This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/AKJixgIyoiFRAuVwrU9Uh1udzZc.roa File: AKJixgIyoiFRAuVwrU9Uh1udzZc.roa (raw, json) Hash identifier: ohFD+m2QlHY4K3mvt7FqZXItot4Ux3ki91yXb1hPG1s= Subject key identifier: 00:A2:62:C6:02:32:A2:21:51:02:E5:70:AD:4F:54:87:5B:9D:CD:97 Certificate issuer: /CN=546ec217e9b129316c23a6fa9f9a721f10c2d95d Certificate serial: 019B7C119AA8B111F505785F1BF9CD91300F Authority key identifier: 54:6E:C2:17:E9:B1:29:31:6C:23:A6:FA:9F:9A:72:1F:10:C2:D9:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VG7CF-mxKTFsI6b6n5pyHxDC2V0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/AKJixgIyoiFRAuVwrU9Uh1udzZc.roa Signing time: Fri 02 Jan 2026 00:18:06 +0000 ROA not before: Fri 02 Jan 2026 00:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197835 IP address blocks: 176.111.173.0/24 maxlen: 24 2a13:940::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/VG7CF-mxKTFsI6b6n5pyHxDC2V0.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/VG7CF-mxKTFsI6b6n5pyHxDC2V0.mft rsync://rpki.ripe.net/repository/DEFAULT/VG7CF-mxKTFsI6b6n5pyHxDC2V0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:9a:a8:b1:11:f5:05:78:5f:1b:f9:cd:91:30:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=546ec217e9b129316c23a6fa9f9a721f10c2d95d Validity Not Before: Jan 2 00:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00a262c60232a2215102e570ad4f54875b9dcd97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:02:2e:42:ef:91:b9:77:8a:c2:c1:c0:10:fb: af:af:5c:5b:e5:71:08:da:ac:ad:5d:f1:6d:a2:7c: ea:08:c8:03:9b:09:49:ae:46:d9:c2:0f:1c:6c:55: c2:03:e6:ee:c5:24:b3:ef:aa:7c:88:1f:29:76:08: fc:b0:0f:37:27:d2:b1:b0:bc:f3:e9:99:c0:fd:4c: 41:1c:b1:b1:8b:27:e7:7a:e5:20:4a:ae:65:8b:56: e1:7d:d6:91:6f:2a:00:ba:77:a3:d9:79:91:b0:4b: 8e:91:f8:09:db:32:54:e9:a4:67:b0:00:7c:03:59: ca:d4:d1:25:e0:69:54:34:b8:a9:19:9f:f3:76:1f: 62:f4:cf:a2:38:75:09:a8:03:b8:d4:57:37:d6:b4: d5:b6:65:20:44:54:f0:eb:da:f7:c7:02:be:03:e6: a0:58:9e:ee:0a:47:2b:60:61:5d:40:d4:8e:25:fb: 2d:6e:98:8c:ac:d0:1e:2a:88:fd:2a:c4:42:6d:f4: 2e:03:38:1c:f6:d8:1d:e3:07:c0:41:58:57:99:5c: ae:04:a3:d3:03:dc:36:3a:09:cc:01:1a:cf:42:bd: c9:4c:ca:c7:17:e4:b2:ad:d9:32:c7:eb:e3:72:46: 58:34:81:0d:8b:d1:bd:00:7c:23:1d:1b:43:ad:b6: 4c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A2:62:C6:02:32:A2:21:51:02:E5:70:AD:4F:54:87:5B:9D:CD:97 X509v3 Authority Key Identifier: keyid:54:6E:C2:17:E9:B1:29:31:6C:23:A6:FA:9F:9A:72:1F:10:C2:D9:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VG7CF-mxKTFsI6b6n5pyHxDC2V0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/AKJixgIyoiFRAuVwrU9Uh1udzZc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9bb7d6-7f7a-486c-8a0d-c47c26fa68af/1/VG7CF-mxKTFsI6b6n5pyHxDC2V0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.111.173.0/24 