This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/aVt770ox2y_ajisGJcLBAp12qrQ.roa File: aVt770ox2y_ajisGJcLBAp12qrQ.roa (raw, json) Hash identifier: ppH4GSX2vtSOi+/C8jmwr3Y0jkIjeAyEHZJp5pXIbsA= Subject key identifier: 69:5B:7B:EF:4A:31:DB:2F:DA:8E:2B:06:25:C2:C1:02:9D:76:AA:B4 Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e Certificate serial: 019BA349FF2EB68CE03238CABD585FBF9136 Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/aVt770ox2y_ajisGJcLBAp12qrQ.roa Signing time: Fri 09 Jan 2026 15:04:54 +0000 ROA not before: Fri 09 Jan 2026 15:04:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152586 IP address blocks: 185.149.24.0/22 maxlen: 24 185.172.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.mft rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a3:49:ff:2e:b6:8c:e0:32:38:ca:bd:58:5f:bf:91:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e Validity Not Before: Jan 9 15:04:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=695b7bef4a31db2fda8e2b0625c2c1029d76aab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:88:81:35:dc:04:97:61:9e:6b:fd:1e:4d:a6: ac:35:e5:c4:aa:a7:6d:03:83:29:89:44:72:b2:e8: 70:e2:be:11:ef:80:a7:be:43:cf:3b:c2:27:18:f3: 91:77:09:9f:8d:9d:aa:88:a7:04:dc:c8:26:45:f6: 38:bd:5d:14:e9:b4:8f:03:af:c8:1e:2c:9d:a5:eb: ec:e4:f9:79:a0:dc:f0:1c:2d:7e:c5:3c:37:c3:de: ce:61:f0:42:aa:0a:68:c9:2f:ff:ab:a7:e9:aa:ef: 90:5c:f8:52:fe:11:fc:fa:29:16:8d:0c:23:be:6b: 09:cd:24:cd:54:3e:20:bb:ac:c2:6a:18:ab:da:99: 6e:b8:20:9a:3c:aa:d1:7a:ad:7d:61:9a:7c:85:da: cb:45:22:25:90:f2:4f:4e:b6:7b:2f:33:95:2c:84: 9a:a7:b5:cf:00:14:de:ea:8f:20:58:33:f4:be:1b: 8d:37:9f:a5:ac:d0:b1:65:d5:88:53:7f:d1:5c:0a: 93:8f:04:a7:9f:37:23:61:ae:09:47:8a:57:60:3a: cd:bd:51:6d:64:9d:35:58:be:e3:df:d2:1a:9f:58: 78:df:9d:df:57:21:97:bc:99:96:01:f9:11:2f:85: 60:c5:8e:ac:08:83:66:12:69:91:41:2c:70:3c:f4: 76:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5B:7B:EF:4A:31:DB:2F:DA:8E:2B:06:25:C2:C1:02:9D:76:AA:B4 X509v3 Authority Key Identifier: keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/aVt770ox2y_ajisGJcLBAp12qrQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.149.24.0/22 185.172.38.0/23 Signature Algorithm: sha256WithRSAEncryption 65:0f:7f:85:75:0b:4d:e5:cf:7f:6c:fb:91:9d:55:62:b1:e0: f6:92:d1:3b:7b:74:22:7e:b1:a2:c0:0d:66:b6:2d:67:f6:08: 06:b4:dd:c0:ca:d9:70:2d:09:a5:35:d7:8e:ee:08:be:59:8e: 58:50:29:ce:32:d8:d6:df:5c:4a:1d:2f:0a:5e:87:a0:3c:1c: f9:53:10:eb:e5:c0:c2:47:07:77:a9:1a:1c:e5:36:b2:19:e0: 43:25:4d:6c:68:f1:45:ab:fb:59:5b:ab:f5:68:ab:23:95:c1: 31:c2:1e:f4:55:84:ed:58:b9:a8:7f:c8:10:df:0e:53:95:1b: ce:8f:a1:b0:58:77:cc:de:82:93:86:9b:1a:7a:23:04:37:7b: 30:75:b5:37:21:b6:2b:6c:82:7c:48:df:93:4d:4c:ca:e8:6a: a4:f1:cd:3d:f4:f7:0f:f4:63:bb:40:a9:09:dc:8b:a1:fe:5f: 02:d9:21:63:f8:2c:ef:40:88:73:fa:85:ba:ba:b7:ad:19:af: d7:80:0d:04:62:0d:4e:0f:20:86:62:64:a2:81:28:d4:86:52: 5e:6c:2c:71:96:bf:ba:ab:18:7d:ef:7d:f7:a6:df:4e:0a:94: fe:07:8f:10:b5:00:51:6f:83:95:a0:64:74:ba:d3:9d:4b:31: e8:2a:f1:84 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZujSf8utozgMjjKvVhfv5E2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5Y2U1NjlhMTRjMmRiMzc3MmYyMzE4N2NlNjhlNjU0MWVj MDA0OGUwHhcNMjYwMTA5MTUwNDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTViN2JlZjRhMzFkYjJmZGE4ZTJiMDYyNWMyYzEwMjlkNzZhYWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIiBNdwEl2Gea/0eTaasNeXEqqdt A4MpiURysuhw4r4R74CnvkPPO8InGPORdwmfjZ2qiKcE3MgmRfY4vV0U6bSPA6/I Hiydpevs5Pl5oNzwHC1+xTw3w97OYfBCqgpoyS//q6fpqu+QXPhS/hH8+ikWjQwj vmsJzSTNVD4gu6zCahir2pluuCCaPKrReq19YZp8hdrLRSIlkPJPTrZ7LzOVLISa p7XPABTe6o8gWDP0vhuNN5+lrNCxZdWIU3/RXAqTjwSnnzcjYa4JR4pXYDrNvVFt ZJ01WL7j39Ian1h4353fVyGXvJmWAfkRL4VgxY6sCINmEmmRQSxwPPR2EwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGlbe+9KMdsv2o4rBiXCwQKddqq0MB8GA1UdIwQY MBaAFJnOVpoUwts3cvIxh85o5lQewASOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQt MTA5NTU0NGM2YzUwLzEvYVZ0Nzcwb3gyeV9hamlzR0pjTEJBcDEycXJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi9jYzZlOTktNmU1Zi00MDFiLTkxMmQtMTA5NTU0NGM2YzUw LzEvbWM1V21oVEMyemR5OGpHSHptam1WQjdBQkk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuZUYAwQB uawmMA0GCSqGSIb3DQEBCwUAA4IBAQBlD3+FdQtN5c9/bPuRnVViseD2ktE7e3Qi frGiwA1mti1n9ggGtN3AytlwLQmlNdeO7gi+WY5YUCnOMtjW31xKHS8KXoegPBz5 UxDr5cDCRwd3qRoc5TayGeBDJU1saPFFq/tZW6v1aKsjlcExwh70VYTtWLmof8gQ 3w5TlRvOj6GwWHfM3oKThpsaeiMEN3swdbU3IbYrbIJ8SN+TTUzK6Gqk8c099PcP 9GO7QKkJ3Iuh/l8C2SFj+CzvQIhz+oW6uretGa/XgA0EYg1ODyCGYmSigSjUhlJe bCxxlr+6qxh97333pt9OCpT+B48QtQBRb4OVoGR0utOdSzHoKvGE -----END CERTIFICATE-----Generated at Mon Jan 19 17:33:00 2026 by rpki-client