This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Aa7xERVOTwvaSPfY8GxV3au4-UE.roa File: Aa7xERVOTwvaSPfY8GxV3au4-UE.roa (raw, json) Hash identifier: ctgi9fHIsAYRx8H2m2GNo3wJExHh/3TMGnxn0xoQKBY= Subject key identifier: 01:AE:F1:11:15:4E:4F:0B:DA:48:F7:D8:F0:6C:55:DD:AB:B8:F9:41 Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b Certificate serial: 019B77C774714EDB35DDDEBE13A83A9222B4 Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Aa7xERVOTwvaSPfY8GxV3au4-UE.roa Signing time: Thu 01 Jan 2026 04:18:38 +0000 ROA not before: Thu 01 Jan 2026 04:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39599 IP address blocks: 88.220.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:74:71:4e:db:35:dd:de:be:13:a8:3a:92:22:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b Validity Not Before: Jan 1 04:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=01aef111154e4f0bda48f7d8f06c55ddabb8f941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2f:24:d6:50:8f:f9:50:d2:23:9e:0c:d3:d9: 00:ac:89:b8:be:7a:e3:49:62:02:03:58:17:c7:6a: 99:fa:1a:42:00:2e:d0:97:5c:fc:7b:60:f6:b4:d6: 84:3a:b6:5c:25:19:a0:b6:ac:f5:cc:e8:04:8a:81: fa:bb:98:ed:68:a2:1d:16:05:56:24:67:b4:a0:2c: 39:5d:51:8f:a6:ef:9d:3e:b2:ae:80:a8:20:48:d1: b7:90:b4:85:03:28:cb:f3:7d:4c:09:6a:95:8c:05: 26:42:62:79:07:6a:5f:ac:71:f3:e0:cf:f0:75:94: a7:19:f0:75:87:2d:16:63:ad:0a:5a:8a:ae:d8:db: 49:b1:07:17:68:5d:d7:ed:3b:bd:db:90:40:e3:1d: ce:57:21:c3:a3:ad:0a:fb:5e:a3:68:db:0a:f6:ec: ef:71:de:45:f7:33:18:cf:84:af:70:df:b2:76:1d: 90:f0:6a:85:0d:ba:0d:2b:76:a4:5e:29:33:d0:e0: 69:89:28:a1:24:75:6c:ca:d3:77:6a:e6:f7:b9:85: 1e:b1:53:55:bb:e3:9e:38:a3:b5:87:23:62:41:2b: 29:57:39:2a:e6:33:50:6f:2b:1b:74:7c:74:c5:ac: 58:1c:3d:1c:01:71:3e:49:6b:30:8a:02:88:61:a7: 9b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AE:F1:11:15:4E:4F:0B:DA:48:F7:D8:F0:6C:55:DD:AB:B8:F9:41 X509v3 Authority Key Identifier: keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/Aa7xERVOTwvaSPfY8GxV3au4-UE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.220.116.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:85:a9:50:c0:e5:f7:53:e1:89:8b:ac:d7:79:d0:a6:78:5a: d4:ca:7e:3a:ab:ad:7a:24:0b:70:0d:54:1c:25:ec:41:49:02: 76:4c:3a:17:01:86:0d:63:2a:47:28:ed:4e:2c:42:1b:60:95: 38:cb:61:25:a8:5e:72:85:4b:0e:a0:31:f9:f9:a6:23:1d:e5: 27:33:77:41:9e:1f:f3:f9:4c:63:b6:a6:21:04:a8:cf:98:3a: 0c:31:88:b4:af:25:f2:f6:09:33:4d:dd:b3:c9:96:44:36:a6: ad:53:c8:f3:3c:80:b6:74:a2:0c:be:ea:65:de:6a:c9:1a:73: 9c:a4:5f:a6:78:00:82:71:98:30:16:4b:e6:24:22:2d:4c:93: ea:6e:11:40:b3:00:98:cd:c4:1e:d0:77:e2:64:29:d4:47:37: 80:76:d1:10:11:bb:7f:82:15:72:c3:01:d2:0c:ab:5b:0a:8a: d2:96:1b:d5:8d:ca:5e:d4:21:4f:77:68:13:aa:93:6c:fb:d5: 67:1d:ff:14:12:49:bd:4c:a7:ec:48:7a:ce:ed:1d:aa:9e:d4: 91:56:b4:a3:f2:33:f1:aa:8a:13:58:40:23:0b:c8:d7:26:08: 10:e0:71:e3:78:be:0e:dd:63:49:3a:d2:66:8f:bf:bc:36:00: c0:55:c1:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x3RxTts13d6+E6g6kiK0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj MmQ3NmIwHhcNMjYwMTAxMDQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMWFlZjExMTE1NGU0ZjBiZGE0OGY3ZDhmMDZjNTVkZGFiYjhmOTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4i8k1lCP+VDSI54M09kArIm4vnrj SWICA1gXx2qZ+hpCAC7Ql1z8e2D2tNaEOrZcJRmgtqz1zOgEioH6u5jtaKIdFgVW JGe0oCw5XVGPpu+dPrKugKggSNG3kLSFAyjL831MCWqVjAUmQmJ5B2pfrHHz4M/w dZSnGfB1hy0WY60KWoqu2NtJsQcXaF3X7Tu925BA4x3OVyHDo60K+16jaNsK9uzv cd5F9zMYz4SvcN+ydh2Q8GqFDboNK3akXikz0OBpiSihJHVsytN3aub3uYUesVNV u+OeOKO1hyNiQSspVzkq5jNQbysbdHx0xaxYHD0cAXE+SWswigKIYaebUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAGu8REVTk8L2kj32PBsVd2ruPlBMB8GA1UdIwQY MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt NTI3NjZiMjRiYWE0LzEvQWE3eEVSVk9Ud3ZhU1BmWThHeFYzYXU0LVVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0 LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNx0MA0G CSqGSIb3DQEBCwUAA4IBAQCdhalQwOX3U+GJi6zXedCmeFrUyn46q616JAtwDVQc JexBSQJ2TDoXAYYNYypHKO1OLEIbYJU4y2ElqF5yhUsOoDH5+aYjHeUnM3dBnh/z +UxjtqYhBKjPmDoMMYi0ryXy9gkzTd2zyZZENqatU8jzPIC2dKIMvupl3mrJGnOc pF+meACCcZgwFkvmJCItTJPqbhFAswCYzcQe0HfiZCnURzeAdtEQEbt/ghVywwHS DKtbCorSlhvVjcpe1CFPd2gTqpNs+9VnHf8UEkm9TKfsSHrO7R2qntSRVrSj8jPx qooTWEAjC8jXJggQ4HHjeL4O3WNJOtJmj7+8NgDAVcFD -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:58 2026 by rpki-client