This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/ApRqX6izr8csRhEAlDriPF3OvUE.roa File: ApRqX6izr8csRhEAlDriPF3OvUE.roa (raw, json) Hash identifier: rka1lZ+vvdwbXJuK1ks6ekSngIEhKSzeGTv638j9Cxc= Subject key identifier: 02:94:6A:5F:A8:B3:AF:C7:2C:46:11:00:94:3A:E2:3C:5D:CE:BD:41 Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Certificate serial: 019B7F14A0A199BB4042EF5DC3B6A945870B Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/ApRqX6izr8csRhEAlDriPF3OvUE.roa Signing time: Fri 02 Jan 2026 14:20:16 +0000 ROA not before: Fri 02 Jan 2026 14:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8928 IP address blocks: 212.222.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:a0:a1:99:bb:40:42:ef:5d:c3:b6:a9:45:87:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Validity Not Before: Jan 2 14:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02946a5fa8b3afc72c461100943ae23c5dcebd41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d2:db:f9:6b:64:d7:49:94:97:75:1a:c7:8d: 3d:f5:3d:08:ea:bb:04:51:81:00:b7:49:7a:74:42: 2e:cf:1c:a6:ca:a7:38:d5:14:be:ec:93:3b:b2:34: 56:66:86:37:02:e6:e3:04:c9:23:2d:4d:b4:79:e9: f0:0e:c2:92:f1:44:b4:80:ea:60:2e:b1:6c:f5:87: c9:a6:ea:8a:40:c1:9c:95:92:79:61:0d:db:ea:21: 4d:54:67:4f:26:15:82:83:d4:c1:f6:18:a3:e7:83: f9:f2:91:1b:b2:d3:94:53:08:3c:66:33:63:4c:25: e6:8c:fd:25:d7:d8:2e:3b:ee:6c:56:16:cd:47:4f: 78:66:14:d8:e3:42:85:e1:9e:c0:b0:93:6a:4c:7f: 0b:62:65:19:d1:02:39:2a:38:35:5e:57:60:16:15: 3b:d5:40:a0:4c:dd:71:7d:7e:4d:cb:47:39:ad:0a: fa:30:a9:db:1d:e5:3f:32:53:29:00:64:e2:04:55: 06:4b:fb:b1:6e:18:04:73:1c:c9:23:70:b8:db:bc: 88:1d:d8:fc:11:88:6a:13:6a:25:54:2c:19:62:71: 3b:85:bc:d0:34:d4:f4:94:0e:4a:05:c4:d3:12:2a: 80:ac:13:eb:55:36:84:ee:d6:3e:ae:1e:a0:e7:f5: 11:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:94:6A:5F:A8:B3:AF:C7:2C:46:11:00:94:3A:E2:3C:5D:CE:BD:41 X509v3 Authority Key Identifier: keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/ApRqX6izr8csRhEAlDriPF3OvUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.222.128.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:51:49:ef:e6:c4:6f:52:c5:ba:bd:6d:0f:1b:3c:08:a9:04: 0b:48:56:0b:22:55:11:c8:3d:75:9d:c9:f7:ee:79:1c:85:d7: 04:0e:d5:24:28:1d:a2:24:2e:40:90:2d:67:db:fc:16:28:36: c1:70:e2:24:24:82:66:1f:ae:18:55:40:c0:e0:01:29:ee:1b: ba:cd:68:76:8a:df:ea:22:6b:94:17:05:49:d6:5d:9f:3b:8e: f3:bd:4a:2b:e9:be:7b:1e:86:d8:de:9f:b4:ce:2d:15:96:f5: 96:61:89:83:ca:0f:d8:e6:1c:f8:d8:fd:b1:01:ca:d1:4e:7d: fe:77:1c:bf:68:77:15:fb:71:9d:37:64:ac:08:dd:f5:9f:65: cf:be:18:e7:f6:de:79:15:b7:99:78:13:0d:82:72:46:5d:cf: 62:2e:d8:7f:dd:0b:ff:62:ad:77:1a:5b:37:c6:da:91:32:bd: 0e:10:2d:7b:16:24:a0:3d:75:10:f1:05:40:e6:40:ee:41:00: 92:5b:85:37:77:60:ce:a3:86:5c:5c:a4:19:3f:f3:2b:fd:b4: 86:bc:d1:cb:ac:72:9e:e8:f0:2a:85:ee:c6:ec:97:94:42:e4: 83:39:f1:b7:3e:24:c8:0d:58:f2:cb:e7:e9:18:0d:d6:68:99: 98:ca:d6:d4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FKChmbtAQu9dw7apRYcLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0 NmQxNzEwHhcNMjYwMTAyMTQyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjk0NmE1ZmE4YjNhZmM3MmM0NjExMDA5NDNhZTIzYzVkY2ViZDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdLb+Wtk10mUl3Uax4099T0I6rsE UYEAt0l6dEIuzxymyqc41RS+7JM7sjRWZoY3AubjBMkjLU20eenwDsKS8US0gOpg LrFs9YfJpuqKQMGclZJ5YQ3b6iFNVGdPJhWCg9TB9hij54P58pEbstOUUwg8ZjNj TCXmjP0l19guO+5sVhbNR094ZhTY40KF4Z7AsJNqTH8LYmUZ0QI5Kjg1XldgFhU7 1UCgTN1xfX5Ny0c5rQr6MKnbHeU/MlMpAGTiBFUGS/uxbhgEcxzJI3C427yIHdj8 EYhqE2olVCwZYnE7hbzQNNT0lA5KBcTTEiqArBPrVTaE7tY+rh6g5/UR7QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAKUal+os6/HLEYRAJQ64jxdzr1BMB8GA1UdIwQY MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt MGNmMTA5M2Q0NTQ4LzEvQXBScVg2aXpyOGNzUmhFQWxEcmlQRjNPdlVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4 LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1N6AMA0G CSqGSIb3DQEBCwUAA4IBAQA6UUnv5sRvUsW6vW0PGzwIqQQLSFYLIlURyD11ncn3 7nkchdcEDtUkKB2iJC5AkC1n2/wWKDbBcOIkJIJmH64YVUDA4AEp7hu6zWh2it/q ImuUFwVJ1l2fO47zvUor6b57HobY3p+0zi0VlvWWYYmDyg/Y5hz42P2xAcrRTn3+ dxy/aHcV+3GdN2SsCN31n2XPvhjn9t55FbeZeBMNgnJGXc9iLth/3Qv/Yq13Gls3 xtqRMr0OEC17FiSgPXUQ8QVA5kDuQQCSW4U3d2DOo4ZcXKQZP/Mr/bSGvNHLrHKe 6PAqhe7G7JeUQuSDOfG3PiTIDVjyy+fpGA3WaJmYytbU -----END CERTIFICATE-----Generated at Sun Jan 25 10:37:53 2026 by rpki-client