This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/aQ88EoiiajhYjpR8X9YSC2Itufk.roa File: aQ88EoiiajhYjpR8X9YSC2Itufk.roa (raw, json) Hash identifier: 6ocE7SCCa9OYWlhJzkmE5ODfDYPaMsMSbmqpzzbM+qk= Subject key identifier: 69:0F:3C:12:88:A2:6A:38:58:8E:94:7C:5F:D6:12:0B:62:2D:B9:F9 Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2 Certificate serial: 019B7C804C890ECB237065AB6F8464B02045 Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/aQ88EoiiajhYjpR8X9YSC2Itufk.roa Signing time: Fri 02 Jan 2026 02:19:01 +0000 ROA not before: Fri 02 Jan 2026 02:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49791 IP address blocks: 91.224.74.0/24 maxlen: 24 91.224.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.mft rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:4c:89:0e:cb:23:70:65:ab:6f:84:64:b0:20:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2 Validity Not Before: Jan 2 02:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=690f3c1288a26a38588e947c5fd6120b622db9f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5d:d5:8c:84:70:5c:59:6e:fc:30:21:1a:44: 24:3d:0a:6d:8a:3e:94:84:6b:0c:ab:8a:27:0f:16: 31:00:df:b2:34:d7:c5:1a:57:c3:81:e2:e7:c1:4c: 50:30:e2:4e:1e:83:9e:3f:e9:40:b9:b5:2d:e1:a2: 2e:3b:59:e0:ca:82:fd:3e:4d:52:64:3a:67:ea:d0: 3d:5a:dc:0b:58:ba:7c:1c:43:42:26:bb:6e:47:fe: e5:3b:a9:b8:25:1e:03:91:c4:5f:ab:32:60:9d:08: e8:c9:24:93:e6:aa:e4:e8:4f:ef:be:3b:65:09:8f: 01:60:41:c6:4b:6a:ca:92:53:de:41:64:15:aa:14: 82:ea:e3:bd:13:e2:09:f2:90:b6:7d:c1:c6:cb:ca: 1c:65:ec:4f:bd:6f:b8:e3:d0:e5:05:09:e1:c9:03: 06:3c:8f:56:89:f6:73:53:b2:38:64:ac:04:dc:df: 88:5b:3e:41:ed:5a:90:59:45:5d:9f:dd:42:52:fe: e5:4b:d6:77:c6:53:f9:6c:b3:4f:79:db:57:96:2f: 32:ec:3a:c0:8f:a0:c4:02:21:7d:df:7e:dd:fa:b4: 4f:8a:05:d9:9c:e1:7d:ac:bd:04:c7:43:22:28:ad: f0:22:1a:5b:45:5b:f2:e0:be:d3:d3:a6:72:a4:5c: 50:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0F:3C:12:88:A2:6A:38:58:8E:94:7C:5F:D6:12:0B:62:2D:B9:F9 X509v3 Authority Key Identifier: keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/aQ88EoiiajhYjpR8X9YSC2Itufk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.224.74.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:8f:9f:4d:c1:c5:97:6b:a6:15:7a:eb:e0:40:92:39:8a:a5: b8:df:fd:b8:e8:8a:2d:8e:ef:4b:31:17:fc:40:56:49:9f:28: 21:72:af:8d:69:13:c3:3e:77:ca:ab:e6:a8:84:d9:ef:bd:5e: de:b9:be:c4:2e:5d:41:5d:91:55:5a:8e:00:87:f9:d0:78:56: 6a:99:16:97:e4:2d:34:09:5e:5a:22:b4:24:f4:83:26:a5:64: 3a:da:ef:a7:df:41:d0:ba:cf:62:fa:80:fc:f3:76:95:f0:45: 0b:79:18:ed:e3:56:fa:0e:4e:1b:77:24:ba:5a:8c:2a:57:0c: 12:5f:ae:fb:2f:aa:9c:6b:a4:b5:1a:05:54:70:9f:05:a6:c4: 94:5f:68:1d:db:1f:29:81:58:7c:6c:79:66:cc:74:cc:49:57: f7:d6:3c:d7:af:da:cd:9b:57:3f:0e:72:82:6f:7c:4c:dd:6a: 3d:42:50:7f:59:31:aa:e8:ad:10:e3:76:f6:e7:a0:71:3f:3c: 26:47:97:91:02:91:5d:39:18:e5:70:98:62:b3:a1:4c:37:44: 05:b5:0c:fa:e5:96:47:69:1e:c1:3b:d3:70:82:4f:a7:db:a8: fe:3e:21:93:f1:26:19:bd:21:00:c0:56:4b:70:21:6b:ee:dd: b3:56:fd:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gEyJDssjcGWrb4RksCBFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNWU5M2Y5MDIzNTRjZTQ4MDRiNGNiMDQ5Y2Y2OGIyMGY3 NmFlYjIwHhcNMjYwMTAyMDIxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTBmM2MxMjg4YTI2YTM4NTg4ZTk0N2M1ZmQ2MTIwYjYyMmRiOWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtF3VjIRwXFlu/DAhGkQkPQptij6U hGsMq4onDxYxAN+yNNfFGlfDgeLnwUxQMOJOHoOeP+lAubUt4aIuO1ngyoL9Pk1S ZDpn6tA9WtwLWLp8HENCJrtuR/7lO6m4JR4DkcRfqzJgnQjoySST5qrk6E/vvjtl CY8BYEHGS2rKklPeQWQVqhSC6uO9E+IJ8pC2fcHGy8ocZexPvW+449DlBQnhyQMG PI9WifZzU7I4ZKwE3N+IWz5B7VqQWUVdn91CUv7lS9Z3xlP5bLNPedtXli8y7DrA j6DEAiF9337d+rRPigXZnOF9rL0Ex0MiKK3wIhpbRVvy4L7T06ZypFxQiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGkPPBKIomo4WI6UfF/WEgtiLbn5MB8GA1UdIwQY MBaAFK9ek/kCNUzkgEtMsEnPaLIPdq6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWIt N2UwNWFkMDE5MGNlLzEvYVE4OEVvaWlhamhZanBSOFg5WVNDMkl0dWZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWItN2UwNWFkMDE5MGNl LzEvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+BKMA0G CSqGSIb3DQEBCwUAA4IBAQB8j59NwcWXa6YVeuvgQJI5iqW43/246Iotju9LMRf8 QFZJnyghcq+NaRPDPnfKq+aohNnvvV7eub7ELl1BXZFVWo4Ah/nQeFZqmRaX5C00 CV5aIrQk9IMmpWQ62u+n30HQus9i+oD883aV8EULeRjt41b6Dk4bdyS6WowqVwwS X677L6qca6S1GgVUcJ8FpsSUX2gd2x8pgVh8bHlmzHTMSVf31jzXr9rNm1c/DnKC b3xM3Wo9QlB/WTGq6K0Q43b256BxPzwmR5eRApFdORjlcJhis6FMN0QFtQz65ZZH aR7BO9Nwgk+n26j+PiGT8SYZvSEAwFZLcCFr7t2zVv2v -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:34 2026 by rpki-client