This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/aitD5UH29rGUG8_oXWsc-YfKHvk.roa File: aitD5UH29rGUG8_oXWsc-YfKHvk.roa (raw, json) Hash identifier: fXAcocJ6AW36LCgsDsOqq0Ar/nfeKZ+crNQ7BTk4Lec= Subject key identifier: 6A:2B:43:E5:41:F6:F6:B1:94:1B:CF:E8:5D:6B:1C:F9:87:CA:1E:F9 Certificate issuer: /CN=0f554afe672744742b4e35027b402e8613c20377 Certificate serial: 019B7D5C0146C7B8FE8EAC46E39A00EA22D2 Authority key identifier: 0F:55:4A:FE:67:27:44:74:2B:4E:35:02:7B:40:2E:86:13:C2:03:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D1VK_mcnRHQrTjUCe0AuhhPCA3c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/aitD5UH29rGUG8_oXWsc-YfKHvk.roa Signing time: Fri 02 Jan 2026 06:19:00 +0000 ROA not before: Fri 02 Jan 2026 06:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60686 IP address blocks: 185.19.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/D1VK_mcnRHQrTjUCe0AuhhPCA3c.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/D1VK_mcnRHQrTjUCe0AuhhPCA3c.mft rsync://rpki.ripe.net/repository/DEFAULT/D1VK_mcnRHQrTjUCe0AuhhPCA3c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:01:46:c7:b8:fe:8e:ac:46:e3:9a:00:ea:22:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f554afe672744742b4e35027b402e8613c20377 Validity Not Before: Jan 2 06:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a2b43e541f6f6b1941bcfe85d6b1cf987ca1ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:2e:72:a3:58:28:ec:93:57:7f:87:fe:64: 85:74:81:44:b0:01:3f:47:ad:96:d1:a2:c2:f0:4b: 9f:c5:86:b9:ae:4e:54:9f:da:6b:4e:c2:c5:e3:bc: 58:7d:72:e8:f0:a4:a3:aa:0f:a8:c4:17:7e:77:21: 81:1c:8f:de:e7:42:95:e1:1f:75:c6:a3:c9:b3:d3: 59:d8:23:f9:c6:09:a4:00:11:ab:c5:4c:d9:22:20: db:01:81:b7:90:7c:fe:63:91:1f:8a:48:f4:d2:55: 28:2f:62:14:4f:7e:30:ce:d9:d9:8f:d2:8d:50:d0: fc:69:6d:28:26:01:22:b9:c3:11:c3:da:9a:8f:86: f7:c8:29:41:2b:e3:18:5c:77:53:24:1f:22:06:79: 78:f2:a9:12:3a:b3:ad:66:d2:2b:f6:ef:9a:e8:4f: ed:84:18:b3:f8:65:46:00:a9:3a:23:a3:58:5f:ee: 98:e8:da:a0:a7:38:7b:79:2b:70:1b:63:b0:f6:a6: fd:16:39:ba:ea:d4:41:e8:c8:9c:92:e6:e6:41:30: 18:64:52:13:f2:67:d8:28:04:eb:9e:0d:cf:43:c1: f1:10:e0:79:dd:1b:91:73:cd:ef:d6:42:21:c2:c5: d4:aa:e4:87:a4:0f:46:63:48:e1:57:ae:17:58:38: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2B:43:E5:41:F6:F6:B1:94:1B:CF:E8:5D:6B:1C:F9:87:CA:1E:F9 X509v3 Authority Key Identifier: keyid:0F:55:4A:FE:67:27:44:74:2B:4E:35:02:7B:40:2E:86:13:C2:03:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D1VK_mcnRHQrTjUCe0AuhhPCA3c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/aitD5UH29rGUG8_oXWsc-YfKHvk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c1937-9d9b-4315-a3c5-c0ae80b742b0/1/D1VK_mcnRHQrTjUCe0AuhhPCA3c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.19.160.0/22 