This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/avrcnfB12N6L1uAItV4pxr4ZeBk.roa File: avrcnfB12N6L1uAItV4pxr4ZeBk.roa (raw, json) Hash identifier: UCrkK/t7tVltSG/GoHf/iVcJnaXfqtG/1ac64yo7m4E= Subject key identifier: 6A:FA:DC:9D:F0:75:D8:DE:8B:D6:E0:08:B5:5E:29:C6:BE:19:78:19 Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244 Certificate serial: 019B7AC7C6904F67F07E84DD7A3AB57994CC Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/avrcnfB12N6L1uAItV4pxr4ZeBk.roa Signing time: Thu 01 Jan 2026 18:17:51 +0000 ROA not before: Thu 01 Jan 2026 18:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 967 IP address blocks: 91.217.160.0/24 maxlen: 24 2a06:5040:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c6:90:4f:67:f0:7e:84:dd:7a:3a:b5:79:94:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244 Validity Not Before: Jan 1 18:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6afadc9df075d8de8bd6e008b55e29c6be197819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:96:6d:a7:47:4d:88:b0:fb:2d:b2:dd:a3:69: ab:ce:fa:ba:ea:6f:26:23:57:7d:91:86:ff:4a:9c: 83:30:93:32:04:26:02:1b:3f:06:c9:70:ca:91:02: 83:03:f5:75:8f:56:97:17:5c:9d:aa:b3:b8:a7:db: 25:92:2b:eb:f0:08:66:58:ab:9d:77:1c:02:91:a7: f3:88:4e:57:1e:09:b1:a9:28:cf:54:21:12:0f:bc: c1:cc:5f:e9:03:08:8e:52:3b:8e:ae:c4:10:61:f3: e2:95:b0:3d:08:29:5b:87:33:c1:68:37:5d:5a:58: 0b:1e:e2:a4:16:49:f0:3c:93:c9:ed:ec:1f:67:b7: c6:5a:c3:8d:2d:4c:04:2b:ed:f2:0a:33:ce:9b:ed: bc:a7:16:c4:6d:27:d1:bb:2c:b5:be:49:27:79:00: ea:3b:e5:ce:93:d3:06:1e:9f:e3:8e:6d:6a:f6:1c: cf:42:b9:db:7a:4a:37:04:3a:bd:52:b6:eb:98:18: 0f:78:be:99:de:b5:bd:7a:4d:7c:12:52:1e:04:c6: 56:2b:c5:75:da:33:07:b0:04:f7:54:22:a4:29:6b: 8c:2f:44:3d:77:b2:d0:bf:d9:e0:9c:56:e1:de:fb: 79:2b:ce:1a:69:d9:9c:d0:7b:d2:a7:38:9e:bd:21: 42:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FA:DC:9D:F0:75:D8:DE:8B:D6:E0:08:B5:5E:29:C6:BE:19:78:19 X509v3 Authority Key Identifier: keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/avrcnfB12N6L1uAItV4pxr4ZeBk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.160.0/24 IPv6: 2a06:5040:2000::/36 Signature Algorithm: sha256WithRSAEncryption 42:81:c1:67:7e:a3:65:72:2c:f0:68:63:dc:b2:e0:d7:26:a5: cb:c0:fa:27:df:f4:6a:c4:74:53:2f:fe:b5:3e:fa:43:53:5a: 41:4f:88:2d:a0:8a:fb:98:b2:b4:da:1a:0a:d2:6c:82:19:81: 