This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/aGebgJD8M8SS3wqeGa7wpznHAEw.roa File: aGebgJD8M8SS3wqeGa7wpznHAEw.roa (raw, json) Hash identifier: SHW+2zTtMi0dPN2oweeZhLWRegjAho7EwIkU2ibvhL0= Subject key identifier: 68:67:9B:80:90:FC:33:C4:92:DF:0A:9E:19:AE:F0:A7:39:C7:00:4C Certificate issuer: /CN=4776afb74fad5baf0a6180b49510d8b8497df8d3 Certificate serial: 019B7BA520B8933FB6DF434928E62AC62567 Authority key identifier: 47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/aGebgJD8M8SS3wqeGa7wpznHAEw.roa Signing time: Thu 01 Jan 2026 22:19:37 +0000 ROA not before: Thu 01 Jan 2026 22:19:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203961 IP address blocks: 185.24.67.0/24 maxlen: 24 2a04:2b00:14aa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.mft rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:20:b8:93:3f:b6:df:43:49:28:e6:2a:c6:25:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4776afb74fad5baf0a6180b49510d8b8497df8d3 Validity Not Before: Jan 1 22:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=68679b8090fc33c492df0a9e19aef0a739c7004c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:07:a7:58:47:14:75:e3:ec:75:6a:51:64:7a: e5:9d:18:51:f5:aa:d5:e2:0c:82:1f:3b:4e:9f:cb: c5:27:07:e0:87:66:3b:1f:d2:7b:db:81:37:a3:9d: 84:ce:97:af:ee:f7:0a:f0:68:1e:fe:eb:a2:7f:be: 7a:6c:11:e0:0c:50:eb:9b:7a:57:27:85:99:5f:cd: f8:ad:b2:d9:79:db:e0:9e:17:44:33:b2:d9:3f:ac: a6:f8:21:b3:45:0b:79:40:f0:ad:1d:ca:69:94:3a: c2:e9:3a:3e:fd:ae:7f:58:2d:3f:69:e5:a5:d5:19: c6:e4:d1:75:85:71:ff:20:a7:5c:4e:39:6f:bb:4f: 7c:02:4e:d2:ba:08:57:d4:e0:a5:4c:5a:1f:76:4b: ef:b2:13:00:16:cb:0e:d5:16:4c:45:bc:2c:38:58: d9:88:a6:85:49:3d:d0:54:d6:a5:f0:db:68:ec:67: c8:c5:81:72:76:e5:ef:2d:68:ac:76:e3:96:50:8c: 77:f0:00:2e:df:51:c8:78:d7:74:08:2e:e8:d8:27: 80:b8:80:b2:f5:33:b0:c1:d4:f5:27:db:34:df:b8: 2d:b4:24:e4:22:30:fd:96:a1:8f:2f:cb:1f:07:14: 71:15:54:ed:95:48:7f:a6:f4:0e:98:ec:a6:f6:83: eb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:67:9B:80:90:FC:33:C4:92:DF:0A:9E:19:AE:F0:A7:39:C7:00:4C X509v3 Authority Key Identifier: keyid:47:76:AF:B7:4F:AD:5B:AF:0A:61:80:B4:95:10:D8:B8:49:7D:F8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3avt0-tW68KYYC0lRDYuEl9-NM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/aGebgJD8M8SS3wqeGa7wpznHAEw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/f71cc2-b71d-4668-8661-0538e95f3f12/1/R3avt0-tW68KYYC0lRDYuEl9-NM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.24.67.0/24 