This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/sFgFPnQJtYAI4EUbnjw6_T-C6b8.roa File: sFgFPnQJtYAI4EUbnjw6_T-C6b8.roa (raw, json) Hash identifier: ruPE7+aitW/C9n9h5OlbX5hnSAYFeh1OYL3ysBGOgGQ= Subject key identifier: B0:58:05:3E:74:09:B5:80:08:E0:45:1B:9E:3C:3A:FD:3F:82:E9:BF Certificate issuer: /CN=93503061e1ae503ec63d970b30875dd93ffabbdf Certificate serial: 019B7D5AEF6265A509EAF385F984EEF2AF12 Authority key identifier: 93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/sFgFPnQJtYAI4EUbnjw6_T-C6b8.roa Signing time: Fri 02 Jan 2026 06:17:50 +0000 ROA not before: Fri 02 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61969 IP address blocks: 185.53.176.0/22 maxlen: 22 185.53.179.0/24 maxlen: 24 2a01:bb20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.crl rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.mft rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:ef:62:65:a5:09:ea:f3:85:f9:84:ee:f2:af:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93503061e1ae503ec63d970b30875dd93ffabbdf Validity Not Before: Jan 2 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b058053e7409b58008e0451b9e3c3afd3f82e9bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:4a:5b:73:eb:6a:97:e9:10:a7:8d:30:7c:d0: fe:a6:1c:94:42:8d:af:9e:81:bc:36:29:80:ff:01: ca:cf:dc:f3:d9:5a:00:d9:28:ea:df:9a:a5:5c:67: 2c:0a:e0:b8:06:40:cb:60:10:cf:8b:31:7e:c3:2f: cd:11:cc:55:51:dd:55:81:6c:41:25:cd:fc:ea:5c: e6:d1:2d:b0:2b:54:f2:a8:c9:0a:ec:53:af:ad:0a: e3:f3:61:4c:9d:ae:e6:11:ed:e0:f6:61:b6:c0:4f: 46:36:c3:78:d2:1b:c0:30:31:58:9e:80:1e:e2:59: 71:97:b0:68:56:71:ce:3a:76:bf:a9:33:76:38:ea: 8c:a3:dc:09:58:ed:2d:55:62:81:9d:52:34:bb:52: c0:d1:86:10:e0:27:df:f7:80:1d:59:08:fb:c7:16: 00:15:e2:9e:c2:7f:37:d4:25:26:7a:91:10:5a:dc: 10:fc:a7:cf:61:dd:52:21:f0:b3:89:59:05:91:56: c1:27:b8:3b:26:c4:4e:94:7a:8e:e5:3d:1b:df:11: ec:fd:45:33:4a:1a:84:33:29:3f:1c:17:f2:b1:a4: 6a:37:4d:ed:12:38:df:50:fd:42:0d:76:ce:8a:46: e6:79:28:d1:3b:99:87:77:25:da:c1:bb:81:05:c5: 2b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:58:05:3E:74:09:B5:80:08:E0:45:1B:9E:3C:3A:FD:3F:82:E9:BF X509v3 Authority Key Identifier: keyid:93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/sFgFPnQJtYAI4EUbnjw6_T-C6b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.53.176.0/22 IPv6: 2a01:bb20::/32 Signature Algorithm: sha256WithRSAEncryption 14:4b:79:ae:44:40:a4:47:0c:bb:43:87:ed:33:0b:23:94:98: 