This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6c8c31-f999-4056-aa1b-234d0754239d/1/aG_aHbCU5Hs_MsAhlVWc5LE2b-o.roa File: aG_aHbCU5Hs_MsAhlVWc5LE2b-o.roa (raw, json) Hash identifier: pytCPS1GM1RdouNyax+lSXlG67UW6XetXLmtI5xGuWo= Subject key identifier: 68:6F:DA:1D:B0:94:E4:7B:3F:32:C0:21:95:55:9C:E4:B1:36:6F:EA Certificate issuer: /CN=075dc3f225722b809abe98778c3bfd7009e1cf4f Certificate serial: 019B7BA4810EDC597B5E3E17DE32E22D522E Authority key identifier: 07:5D:C3:F2:25:72:2B:80:9A:BE:98:77:8C:3B:FD:70:09:E1:CF:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B13D8iVyK4Cavph3jDv9cAnhz08.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6c8c31-f999-4056-aa1b-234d0754239d/1/aG_aHbCU5Hs_MsAhlVWc5LE2b-o.roa Signing time: Thu 01 Jan 2026 22:18:57 +0000 ROA not before: Thu 01 Jan 2026 22:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48298 IP address blocks: 94.199.40.0/21 maxlen: 21 94.199.41.0/24 maxlen: 24 94.199.42.0/24 maxlen: 24 94.199.43.0/24 maxlen: 24 94.199.44.0/24 maxlen: 24 94.199.45.0/24 maxlen: 24 94.199.46.0/24 maxlen: 24 94.199.47.0/24 maxlen: 24 185.17.212.0/22 maxlen: 22 2a01:5bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6c8c31-f999-4056-aa1b-234d0754239d/1/B13D8iVyK4Cavph3jDv9cAnhz08.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/6c8c31-f999-4056-aa1b-234d0754239d/1/B13D8iVyK4Cavph3jDv9cAnhz08.mft rsync://rpki.ripe.net/repository/DEFAULT/B13D8iVyK4Cavph3jDv9cAnhz08.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:81:0e:dc:59:7b:5e:3e:17:de:32:e2:2d:52:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=075dc3f225722b809abe98778c3bfd7009e1cf4f Validity Not Before: Jan 1 22:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=686fda1db094e47b3f32c02195559ce4b1366fea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9e:ae:84:cd:51:a4:07:1e:fd:b1:a3:f7:eb: 40:6f:55:ee:69:17:06:d5:1c:5a:5f:5a:80:84:15: f1:21:f7:6b:46:91:9a:1c:04:c8:9f:5d:41:19:83: 69:da:f1:47:37:aa:3e:86:2d:26:ee:95:d2:4c:05: ee:62:74:77:87:03:45:be:18:f8:a5:86:9a:f8:17: a5:32:3b:68:7b:f1:66:b2:13:e1:ef:a3:72:14:44: 51:6a:03:63:e8:dc:45:f5:fb:86:68:1a:e6:e3:78: bc:ec:14:b0:8d:c3:94:93:81:bf:aa:fe:52:41:ed: 51:e0:1f:d2:46:cf:c4:bf:6b:a8:27:1c:af:40:a0: ca:07:73:f6:d6:6e:78:fe:a0:c0:7e:52:47:05:f5: 0f:13:ff:dd:1f:34:98:cf:b5:ce:4f:77:eb:48:ef: 52:e9:c0:73:8c:3c:3f:d6:91:9b:d9:83:56:02:1e: a0:31:e6:4b:82:ff:ca:0c:72:f9:7d:ab:a3:80:80: a3:0a:bb:ac:e1:3a:da:de:58:c6:6e:a7:13:97:0a: b6:73:f0:44:86:44:75:20:98:74:22:a6:09:01:5c: 8d:e9:30:70:37:97:c6:95:10:3f:d0:2c:cc:ef:41: cf:ac:ad:3d:e2:c1:89:4b:5b:f2:12:44:2e:e9:bb: 88:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6F:DA:1D:B0:94:E4:7B:3F:32:C0:21:95:55:9C:E4:B1:36:6F:EA X509v3 Authority Key Identifier: keyid:07:5D:C3:F2:25:72:2B:80:9A:BE:98:77:8C:3B:FD:70:09:E1:CF:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B13D8iVyK4Cavph3jDv9cAnhz08.