IPv6: 2a04:2b00:14aa::/48 Signature Algorithm: sha256WithRSAEncryption 2f:f7:c9:0d:a9:5e:28:d7:aa:16:28:45:a9:85:eb:c6:1f:23: 24:82:73:c6:1c:11:b7:33:bf:45:82:0c:73:16:c3:73:94:93: ac:33:8c:65:4d:9e:df:15:3b:ad:5d:9c:ec:7e:26:14:d2:53: b5:92:d5:8a:24:57:37:32:b4:a5:f2:89:52:57:ae:c8:62:8b: 67:c1:80:4f:64:2d:7e:81:69:39:80:36:87:b7:89:b5:bc:79: 43:7b:37:84:50:6f:82:24:25:49:68:13:e2:15:4c:ab:df:a5: ae:9d:08:2b:45:98:fd:d8:e5:c6:7b:6c:b3:19:44:88:27:83: b4:50:51:e8:93:aa:a2:d8:6f:5a:f0:52:5f:9a:50:59:4a:35: 2e:26:53:20:48:28:b9:f7:1b:95:71:a4:b4:f6:b2:17:27:4f: 77:9d:1a:70:c6:0c:70:b2:40:b2:37:a4:e5:77:e7:58:66:93: 7d:0b:10:24:da:f2:24:49:77:46:8c:d9:d6:b6:c4:99:36:f8: 60:4d:7e:43:7f:c3:5d:50:98:96:b5:a6:88:19:01:54:f4:91: c5:40:2c:af:e4:1a:24:2d:aa:88:1f:2f:08:b6:05:4c:9b:b9: 76:c2:7c:14:49:03:5b:7b:38:98:ed:15:5a:89:a9:01:96:25: d6:55:25:e1 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7pSC4kz+230NJKOYqxiVnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3NzZhZmI3NGZhZDViYWYwYTYxODBiNDk1MTBkOGI4NDk3 ZGY4ZDMwHhcNMjYwMTAxMjIxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODY3OWI4MDkwZmMzM2M0OTJkZjBhOWUxOWFlZjBhNzM5YzcwMDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5QenWEcUdePsdWpRZHrlnRhR9arV 4gyCHztOn8vFJwfgh2Y7H9J724E3o52Ezpev7vcK8Gge/uuif756bBHgDFDrm3pX J4WZX834rbLZedvgnhdEM7LZP6ym+CGzRQt5QPCtHcpplDrC6To+/a5/WC0/aeWl 1RnG5NF1hXH/IKdcTjlvu098Ak7SughX1OClTFofdkvvshMAFssO1RZMRbwsOFjZ iKaFST3QVNal8Nto7GfIxYFyduXvLWisduOWUIx38AAu31HIeNd0CC7o2CeAuICy 9TOwwdT1J9s037gttCTkIjD9lqGPL8sfBxRxFVTtlUh/pvQOmOym9oPrEQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGhnm4CQ/DPEkt8Knhmu8Kc5xwBMMB8GA1UdIwQY MBaAFEd2r7dPrVuvCmGAtJUQ2LhJffjTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEt MDUzOGU5NWYzZjEyLzEvYUdlYmdKRDhNOFNTM3dxZUdhN3dwem5IQUV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9mNzFjYzItYjcxZC00NjY4LTg2NjEtMDUzOGU5NWYzZjEy LzEvUjNhdnQwLXRXNjhLWVlDMGxSRFl1RWw5LU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuRhDMA8E AgACMAkDBwAqBCsAFKowDQYJKoZIhvcNAQELBQADggEBAC/3yQ2pXijXqhYoRamF 68YfIySCc8YcEbczv0WCDHMWw3OUk6wzjGVNnt8VO61dnOx+JhTSU7WS1YokVzcy tKXyiVJXrshii2fBgE9kLX6BaTmANoe3ibW8eUN7N4RQb4IkJUloE+IVTKvfpa6d CCtFmP3Y5cZ7bLMZRIgng7RQUeiTqqLYb1rwUl+aUFlKNS4mUyBIKLn3G5VxpLT2 shcnT3edGnDGDHCyQLI3pOV351hmk30LECTa8iRJd0aM2da2xJk2+GBNfkN/w11Q mJa1pogZAVT0kcVALK/kGiQtqogfLwi2BUybuXbCfBRJA1t7OJjtFVqJqQGWJdZV JeE= -----END CERTIFICATE-----Generated at Mon Jan 26 21:17:02 2026 by rpki-client