This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/f74280-cc6d-41c1-858a-b5368330baf2/1/AFANdJ8mUhayIJqr98WG-9evVXE.roa File: AFANdJ8mUhayIJqr98WG-9evVXE.roa (raw, json) Hash identifier: D7OeO7ES4BUXcZ6jw7cQvDW4rxYwqo477C0popwqhHA= Subject key identifier: 00:50:0D:74:9F:26:52:16:B2:20:9A:AB:F7:C5:86:FB:D7:AF:55:71 Certificate issuer: /CN=a4b666cb0e5496116eb7ae6714d9055309ba69ac Certificate serial: 019B78A2690247743DA16CDBC8D0D924E175 Authority key identifier: A4:B6:66:CB:0E:54:96:11:6E:B7:AE:67:14:D9:05:53:09:BA:69:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pLZmyw5UlhFut65nFNkFUwm6aaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/f74280-cc6d-41c1-858a-b5368330baf2/1/AFANdJ8mUhayIJqr98WG-9evVXE.roa Signing time: Thu 01 Jan 2026 08:17:48 +0000 ROA not before: Thu 01 Jan 2026 08:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48685 IP address blocks: 94.142.152.0/21 maxlen: 21 176.10.32.0/21 maxlen: 21 176.57.224.0/20 maxlen: 20 185.25.252.0/22 maxlen: 22 185.169.188.0/22 maxlen: 22 185.169.188.0/23 maxlen: 23 2a06:a100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/f74280-cc6d-41c1-858a-b5368330baf2/1/pLZmyw5UlhFut65nFNkFUwm6aaw.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/f74280-cc6d-41c1-858a-b5368330baf2/1/pLZmyw5UlhFut65nFNkFUwm6aaw.mft rsync://rpki.ripe.net/repository/DEFAULT/pLZmyw5UlhFut65nFNkFUwm6aaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:69:02:47:74:3d:a1:6c:db:c8:d0:d9:24:e1:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4b666cb0e5496116eb7ae6714d9055309ba69ac Validity Not Before: Jan 1 08:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00500d749f265216b2209aabf7c586fbd7af5571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:8d:5d:11:b7:c7:81:75:da:06:05:1b:9f: aa:a5:40:e8:31:46:4a:87:ab:78:09:82:65:7c:cc: f3:0c:80:9c:f5:c7:3e:d8:0a:c9:6a:c9:01:dc:ee: 58:09:10:d7:d5:ba:bf:af:12:9a:23:bc:a1:aa:50: 47:ff:b9:b4:6c:1c:1e:2f:83:e1:94:66:ce:86:6e: 2b:53:e4:b0:4d:2d:e1:43:05:ea:f9:62:b9:83:98: 38:81:5a:25:ee:d5:a8:eb:7b:57:e7:1d:ff:63:02: a2:be:3a:3f:1e:63:c2:63:9d:72:2a:ea:79:99:b0: a0:ca:14:1d:c7:9c:f6:a8:78:07:e3:0a:da:a3:a7: 9c:e0:47:5b:10:ea:5f:e1:a1:51:9c:1c:19:60:7d: 93:21:a2:41:30:39:c2:7b:15:87:f5:74:ab:5a:0d: 49:02:a4:17:4d:aa:b2:df:ea:af:3a:9c:5f:53:56: 57:90:e0:ef:fc:79:bb:a6:84:98:07:50:db:8c:40: 3d:5e:f7:51:ec:03:3a:47:3e:9a:01:76:82:81:63: a2:2c:f7:6f:9c:ec:93:26:a9:f0:3a:30:6e:90:87: 8c:c9:f5:78:ac:2c:51:88:f2:c9:ff:7e:63:92:16: b6:b9:81:fa:56:3f:05:8d:dd:26:79:6f:bb:a7:b3: 21:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:50:0D:74:9F:26:52:16:B2:20:9A:AB:F7:C5:86:FB:D7:AF:55:71 X509v3 Authority Key Identifier: keyid:A4:B6:66:CB:0E:54:96:11:6E:B7:AE:67:14:D9:05:53:09:BA:69:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pLZmyw5UlhFut65nFNkFUwm6aaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f74280-cc6d-41c1-858a-b5368330baf2/1/AFANdJ8mUhayIJqr98WG-9evVXE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/f74280-cc6d-41c1-858a-b5368330baf2/1/pLZmyw5UlhFut65nFNkFUwm6aaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.142.152.0/21 