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6c8c31-f999-4056-aa1b-234d0754239d/1/aG_aHbCU5Hs_MsAhlVWc5LE2b-o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6c8c31-f999-4056-aa1b-234d0754239d/1/B13D8iVyK4Cavph3jDv9cAnhz08.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.199.40.0/21 185.17.212.0/22 IPv6: 2a01:5bc0::/32 Signature Algorithm: sha256WithRSAEncryption 87:0b:a2:43:1e:12:4d:6a:46:f7:11:55:9a:2b:9d:c0:5f:18: a5:01:43:c6:98:c7:7c:8a:1e:76:eb:cb:fe:be:8e:d5:09:85: 4a:13:4a:1f:44:f8:89:2a:f8:a7:6a:53:56:c9:09:d7:34:fe: 30:c6:87:0b:c5:65:5a:0b:11:f1:82:c1:3f:89:07:15:cd:d7: 08:b6:5d:a0:24:55:cf:20:5d:88:c2:65:5c:7d:15:ad:29:ee: fc:c5:07:97:68:f9:5e:70:f0:e1:ac:d0:b5:88:3f:0a:6b:57: d6:86:6c:f5:83:72:1b:63:ee:a7:06:59:53:64:9f:be:25:48: 1d:1c:71:65:bf:07:f7:50:fd:76:9b:4f:c7:1b:1e:58:38:ac: a7:82:4b:d0:09:d3:f8:e4:91:f8:92:78:41:00:18:8f:ce:b0: 4a:72:60:f0:ad:ee:9e:9d:88:40:16:57:c5:3e:2a:26:47:30: 09:ff:68:34:47:dc:cb:2b:77:9e:58:40:aa:a0:28:bb:a0:32: 32:bf:b6:66:f2:33:ea:ba:4f:cf:77:2c:5f:fe:8c:8f:ab:2d: 6c:64:1b:2b:b2:fe:82:dc:f4:70:a7:6a:e6:c7:be:64:28:6b: e1:22:91:be:e3:9a:48:5a:20:30:3f:7d:91:de:5a:87:19:dd: ab:a5:d3:b3 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7pIEO3Fl7Xj4X3jLiLVIuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3NWRjM2YyMjU3MjJiODA5YWJlOTg3NzhjM2JmZDcwMDll MWNmNGYwHhcNMjYwMTAxMjIxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODZmZGExZGIwOTRlNDdiM2YzMmMwMjE5NTU1OWNlNGIxMzY2ZmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm56uhM1RpAce/bGj9+tAb1XuaRcG 1RxaX1qAhBXxIfdrRpGaHATIn11BGYNp2vFHN6o+hi0m7pXSTAXuYnR3hwNFvhj4 pYaa+BelMjtoe/FmshPh76NyFERRagNj6NxF9fuGaBrm43i87BSwjcOUk4G/qv5S Qe1R4B/SRs/Ev2uoJxyvQKDKB3P21m54/qDAflJHBfUPE//dHzSYz7XOT3frSO9S 6cBzjDw/1pGb2YNWAh6gMeZLgv/KDHL5faujgICjCrus4Tra3ljGbqcTlwq2c/BE hkR1IJh0IqYJAVyN6TBwN5fGlRA/0CzM70HPrK094sGJS1vyEkQu6buIZQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFGhv2h2wlOR7PzLAIZVVnOSxNm/qMB8GA1UdIwQY MBaAFAddw/IlciuAmr6Yd4w7/XAJ4c9PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjEzRDhpVnlLNENhdnBoM2pEdjljQW5oejA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC82YzhjMzEtZjk5OS00MDU2LWFhMWIt MjM0ZDA3NTQyMzlkLzEvYUdfYUhiQ1U1SHNfTXNBaGxWV2M1TEUyYi1vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC82YzhjMzEtZjk5OS00MDU2LWFhMWItMjM0ZDA3NTQyMzlk LzEvQjEzRDhpVnlLNENhdnBoM2pEdjljQW5oejA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDXscoAwQC uRHUMA0EAgACMAcDBQAqAVvAMA0GCSqGSIb3DQEBCwUAA4IBAQCHC6JDHhJNakb3 EVWaK53AXxilAUPGmMd8ih5268v+vo7VCYVKE0ofRPiJKvinalNWyQnXNP4wxocL xWVaCxHxgsE/iQcVzdcItl2gJFXPIF2IwmVcfRWtKe78xQeXaPlecPDhrNC1iD8K a1fWhmz1g3IbY+6nBllTZJ++JUgdHHFlvwf3UP12m0/HGx5YOKyngkvQCdP45JH4 knhBABiPzrBKcmDwre6enYhAFlfFPiomRzAJ/2g0R9zLK3eeWECqoCi7oDIyv7Zm 8jPquk/Pdyxf/oyPqy1sZBsrsv6C3PRwp2rmx75kKGvhIpG+45pIWiAwP32R3lqH Gd2rpdOz -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:12 2026 by rpki-client