7:5F:3E X509v3 Authority Key Identifier: keyid:CB:12:D8:BA:2E:08:94:DD:06:CA:14:3A:55:17:23:4E:58:4A:F8:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxLYui4IlN0GyhQ6VRcjTlhK-Mc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/4d1696-3341-4ddb-8e23-34e2279be765/1/ApB3AApTkd-CTxpkFDEIw_6nXz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/4d1696-3341-4ddb-8e23-34e2279be765/1/yxLYui4IlN0GyhQ6VRcjTlhK-Mc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.24.208.0/20 IPv6: 2a00:c200::/32 Signature Algorithm: sha256WithRSAEncryption 37:d9:10:0b:ed:db:50:28:25:2b:0c:28:e0:e3:11:55:5c:e4: 0b:fc:65:a3:18:1f:da:6b:75:fe:4f:02:24:7e:67:70:0e:27: 4d:d8:98:f9:b5:40:75:1d:8a:17:8a:46:2f:a7:63:56:3c:c3: c4:b3:34:b1:92:c5:6f:42:df:9f:e6:b3:84:18:8b:67:39:05: ea:18:ef:9a:1c:45:05:b7:16:b8:a5:06:0f:4d:ef:e1:6c:97: aa:de:c5:bf:a7:75:f2:1e:4e:66:07:f8:9f:32:8c:75:e2:2d: 82:ad:35:ae:6c:bc:4c:2e:13:4a:82:71:77:8b:ea:fb:fd:25: a6:d1:92:54:aa:66:51:f6:99:ff:36:1e:08:55:c1:ff:89:24: 41:d3:7e:0c:5e:11:23:56:87:3a:34:d2:e1:6f:19:aa:3c:85: 99:52:46:35:8b:cd:85:72:17:26:6d:80:fb:11:2b:5d:d4:37: fc:c3:dd:7a:d5:c5:80:e9:e7:a6:c6:fd:d3:d7:d4:68:87:91: 52:5b:f5:3e:2c:2f:68:8c:02:96:cf:38:79:4b:6d:0d:b1:e9: 54:1c:3a:19:39:88:5e:17:80:1a:d4:e6:89:81:43:f3:ab:36: ab:99:f3:e1:bc:53:0c:32:e7:05:8c:e0:dd:6f:74:8e:ea:70: b5:39:4d:b5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87kzVm72fava8qgXLHMh9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMTJkOGJhMmUwODk0ZGQwNmNhMTQzYTU1MTcyMzRlNTg0 YWY4YzcwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjkwNzcwMDBhNTM5MWRmODI0ZjFhNjQxNDMxMDhjM2ZlYTc1ZjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTWLmW4HWiDzJB2hw6RwSmzhm+1F vA49VKYth8Q0zUoDmf4rvzvtSThQODYLN02u3QMjqLTM5dRjL5oyDD/Xta3d50jK ze1iRwL5ojtewOu123JdZQ6SfPiwOVVsoyDqKMm1zH2iEkT8gmQTB/vJi7oASe24 hu0Li8dY2lhZqK5ZfcZCi2i7prhJ+Ibarnj+StuwlcFXHceDAovK1nkUgzYdR/d9 lFkAV0UN0eSPW1bW2MQSa4BOisYk9aK1beabWPF9D1FAnZu9udl6Ys8FKwA4V3zn +tMl0Ym7zo3L+zdCBUlnFSCUoXQfoWd/tKnM/Dw89PNSaeMB1GsEE1Ut3wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAKQdwAKU5Hfgk8aZBQxCMP+p18+MB8GA1UdIwQY MBaAFMsS2LouCJTdBsoUOlUXI05YSvjHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXhMWXVpNElsTjBHeWhRNlZSY2pUbGhLLU1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi80ZDE2OTYtMzM0MS00ZGRiLThlMjMt MzRlMjI3OWJlNzY1LzEvQXBCM0FBcFRrZC1DVHhwa0ZERUl3XzZuWHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi80ZDE2OTYtMzM0MS00ZGRiLThlMjMtMzRlMjI3OWJlNzY1 LzEveXhMWXVpNElsTjBHeWhRNlZSY2pUbGhLLU1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEURjQMA0E AgACMAcDBQAqAMIAMA0GCSqGSIb3DQEBCwUAA4IBAQA32RAL7dtQKCUrDCjg4xFV XOQL/GWjGB/aa3X+TwIkfmdwDidN2Jj5tUB1HYoXikYvp2NWPMPEszSxksVvQt+f 5rOEGItnOQXqGO+aHEUFtxa4pQYPTe/hbJeq3sW/p3XyHk5mB/ifMox14i2CrTWu bLxMLhNKgnF3i+r7/SWm0ZJUqmZR9pn/Nh4IVcH/iSRB034MXhEjVoc6NNLhbxmq PIWZUkY1i82FchcmbYD7EStd1Df8w9161cWA6eemxv3T19Roh5FSW/U+LC9ojAKW zzh5S20NselUHDoZOYheF4Aa1OaJgUPzqzarmfPhvFMMMucFjODdb3SO6nC1OU21 -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:23 2026 by rpki-client