This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/AydP7XNvWxhhDMLSuOqc0Oa5dE0.roa File: AydP7XNvWxhhDMLSuOqc0Oa5dE0.roa (raw, json) Hash identifier: jUVgcjRvFoEADtpRITq72Z8KeRsnl4848PEL4Me2SIw= Subject key identifier: 03:27:4F:ED:73:6F:5B:18:61:0C:C2:D2:B8:EA:9C:D0:E6:B9:74:4D Certificate issuer: /CN=3c568c59d7a83199c3a79ea0e8375b946ed884e2 Certificate serial: 019B7834D694551BD55D02E99BC1AF9717AB Authority key identifier: 3C:56:8C:59:D7:A8:31:99:C3:A7:9E:A0:E8:37:5B:94:6E:D8:84:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFaMWdeoMZnDp56g6DdblG7YhOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/AydP7XNvWxhhDMLSuOqc0Oa5dE0.roa Signing time: Thu 01 Jan 2026 06:18:07 +0000 ROA not before: Thu 01 Jan 2026 06:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198949 IP address blocks: 5.100.144.0/21 maxlen: 21 185.150.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/PFaMWdeoMZnDp56g6DdblG7YhOI.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/PFaMWdeoMZnDp56g6DdblG7YhOI.mft rsync://rpki.ripe.net/repository/DEFAULT/PFaMWdeoMZnDp56g6DdblG7YhOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:d6:94:55:1b:d5:5d:02:e9:9b:c1:af:97:17:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c568c59d7a83199c3a79ea0e8375b946ed884e2 Validity Not Before: Jan 1 06:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03274fed736f5b18610cc2d2b8ea9cd0e6b9744d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5b:aa:42:28:f1:b3:dc:78:ea:20:a0:ec:83: 9e:82:a7:9b:e6:f7:df:2b:19:38:9e:2d:8e:0d:4c: 4f:c3:fa:d2:26:f8:4e:fe:ff:33:7f:90:bb:df:7b: f1:08:b2:cb:70:1d:91:d5:0c:a5:a3:96:66:71:79: 89:71:68:4c:aa:79:a5:96:7b:12:07:d0:24:cb:79: 1c:b1:c0:60:d7:60:d3:4e:ac:06:24:9d:a7:63:7a: f3:c2:13:0f:15:87:bc:29:a3:12:97:19:78:6d:6e: 31:5c:d9:85:7e:8c:7b:85:56:4a:f9:b3:f4:05:db: fb:98:ec:a4:08:68:d3:68:71:9c:9d:17:df:ca:68: 9d:df:6a:ba:e9:b8:51:98:80:8d:bf:9d:8d:88:0a: c3:0e:aa:a1:b4:de:fe:85:f6:95:a0:65:df:a3:c8: 2f:b1:da:d4:69:9f:95:de:c7:60:13:ba:c5:71:4b: a8:b8:08:61:a0:01:d4:7e:71:8c:03:a3:37:1d:15: 51:86:20:e3:71:9c:d3:15:66:f3:e5:11:8d:70:b8: 32:c1:6c:ef:db:ec:85:03:81:98:69:65:14:b3:fb: 9a:38:a7:d5:d5:a6:ff:ab:36:98:cd:62:58:4c:69: d3:47:a7:b2:f3:8f:64:6e:cd:a2:91:2d:2a:d5:94: cc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:27:4F:ED:73:6F:5B:18:61:0C:C2:D2:B8:EA:9C:D0:E6:B9:74:4D X509v3 Authority Key Identifier: keyid:3C:56:8C:59:D7:A8:31:99:C3:A7:9E:A0:E8:37:5B:94:6E:D8:84:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFaMWdeoMZnDp56g6DdblG7YhOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/AydP7XNvWxhhDMLSuOqc0Oa5dE0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6f36c2-d05c-4425-a9e4-5e37e7f3f15d/1/PFaMWdeoMZnDp56g6DdblG7YhOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.100.144.0/21 185.150.172.