This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/aPz9jYSsAHsZtg1cdjuxCtxCBzk.roa File: aPz9jYSsAHsZtg1cdjuxCtxCBzk.roa (raw, json) Hash identifier: N0uPovVPRwzq0UQVV7PxhoVVAuzDhOF3XOBQjYFpbpI= Subject key identifier: 68:FC:FD:8D:84:AC:00:7B:19:B6:0D:5C:76:3B:B1:0A:DC:42:07:39 Certificate issuer: /CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2 Certificate serial: 019C05DB65BABA342D6D6A2342A0ED6D7E66 Authority key identifier: AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/aPz9jYSsAHsZtg1cdjuxCtxCBzk.roa Signing time: Wed 28 Jan 2026 18:26:30 +0000 ROA not before: Wed 28 Jan 2026 18:26:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57242 IP address blocks: 81.163.211.0/24 maxlen: 24 81.163.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.mft rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:05:db:65:ba:ba:34:2d:6d:6a:23:42:a0:ed:6d:7e:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2 Validity Not Before: Jan 28 18:26:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68fcfd8d84ac007b19b60d5c763bb10adc420739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:bb:4a:1b:09:e8:08:44:51:53:64:ba:06:f5: f8:2e:2c:1c:cd:a2:f5:17:33:34:50:11:2b:7a:b0: f3:10:1d:c3:71:3b:5f:0b:10:1d:fc:88:57:ae:eb: 6f:8d:b1:9b:d9:6d:a3:5a:8d:c6:ec:19:66:4a:da: 21:25:89:b9:b5:a5:8a:ce:26:32:8a:3a:eb:e9:74: 2a:e4:3c:ce:cc:72:2c:6a:03:f1:69:13:9e:02:4e: de:9e:c0:c9:82:1a:3c:2a:ed:3d:3e:be:c5:49:d9: 57:bc:e5:35:2c:42:a0:46:96:08:7f:8f:7b:5e:77: 2b:bd:d6:2c:0a:5f:b4:9c:23:61:1c:d5:c8:ef:fc: b1:31:35:c8:ea:28:a8:7e:87:af:97:71:c6:ad:c8: ca:70:2c:75:d8:a4:4c:2d:3b:56:53:ba:69:54:79: bd:ff:b1:aa:96:12:1d:b2:10:d8:e2:05:b0:b5:aa: a4:74:f6:9e:f7:bc:32:25:42:69:e9:e9:ae:2d:2a: 9b:c3:12:b1:5d:3f:52:c6:e5:d1:3d:be:af:42:0d: 04:fe:ef:3f:8a:e8:dc:a4:e9:e2:f5:e3:a0:72:c2: d8:1e:5b:9e:bc:59:a8:96:ad:f9:73:73:8e:3a:14: 09:5b:19:c3:45:3b:f0:2d:b2:d6:4b:ae:03:4b:43: 87:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FC:FD:8D:84:AC:00:7B:19:B6:0D:5C:76:3B:B1:0A:DC:42:07:39 X509v3 Authority Key Identifier: keyid:AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/aPz9jYSsAHsZtg1cdjuxCtxCBzk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.163.211.0/24 81.163.214.0/24 Signature Algorithm: sha256WithRSAEncryption 67:92:aa:57:50:f1:db:b8:42:f9:ed:4b:4c:c1:6a:50:d8:4e: 68:4f:e4:4b:cc:c5:0e:fa:ba:bd:66:a7:69:2e:02:8f:1e:e1: 