77:5c:cd:56:b5:f7:5e:35:43:e0:d4:1e:49:df:a5:01:a1:c0: d1:70:f2:c4:ba:32:a6:ec:89:29:64:28:be:b8:e4:7b:2f:31: be:26:88:7f:a1:75:aa:dc:d9:43:b4:a8:db:7a:89:45:8e:9d: 84:05:cf:d3:d5:57:59:5a:a9:36:03:13:78:38:9d:2e:c6:ce: 0f:30:0e:15:47:64:93:d3:f7:3a:2f:63:cc:f2:31:e7:e5:ce: c3:51:51:2f:cc:fc:96:a5:eb:05:40:cf:c0:95:6c:fb:de:bf: 72:e0:0d:4d:33:fc:70:d0:51:1c:d3:bd:cf:ef:65:d0:9d:2f: 18:05:09:c3:76:e0:cc:c3:16:8f:d4:0b:b9:8e:93:88:d3:96: 74:53:86:5a:40:7b:6c:b7:77:d1:d3:42:8b:21:05:80:8a:1f: 07:a1:62:bd:c7:ef:dc:be:8c:b7:c8:ee:27:e6:05:5e:cf:dd: 8e:6b:39:c1:0f:ad:16:71:25:f7:1d:b5:51:a3:fb:37:9d:e7: 30:6b:5a:9a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt6x8aQT2fwfoTdejq1eZTMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMzcxODMzNDFhMmFiNmRmM2M1OWVjODI3ZWQ3MTIwMGI1 YTYyNDQwHhcNMjYwMTAxMTgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YWZhZGM5ZGYwNzVkOGRlOGJkNmUwMDhiNTVlMjljNmJlMTk3ODE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pZtp0dNiLD7LbLdo2mrzvq66m8m I1d9kYb/SpyDMJMyBCYCGz8GyXDKkQKDA/V1j1aXF1ydqrO4p9slkivr8AhmWKud dxwCkafziE5XHgmxqSjPVCESD7zBzF/pAwiOUjuOrsQQYfPilbA9CClbhzPBaDdd WlgLHuKkFknwPJPJ7ewfZ7fGWsONLUwEK+3yCjPOm+28pxbEbSfRuyy1vkkneQDq O+XOk9MGHp/jjm1q9hzPQrnbeko3BDq9UrbrmBgPeL6Z3rW9ek18ElIeBMZWK8V1 2jMHsAT3VCKkKWuML0Q9d7LQv9ngnFbh3vt5K84aadmc0HvSpzievSFCFQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFGr63J3wddjei9bgCLVeKca+GXgZMB8GA1UdIwQY MBaAFIs3GDNBoqtt88WeyCftcSALWmJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXpjWU0wR2lxMjN6eFo3SUotMXhJQXRhWWtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8xYzc4ZTMtNjdkNi00ZTkwLWFlYjUt MDg1MmNiMzUzMjkzLzEvYXZyY25mQjEyTjZMMXVBSXRWNHB4cjRaZUJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi8xYzc4ZTMtNjdkNi00ZTkwLWFlYjUtMDg1MmNiMzUzMjkz LzEvaXpjWU0wR2lxMjN6eFo3SUotMXhJQXRhWWtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAW9mgMA4E AgACMAgDBgQqBlBAIDANBgkqhkiG9w0BAQsFAAOCAQEAQoHBZ36jZXIs8Ghj3LLg 1yaly8D6J9/0asR0Uy/+tT76Q1NaQU+ILaCK+5iytNoaCtJsghmBd1zNVrX3XjVD 4NQeSd+lAaHA0XDyxLoypuyJKWQovrjkey8xviaIf6F1qtzZQ7So23qJRY6dhAXP 09VXWVqpNgMTeDidLsbODzAOFUdkk9P3Oi9jzPIx5+XOw1FRL8z8lqXrBUDPwJVs +96/cuANTTP8cNBRHNO9z+9l0J0vGAUJw3bgzMMWj9QLuY6TiNOWdFOGWkB7bLd3 0dNCiyEFgIofB6Fivcfv3L6Mt8juJ+YFXs/djms5wQ+tFnEl9x21UaP7N53nMGta mg== -----END CERTIFICATE-----Generated at Sun Jan 25 13:33:27 2026 by rpki-client