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:ad:3a:ef:71:85:8f:27:aa:99:6c:6f:e0:0c:04:50:bd:bc: d2:90:1f:14:c9:cf:ed:9d:77:5e:40:92:92:47:9d:61:84:87: 26:70:cf:ed:1b:d7:9b:c6:93:fa:88:cd:f6:75:9a:31:7c:17: c7:80:59:1d:ce:79:26:d5:06:16:ec:2a:c5:b4:c0:f0:f1:0a: a7:50:ee:ed:85:07:fd:3f:23:c8:42:8b:52:e4:4c:b4:e7:d5: 00:4c:d1:9b:e9:18:19:59:3e:96:fe:7e:f5:a1:b7:fb:bb:61: eb:81:5b:71:40:df:22:ce:e6:7a:c7:ef:fb:3b:dd:c5:f2:ad: 18:4b:47:6e:de:35:e9:e4:77:cd:df:1d:9d:36:ea:f8:b0:a4: 9e:f6:e5:3c:56:3c:0a:2a:63:19:ff:e8:8d:1c:55:4f:ae:13: 33:07:bb:a1:a3:5c:8a:e2:1e:76:41:8f:5c:14:ab:33:7d:84: 4c:8b:47:ad:6c:43:59:70:67:e6:52:4c:09:e3:e1:61:ff:d5: 7d:1e:17:19:22:c4:49:04:b4:2e:1f:8a:50:c4:c5:60:10:2a: 06:23:ae:99:36:36:8e:b5:40:1d:19:5f:91:13:ca:dd:90:b7: c5:f6:0a:44:9f:0c:9d:2f:26:e4:1d:e7:80:64:2d:8a:76:fb: c4:f7:da:6a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NNaUVRvVXQLpm8GvlxerMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjNTY4YzU5ZDdhODMxOTljM2E3OWVhMGU4Mzc1Yjk0NmVk ODg0ZTIwHhcNMjYwMTAxMDYxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzI3NGZlZDczNmY1YjE4NjEwY2MyZDJiOGVhOWNkMGU2Yjk3NDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0luqQijxs9x46iCg7IOegqeb5vff Kxk4ni2ODUxPw/rSJvhO/v8zf5C733vxCLLLcB2R1Qylo5ZmcXmJcWhMqnmllnsS B9Aky3kcscBg12DTTqwGJJ2nY3rzwhMPFYe8KaMSlxl4bW4xXNmFfox7hVZK+bP0 Bdv7mOykCGjTaHGcnRffymid32q66bhRmICNv52NiArDDqqhtN7+hfaVoGXfo8gv sdrUaZ+V3sdgE7rFcUuouAhhoAHUfnGMA6M3HRVRhiDjcZzTFWbz5RGNcLgywWzv 2+yFA4GYaWUUs/uaOKfV1ab/qzaYzWJYTGnTR6ey849kbs2ikS0q1ZTM6QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAMnT+1zb1sYYQzC0rjqnNDmuXRNMB8GA1UdIwQY MBaAFDxWjFnXqDGZw6eeoOg3W5Ru2ITiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEZhTVdkZW9NWm5EcDU2ZzZEZGJsRzdZaE9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi82ZjM2YzItZDA1Yy00NDI1LWE5ZTQt NWUzN2U3ZjNmMTVkLzEvQXlkUDdYTnZXeGhoRE1MU3VPcWMwT2E1ZEUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi82ZjM2YzItZDA1Yy00NDI1LWE5ZTQtNWUzN2U3ZjNmMTVk LzEvUEZhTVdkZW9NWm5EcDU2ZzZEZGJsRzdZaE9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDBWSQAwQC uZasMA0GCSqGSIb3DQEBCwUAA4IBAQArrTrvcYWPJ6qZbG/gDARQvbzSkB8Uyc/t nXdeQJKSR51hhIcmcM/tG9ebxpP6iM32dZoxfBfHgFkdznkm1QYW7CrFtMDw8Qqn UO7thQf9PyPIQotS5Ey059UATNGb6RgZWT6W/n71obf7u2HrgVtxQN8izuZ6x+/7 O93F8q0YS0du3jXp5HfN3x2dNur4sKSe9uU8VjwKKmMZ/+iNHFVPrhMzB7uho1yK 4h52QY9cFKszfYRMi0etbENZcGfmUkwJ4+Fh/9V9HhcZIsRJBLQuH4pQxMVgECoG I66ZNjaOtUAdGV+RE8rdkLfF9gpEnwydLybkHeeAZC2KdvvE99pq -----END CERTIFICATE-----Generated at Wed Jan 7 22:29:20 2026 by rpki-client