This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/am4aroWQQPsM2aTYWzDPanEMaMw.roa File: am4aroWQQPsM2aTYWzDPanEMaMw.roa (raw, json) Hash identifier: Bx3vgeqt18D02uJ2KjNt/HtUT1xtEwij8k7l8BwkltA= Subject key identifier: 6A:6E:1A:AE:85:90:40:FB:0C:D9:A4:D8:5B:30:CF:6A:71:0C:68:CC Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6 Certificate serial: 019B7910ED1BC57D33F9599548025A7BC205 Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/am4aroWQQPsM2aTYWzDPanEMaMw.roa Signing time: Thu 01 Jan 2026 10:18:31 +0000 ROA not before: Thu 01 Jan 2026 10:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18530 IP address blocks: 2.56.20.0/23 maxlen: 23 2.56.22.0/23 maxlen: 23 84.39.200.0/23 maxlen: 23 84.39.202.0/23 maxlen: 23 92.246.68.0/23 maxlen: 23 92.246.70.0/23 maxlen: 23 193.31.32.0/23 maxlen: 23 193.31.34.0/23 maxlen: 23 194.93.52.0/23 maxlen: 23 194.93.54.0/23 maxlen: 23 195.38.0.0/23 maxlen: 23 195.38.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.mft rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:ed:1b:c5:7d:33:f9:59:95:48:02:5a:7b:c2:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6 Validity Not Before: Jan 1 10:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a6e1aae859040fb0cd9a4d85b30cf6a710c68cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e7:03:3d:bf:be:b1:1a:f0:7f:1d:34:89:a8: 76:30:84:98:ed:df:d6:ed:0f:bb:d7:a0:06:7d:fd: ff:99:23:9d:58:c7:3b:9d:90:05:e2:57:18:6a:5e: cd:78:6b:b8:98:2a:c0:67:13:15:26:7a:ed:92:ff: 70:2d:15:a9:eb:50:04:b7:65:a4:91:2b:68:fc:d7: 88:77:f1:99:a4:b6:53:49:49:18:35:72:cf:ad:0f: 7b:90:b4:29:23:bb:07:1d:6b:f3:34:0c:53:cf:b4: 3e:37:88:90:34:32:6e:82:dc:d4:d7:94:15:07:31: 6a:40:00:8d:64:da:fa:7d:bd:8a:b0:07:4f:bd:83: cc:95:c5:9f:3f:2c:54:61:75:21:99:4a:b1:5a:c2: f0:8b:a5:a5:d6:a5:cb:8a:0f:c7:c9:dd:3a:a5:25: ef:4a:77:55:d3:87:3a:35:97:cf:96:ad:8c:97:b5: 26:7b:17:fc:25:93:25:a5:f4:a8:2d:17:46:cd:e2: 7c:3e:b4:86:be:b1:bf:fc:6b:5a:91:b7:4b:01:04: 94:e1:28:06:3f:68:6d:6b:d0:4b:25:7e:20:ec:5e: 33:ea:dc:be:01:7f:9a:ef:57:ad:fd:15:5f:b7:e1: ea:59:fa:55:0f:97:31:35:d8:d7:ad:96:af:e8:b5: 30:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:6E:1A:AE:85:90:40:FB:0C:D9:A4:D8:5B:30:CF:6A:71:0C:68:CC X509v3 Authority Key Identifier: keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/am4aroWQQPsM2aTYWzDPanEMaMw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.20.0/22 84.39.200.0/22 92.246.68.0/22 193.31.32.0/22 194.93.52.0/22 195.38.0.0/22 Signature Algorithm: sha256WithRSAEncryption