This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/1-AAmQBvbizmeqxFRtgv0PZkdbaw.roa File: 1-AAmQBvbizmeqxFRtgv0PZkdbaw.roa (raw, json) Hash identifier: szjslYw6N3jLu7zRrYsKftErRAg7H6aZn8Z02fpRv1s= Subject key identifier: F8:00:26:40:1B:DB:8B:39:9E:AB:11:51:B6:0B:F4:3D:99:1D:6D:AC Certificate issuer: /CN=aa1dc50a4b526df18e8b0a6565d7b9d58a75d315 Certificate serial: 019BB6A5BF02855ADB4A51FB2B202170916F Authority key identifier: AA:1D:C5:0A:4B:52:6D:F1:8E:8B:0A:65:65:D7:B9:D5:8A:75:D3:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qh3FCktSbfGOiwplZde51Yp10xU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/1-AAmQBvbizmeqxFRtgv0PZkdbaw.roa Signing time: Tue 13 Jan 2026 09:17:54 +0000 ROA not before: Tue 13 Jan 2026 09:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44051 IP address blocks: 31.172.81.0/24 maxlen: 24 31.172.82.0/24 maxlen: 24 185.26.96.0/22 maxlen: 24 212.224.112.0/24 maxlen: 24 212.224.113.0/24 maxlen: 24 212.224.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/qh3FCktSbfGOiwplZde51Yp10xU.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/qh3FCktSbfGOiwplZde51Yp10xU.mft rsync://rpki.ripe.net/repository/DEFAULT/qh3FCktSbfGOiwplZde51Yp10xU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b6:a5:bf:02:85:5a:db:4a:51:fb:2b:20:21:70:91:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa1dc50a4b526df18e8b0a6565d7b9d58a75d315 Validity Not Before: Jan 13 09:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f80026401bdb8b399eab1151b60bf43d991d6dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0d:2d:0e:fd:49:a2:af:a5:bb:83:f7:48:3a: 2c:58:6a:3c:2f:43:5c:96:94:d6:36:01:9f:c8:37: 68:4c:8f:5d:fc:5b:3d:cb:fc:1d:1d:9c:24:19:d2: e1:0b:b1:98:cf:f3:09:a1:36:0d:97:ca:49:88:2e: 64:ec:43:a7:c2:ea:34:78:f2:bc:c6:0b:79:95:5f: d0:3c:76:05:14:f4:0a:24:cb:b3:88:2c:c4:83:fd: 21:35:04:7e:3f:3e:61:3f:f5:01:32:ef:70:a3:8d: c1:6d:1e:2c:6e:de:66:e0:3f:26:6d:bd:1d:59:4d: 9f:e5:a9:04:bf:18:ca:5d:f7:2c:6e:ba:ab:81:17: 58:de:4b:ac:f1:92:95:58:4d:7b:21:fe:7c:d6:42: d5:c6:78:46:1c:45:d7:42:9e:ea:a8:f4:01:ea:72: 77:f7:2f:87:20:85:5d:4c:b7:df:da:79:91:61:05: 10:1a:00:18:5e:04:26:f1:5c:55:06:af:19:e3:c2: 8d:08:ca:8b:ba:f0:d2:60:ff:aa:19:e2:7c:0f:05: 5f:58:52:cd:dc:d4:2a:07:57:d5:8d:ac:bc:62:af: e0:a9:96:8f:4a:9a:b0:67:59:01:b3:af:40:04:f6: a8:16:72:a2:4e:5e:a7:de:1c:2a:65:85:86:4b:eb: db:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:00:26:40:1B:DB:8B:39:9E:AB:11:51:B6:0B:F4:3D:99:1D:6D:AC X509v3 Authority Key Identifier: keyid:AA:1D:C5:0A:4B:52:6D:F1:8E:8B:0A:65:65:D7:B9:D5:8A:75:D3:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qh3FCktSbfGOiwplZde51Yp10xU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/1-AAmQBvbizmeqxFRtgv0PZkdbaw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f23929-7375-41c8-9973-33d728433c11/1/qh3FCktSbfGOiwplZde51Yp10xU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.172.81.0-31.172.82.255 