This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/ajY7opH2JkgKSsn0u1tCSe2qO48.roa File: ajY7opH2JkgKSsn0u1tCSe2qO48.roa (raw, json) Hash identifier: digTHTa7KkUVMUs55bQN2ammxPkYLAkzneKY1dmofHU= Subject key identifier: 6A:36:3B:A2:91:F6:26:48:0A:4A:C9:F4:BB:5B:42:49:ED:AA:3B:8F Certificate issuer: /CN=32b1b94b073c547991c20f842eadec167ec19e34 Certificate serial: 019B79113ED7FC29DEF43006270E443124C0 Authority key identifier: 32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/ajY7opH2JkgKSsn0u1tCSe2qO48.roa Signing time: Thu 01 Jan 2026 10:18:51 +0000 ROA not before: Thu 01 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48555 IP address blocks: 176.56.144.0/24 maxlen: 24 176.56.146.0/24 maxlen: 24 176.56.148.0/24 maxlen: 24 176.56.150.0/24 maxlen: 24 185.63.236.0/24 maxlen: 24 185.63.237.0/24 maxlen: 24 185.63.238.0/24 maxlen: 24 185.63.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3e:d7:fc:29:de:f4:30:06:27:0e:44:31:24:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32b1b94b073c547991c20f842eadec167ec19e34 Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a363ba291f626480a4ac9f4bb5b4249edaa3b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:48:e3:f6:bb:70:71:43:c3:29:4c:38:2f:4c: 29:53:50:7c:86:fb:3d:5a:ba:88:bc:35:db:0d:e2: c7:04:36:ee:89:5f:92:52:fe:18:f3:47:fa:d7:cf: 34:d9:8b:99:cc:51:ad:08:48:b7:92:5e:1a:52:24: 7c:88:c5:af:3b:6d:dc:fd:9f:6e:15:64:aa:33:51: 87:64:61:bb:d5:74:49:bf:98:e1:6a:57:11:ab:70: b9:9c:02:71:17:30:7e:24:ff:ea:a1:9b:9d:d0:7a: 79:74:a0:ac:92:c5:f4:a5:c7:4d:7f:be:79:ca:75: 6f:32:05:ed:b4:3c:6b:51:ab:33:1b:7e:d1:aa:05: c6:3e:a1:3b:8c:69:59:21:bb:66:87:7e:a9:76:7f: 6a:75:09:ea:be:8e:12:f6:e5:9b:ae:bd:90:04:2a: 41:e2:0a:7e:25:da:e7:b6:de:17:7a:49:7f:39:c7: 25:fe:0c:b3:b9:55:6e:50:5e:35:01:1b:d7:22:98: e9:f7:f2:cb:c1:fd:50:03:db:7c:bf:f0:00:1d:a1: ae:f2:20:13:6c:07:c2:2a:ca:23:5e:f0:a9:e2:72: 9b:c2:1f:13:87:99:98:07:92:72:08:99:22:b6:50: 77:5b:b6:a9:0a:3f:05:32:07:4a:35:be:56:4c:62: f9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:36:3B:A2:91:F6:26:48:0A:4A:C9:F4:BB:5B:42:49:ED:AA:3B:8F X509v3 Authority Key Identifier: keyid:32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/ajY7opH2JkgKSsn0u1tCSe2qO48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.56.144.0/24 176.56.146.0/24 176.56.148.0/24 176.56.150.0/24 185.63.236.0/22 Signature Algorithm: sha256WithRSAEncryption 43:8a:40:b4:d6:50:b2:8b:48:0a:c7:87:dd:98:02:30:59:e8: