This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/abnIXAgJEhW9VldO5YpGFgSVzcA.roa File: abnIXAgJEhW9VldO5YpGFgSVzcA.roa (raw, json) Hash identifier: XCRB0tR9DLtvsf6qW2UBqKQDVi6//m3IqU34W2mRyLA= Subject key identifier: 69:B9:C8:5C:08:09:12:15:BD:56:57:4E:E5:8A:46:16:04:95:CD:C0 Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3 Certificate serial: 019B7C133C7E13FF4ECC73236DF90AEF6D72 Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/abnIXAgJEhW9VldO5YpGFgSVzcA.roa Signing time: Fri 02 Jan 2026 00:19:54 +0000 ROA not before: Fri 02 Jan 2026 00:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57809 IP address blocks: 85.14.166.0/23 maxlen: 23 85.14.174.0/24 maxlen: 24 85.14.178.0/23 maxlen: 23 109.74.84.0/23 maxlen: 23 109.74.91.0/24 maxlen: 24 217.171.23.0/24 maxlen: 24 217.171.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.mft rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:3c:7e:13:ff:4e:cc:73:23:6d:f9:0a:ef:6d:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3 Validity Not Before: Jan 2 00:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69b9c85c08091215bd56574ee58a46160495cdc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:07:56:39:04:49:53:b7:bd:ec:2f:1f:e7:a3: 34:a6:fe:d9:f2:c7:bc:c1:14:16:a7:16:5b:c5:38: 9b:85:e0:d3:87:27:bc:13:ed:00:92:98:79:0c:12: 08:1d:d8:4c:61:49:db:64:17:62:50:c0:0d:b0:06: fc:41:2b:bb:0b:e6:9f:a6:34:6b:ca:02:62:87:9a: 9f:c3:2b:55:02:e7:69:5f:39:0b:44:83:13:3d:ea: 5f:fe:3a:52:d2:6c:13:73:f0:c6:b1:52:ae:fa:b4: 8e:a2:08:f1:70:95:e5:4b:6c:a3:8a:6d:bf:4b:c9: 2b:56:de:cf:34:f2:25:07:50:92:5d:b7:be:c6:6f: 37:13:40:56:69:d6:0f:3b:22:4c:47:ef:84:15:de: ef:18:fb:e1:c1:3f:51:e2:4d:d5:5c:1e:c5:fc:01: f4:82:af:be:e3:be:a9:8a:73:91:1d:aa:e0:f5:76: d0:7c:c9:1f:16:1a:0d:52:c7:93:00:fc:f6:21:4d: e5:db:82:40:fc:81:f1:ca:85:ee:be:ce:22:99:f8: 2e:ef:0e:19:db:e2:6b:59:3a:03:6d:02:6f:5d:2b: 7a:12:94:a4:47:5c:f4:d4:f0:77:b1:03:cd:3e:0b: d0:50:f1:5c:ca:c9:fe:70:f9:d5:f6:33:ff:5e:3b: 8f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B9:C8:5C:08:09:12:15:BD:56:57:4E:E5:8A:46:16:04:95:CD:C0 X509v3 Authority Key Identifier: keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/abnIXAgJEhW9VldO5YpGFgSVzcA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.14.166.0/23 85.14.174.0/24 85.14.178.0/23 109.74.84.0/23 109.74.91.0/24 217.171.23.0/24 217.171.28.0/24 Signature Algorithm: sha256WithRSAEncryption 03:56:b8:29:c7:be:f6:84:f6:5c:a6:fc:e6:30:53:3e:ea:ef: 