This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Aihm1qpAzPTqrcFPKmaVyaxgJyw.roa File: Aihm1qpAzPTqrcFPKmaVyaxgJyw.roa (raw, json) Hash identifier: ASIC86ud/gxlcO2WNKgZea3FlMuZAabkWgmYMbXqS2I= Subject key identifier: 02:28:66:D6:AA:40:CC:F4:EA:AD:C1:4F:2A:66:95:C9:AC:60:27:2C Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba Certificate serial: 019B7EA667733DA60BBB5D673EBF2EE71020 Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Aihm1qpAzPTqrcFPKmaVyaxgJyw.roa Signing time: Fri 02 Jan 2026 12:19:53 +0000 ROA not before: Fri 02 Jan 2026 12:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48473 IP address blocks: 85.248.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.mft rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:67:73:3d:a6:0b:bb:5d:67:3e:bf:2e:e7:10:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba Validity Not Before: Jan 2 12:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=022866d6aa40ccf4eaadc14f2a6695c9ac60272c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fa:7a:53:73:47:cf:7b:c6:20:03:9b:01:90: a7:e0:f1:04:f4:7a:dc:88:47:85:a8:44:8b:81:40: 63:26:e2:4f:da:be:55:84:ed:fe:c0:59:c9:e9:9a: 01:b1:7b:84:96:db:b4:c4:a8:b3:c5:5c:17:cd:2c: dd:b2:04:4c:94:b2:2d:09:ed:3a:15:63:45:6b:cc: b0:cb:6a:95:3c:97:92:db:f5:79:e4:45:dd:91:46: 7b:9e:b4:5c:3d:d8:56:c3:d8:8a:40:22:6b:6d:d3: 70:8c:c0:fa:ba:a7:85:52:de:67:55:b9:1e:f1:d4: 6b:cf:f6:81:26:4e:eb:90:2b:b0:82:d4:15:34:f5: 37:36:56:fa:bd:24:7c:3e:05:f2:12:8f:c1:95:5e: d7:66:0c:64:6f:4b:76:7f:70:d6:7c:38:f4:d7:6d: 0c:5d:16:e7:6d:12:06:af:1c:22:8e:a6:df:73:cb: 65:e4:2c:63:ab:11:c8:41:23:3a:99:7c:33:34:52: 82:90:5e:a6:b2:4a:81:7c:9c:5b:7b:47:5e:6e:14: 34:97:61:60:67:d2:7e:77:0c:d4:ad:4a:1e:a6:11: b5:35:28:a2:20:7e:13:ad:a7:e2:43:82:a8:24:fd: ad:86:3d:92:8a:d9:74:cb:2a:c4:cc:a2:b7:b2:bd: 24:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:28:66:D6:AA:40:CC:F4:EA:AD:C1:4F:2A:66:95:C9:AC:60:27:2C X509v3 Authority Key Identifier: keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Aihm1qpAzPTqrcFPKmaVyaxgJyw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.248.152.0/22 Signature Algorithm: sha256WithRSAEncryption af:d6:a0:c7:10:48:d4:b2:5b:68:7d:c7:2c:bc:c1:c2:7c:54: bd:6e:c0:5c:6f:4b:7d:59:07:27:eb:2d:cb:13:7f:dd:7a:7f: d0:8a:55:51:08:c1:c3:4e:b6:f5:2f:cd:5c:75:d9:9b:1f:dc: 18:3c:88:ea:cb:e4:1a:40:2e:16:df:60:da:59:b7:d9:3d:f0: a8:c5:f1:90:dd:d7:e6:28:f2:da:a7:9d:12:64:37:85:97:68: 70:57:bd:4e:de:11:a6:b3:82:c9:cd:55:4f:d4:4a:2a:a5:fc: 7c:e9:72:74:12:a6:a4:72:c2:df:8c:16:0d:eb:fe:bb:e0:48: ee:a7:c9:20:93:54:65:3d:02:4f:d7:7b:c6:d5:25:ae:6e:0e: 13:5c:df:64:37:ef:f7:25:cb:bd:cd:d4:2a:1c:d9:61:3c:33: a3:04:45:7e:38:4c:4b:21:60:6b:50:22:02:cd:ea:78:00:9b: 4f:3c:6c:c0:0e:4b:b4:43:21:66:21:22:86:8a:99:4a:b9:9c: ec:8c:7e:29:fb:36:e5:5b:37:8c:91:3a:26:10:6d:6a:55:24: 98:fe:44:6b:c5:7c:cc:ce:92:39:80:7f:81:4a:b5:80:45:2a: 65:bb:ed:93:e8:f5:0e:9e:c7:84:37:40:91:07:44:47:c4:2e: 3e:50:80:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pmdzPaYLu11nPr8u5xAgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3Zjg4MTQwMWFiYWNjODhjOTQxZmRmNzQwZjFhYjE1MzZm MDVkYmEwHhcNMjYwMTAyMTIxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjI4NjZkNmFhNDBjY2Y0ZWFhZGMxNGYyYTY2OTVjOWFjNjAyNzJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfp6U3NHz3vGIAObAZCn4PEE9Hrc iEeFqESLgUBjJuJP2r5VhO3+wFnJ6ZoBsXuEltu0xKizxVwXzSzdsgRMlLItCe06 FWNFa8ywy2qVPJeS2/V55EXdkUZ7nrRcPdhWw9iKQCJrbdNwjMD6uqeFUt5nVbke 8dRrz/aBJk7rkCuwgtQVNPU3Nlb6vSR8PgXyEo/BlV7XZgxkb0t2f3DWfDj0120M XRbnbRIGrxwijqbfc8tl5CxjqxHIQSM6mXwzNFKCkF6mskqBfJxbe0debhQ0l2Fg Z9J+dwzUrUoephG1NSiiIH4TrafiQ4KoJP2thj2Sitl0yyrEzKK3sr0kiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAIoZtaqQMz06q3BTypmlcmsYCcsMB8GA1UdIwQY MBaAFOf4gUAausyIyUH990DxqxU28F26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNV9pQlFCcTZ6SWpKUWYzM1FQR3JGVGJ3WGJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9mNTUzNGEtYTYxMy00N2JlLWI0MmIt ZTJmYmMzYTY4ODAwLzEvQWlobTFxcEF6UFRxcmNGUEttYVZ5YXhnSnl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9mNTUzNGEtYTYxMy00N2JlLWI0MmItZTJmYmMzYTY4ODAw LzEvNV9pQlFCcTZ6SWpKUWYzM1FQR3JGVGJ3WGJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVfiYMA0G CSqGSIb3DQEBCwUAA4IBAQCv1qDHEEjUsltofccsvMHCfFS9bsBcb0t9WQcn6y3L E3/den/QilVRCMHDTrb1L81cddmbH9wYPIjqy+QaQC4W32DaWbfZPfCoxfGQ3dfm KPLap50SZDeFl2hwV71O3hGms4LJzVVP1Eoqpfx86XJ0EqakcsLfjBYN6/674Eju p8kgk1RlPQJP13vG1SWubg4TXN9kN+/3Jcu9zdQqHNlhPDOjBEV+OExLIWBrUCIC zep4AJtPPGzADku0QyFmISKGiplKuZzsjH4p+zblWzeMkTomEG1qVSSY/kRrxXzM zpI5gH+BSrWARSplu+2T6PUOnseEN0CRB0RHxC4+UICp -----END CERTIFICATE-----Generated at Mon Jan 26 12:17:37 2026 by rpki-client