This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/32656b-237b-4acf-b824-9236c68ef427/1/RAfVG18yCt4jh5FG1I0sWJIfckM.roa File: RAfVG18yCt4jh5FG1I0sWJIfckM.roa (raw, json) Hash identifier: Wp606GEzY+EhNjoXu6RVUaxY49i31QSSjn97TR3qURg= Subject key identifier: 44:07:D5:1B:5F:32:0A:DE:23:87:91:46:D4:8D:2C:58:92:1F:72:43 Certificate issuer: /CN=1244dce2b45c71f45baf8b53c689ebdfacbafec3 Certificate serial: 019B7F159FCE11E1EDAA17EFFF42646949DA Authority key identifier: 12:44:DC:E2:B4:5C:71:F4:5B:AF:8B:53:C6:89:EB:DF:AC:BA:FE:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EkTc4rRccfRbr4tTxonr36y6_sM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/32656b-237b-4acf-b824-9236c68ef427/1/RAfVG18yCt4jh5FG1I0sWJIfckM.roa Signing time: Fri 02 Jan 2026 14:21:22 +0000 ROA not before: Fri 02 Jan 2026 14:21:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49223 IP address blocks: 185.29.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/32656b-237b-4acf-b824-9236c68ef427/1/EkTc4rRccfRbr4tTxonr36y6_sM.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/32656b-237b-4acf-b824-9236c68ef427/1/EkTc4rRccfRbr4tTxonr36y6_sM.mft rsync://rpki.ripe.net/repository/DEFAULT/EkTc4rRccfRbr4tTxonr36y6_sM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:9f:ce:11:e1:ed:aa:17:ef:ff:42:64:69:49:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1244dce2b45c71f45baf8b53c689ebdfacbafec3 Validity Not Before: Jan 2 14:21:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4407d51b5f320ade23879146d48d2c58921f7243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5d:cf:04:8b:3c:5f:ae:b9:20:8b:09:e2:2f: e2:a5:d4:ee:91:29:02:47:59:ce:53:5e:df:64:be: e6:ea:d5:02:92:29:8e:9d:20:97:95:ed:e0:c2:f5: 62:53:30:4e:c9:d1:fc:57:6f:3f:b9:a5:b4:b0:f8: 55:67:71:4a:10:53:ef:eb:1a:f0:e0:b0:69:d2:26: 9b:be:f5:03:c1:c3:5d:56:64:c5:8b:68:fe:1e:fa: 8e:09:8f:27:7b:40:61:8d:8b:75:25:83:ab:90:82: 02:98:2a:97:d3:88:b9:90:1b:4b:0b:84:2e:2f:39: 22:5c:b9:78:11:7a:49:e5:8e:a2:d0:6f:44:e4:5c: 07:cf:7c:c7:64:be:c0:ad:6a:2c:56:c0:73:e0:00: a1:66:91:05:66:1d:da:2e:ff:e8:7e:e6:7e:cf:64: 7a:2d:10:d8:8e:45:4f:cb:40:39:2e:c3:4c:8b:09: d4:88:13:9b:49:4c:e4:59:45:54:33:53:96:2b:5a: 04:d3:a1:6d:80:f4:b1:b0:67:17:2b:bc:3a:ae:00: 12:96:a5:44:d9:76:28:6d:89:e1:1e:4e:64:68:14: bb:40:41:03:57:ef:ba:21:66:4e:e1:f9:13:71:48: 06:bb:f6:77:4a:6f:71:9d:ee:0c:0d:26:42:3c:7d: e5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:07:D5:1B:5F:32:0A:DE:23:87:91:46:D4:8D:2C:58:92:1F:72:43 X509v3 Authority Key Identifier: keyid:12:44:DC:E2:B4:5C:71:F4:5B:AF:8B:53:C6:89:EB:DF:AC:BA:FE:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EkTc4rRccfRbr4tTxonr36y6_sM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/32656b-237b-4acf-b824-9236c68ef427/1/RAfVG18yCt4jh5FG1I0sWJIfckM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/32656b-237b-4acf-b824-9236c68ef427/1/EkTc4rRccfRbr4tTxonr36y6_sM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.29.236.