79:e6:19:d4:35:16:9e:a3:8c:8d:af:c8:f9:00:09:80:d3:16: a1:37:9a:2f:34:45:6d:a0:85:8e:c5:f7:81:61:47:5d:14:14: 7e:8d:03:c3:79:c9:53:26:58:89:b5:4a:fe:4e:71:9e:d2:28: 6a:f6:38:0d:eb:80:1b:ea:25:d4:b1:cd:81:90:a4:c5:39:e2: de:90:09:6e:ef:f2:02:68:64:ee:de:ef:93:3d:a2:08:75:c5: ac:05:10:9b:7d:02:a2:a9:bb:33:ec:60:df:2a:9c:52:18:12: 08:bc:98:9a:ec:7a:a3:ac:a5:86:cd:18:d4:f4:a5:6b:11:55: 4e:4f:4c:52:bb:82:ed:4b:e2:15:b6:36:3c:0a:0b:05:82:1b: ce:28:ee:a2:f7:a7:58:e1:36:ca:c5:81:a0:ad:62:3b:63:98: cd:af:e6:f7:3f:c0:de:66:87:c3:17:f2:75:a7:d1:91:75:9d: 28:06:87:f5:33:37:76:ab:68:3f:65:77:be:2a:b6:4f:60:07: 79:93:a5:9b:7d:55:13:93:09:bb:37:23:52:84:50:46:fd:b7: 1a:54:b1:48 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZwF22W6ujQtbWojQqDtbX5mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmYjRlMDRhMGVkMzQ0MTEyYzE4NTNjYWIwOWY1MmUxY2Q5 YWJhZjIwHhcNMjYwMTI4MTgyNjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OGZjZmQ4ZDg0YWMwMDdiMTliNjBkNWM3NjNiYjEwYWRjNDIwNzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkLtKGwnoCERRU2S6BvX4LiwczaL1 FzM0UBErerDzEB3DcTtfCxAd/IhXrutvjbGb2W2jWo3G7BlmStohJYm5taWKziYy ijrr6XQq5DzOzHIsagPxaROeAk7ensDJgho8Ku09Pr7FSdlXvOU1LEKgRpYIf497 XncrvdYsCl+0nCNhHNXI7/yxMTXI6iiofoevl3HGrcjKcCx12KRMLTtWU7ppVHm9 /7GqlhIdshDY4gWwtaqkdPae97wyJUJp6emuLSqbwxKxXT9SxuXRPb6vQg0E/u8/ iujcpOni9eOgcsLYHluevFmolq35c3OOOhQJWxnDRTvwLbLWS64DS0OHAwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGj8/Y2ErAB7GbYNXHY7sQrcQgc5MB8GA1UdIwQY MBaAFK+04EoO00QRLBhTyrCfUuHNmrryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjdUZ1NnN1RSQkVzR0ZQS3NKOVM0YzJhdXZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8xOWYyZTYtMWJmMy00ZjdhLTg4MTct ODA5NWYzMjk3MTc5LzEvYVB6OWpZU3NBSHNadGcxY2RqdXhDdHhDQnprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy8xOWYyZTYtMWJmMy00ZjdhLTg4MTctODA5NWYzMjk3MTc5 LzEvcjdUZ1NnN1RSQkVzR0ZQS3NKOVM0YzJhdXZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUaPTAwQA UaPWMA0GCSqGSIb3DQEBCwUAA4IBAQBnkqpXUPHbuEL57UtMwWpQ2E5oT+RLzMUO +rq9ZqdpLgKPHuF55hnUNRaeo4yNr8j5AAmA0xahN5ovNEVtoIWOxfeBYUddFBR+ jQPDeclTJliJtUr+TnGe0ihq9jgN64Ab6iXUsc2BkKTFOeLekAlu7/ICaGTu3u+T PaIIdcWsBRCbfQKiqbsz7GDfKpxSGBIIvJia7HqjrKWGzRjU9KVrEVVOT0xSu4Lt S+IVtjY8CgsFghvOKO6i96dY4TbKxYGgrWI7Y5jNr+b3P8DeZofDF/J1p9GRdZ0o Bof1Mzd2q2g/ZXe+KrZPYAd5k6WbfVUTkwm7NyNShFBG/bcaVLFI -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:09 2026 by rpki-client