Signature Algorithm: sha256WithRSAEncryption 58:4c:13:e2:ab:3a:54:66:ef:ac:19:0f:1c:25:5f:b4:a7:7d: e7:cf:40:7a:e5:f3:01:f0:05:c4:13:dc:2a:2d:f0:60:c7:3f: 79:a8:f7:fe:be:7b:a4:20:66:47:37:6f:53:94:51:ac:3a:36: d3:cd:9d:57:10:58:5d:ad:5e:b3:e2:af:92:54:26:be:92:c5: dd:48:f6:15:2a:c5:27:f9:b2:36:63:3c:54:e0:fd:e4:f2:17: fe:64:9f:10:fe:cb:35:0d:b8:72:84:94:ea:94:30:fa:81:31: 77:d1:3f:c2:6c:e5:35:3d:30:71:5c:e9:0f:ec:51:a6:a7:2e: 62:c8:5f:7a:74:b9:48:a7:75:28:8e:49:ad:b4:86:a7:cc:28: ce:66:85:e8:bc:67:49:a9:1f:6e:43:15:b0:87:e7:c1:3e:43: 67:5f:25:34:e5:84:93:6b:64:55:76:5e:fe:12:d4:63:64:80: 75:99:6b:8b:8f:c3:69:38:c3:5f:e5:1e:52:83:71:2b:73:fb: db:d6:27:d7:59:fc:c7:0f:cb:85:dc:56:45:66:9e:8c:7a:ce: 14:bd:95:66:be:6a:26:cc:15:28:a4:e9:70:28:c4:fe:94:13: c9:84:e3:e7:ff:e5:84:14:d5:57:7b:01:22:3b:53:d7:45:9a: 7d:73:9c:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XAFGx7j+jqxG45oA6iLSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNTU0YWZlNjcyNzQ0NzQyYjRlMzUwMjdiNDAyZTg2MTNj MjAzNzcwHhcNMjYwMTAyMDYxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTJiNDNlNTQxZjZmNmIxOTQxYmNmZTg1ZDZiMWNmOTg3Y2ExZWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS4ucqNYKOyTV3+H/mSFdIFEsAE/ R62W0aLC8EufxYa5rk5Un9prTsLF47xYfXLo8KSjqg+oxBd+dyGBHI/e50KV4R91 xqPJs9NZ2CP5xgmkABGrxUzZIiDbAYG3kHz+Y5Efikj00lUoL2IUT34wztnZj9KN UND8aW0oJgEiucMRw9qaj4b3yClBK+MYXHdTJB8iBnl48qkSOrOtZtIr9u+a6E/t hBiz+GVGAKk6I6NYX+6Y6Nqgpzh7eStwG2Ow9qb9Fjm66tRB6MickubmQTAYZFIT 8mfYKATrng3PQ8HxEOB53RuRc83v1kIhwsXUquSHpA9GY0jhV64XWDiDAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGorQ+VB9vaxlBvP6F1rHPmHyh75MB8GA1UdIwQY MBaAFA9VSv5nJ0R0K041AntALoYTwgN3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDFWS19tY25SSFFyVGpVQ2UwQXVoaFBDQTNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8yYzE5MzctOWQ5Yi00MzE1LWEzYzUt YzBhZTgwYjc0MmIwLzEvYWl0RDVVSDI5ckdVRzhfb1hXc2MtWWZLSHZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8yYzE5MzctOWQ5Yi00MzE1LWEzYzUtYzBhZTgwYjc0MmIw LzEvRDFWS19tY25SSFFyVGpVQ2UwQXVoaFBDQTNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuROgMA0G CSqGSIb3DQEBCwUAA4IBAQBYTBPiqzpUZu+sGQ8cJV+0p33nz0B65fMB8AXEE9wq LfBgxz95qPf+vnukIGZHN29TlFGsOjbTzZ1XEFhdrV6z4q+SVCa+ksXdSPYVKsUn +bI2YzxU4P3k8hf+ZJ8Q/ss1DbhyhJTqlDD6gTF30T/CbOU1PTBxXOkP7FGmpy5i yF96dLlIp3UojkmttIanzCjOZoXovGdJqR9uQxWwh+fBPkNnXyU05YSTa2RVdl7+ EtRjZIB1mWuLj8NpOMNf5R5Sg3Erc/vb1ifXWfzHD8uF3FZFZp6Mes4UvZVmvmom zBUopOlwKMT+lBPJhOPn/+WEFNVXewEiO1PXRZp9c5z2 -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:16 2026 by rpki-client