This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/AzQcC11ESzLHrBK-dTivzNW3KAk.roa File: AzQcC11ESzLHrBK-dTivzNW3KAk.roa (raw, json) Hash identifier: Qv/b4Iwxqe4a3Bb0a4E5kPXh7hWyERaV6fHHMv4Rwjs= Subject key identifier: 03:34:1C:0B:5D:44:4B:32:C7:AC:12:BE:75:38:AF:CC:D5:B7:28:09 Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A317C1402FC09792B6C94B7726EF38 Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/AzQcC11ESzLHrBK-dTivzNW3KAk.roa Signing time: Thu 01 Jan 2026 08:18:32 +0000 ROA not before: Thu 01 Jan 2026 08:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6939 IP address blocks: 109.205.193.0/24 maxlen: 24 158.94.220.0/23 maxlen: 24 158.94.220.0/24 maxlen: 24 158.94.221.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 2a01:fb04::/32 maxlen: 32 2a01:fb07::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 02:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:17:c1:40:2f:c0:97:92:b6:c9:4b:77:26:ef:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03341c0b5d444b32c7ac12be7538afccd5b72809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:89:f4:5f:80:4a:30:59:e8:cc:e3:60:e9:87: bd:43:67:20:a7:a3:a6:2b:93:30:21:fd:f7:6a:bc: fd:53:f1:34:9d:ce:09:fc:37:1f:a7:bf:2f:eb:13: 4b:7a:0a:3d:45:92:04:a2:db:bd:a7:94:3e:7c:9a: 6c:12:6c:9d:0c:95:3f:5a:97:cb:ad:c6:81:8e:c0: d8:b6:9a:24:87:a2:9c:7b:36:03:32:c3:c8:5a:7f: 42:56:e8:68:09:d3:f7:92:8f:31:bb:80:ed:ef:eb: 2a:38:65:d2:0d:e3:65:56:a3:d7:ca:dc:51:80:ab: c0:59:40:a2:30:75:30:2b:05:24:b7:68:12:95:83: fc:cc:e5:3d:17:cb:62:cf:0e:6b:a8:34:de:9a:90: 2b:08:6b:55:fa:db:c1:da:69:19:2b:23:47:03:0d: 0b:3b:46:bd:0a:1c:22:b0:5d:c6:df:c4:1d:fb:13: 9b:3c:46:27:8a:4e:20:ec:01:45:b7:4a:c6:6c:cf: 98:c0:47:67:bf:20:31:1a:0c:7f:8f:63:cc:f8:df: 10:18:cc:2a:2c:12:42:e0:a7:7a:f5:ae:79:0a:12: c1:ec:94:08:39:a7:52:4f:02:bd:5f:10:87:58:cf: 15:f4:ee:3a:02:f5:f5:6a:4b:50:d4:6c:fc:43:ae: 3d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:34:1C:0B:5D:44:4B:32:C7:AC:12:BE:75:38:AF:CC:D5:B7:28:09 X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/AzQcC11ESzLHrBK-dTivzNW3KAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 158.94.220.0/23 IPv6: 2a01:fb01::/32 2a01:fb04::/32 2a01:fb07::/34 Signature Algorithm: sha256WithRSAEncryption 6b:05:aa:53:92:02:14:c5:54:19:fe:f9:85:5a:01:d5:6c:2d: d2:38:3a:9a:f5:34:97:e2:3d:76:4b:94:02:6e:92:d1:0c:d6: 3d:77:ec:ac:3b:35:d0:a7:b5:34:56:4b:5e:58:96:38:d1:64: b0:6a:8a:b1:ce:78:8d:3e:dd:34:70:59:24:da:f3:ac:3f:1a: 3e:7a:b8:85:29:a7:0c:65:09:d0:d3:61:e9:e8:9f:db:f2:22: 31:ca:75:d6:d9:c4:82:12:b1:70:cc:77:9f:a9:57:5a:8c:e7: 4a:e2:8d:f2:fc:ff:97:95:cd:b0:c9:51:25:d1:7f:7c:64:27: 10:cb:32:79:63:67:67:2f:90:be:ea:af:cd:76:a1:56:62:c8: 02:7a:45:9d:48:c2:e0:57:46:2b:7a:98:8d:76:17:28:b1:b7: 7e:e3:41:d0:5f:cb:60:3f:7b:08:a6:c1:89:fa:d4:0f:c2:8b: 0b:0a:b8:99:8d:40:06:0a:60:c9:9e:95:18:f1:a5:a2:22:09: f0:05:67:c2:36:75:ad:cb:c9:a9:66:5f:62:73:f8:19:ac:38: 81:ca:2f:f9:5a:3a:83:bf:30:16:a2:61:ac:2f:0c:97:a3:b6: 4e:0d:4a:65:7e:07:8b:a1:12:e1:1d:d2:7b:c1:30:49:34:5f: e8:4d:89:0f -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt4oxfBQC/Al5K2yUt3Ju84MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzM0MWMwYjVkNDQ0YjMyYzdhYzEyYmU3NTM4YWZjY2Q1YjcyODA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34n0X4BKMFnozONg6Ye9Q2cgp6Om K5MwIf33arz9U/E0nc4J/Dcfp78v6xNLego9RZIEotu9p5Q+fJpsEmydDJU/WpfL rcaBjsDYtpokh6KcezYDMsPIWn9CVuhoCdP3ko8xu4Dt7+sqOGXSDeNlVqPXytxR gKvAWUCiMHUwKwUkt2gSlYP8zOU9F8tizw5rqDTempArCGtV+tvB2mkZKyNHAw0L O0a9ChwisF3G38Qd+xObPEYnik4g7AFFt0rGbM+YwEdnvyAxGgx/j2PM+N8QGMwq LBJC4Kd69a55ChLB7JQIOadSTwK9XxCHWM8V9O46AvX1aktQ1Gz8Q6494wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFAM0HAtdREsyx6wSvnU4r8zVtygJMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvQXpRY0MxMUVTekxIckJLLWRUaXZ6TlczS0FrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjASBAIAATAMAwQAbc3BAwQB nl7cMBwEAgACMBYDBQAqAfsBAwUAKgH7BAMGBioB+wcAMA0GCSqGSIb3DQEBCwUA A4IBAQBrBapTkgIUxVQZ/vmFWgHVbC3SODqa9TSX4j12S5QCbpLRDNY9d+ysOzXQ p7U0VkteWJY40WSwaoqxzniNPt00cFkk2vOsPxo+eriFKacMZQnQ02Hp6J/b8iIx ynXW2cSCErFwzHefqVdajOdK4o3y/P+Xlc2wyVEl0X98ZCcQyzJ5Y2dnL5C+6q/N dqFWYsgCekWdSMLgV0YrepiNdhcosbd+40HQX8tgP3sIpsGJ+tQPwosLCriZjUAG CmDJnpUY8aWiIgnwBWfCNnWty8mpZl9ic/gZrDiByi/5WjqDvzAWomGsLwyXo7ZO DUplfgeLoRLhHdJ7wTBJNF/oTYkP -----END CERTIFICATE-----Generated at Sat Jan 17 08:18:58 2026 by rpki-client