This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/87d086-f53a-41ba-81fe-ca444704416f/1/amULFHSQIT1lD63zvSrNJGtGM-I.roa File: amULFHSQIT1lD63zvSrNJGtGM-I.roa (raw, json) Hash identifier: UX9F+FQcAi88JV/0o8okdIg01PgokJoY/+NJIGfsY+Y= Subject key identifier: 6A:65:0B:14:74:90:21:3D:65:0F:AD:F3:BD:2A:CD:24:6B:46:33:E2 Certificate issuer: /CN=64ffb309c289acffc1be34a6f0b6675c001713ea Certificate serial: 019B797F1CB8292EE74E91B8F29776074396 Authority key identifier: 64:FF:B3:09:C2:89:AC:FF:C1:BE:34:A6:F0:B6:67:5C:00:17:13:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZP-zCcKJrP_BvjSm8LZnXAAXE-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/87d086-f53a-41ba-81fe-ca444704416f/1/amULFHSQIT1lD63zvSrNJGtGM-I.roa Signing time: Thu 01 Jan 2026 12:18:52 +0000 ROA not before: Thu 01 Jan 2026 12:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29119 IP address blocks: 185.113.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/87d086-f53a-41ba-81fe-ca444704416f/1/ZP-zCcKJrP_BvjSm8LZnXAAXE-o.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/87d086-f53a-41ba-81fe-ca444704416f/1/ZP-zCcKJrP_BvjSm8LZnXAAXE-o.mft rsync://rpki.ripe.net/repository/DEFAULT/ZP-zCcKJrP_BvjSm8LZnXAAXE-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:1c:b8:29:2e:e7:4e:91:b8:f2:97:76:07:43:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64ffb309c289acffc1be34a6f0b6675c001713ea Validity Not Before: Jan 1 12:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a650b147490213d650fadf3bd2acd246b4633e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4b:45:f0:43:ec:70:fc:86:4b:d6:45:14:3d: 2e:13:ae:6c:e0:1c:f9:e5:28:75:d8:82:54:2b:be: 14:49:14:a1:19:7d:a9:d7:6c:49:4a:1a:c5:32:af: bf:b5:42:df:ec:3f:45:b6:b5:4f:bd:3b:a9:a8:ab: 4a:4a:8c:6d:f5:3b:db:14:69:ae:75:a8:39:c5:b6: bd:f5:38:47:86:3c:ff:dc:2f:32:9a:d5:29:c7:fc: 11:a5:45:c9:08:ab:c2:e6:8a:84:0d:7b:91:bd:34: 87:ef:bd:11:29:45:5f:c1:71:97:ad:a8:ea:37:f4: 8e:ee:c7:20:e8:59:77:03:3d:05:d3:a2:7e:1b:12: ad:8f:e3:84:6c:e2:bb:ae:0c:4f:0f:ac:29:b9:08: 63:f0:90:a1:bf:51:dd:81:b2:33:8a:26:a1:99:f3: 14:0c:a9:06:6b:3b:2f:77:f3:c3:2d:31:f4:dc:6a: 05:60:a2:29:69:12:4f:34:90:af:bd:52:2b:2c:aa: 87:d2:e9:cc:7d:40:6a:fd:12:d6:b4:e8:25:64:6f: f4:ec:de:5b:fb:be:52:ab:d2:ea:d4:17:47:b4:04: 88:63:81:99:e4:33:e9:f9:f2:b2:ed:13:05:73:5b: 5f:2c:e8:81:1a:56:44:d0:63:a5:1f:b0:a7:50:0f: bd:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:65:0B:14:74:90:21:3D:65:0F:AD:F3:BD:2A:CD:24:6B:46:33:E2 X509v3 Authority Key Identifier: keyid:64:FF:B3:09:C2:89:AC:FF:C1:BE:34:A6:F0:B6:67:5C:00:17:13:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZP-zCcKJrP_BvjSm8LZnXAAXE-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/87d086-f53a-41ba-81fe-ca444704416f/1/amULFHSQIT1lD63zvSrNJGtGM-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/87d086-f53a-41ba-81fe-ca444704416f/1/ZP-zCcKJrP_BvjSm8LZnXAAXE-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.113.192.0/22 