This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/AO06uJHkVshYcEPLGfhX8Uw9gpc.roa File: AO06uJHkVshYcEPLGfhX8Uw9gpc.roa (raw, json) Hash identifier: 5SvwdBIYhvyrwzSR8AKYSXgpfbX0MUkDamcTaTo4pOY= Subject key identifier: 00:ED:3A:B8:91:E4:56:C8:58:70:43:CB:19:F8:57:F1:4C:3D:82:97 Certificate issuer: /CN=28851c6fc6eb3816e116c8a4a851d0d178c90f31 Certificate serial: 019B7B36EB372602F068B1D19BC6962E9541 Authority key identifier: 28:85:1C:6F:C6:EB:38:16:E1:16:C8:A4:A8:51:D0:D1:78:C9:0F:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIUcb8brOBbhFsikqFHQ0XjJDzE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/AO06uJHkVshYcEPLGfhX8Uw9gpc.roa Signing time: Thu 01 Jan 2026 20:19:15 +0000 ROA not before: Thu 01 Jan 2026 20:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60819 IP address blocks: 188.241.145.0/24 maxlen: 24 2a00:a900:7afe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/KIUcb8brOBbhFsikqFHQ0XjJDzE.crl rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/KIUcb8brOBbhFsikqFHQ0XjJDzE.mft rsync://rpki.ripe.net/repository/DEFAULT/KIUcb8brOBbhFsikqFHQ0XjJDzE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:eb:37:26:02:f0:68:b1:d1:9b:c6:96:2e:95:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28851c6fc6eb3816e116c8a4a851d0d178c90f31 Validity Not Before: Jan 1 20:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00ed3ab891e456c8587043cb19f857f14c3d8297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:c2:ee:1d:ce:40:74:48:26:fe:d3:66:8c: 9f:fa:fb:58:c8:0b:7f:f6:ee:35:e4:5f:86:ac:b7: 9f:39:37:b3:58:0c:5b:aa:65:79:5f:b6:9b:6b:40: ae:58:05:e2:40:c0:b0:1d:e3:56:bf:1f:0f:08:09: 2f:ca:83:cb:28:01:91:0c:2b:c2:64:f5:8c:69:2d: ef:f8:dd:47:29:c3:96:6f:30:93:12:23:ef:3d:1c: c6:73:58:b1:1e:10:f4:81:4d:54:5c:50:5b:63:2f: c8:34:ba:f1:f3:c8:3c:62:ea:2f:3e:9c:00:a8:11: b6:02:ee:ef:79:8a:7e:59:03:70:ab:a8:9b:67:df: 19:07:c2:0c:74:1d:dd:d6:48:2f:51:df:1e:e4:f6: 6d:c3:ea:a5:d6:33:97:2a:0d:f6:c3:9a:f7:1e:7e: ed:37:13:b7:bc:47:45:b3:9b:56:03:b0:e2:d3:10: 92:29:73:b4:d0:04:f7:74:96:89:0f:fa:25:55:bf: dd:6e:de:0b:5f:bb:a5:1a:ae:7f:e0:60:23:95:ae: 9a:f7:eb:e4:84:c8:00:88:0b:32:46:72:91:a3:ac: 1b:eb:ee:09:60:d6:22:61:8c:9f:f4:46:ab:1c:8c: ba:c2:88:d3:af:91:e4:34:73:b0:a6:94:67:cc:01: 6a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:ED:3A:B8:91:E4:56:C8:58:70:43:CB:19:F8:57:F1:4C:3D:82:97 X509v3 Authority Key Identifier: keyid:28:85:1C:6F:C6:EB:38:16:E1:16:C8:A4:A8:51:D0:D1:78:C9:0F:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIUcb8brOBbhFsikqFHQ0XjJDzE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/AO06uJHkVshYcEPLGfhX8Uw9gpc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b9e6df-da8f-4491-8fe4-5245b135221b/1/KIUcb8brOBbhFsikqFHQ0XjJDzE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.241.145.0/24 