This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/AoiLP-aKiV68_RegC3FR8BLmoTY.roa File: AoiLP-aKiV68_RegC3FR8BLmoTY.roa (raw, json) Hash identifier: cAZegRRMeuO3/yO4SqdfyQYoOuuZTcc84vu6Tr6LRDs= Subject key identifier: 02:88:8B:3F:E6:8A:89:5E:BC:FD:17:A0:0B:71:51:F0:12:E6:A1:36 Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d Certificate serial: 019B783554F2DC87A921FB522B3A27F55827 Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/AoiLP-aKiV68_RegC3FR8BLmoTY.roa Signing time: Thu 01 Jan 2026 06:18:39 +0000 ROA not before: Thu 01 Jan 2026 06:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207456 IP address blocks: 46.149.104.0/24 maxlen: 24 193.23.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:54:f2:dc:87:a9:21:fb:52:2b:3a:27:f5:58:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d Validity Not Before: Jan 1 06:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02888b3fe68a895ebcfd17a00b7151f012e6a136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f8:a6:72:2b:e7:f5:b9:13:8b:55:dd:b4:0f: ab:65:a4:4d:9c:2b:19:99:91:5a:ff:8b:4c:72:13: 82:f7:2f:44:c8:c1:ae:0d:89:e0:fa:da:63:01:58: 18:8e:a3:38:2c:dd:45:8c:c4:c9:fa:68:2e:77:5b: fb:ef:97:b4:61:5e:a0:07:76:c5:fe:16:f8:e9:d7: 25:00:27:48:4d:e6:9d:77:fc:e0:18:2e:bf:8c:c2: 40:12:40:36:06:4c:9c:8a:f7:f5:fa:01:07:fb:95: c9:32:57:44:5c:1e:58:03:e6:aa:4b:18:1f:89:d7: 7a:ba:2a:43:9c:a4:1c:a0:1b:59:ba:a4:c3:6f:93: 35:30:96:60:90:c6:33:8e:c8:b8:f9:be:77:0d:d9: f2:d7:7a:97:09:98:fe:50:08:b5:3f:5f:db:c8:00: cf:c1:ff:75:4a:0a:0e:64:f0:26:48:39:29:8e:10: f4:eb:c6:3f:61:0c:4c:bf:d8:cb:ed:33:55:60:ac: a7:5b:24:88:a1:3d:18:38:a1:2b:c4:ac:1c:92:6f: 56:db:2f:8e:47:68:29:2d:cf:54:97:19:5f:ac:57: c8:0c:2c:25:3b:f3:29:95:c9:2c:48:29:72:72:b3: 58:00:fa:86:9f:17:78:63:6f:d3:c5:a6:cd:e1:1d: f7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:88:8B:3F:E6:8A:89:5E:BC:FD:17:A0:0B:71:51:F0:12:E6:A1:36 X509v3 Authority Key Identifier: keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/AoiLP-aKiV68_RegC3FR8BLmoTY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.149.104.0/24 193.23.133.0/24 Signature Algorithm: sha256WithRSAEncryption 27:fc:69:cc:35:8f:16:00:ab:48:76:dd:3d:a5:56:47:4f:4c: 10:97:80:23:05:db:42:4e:48:fa:cb:fa:4e:5e:ba:e9:eb:40: 3a:63:3d:88:7c:72:1c:c4:76:19:8a:05:04:68:a3:3b:f4:4d: df:1f:96:b1:39:e1:24:99:19:32:79:d1:82:b0:6f:18:cf:5e: 19:47:57:c1:b6:42:a3:0b:a7:27:ac:bd:0c:9e:f2:e9:df:69: 9a:d8:20:48:2f:96:0f:f0:2a:73:8f:3a:39:b7:e3:a1:ee:7d: ae:af:e4:96:ef:f1:36:f7:cf:fa:fd:b9:f9:36:07:ea:4f:a8: 51:c7:f6:b0:87:c1:99:52:8d:2d:88:e6:ab:13:81:bb:18:43: 23:a4:56:d2:22:50:2b:5e:3f:91:75:b5:06:a6:9d:5b:e6:e2: f3:ea:d3:60:71:86:a4:af:8a:7c:27:88:5b:92:d3:50:4f:21: 87:20:3e:e3:a9:81:4b:f4:91:d5:25:e1:a1:24:53:8a:1a:14: 3c:77:87:18:c9:e0:84:24:f5:43:d9:4c:56:f6:c5:74:63:a2: 74:0d:3f:85:8e:58:fd:dc:8f:40:85:cc:5b:df:b0:4d:c6:c8: c0:6e:ce:4a:95:1d:b5:a2:e6:bd:8c:d9:46:cb:39:41:77:93: df:2a:f5:ca -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NVTy3IepIftSKzon9VgnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZWEwYmRlN2Y2OTJiYzVmZGMwYjE2OGJhNjE0YTAyNzJm MmU2NGQwHhcNMjYwMTAxMDYxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjg4OGIzZmU2OGE4OTVlYmNmZDE3YTAwYjcxNTFmMDEyZTZhMTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/imcivn9bkTi1XdtA+rZaRNnCsZ mZFa/4tMchOC9y9EyMGuDYng+tpjAVgYjqM4LN1FjMTJ+mgud1v775e0YV6gB3bF /hb46dclACdITeadd/zgGC6/jMJAEkA2Bkycivf1+gEH+5XJMldEXB5YA+aqSxgf idd6uipDnKQcoBtZuqTDb5M1MJZgkMYzjsi4+b53Ddny13qXCZj+UAi1P1/byADP wf91SgoOZPAmSDkpjhD068Y/YQxMv9jL7TNVYKynWySIoT0YOKErxKwckm9W2y+O R2gpLc9UlxlfrFfIDCwlO/MplcksSClycrNYAPqGnxd4Y2/TxabN4R335QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAKIiz/miolevP0XoAtxUfAS5qE2MB8GA1UdIwQY MBaAFCnqC95/aSvF/cCxaLphSgJy8uZNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kMmZmNWItMDAwOC00NTcyLTkzODAt OTc2YzA0YmRmMThmLzEvQW9pTFAtYUtpVjY4X1JlZ0MzRlI4Qkxtb1RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9kMmZmNWItMDAwOC00NTcyLTkzODAtOTc2YzA0YmRmMThm LzEvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALpVoAwQA wReFMA0GCSqGSIb3DQEBCwUAA4IBAQAn/GnMNY8WAKtIdt09pVZHT0wQl4AjBdtC Tkj6y/pOXrrp60A6Yz2IfHIcxHYZigUEaKM79E3fH5axOeEkmRkyedGCsG8Yz14Z R1fBtkKjC6cnrL0MnvLp32ma2CBIL5YP8Cpzjzo5t+Oh7n2ur+SW7/E298/6/bn5 NgfqT6hRx/awh8GZUo0tiOarE4G7GEMjpFbSIlArXj+RdbUGpp1b5uLz6tNgcYak r4p8J4hbktNQTyGHID7jqYFL9JHVJeGhJFOKGhQ8d4cYyeCEJPVD2UxW9sV0Y6J0 DT+Fjlj93I9Ahcxb37BNxsjAbs5KlR21oua9jNlGyzlBd5PfKvXK -----END CERTIFICATE-----Generated at Sun Jan 25 19:35:49 2026 by rpki-client