176.10.32.0/21 176.57.224.0/20 185.25.252.0/22 185.169.188.0/22 IPv6: 2a06:a100::/29 Signature Algorithm: sha256WithRSAEncryption 15:86:0a:2b:9a:55:1d:1b:8a:a4:4a:45:63:c0:8a:af:8e:fe: d2:4c:89:78:c9:fb:2c:f9:43:3b:14:d0:d9:4b:a7:77:62:e2: 4d:8c:2f:bf:f4:e6:0a:ea:8c:5f:39:db:f7:5c:b3:df:eb:76: 6f:31:b0:e4:8a:79:5b:42:39:77:70:d9:5b:37:63:a7:43:fb: c1:8a:16:54:d5:70:ce:26:85:bc:b7:80:fc:98:f7:9c:bb:d4: 7c:b4:fb:23:0f:25:14:83:42:3a:47:68:c3:d2:3c:30:7c:78: ea:f5:00:e4:4c:d8:51:46:f7:de:e1:c3:0c:ed:28:7b:63:6a: 38:8c:bd:62:c0:49:9f:70:6e:50:78:2a:6f:a7:27:99:81:28: 38:f7:bf:b6:c3:1f:bd:f4:b3:50:d1:05:05:2a:29:07:02:91: 51:c1:68:2e:9d:96:2e:b1:bf:25:51:75:6f:95:bd:82:e2:b8: 78:d9:d1:f9:9a:1b:36:57:66:1e:ac:6d:03:45:64:0d:c0:01: 3c:9f:f0:d5:89:f0:db:f7:e8:4e:e8:71:33:6a:4f:62:11:94: e7:64:7d:6b:b4:c6:0f:eb:30:b3:bf:07:2d:33:ba:2f:ea:1f: 9e:21:66:f5:8b:0b:a0:e9:05:6a:6d:a8:d0:2d:ca:ca:1d:04: ba:b2:92:97 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt4omkCR3Q9oWzbyNDZJOF1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0YjY2NmNiMGU1NDk2MTE2ZWI3YWU2NzE0ZDkwNTUzMDli YTY5YWMwHhcNMjYwMTAxMDgxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDUwMGQ3NDlmMjY1MjE2YjIyMDlhYWJmN2M1ODZmYmQ3YWY1NTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPaNXRG3x4F12gYFG5+qpUDoMUZK h6t4CYJlfMzzDICc9cc+2ArJaskB3O5YCRDX1bq/rxKaI7yhqlBH/7m0bBweL4Ph lGbOhm4rU+SwTS3hQwXq+WK5g5g4gVol7tWo63tX5x3/YwKivjo/HmPCY51yKup5 mbCgyhQdx5z2qHgH4wrao6ec4EdbEOpf4aFRnBwZYH2TIaJBMDnCexWH9XSrWg1J AqQXTaqy3+qvOpxfU1ZXkODv/Hm7poSYB1DbjEA9XvdR7AM6Rz6aAXaCgWOiLPdv nOyTJqnwOjBukIeMyfV4rCxRiPLJ/35jkha2uYH6Vj8Fjd0meW+7p7MhswIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFABQDXSfJlIWsiCaq/fFhvvXr1VxMB8GA1UdIwQY MBaAFKS2ZssOVJYRbreuZxTZBVMJummsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcExabXl3NVVsaEZ1dDY1bkZOa0ZVd202YWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9mNzQyODAtY2M2ZC00MWMxLTg1OGEt YjUzNjgzMzBiYWYyLzEvQUZBTmRKOG1VaGF5SUpxcjk4V0ctOWV2VlhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9mNzQyODAtY2M2ZC00MWMxLTg1OGEtYjUzNjgzMzBiYWYy LzEvcExabXl3NVVsaEZ1dDY1bkZOa0ZVd202YWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDXo6YAwQD sAogAwQEsDngAwQCuRn8AwQCuam8MA0EAgACMAcDBQMqBqEAMA0GCSqGSIb3DQEB CwUAA4IBAQAVhgormlUdG4qkSkVjwIqvjv7STIl4yfss+UM7FNDZS6d3YuJNjC+/ 9OYK6oxfOdv3XLPf63ZvMbDkinlbQjl3cNlbN2OnQ/vBihZU1XDOJoW8t4D8mPec u9R8tPsjDyUUg0I6R2jD0jwwfHjq9QDkTNhRRvfe4cMM7Sh7Y2o4jL1iwEmfcG5Q eCpvpyeZgSg497+2wx+99LNQ0QUFKikHApFRwWgunZYusb8lUXVvlb2C4rh42dH5 mhs2V2YerG0DRWQNwAE8n/DVifDb9+hO6HEzak9iEZTnZH1rtMYP6zCzvwctM7ov 6h+eIWb1iwug6QVqbajQLcrKHQS6spKX -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:44 2026 by rpki-client