This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/AWxzzyNyiEe96JGpfTTltwTSHS0.roa File: AWxzzyNyiEe96JGpfTTltwTSHS0.roa (raw, json) Hash identifier: e990mLN/bBQ15JQILJpMpdVXqqpNaInRtBdXK82dx1E= Subject key identifier: 01:6C:73:CF:23:72:88:47:BD:E8:91:A9:7D:34:E5:B7:04:D2:1D:2D Certificate issuer: /CN=bb4a0af156332d3c7ecb585faee3a90d9bf2a096 Certificate serial: 019B7D5BF8E4A116F8BAD65B49483D330C63 Authority key identifier: BB:4A:0A:F1:56:33:2D:3C:7E:CB:58:5F:AE:E3:A9:0D:9B:F2:A0:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/AWxzzyNyiEe96JGpfTTltwTSHS0.roa Signing time: Fri 02 Jan 2026 06:18:57 +0000 ROA not before: Fri 02 Jan 2026 06:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202513 IP address blocks: 87.239.52.0/22 maxlen: 24 185.147.16.0/22 maxlen: 24 2a10:4e80::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/u0oK8VYzLTx-y1hfruOpDZvyoJY.crl rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/u0oK8VYzLTx-y1hfruOpDZvyoJY.mft rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:f8:e4:a1:16:f8:ba:d6:5b:49:48:3d:33:0c:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb4a0af156332d3c7ecb585faee3a90d9bf2a096 Validity Not Before: Jan 2 06:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=016c73cf23728847bde891a97d34e5b704d21d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7f:65:fd:0e:57:be:a2:7d:27:b5:34:d4:d7: ef:1e:bd:59:ab:29:6c:f5:a5:d5:13:31:4c:f7:be: 3a:a1:9f:d3:7a:a9:e4:af:f8:82:93:37:88:7f:ea: 80:d8:6e:d6:23:79:f7:d1:c2:6b:d0:c6:8b:1d:61: ac:e1:f1:3d:1f:76:e2:e2:cb:06:09:85:4b:ae:c1: 2b:41:d9:b8:12:f3:61:3c:dd:82:d6:26:1d:70:35: 20:0f:46:0e:b5:66:2b:de:8a:a2:8d:73:ff:cb:14: 76:22:ff:cc:24:75:06:6b:1d:4c:27:a0:e5:c6:13: bb:0a:f3:42:5d:7b:a5:5b:fd:0a:1c:73:e3:68:3f: 31:6f:a3:59:84:53:3a:00:43:b2:a8:ef:0c:ec:77: 8a:48:e3:1a:67:10:fd:d5:48:14:20:1c:99:b1:17: d5:69:b3:40:57:74:6f:a2:ac:ee:75:8d:53:cb:85: 1e:01:00:66:ce:f8:45:84:b4:94:29:f9:44:5a:a9: 1d:cf:ca:95:48:fa:ab:93:f3:72:77:f7:b4:67:1d: 7d:1b:66:c1:13:e0:50:54:01:77:ca:38:9e:d3:04: d8:8d:21:39:68:c5:14:80:9d:19:a6:6b:08:b6:09: de:50:4a:d1:90:23:f2:c3:0d:e2:29:ef:9c:77:68: 9e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6C:73:CF:23:72:88:47:BD:E8:91:A9:7D:34:E5:B7:04:D2:1D:2D X509v3 Authority Key Identifier: keyid:BB:4A:0A:F1:56:33:2D:3C:7E:CB:58:5F:AE:E3:A9:0D:9B:F2:A0:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/AWxzzyNyiEe96JGpfTTltwTSHS0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/u0oK8VYzLTx-y1hfruOpDZvyoJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.239.52.0/22 185.147.16.0/22 IPv6: 