ba:7c:95:2b:48:93:0a:a9:4f:b7:a4:d6:35:c3:05:6c:2c:62: 20:58:23:c7:4a:6c:6b:ee:3e:32:6c:40:7e:2c:2f:5a:89:2e: b9:f0:f5:f5:3c:46:9a:cb:36:8b:d8:d0:6e:55:ea:12:3a:f6: 13:dc:45:aa:6d:9b:53:36:77:9b:64:a4:2d:70:4a:48:a5:1b: 58:dc:65:5c:d8:ed:5a:55:96:a0:35:4e:1b:e5:e7:24:fa:42: ed:09:cf:ab:93:a5:8c:e9:da:76:8d:c7:56:17:3a:c9:e5:a2: 7d:a7:38:b4:d9:56:32:a7:a7:c1:a6:40:72:49:05:28:d7:47: de:35:99:a6:7b:8c:40:94:1d:e3:dc:89:3b:7f:7b:49:24:ad: a3:ab:af:18:b4:0f:8d:fd:28:44:ea:69:fe:3a:82:9c:e9:9a: 61:e2:2b:1c:74:cf:68:e8:72:90:49:3c:33:ec:3a:c3:ec:23: 48:bf:13:de:72:4c:bb:a9:41:d7:a4:e6:e2:e7:0f:e4:a8:e2: 75:21:e2:e6:cf:94:d6:d9:44:de:9a:7d:ef:c5:5a:82:d6:41: 68:55:a6:9f:89:c2:d2:41:5a:1f:91:c5:8a:fb:49:9e:59:3a: 68:f6:97:5c:99:22:a2:f7:8a:fc:18:2a:67:db:57:c8:5f:c3: 28:d5:90:94 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt5EO0bxX0z+VmVSAJae8IFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZDBjNDlhMGU5N2UwZDVmM2NlZDNiN2I2YjlmNzJjYTBj YjUzZDYwHhcNMjYwMTAxMTAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTZlMWFhZTg1OTA0MGZiMGNkOWE0ZDg1YjMwY2Y2YTcxMGM2OGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoecDPb++sRrwfx00iah2MISY7d/W 7Q+716AGff3/mSOdWMc7nZAF4lcYal7NeGu4mCrAZxMVJnrtkv9wLRWp61AEt2Wk kSto/NeId/GZpLZTSUkYNXLPrQ97kLQpI7sHHWvzNAxTz7Q+N4iQNDJugtzU15QV BzFqQACNZNr6fb2KsAdPvYPMlcWfPyxUYXUhmUqxWsLwi6Wl1qXLig/Hyd06pSXv SndV04c6NZfPlq2Ml7Umexf8JZMlpfSoLRdGzeJ8PrSGvrG//GtakbdLAQSU4SgG P2hta9BLJX4g7F4z6ty+AX+a71et/RVft+HqWfpVD5cxNdjXrZav6LUwAQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFGpuGq6FkED7DNmk2Fswz2pxDGjMMB8GA1UdIwQY MBaAFOLQxJoOl+DV887Tt7a59yygy1PWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRERW1nNlg0Tlh6enRPM3RybjNMS0RMVTlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC85ZjBmN2EtMTFlYi00MzgzLWJjNmEt NDY5MGEwMDcxNDFmLzEvYW00YXJvV1FRUHNNMmFUWVd6RFBhbkVNYU13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC85ZjBmN2EtMTFlYi00MzgzLWJjNmEtNDY5MGEwMDcxNDFm LzEvNHRERW1nNlg0Tlh6enRPM3RybjNMS0RMVTlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCAjgUAwQC VCfIAwQCXPZEAwQCwR8gAwQCwl00AwQCwyYAMA0GCSqGSIb3DQEBCwUAA4IBAQC6 fJUrSJMKqU+3pNY1wwVsLGIgWCPHSmxr7j4ybEB+LC9aiS658PX1PEaayzaL2NBu VeoSOvYT3EWqbZtTNnebZKQtcEpIpRtY3GVc2O1aVZagNU4b5eck+kLtCc+rk6WM 6dp2jcdWFzrJ5aJ9pzi02VYyp6fBpkBySQUo10feNZmme4xAlB3j3Ik7f3tJJK2j q68YtA+N/ShE6mn+OoKc6Zph4iscdM9o6HKQSTwz7DrD7CNIvxPecky7qUHXpObi 5w/kqOJ1IeLmz5TW2UTemn3vxVqC1kFoVaaficLSQVofkcWK+0meWTpo9pdcmSKi 94r8GCpn21fIX8Mo1ZCU -----END CERTIFICATE-----Generated at Fri Jan 9 18:41:55 2026 by rpki-client