ca:c9:65:bf:36:94:ed:41:a8:d0:6c:5d:e3:6e:07:55:55:6a: 8f:51:33:9e:02:93:e6:1a:27:b0:94:55:31:83:94:3d:01:50: 38:68:68:a0:43:e4:01:91:72:5e:74:1e:cc:93:9f:3d:b1:ed: 96:19:6f:9a:ff:0d:7a:34:38:bd:58:b3:80:dd:35:55:07:23: 62:69:6b:34:d8:33:94:47:1f:a8:2f:05:49:59:bc:fc:7c:57: 3d:6c:4d:d7:f3:e6:5f:d4:2d:46:86:73:61:92:ad:50:64:0b: 58:e4:5f:49:7f:24:b3:a4:8b:a8:77:95:59:1c:ab:7f:84:4c: 0e:49:1e:41:63:c5:f5:11:61:a3:63:fd:e6:4b:18:f3:d2:69: 55:b4:6f:da:09:50:22:a0:db:27:27:5e:51:46:7f:40:21:15: 57:46:96:54:30:f0:73:28:35:91:4f:1f:2b:0b:f6:89:14:90: 87:48:8b:41:0c:19:d7:fe:d5:a4:94:22:fa:ec:b3:99:0e:72: d0:45:4a:c1:e7:71:f3:68:19:0d:13:38:c4:ca:fe:92:48:b8: a7:70:8a:81:89:db:ef:98:ac:93:89:f2:0d:3e:e5:d3:eb:e8: c2:c5:eb:4b -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt5ET7X/Cne9DAGJw5EMSTAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyYjFiOTRiMDczYzU0Nzk5MWMyMGY4NDJlYWRlYzE2N2Vj MTllMzQwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTM2M2JhMjkxZjYyNjQ4MGE0YWM5ZjRiYjViNDI0OWVkYWEzYjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0jj9rtwcUPDKUw4L0wpU1B8hvs9 WrqIvDXbDeLHBDbuiV+SUv4Y80f618802YuZzFGtCEi3kl4aUiR8iMWvO23c/Z9u FWSqM1GHZGG71XRJv5jhalcRq3C5nAJxFzB+JP/qoZud0Hp5dKCsksX0pcdNf755 ynVvMgXttDxrUaszG37RqgXGPqE7jGlZIbtmh36pdn9qdQnqvo4S9uWbrr2QBCpB 4gp+Jdrntt4Xekl/Occl/gyzuVVuUF41ARvXIpjp9/LLwf1QA9t8v/AAHaGu8iAT bAfCKsojXvCp4nKbwh8Th5mYB5JyCJkitlB3W7apCj8FMgdKNb5WTGL5hwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFGo2O6KR9iZICkrJ9LtbQkntqjuPMB8GA1UdIwQY MBaAFDKxuUsHPFR5kcIPhC6t7BZ+wZ40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXJHNVN3YzhWSG1Sd2ctRUxxM3NGbjdCbmpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8wYTIwNmUtMTc4OC00MzZiLTk3Mjgt YmVkNGI5OWE3YmI0LzEvYWpZN29wSDJKa2dLU3NuMHUxdENTZTJxTzQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS8wYTIwNmUtMTc4OC00MzZiLTk3MjgtYmVkNGI5OWE3YmI0 LzEvTXJHNVN3YzhWSG1Sd2ctRUxxM3NGbjdCbmpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAsDiQAwQA sDiSAwQAsDiUAwQAsDiWAwQCuT/sMA0GCSqGSIb3DQEBCwUAA4IBAQBDikC01lCy i0gKx4fdmAIwWejKyWW/NpTtQajQbF3jbgdVVWqPUTOeApPmGiewlFUxg5Q9AVA4 aGigQ+QBkXJedB7Mk589se2WGW+a/w16NDi9WLOA3TVVByNiaWs02DOURx+oLwVJ Wbz8fFc9bE3X8+Zf1C1GhnNhkq1QZAtY5F9JfySzpIuod5VZHKt/hEwOSR5BY8X1 EWGjY/3mSxjz0mlVtG/aCVAioNsnJ15RRn9AIRVXRpZUMPBzKDWRTx8rC/aJFJCH SItBDBnX/tWklCL67LOZDnLQRUrB53HzaBkNEzjEyv6SSLincIqBidvvmKyTifIN PuXT6+jCxetL -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:50 2026 by rpki-client