IPv6: 2a13:940::/29 Signature Algorithm: sha256WithRSAEncryption 2f:b7:c3:68:5e:a0:bd:0e:54:65:06:13:e1:b9:69:98:48:07: 83:14:72:e0:bb:ed:b2:83:c9:77:12:92:8a:71:b8:40:c9:af: 10:79:ec:71:ac:16:b2:9b:ff:c6:c9:fd:25:9a:2e:a3:83:a0: 44:a5:68:4c:3f:c4:c5:e5:a7:fb:e0:25:3e:df:ea:5b:86:df: 64:1c:ec:40:aa:13:1a:ba:04:1b:9f:e7:11:dd:b3:c7:eb:91: 46:52:f6:05:b9:25:6c:38:01:72:bb:d7:8e:b0:12:fe:3c:71: 68:9e:5b:6c:35:ad:ba:8b:5b:8d:07:ba:04:c1:85:bb:e5:3b: ee:68:b6:6d:fe:57:41:24:94:fd:22:88:83:c1:35:4c:6e:e1: 36:0c:07:a2:de:15:14:5c:b7:59:4e:9e:03:16:a0:3a:31:bf: c7:71:c4:28:27:df:0e:8e:cf:4d:9e:6d:49:66:23:f5:3d:9d: d2:93:94:af:de:0c:b8:d1:4f:36:62:fe:be:1f:09:1c:40:58: 24:74:0e:05:7b:0c:68:20:c2:d7:98:33:64:ee:ed:5e:34:bf: 21:1a:72:14:34:6d:9d:a8:a3:19:bc:df:13:8e:63:35:52:86: 0c:59:bc:48:4f:cb:13:27:3f:4b:1f:0b:08:b4:b5:01:42:fa: e1:7c:22:fb -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8EZqosRH1BXhfG/nNkTAPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NmVjMjE3ZTliMTI5MzE2YzIzYTZmYTlmOWE3MjFmMTBj MmQ5NWQwHhcNMjYwMTAyMDAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMGEyNjJjNjAyMzJhMjIxNTEwMmU1NzBhZDRmNTQ4NzViOWRjZDk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQIuQu+RuXeKwsHAEPuvr1xb5XEI 2qytXfFtonzqCMgDmwlJrkbZwg8cbFXCA+buxSSz76p8iB8pdgj8sA83J9KxsLzz 6ZnA/UxBHLGxiyfneuUgSq5li1bhfdaRbyoAunej2XmRsEuOkfgJ2zJU6aRnsAB8 A1nK1NEl4GlUNLipGZ/zdh9i9M+iOHUJqAO41Fc31rTVtmUgRFTw69r3xwK+A+ag WJ7uCkcrYGFdQNSOJfstbpiMrNAeKoj9KsRCbfQuAzgc9tgd4wfAQVhXmVyuBKPT A9w2OgnMARrPQr3JTMrHF+Syrdkyx+vjckZYNIENi9G9AHwjHRtDrbZMvQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFACiYsYCMqIhUQLlcK1PVIdbnc2XMB8GA1UdIwQY MBaAFFRuwhfpsSkxbCOm+p+ach8QwtldMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkc3Q0YtbXhLVEZzSTZiNm41cHlIeERDMlYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85YmI3ZDYtN2Y3YS00ODZjLThhMGQt YzQ3YzI2ZmE2OGFmLzEvQUtKaXhnSXlvaUZSQXVWd3JVOVVoMXVkelpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS85YmI3ZDYtN2Y3YS00ODZjLThhMGQtYzQ3YzI2ZmE2OGFm LzEvVkc3Q0YtbXhLVEZzSTZiNm41cHlIeERDMlYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAsG+tMA0E AgACMAcDBQMqEwlAMA0GCSqGSIb3DQEBCwUAA4IBAQAvt8NoXqC9DlRlBhPhuWmY SAeDFHLgu+2yg8l3EpKKcbhAya8QeexxrBaym//Gyf0lmi6jg6BEpWhMP8TF5af7 4CU+3+pbht9kHOxAqhMaugQbn+cR3bPH65FGUvYFuSVsOAFyu9eOsBL+PHFonlts Na26i1uNB7oEwYW75TvuaLZt/ldBJJT9IoiDwTVMbuE2DAei3hUUXLdZTp4DFqA6 Mb/HccQoJ98Ojs9Nnm1JZiP1PZ3Sk5Sv3gy40U82Yv6+HwkcQFgkdA4FewxoIMLX mDNk7u1eNL8hGnIUNG2dqKMZvN8TjmM1UoYMWbxIT8sTJz9LHwsItLUBQvrhfCL7 -----END CERTIFICATE-----Generated at Tue Jan 27 14:55:36 2026 by rpki-client