IPv6: 2a00:a900:7afe::/48 Signature Algorithm: sha256WithRSAEncryption 81:ca:c7:f2:cb:0a:d7:0e:1f:69:b2:bf:3a:b4:94:17:11:15: f8:d1:9e:19:92:59:99:22:d0:a9:fe:42:52:43:56:7b:0d:b1: 78:a3:94:30:86:f4:a1:c1:14:76:7a:0d:a8:f0:9b:34:a2:0c: 74:39:a1:48:ed:fa:b4:83:67:2a:89:7b:cb:3f:c0:94:ea:a3: 68:ed:29:7e:32:4c:db:db:ad:6f:4f:e6:6f:d7:19:75:02:09: 07:5c:7b:d3:54:0d:03:68:ab:ed:3f:05:6f:82:fa:09:96:ea: dd:a3:01:ba:8d:35:23:2f:f0:64:f1:36:a4:9a:7a:24:db:97: 14:8b:2d:54:d0:2e:ef:fb:75:9a:51:f4:cf:5d:82:66:7f:c2: e6:63:40:9f:53:28:2f:53:20:62:42:37:cf:c1:8c:e0:99:40: 22:a4:5d:ef:d6:2c:a0:9f:78:1d:ea:50:90:fe:73:c4:5b:e1: 77:47:b6:64:5e:a2:62:c4:69:20:be:33:2e:24:ff:7b:96:85: b6:1e:9d:28:97:45:00:59:82:2d:5c:63:12:bd:20:48:d2:f6: 89:18:3a:5a:8b:c0:bf:7a:e8:09:17:dc:26:43:3b:c5:a7:83: 96:20:90:dd:a5:80:da:1e:ea:53:a3:ee:67:4f:7d:16:ff:69: e2:92:47:af -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7Nus3JgLwaLHRm8aWLpVBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4ODUxYzZmYzZlYjM4MTZlMTE2YzhhNGE4NTFkMGQxNzhj OTBmMzEwHhcNMjYwMTAxMjAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMGVkM2FiODkxZTQ1NmM4NTg3MDQzY2IxOWY4NTdmMTRjM2Q4Mjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fHC7h3OQHRIJv7TZoyf+vtYyAt/ 9u415F+GrLefOTezWAxbqmV5X7aba0CuWAXiQMCwHeNWvx8PCAkvyoPLKAGRDCvC ZPWMaS3v+N1HKcOWbzCTEiPvPRzGc1ixHhD0gU1UXFBbYy/INLrx88g8YuovPpwA qBG2Au7veYp+WQNwq6ibZ98ZB8IMdB3d1kgvUd8e5PZtw+ql1jOXKg32w5r3Hn7t NxO3vEdFs5tWA7Di0xCSKXO00AT3dJaJD/olVb/dbt4LX7ulGq5/4GAjla6a9+vk hMgAiAsyRnKRo6wb6+4JYNYiYYyf9EarHIy6wojTr5HkNHOwppRnzAFqewIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFADtOriR5FbIWHBDyxn4V/FMPYKXMB8GA1UdIwQY MBaAFCiFHG/G6zgW4RbIpKhR0NF4yQ8xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0lVY2I4YnJPQmJoRnNpa3FGSFEwWGpKRHpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9iOWU2ZGYtZGE4Zi00NDkxLThmZTQt NTI0NWIxMzUyMjFiLzEvQU8wNnVKSGtWc2hZY0VQTEdmaFg4VXc5Z3BjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC9iOWU2ZGYtZGE4Zi00NDkxLThmZTQtNTI0NWIxMzUyMjFi LzEvS0lVY2I4YnJPQmJoRnNpa3FGSFEwWGpKRHpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAvPGRMA8E AgACMAkDBwAqAKkAev4wDQYJKoZIhvcNAQELBQADggEBAIHKx/LLCtcOH2myvzq0 lBcRFfjRnhmSWZki0Kn+QlJDVnsNsXijlDCG9KHBFHZ6DajwmzSiDHQ5oUjt+rSD ZyqJe8s/wJTqo2jtKX4yTNvbrW9P5m/XGXUCCQdce9NUDQNoq+0/BW+C+gmW6t2j AbqNNSMv8GTxNqSaeiTblxSLLVTQLu/7dZpR9M9dgmZ/wuZjQJ9TKC9TIGJCN8/B jOCZQCKkXe/WLKCfeB3qUJD+c8Rb4XdHtmReomLEaSC+My4k/3uWhbYenSiXRQBZ gi1cYxK9IEjS9okYOlqLwL966AkX3CZDO8Wng5YgkN2lgNoe6lOj7mdPfRb/aeKS R68= -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:58 2026 by rpki-client