This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/ayEAcT6oCdclXkVG2FkLRzZ9mOw.roa File: ayEAcT6oCdclXkVG2FkLRzZ9mOw.roa (raw, json) Hash identifier: 7P+K2VYLnbm0w74/RJLkFBdqeqXQaGd7I3w+dIasZpw= Subject key identifier: 6B:21:00:71:3E:A8:09:D7:25:5E:45:46:D8:59:0B:47:36:7D:98:EC Certificate issuer: /CN=23f5c2585382084792f13ad197205efdd2752df2 Certificate serial: 019B7C12623766030EF8D22F4823285F2045 Authority key identifier: 23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/ayEAcT6oCdclXkVG2FkLRzZ9mOw.roa Signing time: Fri 02 Jan 2026 00:18:58 +0000 ROA not before: Fri 02 Jan 2026 00:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 91.220.123.0/24 maxlen: 24 185.245.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:62:37:66:03:0e:f8:d2:2f:48:23:28:5f:20:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f5c2585382084792f13ad197205efdd2752df2 Validity Not Before: Jan 2 00:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b2100713ea809d7255e4546d8590b47367d98ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:a5:ad:84:51:6b:6b:ca:c5:2d:82:fe:78: 40:4f:65:2f:10:04:0f:42:be:8c:a8:de:b3:0c:3d: 13:57:9d:86:79:30:b7:ce:e2:43:bc:ac:b6:e4:36: 7f:e9:b2:ec:3a:31:fc:72:d9:46:35:e3:bc:02:b0: c3:3e:51:a6:b3:48:bd:d5:3b:fa:a9:7b:af:fa:53: ec:47:bd:44:0d:d5:a8:c9:29:fd:36:22:83:36:29: cf:0a:77:ac:ea:08:03:b3:b1:de:a0:9d:14:c9:12: 68:b4:49:76:6c:90:91:8c:a9:ff:3a:4f:48:ae:6d: fe:44:b8:ee:7d:23:16:29:b9:5e:47:80:d2:e7:a4: db:9a:b4:10:4b:77:76:19:58:60:ee:51:5f:20:cb: 44:fd:89:cf:0c:16:d8:d8:38:fb:c8:39:b9:32:f5: a4:f4:d8:5d:bc:1b:6b:06:47:5c:4f:42:95:05:dc: 23:06:53:7f:77:8e:b3:5f:07:76:24:80:c0:6e:c2: 2e:70:00:0f:56:f3:27:13:77:7c:46:08:58:7b:c9: ab:f6:dd:8b:c6:05:7c:90:94:16:12:87:5b:06:39: c8:09:38:94:34:65:1f:9c:4c:2a:e5:34:7e:81:ec: ae:f3:0f:15:63:e5:d1:dc:ac:22:df:7d:3b:0d:6d: 9d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:21:00:71:3E:A8:09:D7:25:5E:45:46:D8:59:0B:47:36:7D:98:EC X509v3 Authority Key Identifier: keyid:23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/ayEAcT6oCdclXkVG2FkLRzZ9mOw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.123.0/24 185.245.21.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:63:c6:0e:f5:88:f0:1e:bd:18:ad:6b:e0:72:7e:09:fc:9e: f6:eb:90:f1:78:77:b0:e4:0c:9e:f7:99:8b:3f:d4:10:f1:d2: b3:ec:f4:75:32:b1:85:14:01:1b:73:b1:e5:c2:06:06:94:95: 31:41:13:e7:87:38:96:73:dd:22:07:c9:21:38:f7:81:75:39: 29:83:55:11:83:bf:e5:da:a8:b9:b4:03:19:3e:44:24:f4:28: e3:b4:8c:bb:87:5e:75:99:71:75:3a:06:8c:9b:2a:06:38:af: 63:2d:0d:b2:01:95:76:bb:a0:a8:07:32:cd:07:d7:37:92:08: 9b:2d:a9:11:61:1c:13:dd:e5:1f:a5:01:82:4f:03:f5:93:03: 5b:aa:81:e1:43:ef:82:ec:2e:5c:25:1b:7e:93:7f:9d:e8:48: 1c:1e:db:a1:aa:1c:3d:60:04:1f:91:46:5d:75:02:62:47:06: 9c:c7:d8:a0:63:71:c8:88:33:dc:c6:a0:ae:15:5c:47:e6:42: b7:db:65:e0:c0:06:3b:3d:55:1b:04:ac:ba:80:f7:a9:e7:99: 96:3b:5f:1a:09:95:1c:b1:0e:05:f0:20:f7:44:13:69:db:fd: 51:6c:92:50:ff:1e:e2:fd:95:84:d5:06:54:a8:b8:ed:9e:29: 94:db:42:c3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EmI3ZgMO+NIvSCMoXyBFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjVjMjU4NTM4MjA4NDc5MmYxM2FkMTk3MjA1ZWZkZDI3 NTJkZjIwHhcNMjYwMTAyMDAxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjIxMDA3MTNlYTgwOWQ3MjU1ZTQ1NDZkODU5MGI0NzM2N2Q5OGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2palrYRRa2vKxS2C/nhAT2UvEAQP Qr6MqN6zDD0TV52GeTC3zuJDvKy25DZ/6bLsOjH8ctlGNeO8ArDDPlGms0i91Tv6 qXuv+lPsR71EDdWoySn9NiKDNinPCnes6ggDs7HeoJ0UyRJotEl2bJCRjKn/Ok9I rm3+RLjufSMWKbleR4DS56TbmrQQS3d2GVhg7lFfIMtE/YnPDBbY2Dj7yDm5MvWk 9NhdvBtrBkdcT0KVBdwjBlN/d46zXwd2JIDAbsIucAAPVvMnE3d8RghYe8mr9t2L xgV8kJQWEodbBjnICTiUNGUfnEwq5TR+geyu8w8VY+XR3Kwi3307DW2dOQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGshAHE+qAnXJV5FRthZC0c2fZjsMB8GA1UdIwQY MBaAFCP1wlhTgghHkvE60ZcgXv3SdS3yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9YQ1dGT0NDRWVTOFRyUmx5QmVfZEoxTGZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9mODNkMDktMzQxMy00NjUxLTk2Y2Ut OGZiNTI0NGJjMjU2LzEvYXlFQWNUNm9DZGNsWGtWRzJGa0xSelo5bU93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9mODNkMDktMzQxMy00NjUxLTk2Y2UtOGZiNTI0NGJjMjU2 LzEvSV9YQ1dGT0NDRWVTOFRyUmx5QmVfZEoxTGZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9x7AwQA ufUVMA0GCSqGSIb3DQEBCwUAA4IBAQA7Y8YO9YjwHr0YrWvgcn4J/J7265DxeHew 5Aye95mLP9QQ8dKz7PR1MrGFFAEbc7HlwgYGlJUxQRPnhziWc90iB8khOPeBdTkp g1URg7/l2qi5tAMZPkQk9CjjtIy7h151mXF1OgaMmyoGOK9jLQ2yAZV2u6CoBzLN B9c3kgibLakRYRwT3eUfpQGCTwP1kwNbqoHhQ++C7C5cJRt+k3+d6EgcHtuhqhw9 YAQfkUZddQJiRwacx9igY3HIiDPcxqCuFVxH5kK322XgwAY7PVUbBKy6gPep55mW O18aCZUcsQ4F8CD3RBNp2/1RbJJQ/x7i/ZWE1QZUqLjtnimU20LD -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:26 2026 by rpki-client