185.26.96.0/22 212.224.112.0/23 212.224.118.0/24 Signature Algorithm: sha256WithRSAEncryption 40:5f:f4:52:6f:3b:f9:70:11:a1:e4:18:13:cc:66:31:97:82: 67:03:4d:f2:8d:39:93:75:88:84:1e:ee:cc:6e:a0:d3:32:3e: 72:f9:5d:cb:43:34:f5:bd:8c:48:b3:cc:67:1a:31:fb:4f:50: 52:ea:68:07:61:2c:cf:6d:e5:33:72:45:99:d9:d7:0e:92:fa: d8:d0:ec:26:17:3c:cc:c2:f5:9f:44:d8:12:3e:5a:83:62:bf: 91:11:92:7d:32:0a:7a:e7:d3:5a:88:ba:0a:75:1e:06:76:05: be:67:b0:9e:b3:20:a3:54:ab:c3:d3:dc:c7:dc:23:79:0f:c8: 81:6f:f9:54:b2:b6:8a:d6:a3:9b:fd:01:d9:b4:e7:f4:2b:9d: 4e:3d:00:be:59:7b:3e:6c:8b:2b:ea:58:6c:26:77:bb:28:c1: f4:c0:ee:66:4c:39:c6:01:53:b2:f0:1d:e3:a5:97:5c:c7:15: f5:08:af:03:12:67:c0:4f:a0:2e:fc:b9:87:2f:ea:de:bd:0d: 86:30:2d:46:c7:29:9a:87:76:56:9c:ac:4f:dd:00:21:66:e4: 48:aa:d2:03:1c:35:73:3b:4a:80:b9:fa:92:b5:c2:a0:fd:36: 14:05:2b:65:f0:66:19:f4:34:9b:68:55:01:88:cd:6f:32:64: a9:17:40:75 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZu2pb8ChVrbSlH7KyAhcJFvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMWRjNTBhNGI1MjZkZjE4ZThiMGE2NTY1ZDdiOWQ1OGE3 NWQzMTUwHhcNMjYwMTEzMDkxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmODAwMjY0MDFiZGI4YjM5OWVhYjExNTFiNjBiZjQzZDk5MWQ2ZGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQ0tDv1Joq+lu4P3SDosWGo8L0Nc lpTWNgGfyDdoTI9d/Fs9y/wdHZwkGdLhC7GYz/MJoTYNl8pJiC5k7EOnwuo0ePK8 xgt5lV/QPHYFFPQKJMuziCzEg/0hNQR+Pz5hP/UBMu9wo43BbR4sbt5m4D8mbb0d WU2f5akEvxjKXfcsbrqrgRdY3kus8ZKVWE17If581kLVxnhGHEXXQp7qqPQB6nJ3 9y+HIIVdTLff2nmRYQUQGgAYXgQm8VxVBq8Z48KNCMqLuvDSYP+qGeJ8DwVfWFLN 3NQqB1fVjay8Yq/gqZaPSpqwZ1kBs69ABPaoFnKiTl6n3hwqZYWGS+vbHQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFPgAJkAb24s5nqsRUbYL9D2ZHW2sMB8GA1UdIwQY MBaAFKodxQpLUm3xjosKZWXXudWKddMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWgzRkNrdFNiZkdPaXdwbFpkZTUxWXAxMHhVLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mMjM5MjktNzM3NS00MWM4LTk5NzMt MzNkNzI4NDMzYzExLzEvMS1BQW1RQnZiaXptZXF4RlJ0Z3YwUFprZGJhdy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYjMvZjIzOTI5LTczNzUtNDFjOC05OTczLTMzZDcyODQzM2Mx MS8xL3FoM0ZDa3RTYmZHT2l3cGxaZGU1MVlwMTB4VS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA5BggrBgEFBQcBBwEB/wQqMCgwJgQCAAEwIDAMAwQAH6xR AwQAH6xSAwQCuRpgAwQB1OBwAwQA1OB2MA0GCSqGSIb3DQEBCwUAA4IBAQBAX/RS bzv5cBGh5BgTzGYxl4JnA03yjTmTdYiEHu7MbqDTMj5y+V3LQzT1vYxIs8xnGjH7 T1BS6mgHYSzPbeUzckWZ2dcOkvrY0OwmFzzMwvWfRNgSPlqDYr+REZJ9Mgp659Na iLoKdR4GdgW+Z7CesyCjVKvD09zH3CN5D8iBb/lUsraK1qOb/QHZtOf0K51OPQC+ WXs+bIsr6lhsJne7KMH0wO5mTDnGAVOy8B3jpZdcxxX1CK8DEmfAT6Au/LmHL+re vQ2GMC1Gxymah3ZWnKxP3QAhZuRIqtIDHDVzO0qAufqStcKg/TYUBStl8GYZ9DSb aFUBiM1vMmSpF0B1 -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:54 2026 by rpki-client