2a10:4e80::/29 Signature Algorithm: sha256WithRSAEncryption b7:c3:e5:a5:42:08:d8:e6:54:75:8a:07:fd:d8:ca:e7:6c:ce: 0b:75:25:45:9d:ff:bf:63:5e:14:f6:93:4a:fa:56:ef:6f:a1: 2a:ea:a5:d9:7a:f8:87:ec:bc:55:44:9c:ed:8d:6a:08:1a:2b: 3a:60:bb:08:3d:4a:b8:56:2e:7a:3c:c9:f1:68:51:12:ef:22: f4:46:fc:dc:70:06:76:2f:31:bb:19:a9:35:6c:f5:14:9b:6d: 8c:1e:92:ab:69:0b:e1:6c:42:7a:ae:df:36:62:4c:d3:bb:96: 57:90:4b:8f:f1:75:c8:f8:c1:02:98:f1:5e:cd:ab:83:bb:5e: 48:bd:29:5d:fa:da:e5:80:5d:af:fc:7d:87:4e:ab:de:bc:a6: 07:3f:c7:63:2c:ff:f9:c5:55:b3:c6:d0:db:c0:29:98:95:34: 92:69:f6:4a:30:04:ab:ba:4e:04:23:33:ac:1c:e8:65:e9:b4: b7:b7:c3:e4:a2:8b:75:94:32:36:96:49:ab:77:7c:ea:c4:46: e7:82:f6:a3:78:41:02:6f:7d:c3:66:3a:fe:2a:1a:de:70:22: 72:0b:c4:eb:d2:06:80:43:e1:c1:12:a9:da:5a:af:18:44:97: 97:33:40:68:f4:dd:18:89:78:50:fe:2a:bf:f9:f1:27:07:2d: 04:42:9b:1e -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9W/jkoRb4utZbSUg9MwxjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiNGEwYWYxNTYzMzJkM2M3ZWNiNTg1ZmFlZTNhOTBkOWJm MmEwOTYwHhcNMjYwMTAyMDYxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTZjNzNjZjIzNzI4ODQ3YmRlODkxYTk3ZDM0ZTViNzA0ZDIxZDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA639l/Q5XvqJ9J7U01NfvHr1Zqyls 9aXVEzFM9746oZ/Teqnkr/iCkzeIf+qA2G7WI3n30cJr0MaLHWGs4fE9H3bi4ssG CYVLrsErQdm4EvNhPN2C1iYdcDUgD0YOtWYr3oqijXP/yxR2Iv/MJHUGax1MJ6Dl xhO7CvNCXXulW/0KHHPjaD8xb6NZhFM6AEOyqO8M7HeKSOMaZxD91UgUIByZsRfV abNAV3RvoqzudY1Ty4UeAQBmzvhFhLSUKflEWqkdz8qVSPqrk/Nyd/e0Zx19G2bB E+BQVAF3yjie0wTYjSE5aMUUgJ0ZpmsItgneUErRkCPyww3iKe+cd2ieLQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFAFsc88jcohHveiRqX005bcE0h0tMB8GA1UdIwQY MBaAFLtKCvFWMy08fstYX67jqQ2b8qCWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTBvSzhWWXpMVHgteTFoZnJ1T3BEWnZ5b0pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8xYjA5OTgtYWI4MS00Y2NlLThjNDYt ZjIxMjY2NjcyNWI0LzEvQVd4enp5TnlpRWU5NkpHcGZUVGx0d1RTSFMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni8xYjA5OTgtYWI4MS00Y2NlLThjNDYtZjIxMjY2NjcyNWI0 LzEvdTBvSzhWWXpMVHgteTFoZnJ1T3BEWnZ5b0pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCV+80AwQC uZMQMA0EAgACMAcDBQMqEE6AMA0GCSqGSIb3DQEBCwUAA4IBAQC3w+WlQgjY5lR1 igf92MrnbM4LdSVFnf+/Y14U9pNK+lbvb6Eq6qXZeviH7LxVRJztjWoIGis6YLsI PUq4Vi56PMnxaFES7yL0RvzccAZ2LzG7Gak1bPUUm22MHpKraQvhbEJ6rt82YkzT u5ZXkEuP8XXI+MECmPFezauDu15IvSld+trlgF2v/H2HTqvevKYHP8djLP/5xVWz xtDbwCmYlTSSafZKMASruk4EIzOsHOhl6bS3t8Pkoot1lDI2lkmrd3zqxEbngvaj eEECb33DZjr+KhrecCJyC8Tr0gaAQ+HBEqnaWq8YRJeXM0Bo9N0YiXhQ/iq/+fEn By0EQpse -----END CERTIFICATE-----Generated at Sun Jan 25 16:14:11 2026 by rpki-client