Signature Algorithm: sha256WithRSAEncryption 43:86:84:b1:a7:43:55:25:02:2e:62:02:6e:2d:ad:44:4f:1f: 07:d4:d6:36:0c:7f:34:aa:20:05:42:8d:33:64:21:8e:45:17: e5:9c:2b:82:71:14:c8:58:74:ac:67:56:35:da:d9:7a:3c:dd: a9:c9:b4:fc:89:b0:ac:31:bc:9c:cd:b8:b2:40:5a:a0:8a:38: 6e:0e:60:67:68:8d:c8:f6:ac:20:d8:23:e6:f8:c8:ea:90:44: 81:eb:80:82:dd:5a:58:ad:68:a2:71:7d:c6:40:3a:5e:a7:0f: d4:2e:5e:e7:38:75:32:7d:ce:8c:27:db:27:b6:ab:45:bf:7b: 53:98:63:a4:7d:79:f6:ab:ae:86:7e:78:09:2d:9e:15:50:b9: bc:98:f2:3b:7c:19:48:d3:89:8a:76:dd:16:59:2e:37:5a:35: 4d:2d:9a:9a:bd:4f:6b:1d:93:ab:7b:6f:4f:c2:1f:ed:7d:87: 28:40:21:5c:e0:bc:df:a9:b5:21:08:94:49:d6:1d:63:ad:0f: 9b:ed:66:89:80:f9:11:f0:27:ed:e9:37:1b:57:60:7a:5a:02: 60:79:1e:97:b0:e6:62:d2:bd:73:b7:6a:9f:2f:64:1d:52:0a: ea:2c:24:4d:b5:25:b7:69:1b:51:a4:b0:38:99:4b:8b:fc:ee: cc:df:35:24 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fxy4KS7nTpG48pd2B0OWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZmZiMzA5YzI4OWFjZmZjMWJlMzRhNmYwYjY2NzVjMDAx NzEzZWEwHhcNMjYwMTAxMTIxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTY1MGIxNDc0OTAyMTNkNjUwZmFkZjNiZDJhY2QyNDZiNDYzM2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7EtF8EPscPyGS9ZFFD0uE65s4Bz5 5Sh12IJUK74USRShGX2p12xJShrFMq+/tULf7D9FtrVPvTupqKtKSoxt9TvbFGmu dag5xba99ThHhjz/3C8ymtUpx/wRpUXJCKvC5oqEDXuRvTSH770RKUVfwXGXrajq N/SO7scg6Fl3Az0F06J+GxKtj+OEbOK7rgxPD6wpuQhj8JChv1HdgbIziiahmfMU DKkGazsvd/PDLTH03GoFYKIpaRJPNJCvvVIrLKqH0unMfUBq/RLWtOglZG/07N5b +75Sq9Lq1BdHtASIY4GZ5DPp+fKy7RMFc1tfLOiBGlZE0GOlH7CnUA+9uwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGplCxR0kCE9ZQ+t870qzSRrRjPiMB8GA1UdIwQY MBaAFGT/swnCiaz/wb40pvC2Z1wAFxPqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlAtekNjS0pyUF9CdmpTbThMWm5YQUFYRS1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS84N2QwODYtZjUzYS00MWJhLTgxZmUt Y2E0NDQ3MDQ0MTZmLzEvYW1VTEZIU1FJVDFsRDYzenZTck5KR3RHTS1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS84N2QwODYtZjUzYS00MWJhLTgxZmUtY2E0NDQ3MDQ0MTZm LzEvWlAtekNjS0pyUF9CdmpTbThMWm5YQUFYRS1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXHAMA0G CSqGSIb3DQEBCwUAA4IBAQBDhoSxp0NVJQIuYgJuLa1ETx8H1NY2DH80qiAFQo0z ZCGORRflnCuCcRTIWHSsZ1Y12tl6PN2pybT8ibCsMbyczbiyQFqgijhuDmBnaI3I 9qwg2CPm+MjqkESB64CC3VpYrWiicX3GQDpepw/ULl7nOHUyfc6MJ9sntqtFv3tT mGOkfXn2q66GfngJLZ4VULm8mPI7fBlI04mKdt0WWS43WjVNLZqavU9rHZOre29P wh/tfYcoQCFc4LzfqbUhCJRJ1h1jrQ+b7WaJgPkR8Cft6TcbV2B6WgJgeR6XsOZi 0r1zt2qfL2QdUgrqLCRNtSW3aRtRpLA4mUuL/O7M3zUk -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:10 2026 by rpki-client