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:05:7d:d6:19:6c:6e:3e:7a:f8:08:d4:bb:89:66:86:ba:4e: b4:49:fe:5a:e8:98:8d:60:90:9a:e0:f9:ff:92:21:56:8c:9c: fb:b0:68:af:9a:20:37:8b:75:18:49:2e:8f:3a:85:f5:08:a7: 59:59:b8:7f:7d:08:a1:a6:7b:07:b3:c3:a3:38:0f:e0:d6:46: f0:f1:bf:ad:f3:cb:89:f2:61:66:77:e2:b7:12:67:81:96:c0: bc:30:30:d1:7b:4b:2f:94:02:72:57:fc:c0:b7:4a:12:09:2d: aa:38:93:f6:dd:2b:e0:63:10:b3:b2:0e:d6:c6:f9:37:59:0d: bc:cf:1c:da:72:3a:4a:ef:d2:6d:19:c0:2c:39:80:2d:63:d3: 92:70:da:cd:a3:57:34:9d:58:34:f5:3b:0f:96:92:08:0f:9c: b4:f3:1d:46:d8:46:c0:37:30:09:ad:0f:ab:17:9b:23:1e:90: 1e:44:f4:1a:93:c1:9b:e9:48:11:e2:4f:ff:44:f6:20:ff:31: 8d:79:39:ac:9a:1d:0d:cb:ee:aa:5c:86:7c:5c:56:18:0a:af: ad:ee:09:18:74:1a:2b:b7:19:e8:5f:8d:5f:29:01:7c:6e:a7: 43:d8:eb:1e:37:40:53:e0:e5:2b:2b:50:f8:dc:16:ee:28:7a: 69:4c:3e:68 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FZ/OEeHtqhfv/0JkaUnaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyNDRkY2UyYjQ1YzcxZjQ1YmFmOGI1M2M2ODllYmRmYWNi YWZlYzMwHhcNMjYwMTAyMTQyMTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDA3ZDUxYjVmMzIwYWRlMjM4NzkxNDZkNDhkMmM1ODkyMWY3MjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5V3PBIs8X665IIsJ4i/ipdTukSkC R1nOU17fZL7m6tUCkimOnSCXle3gwvViUzBOydH8V28/uaW0sPhVZ3FKEFPv6xrw 4LBp0iabvvUDwcNdVmTFi2j+HvqOCY8ne0BhjYt1JYOrkIICmCqX04i5kBtLC4Qu LzkiXLl4EXpJ5Y6i0G9E5FwHz3zHZL7ArWosVsBz4AChZpEFZh3aLv/ofuZ+z2R6 LRDYjkVPy0A5LsNMiwnUiBObSUzkWUVUM1OWK1oE06FtgPSxsGcXK7w6rgASlqVE 2XYobYnhHk5kaBS7QEEDV++6IWZO4fkTcUgGu/Z3Sm9xne4MDSZCPH3lQwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEQH1RtfMgreI4eRRtSNLFiSH3JDMB8GA1UdIwQY MBaAFBJE3OK0XHH0W6+LU8aJ69+suv7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWtUYzRyUmNjZlJicjR0VHhvbnIzNnk2X3NNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi8zMjY1NmItMjM3Yi00YWNmLWI4MjQt OTIzNmM2OGVmNDI3LzEvUkFmVkcxOHlDdDRqaDVGRzFJMHNXSklmY2tNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi8zMjY1NmItMjM3Yi00YWNmLWI4MjQtOTIzNmM2OGVmNDI3 LzEvRWtUYzRyUmNjZlJicjR0VHhvbnIzNnk2X3NNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuR3sMA0G CSqGSIb3DQEBCwUAA4IBAQBMBX3WGWxuPnr4CNS7iWaGuk60Sf5a6JiNYJCa4Pn/ kiFWjJz7sGivmiA3i3UYSS6POoX1CKdZWbh/fQihpnsHs8OjOA/g1kbw8b+t88uJ 8mFmd+K3EmeBlsC8MDDRe0svlAJyV/zAt0oSCS2qOJP23SvgYxCzsg7Wxvk3WQ28 zxzacjpK79JtGcAsOYAtY9OScNrNo1c0nVg09TsPlpIID5y08x1G2EbANzAJrQ+r F5sjHpAeRPQak8Gb6UgR4k//RPYg/zGNeTmsmh0Ny+6qXIZ8XFYYCq+t7gkYdBor txnoX41fKQF8bqdD2OseN0BT4OUrK1D43BbuKHppTD5o -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:40 2026 by rpki-client