This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/pAESyPqHIlN4NTJAugrXcjke2nM.roa File: pAESyPqHIlN4NTJAugrXcjke2nM.roa (raw, json) Hash identifier: eftVyacucHA1lYWjx3ZzoQjWGGcLhPcyZlIC+dbOdko= Subject key identifier: A4:01:12:C8:FA:87:22:53:78:35:32:40:BA:0A:D7:72:39:1E:DA:73 Certificate issuer: /CN=fd1196d98decd38eb03f5f06b48e556c74f231f4 Certificate serial: 019B7B35AFD895B6BA06B59B7DF383D44124 Authority key identifier: FD:11:96:D9:8D:EC:D3:8E:B0:3F:5F:06:B4:8E:55:6C:74:F2:31:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RGW2Y3s046wP18GtI5VbHTyMfQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/pAESyPqHIlN4NTJAugrXcjke2nM.roa Signing time: Thu 01 Jan 2026 20:17:54 +0000 ROA not before: Thu 01 Jan 2026 20:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202339 IP address blocks: 185.47.96.0/22 maxlen: 22 185.47.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/_RGW2Y3s046wP18GtI5VbHTyMfQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/_RGW2Y3s046wP18GtI5VbHTyMfQ.mft rsync://rpki.ripe.net/repository/DEFAULT/_RGW2Y3s046wP18GtI5VbHTyMfQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:af:d8:95:b6:ba:06:b5:9b:7d:f3:83:d4:41:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd1196d98decd38eb03f5f06b48e556c74f231f4 Validity Not Before: Jan 1 20:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a40112c8fa87225378353240ba0ad772391eda73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:98:87:6a:4d:44:db:ca:80:f3:0d:e1:79:0f: c2:e2:d5:b3:03:f0:30:16:76:2c:d1:75:ad:3b:ab: 62:6c:62:55:a3:fb:63:e2:05:1d:54:8e:d6:fc:0c: eb:33:61:91:58:d2:fe:91:bc:92:fb:01:bb:05:03: 28:70:0f:32:c4:cf:54:6d:38:dc:f7:98:4c:6d:d1: be:8d:4e:b2:e1:f1:82:e4:66:75:53:78:33:36:79: 47:84:bc:e6:97:79:63:a8:1d:11:2d:9e:af:0f:d5: e6:53:2a:20:13:b7:87:71:57:1d:9e:72:b7:48:90: 43:d3:42:4a:b3:b0:c6:a3:95:26:20:93:5d:e6:6a: 17:3c:4e:bd:ed:89:4a:7f:62:7c:9c:fe:ce:5a:9a: 81:73:1b:f8:c3:63:1c:8a:b5:d8:f5:f8:16:97:f5: a6:1b:1d:32:32:11:8c:32:00:5e:3c:7c:fc:0a:e9: 79:ed:fd:0f:5c:cf:40:a0:d6:a7:27:e2:2b:71:71: 40:5d:16:af:bb:bf:1d:23:dc:07:79:94:15:9d:34: 81:03:4f:2a:a9:c3:fd:16:2f:15:bd:24:35:d9:0a: ee:df:af:91:3f:55:0d:c7:bf:b2:d9:58:fe:af:4c: 15:4c:97:2c:20:97:6d:ae:e3:91:5f:06:a7:55:48: 3a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:01:12:C8:FA:87:22:53:78:35:32:40:BA:0A:D7:72:39:1E:DA:73 X509v3 Authority Key Identifier: keyid:FD:11:96:D9:8D:EC:D3:8E:B0:3F:5F:06:B4:8E:55:6C:74:F2:31:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RGW2Y3s046wP18GtI5VbHTyMfQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/pAESyPqHIlN4NTJAugrXcjke2nM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4d5660-5364-4454-a9be-4f8902bfe172/1/_RGW2Y3s046wP18GtI5VbHTyMfQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.47.96.