00:70:91:09:5f:82:3f:17:0b:57:e2:c6:c0:7c:78:09:4a:ca: 48:6c:08:a0:f7:74:72:5f:31:e5:29:b5:94:16:39:99:04:0a: 38:29:b4:31:e0:18:e1:ec:b1:c4:d2:3f:07:53:3e:97:12:5a: ee:ed:7e:38:ba:b8:2a:80:3a:e3:a2:b3:9d:02:b6:85:72:97: d0:ce:30:f1:83:1f:24:72:e4:ac:32:01:e0:4c:b2:18:cb:0d: 3f:41:2c:51:85:4e:3c:87:b8:95:fe:f4:35:27:98:ba:5d:0e: ad:9c:39:4f:70:f8:7d:d8:0d:4b:9d:d6:19:94:2f:33:7b:f8: e3:9d:ac:e9:76:28:94:e5:f0:6b:e0:e8:23:d1:ad:1a:ce:dd: 13:44:fd:cb:ce:75:a2:f4:00:80:b7:6a:07:99:f9:21:1f:b0: 91:2b:4c:7b:82:03:bd:28:fb:d2:2a:83:df:53:f7:b2:d3:81: 15:40:cf:0d:a7:00:09:d6:94:e5:85:bd:f9:4e:f4:0c:dd:fe: a8:4f:91:3d:99:0d:7e:e4:c9:15:a6:7c:e6:9b:02:90:01:98: 37:a8:0b:2e:a3:e9:b3:a2:95:2d:ba:d6:75:b2:d9:d3:4f:ba: b3:2e:72:c7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9Wu9iZaUJ6vOF+YTu8q8SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNTAzMDYxZTFhZTUwM2VjNjNkOTcwYjMwODc1ZGQ5M2Zm YWJiZGYwHhcNMjYwMTAyMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDU4MDUzZTc0MDliNTgwMDhlMDQ1MWI5ZTNjM2FmZDNmODJlOWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Epbc+tql+kQp40wfND+phyUQo2v noG8NimA/wHKz9zz2VoA2Sjq35qlXGcsCuC4BkDLYBDPizF+wy/NEcxVUd1VgWxB Jc386lzm0S2wK1TyqMkK7FOvrQrj82FMna7mEe3g9mG2wE9GNsN40hvAMDFYnoAe 4llxl7BoVnHOOna/qTN2OOqMo9wJWO0tVWKBnVI0u1LA0YYQ4Cff94AdWQj7xxYA FeKewn831CUmepEQWtwQ/KfPYd1SIfCziVkFkVbBJ7g7JsROlHqO5T0b3xHs/UUz ShqEMyk/HBfysaRqN03tEjjfUP1CDXbOikbmeSjRO5mHdyXawbuBBcUr4QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLBYBT50CbWACOBFG548Ov0/gum/MB8GA1UdIwQY MBaAFJNQMGHhrlA+xj2XCzCHXdk/+rvfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazFBd1llR3VVRDdHUFpjTE1JZGQyVF82dTk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hNzZhYzEtNWYyMi00N2QxLWI4YzEt YzYyM2VkOGYyZjI4LzEvc0ZnRlBuUUp0WUFJNEVVYm5qdzZfVC1DNmI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9hNzZhYzEtNWYyMi00N2QxLWI4YzEtYzYyM2VkOGYyZjI4 LzEvazFBd1llR3VVRDdHUFpjTE1JZGQyVF82dTk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTWwMA0E AgACMAcDBQAqAbsgMA0GCSqGSIb3DQEBCwUAA4IBAQAUS3muRECkRwy7Q4ftMwsj lJgAcJEJX4I/FwtX4sbAfHgJSspIbAig93RyXzHlKbWUFjmZBAo4KbQx4Bjh7LHE 0j8HUz6XElru7X44urgqgDrjorOdAraFcpfQzjDxgx8kcuSsMgHgTLIYyw0/QSxR hU48h7iV/vQ1J5i6XQ6tnDlPcPh92A1LndYZlC8ze/jjnazpdiiU5fBr4Ogj0a0a zt0TRP3LznWi9ACAt2oHmfkhH7CRK0x7ggO9KPvSKoPfU/ey04EVQM8NpwAJ1pTl hb35TvQM3f6oT5E9mQ1+5MkVpnzmmwKQAZg3qAsuo+mzopUtutZ1stnTT7qzLnLH -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:28 2026 by rpki-client