This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AvsFuwayfL7Rtjp-5BvJAhXZAf8.roa File: AvsFuwayfL7Rtjp-5BvJAhXZAf8.roa (raw, json) Hash identifier: vcQJNPT/OUBma+KAgF/J710hxkS/prsWQJkA9J2yOqc= Subject key identifier: 02:FB:05:BB:06:B2:7C:BE:D1:B6:3A:7E:E4:1B:C9:02:15:D9:01:FF Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E2DA5DABC9BF97E19156F2EBF06EC Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AvsFuwayfL7Rtjp-5BvJAhXZAf8.roa Signing time: Thu 01 Jan 2026 12:17:50 +0000 ROA not before: Thu 01 Jan 2026 12:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50673 IP address blocks: 185.172.167.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 06:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:2d:a5:da:bc:9b:f9:7e:19:15:6f:2e:bf:06:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02fb05bb06b27cbed1b63a7ee41bc90215d901ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a2:1b:4d:e6:55:04:be:ae:a0:cd:c7:b1:52: 92:2e:80:28:75:ee:a0:e8:48:32:2d:98:ce:a5:50: 3f:60:a5:bf:96:18:5f:0a:57:62:a2:85:f8:51:ba: 0c:cd:0b:2f:19:f5:73:15:30:bd:a9:86:96:72:fd: 8a:23:23:7d:3f:f2:ae:8f:c4:2a:8c:9a:d7:04:27: 2b:9f:67:94:d9:2e:6b:53:44:c6:fd:33:d5:c1:fe: 64:8f:55:00:47:10:8c:63:7f:c4:38:7e:49:59:91: a3:5c:39:cc:eb:3f:7e:1d:fb:25:03:d3:a7:63:66: 7a:f7:2b:65:58:f5:f8:fc:43:fe:9f:c1:bb:4f:56: 81:09:48:dc:75:72:5e:1d:a0:f7:af:3b:55:82:84: 8c:56:71:94:5d:ff:fc:06:32:be:00:91:d2:cb:26: 1d:67:c5:a8:b8:cb:b5:69:06:34:db:75:ec:a7:e0: 46:56:0e:bd:62:9a:50:de:8c:ab:aa:19:7b:78:84: 8b:68:5c:ff:42:f1:88:23:0b:f0:e9:27:d6:51:2f: 97:22:a9:9a:d1:00:38:07:fa:49:05:38:e8:36:52: 22:b6:ac:f2:fe:9d:b6:73:7e:ec:91:80:b0:4a:38: 7b:d6:22:46:62:7f:c4:77:39:ce:bc:83:ef:75:4f: af:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FB:05:BB:06:B2:7C:BE:D1:B6:3A:7E:E4:1B:C9:02:15:D9:01:FF X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AvsFuwayfL7Rtjp-5BvJAhXZAf8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.167.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:18:57:84:e1:43:1b:52:63:55:9e:f0:41:a7:18:26:94:35: 09:ae:07:1f:91:9e:5a:a7:9d:83:ad:b2:83:43:a2:a9:e2:b2: 8d:65:87:27:81:d8:22:da:95:24:46:e4:c3:65:41:90:d2:8a: 6a:32:25:b1:a8:78:7f:4a:5d:28:7b:16:68:92:c7:e8:32:91: 07:0f:b2:14:ce:97:5c:33:71:65:2e:fb:03:6a:b7:5d:c6:10: 17:1a:19:e4:3e:f2:e9:40:7c:77:04:03:53:63:e6:8a:36:53: 08:04:63:51:38:71:80:d8:73:fa:3f:e2:43:f9:bf:47:55:08: 22:ce:21:0d:7b:fe:9a:06:86:ff:7e:2e:5d:d3:32:61:4b:f1: 44:e0:80:55:c5:b6:a6:0b:ba:98:79:b7:f4:d4:bf:67:fc:60: 8f:51:b6:11:d5:f0:31:23:4a:64:38:c6:d1:40:80:65:ae:f2: 25:a3:6f:10:2e:a6:c5:a0:d4:63:59:26:10:fc:4f:bd:cd:4a: 58:2d:3e:38:21:e4:ce:fe:49:f6:f6:16:50:c5:2b:eb:24:a0: 81:a5:83:56:ed:fb:ac:90:ae:7d:fb:67:a3:14:49:b8:29:3f: ea:c8:f5:eb:29:ba:3e:60:06:8f:49:e6:ff:a0:02:a5:c0:ef: d8:35:a6:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fi2l2ryb+X4ZFW8uvwbsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmZiMDViYjA2YjI3Y2JlZDFiNjNhN2VlNDFiYzkwMjE1ZDkwMWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaIbTeZVBL6uoM3HsVKSLoAode6g 6EgyLZjOpVA/YKW/lhhfCldiooX4UboMzQsvGfVzFTC9qYaWcv2KIyN9P/Kuj8Qq jJrXBCcrn2eU2S5rU0TG/TPVwf5kj1UARxCMY3/EOH5JWZGjXDnM6z9+HfslA9On Y2Z69ytlWPX4/EP+n8G7T1aBCUjcdXJeHaD3rztVgoSMVnGUXf/8BjK+AJHSyyYd Z8WouMu1aQY023Xsp+BGVg69YppQ3oyrqhl7eISLaFz/QvGIIwvw6SfWUS+XIqma 0QA4B/pJBTjoNlIitqzy/p22c37skYCwSjh71iJGYn/EdznOvIPvdU+v2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAL7BbsGsny+0bY6fuQbyQIV2QH/MB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvQXZzRnV3YXlmTDdSdGpwLTVCdkpBaFhaQWY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaynMA0G CSqGSIb3DQEBCwUAA4IBAQBcGFeE4UMbUmNVnvBBpxgmlDUJrgcfkZ5ap52DrbKD Q6Kp4rKNZYcngdgi2pUkRuTDZUGQ0opqMiWxqHh/Sl0oexZoksfoMpEHD7IUzpdc M3FlLvsDarddxhAXGhnkPvLpQHx3BANTY+aKNlMIBGNROHGA2HP6P+JD+b9HVQgi ziENe/6aBob/fi5d0zJhS/FE4IBVxbamC7qYebf01L9n/GCPUbYR1fAxI0pkOMbR QIBlrvIlo28QLqbFoNRjWSYQ/E+9zUpYLT44IeTO/kn29hZQxSvrJKCBpYNW7fus kK59+2ejFEm4KT/qyPXrKbo+YAaPSeb/oAKlwO/YNaay -----END CERTIFICATE-----Generated at Sun Jan 11 11:45:39 2026 by rpki-client