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:7a:45:7f:03:8c:7b:dd:9e:e3:d3:12:de:64:da:3b:c9:44: bc:0f:ec:f7:84:f5:6c:7b:79:0c:90:a6:ad:06:90:4d:38:49: 9a:ef:2b:cd:18:17:6f:71:46:d8:d5:ec:0d:bb:6d:23:1d:32: 61:2a:e3:ae:ce:90:5d:9c:99:f1:ab:3a:3e:64:72:4e:f8:1b: 9b:df:ac:38:cf:b0:e5:ba:ce:fa:68:cb:db:59:1d:89:82:96: 21:df:2e:06:81:f5:29:63:30:0c:52:72:90:32:8d:c2:6f:41: f4:4c:70:91:07:d4:2b:e5:0c:1d:87:57:e7:5b:d4:97:0d:8a: b2:3a:1a:3b:f3:37:3b:27:87:a6:f0:8e:65:95:05:3e:51:36: 06:57:b5:27:e9:b5:44:0f:99:9d:80:93:5e:d9:7f:aa:9b:7b: 0b:24:11:19:4d:b9:43:b8:8f:2e:ef:5c:0c:27:6e:4b:18:e8: 34:9e:10:ad:25:65:15:f5:04:b5:df:5d:18:df:e4:43:12:fe: fc:12:92:75:be:aa:27:66:8e:1e:a8:ea:51:07:f9:3f:24:a3: ab:f5:85:dd:49:65:03:14:39:08:27:cc:e9:b2:47:4f:5f:12: 3a:61:d5:97:c5:b4:de:b8:1f:a9:8a:9d:56:fc:e8:24:c3:86: e3:09:de:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Na/Ylba6BrWbffOD1EEkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMTE5NmQ5OGRlY2QzOGViMDNmNWYwNmI0OGU1NTZjNzRm MjMxZjQwHhcNMjYwMTAxMjAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDAxMTJjOGZhODcyMjUzNzgzNTMyNDBiYTBhZDc3MjM5MWVkYTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZiHak1E28qA8w3heQ/C4tWzA/Aw FnYs0XWtO6tibGJVo/tj4gUdVI7W/AzrM2GRWNL+kbyS+wG7BQMocA8yxM9UbTjc 95hMbdG+jU6y4fGC5GZ1U3gzNnlHhLzml3ljqB0RLZ6vD9XmUyogE7eHcVcdnnK3 SJBD00JKs7DGo5UmIJNd5moXPE697YlKf2J8nP7OWpqBcxv4w2McirXY9fgWl/Wm Gx0yMhGMMgBePHz8Cul57f0PXM9AoNanJ+IrcXFAXRavu78dI9wHeZQVnTSBA08q qcP9Fi8VvSQ12Qru36+RP1UNx7+y2Vj+r0wVTJcsIJdtruORXwanVUg6OQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKQBEsj6hyJTeDUyQLoK13I5HtpzMB8GA1UdIwQY MBaAFP0RltmN7NOOsD9fBrSOVWx08jH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1JHVzJZM3MwNDZ3UDE4R3RJNVZiSFR5TWZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS80ZDU2NjAtNTM2NC00NDU0LWE5YmUt NGY4OTAyYmZlMTcyLzEvcEFFU3lQcUhJbE40TlRKQXVnclhjamtlMm5NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS80ZDU2NjAtNTM2NC00NDU0LWE5YmUtNGY4OTAyYmZlMTcy LzEvX1JHVzJZM3MwNDZ3UDE4R3RJNVZiSFR5TWZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuS9gMA0G CSqGSIb3DQEBCwUAA4IBAQB/ekV/A4x73Z7j0xLeZNo7yUS8D+z3hPVse3kMkKat BpBNOEma7yvNGBdvcUbY1ewNu20jHTJhKuOuzpBdnJnxqzo+ZHJO+Bub36w4z7Dl us76aMvbWR2JgpYh3y4GgfUpYzAMUnKQMo3Cb0H0THCRB9Qr5Qwdh1fnW9SXDYqy Oho78zc7J4em8I5llQU+UTYGV7Un6bVED5mdgJNe2X+qm3sLJBEZTblDuI8u71wM J25LGOg0nhCtJWUV9QS1310Y3+RDEv78EpJ1vqonZo4eqOpRB/k/JKOr9YXdSWUD FDkIJ8zpskdPXxI6YdWXxbTeuB+pip1W/Ogkw4bjCd7X -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:17 2026 by rpki-client