26:ed:f8:fe:b7:04:43:e4:5c:bf:be:c2:db:ed:cb:ab:c0:36: 5a:9a:5e:6f:86:02:15:59:0a:65:61:f0:ef:ea:43:fb:33:31: e0:1d:90:8f:5a:60:2a:07:68:8e:af:2c:b5:6e:73:07:a4:e8: 14:51:05:e1:f6:9a:7f:f2:bc:9e:8d:f5:0e:d1:90:0f:84:08: 07:26:4b:da:bc:19:18:74:56:26:df:f8:87:d5:bc:5c:5b:58: f8:29:20:c3:f1:c8:b6:02:ed:c3:30:d7:55:21:0f:c9:de:5c: ff:1b:f8:2a:55:8c:a6:61:45:50:ec:6c:c2:21:2b:6c:a3:e2: 7a:7a:5b:eb:21:64:6a:3c:e1:c2:fe:30:7c:b3:9d:de:ef:d2: 38:3d:8a:23:36:ac:35:f3:1a:1f:65:2e:30:74:43:f5:2f:f9: 67:3e:67:b1:e1:b2:11:81:fc:58:38:22:0e:31:11:8e:58:10: f2:73:7f:4e:d9:69:17:73:d4:4f:5f:08:ed:37:2b:7b:a9:a2: de:53:0c:c2:94:4f:85:17:f1:2c:36:6b:08:b0:41:b0:b4:17: 04:bf:22:7f:d5:dd:cf:49:0d:93:ae:f5:34:e4:2f:0c:35:17: 8a:57:af:79 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt8Ezx+E/9OzHMjbfkK721yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2Q4ODdjMDJlMDdjOWU0NzRkMWY4ZTIxMDQ5Y2FhNmNl M2ZiZDMwHhcNMjYwMTAyMDAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OWI5Yzg1YzA4MDkxMjE1YmQ1NjU3NGVlNThhNDYxNjA0OTVjZGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAdWOQRJU7e97C8f56M0pv7Z8se8 wRQWpxZbxTibheDThye8E+0Akph5DBIIHdhMYUnbZBdiUMANsAb8QSu7C+afpjRr ygJih5qfwytVAudpXzkLRIMTPepf/jpS0mwTc/DGsVKu+rSOogjxcJXlS2yjim2/ S8krVt7PNPIlB1CSXbe+xm83E0BWadYPOyJMR++EFd7vGPvhwT9R4k3VXB7F/AH0 gq++476pinORHarg9XbQfMkfFhoNUseTAPz2IU3l24JA/IHxyoXuvs4imfgu7w4Z 2+JrWToDbQJvXSt6EpSkR1z01PB3sQPNPgvQUPFcysn+cPnV9jP/XjuP9QIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFGm5yFwICRIVvVZXTuWKRhYElc3AMB8GA1UdIwQY MBaAFDB9iHwC4HyeR00fjiEEnKps4/vTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUgySWZBTGdmSjVIVFItT0lRU2NxbXpqLTlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9iMjBkODMtNjEyYy00YjYyLTk3YTMt MWE1ZTVmMTkxYmZhLzEvYWJuSVhBZ0pFaFc5VmxkTzVZcEdGZ1NWemNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9iMjBkODMtNjEyYy00YjYyLTk3YTMtMWE1ZTVmMTkxYmZh LzEvTUgySWZBTGdmSjVIVFItT0lRU2NxbXpqLTlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBVQ6mAwQA VQ6uAwQBVQ6yAwQBbUpUAwQAbUpbAwQA2asXAwQA2ascMA0GCSqGSIb3DQEBCwUA A4IBAQADVrgpx772hPZcpvzmMFM+6u8m7fj+twRD5Fy/vsLb7curwDZaml5vhgIV WQplYfDv6kP7MzHgHZCPWmAqB2iOryy1bnMHpOgUUQXh9pp/8ryejfUO0ZAPhAgH JkvavBkYdFYm3/iH1bxcW1j4KSDD8ci2Au3DMNdVIQ/J3lz/G/gqVYymYUVQ7GzC IStso+J6elvrIWRqPOHC/jB8s53e79I4PYojNqw18xofZS4wdEP1L/lnPmex4bIR gfxYOCIOMRGOWBDyc39O2WkXc9RPXwjtNyt7qaLeUwzClE+FF/EsNmsIsEGwtBcE vyJ/1d3PSQ2TrvU05C8MNReKV695 -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:53 2026 by rpki-client