This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/aXD0FFNchQkwK34CB80vuVCFnu8.roa File: aXD0FFNchQkwK34CB80vuVCFnu8.roa (raw, json) Hash identifier: 7EgFfEGEl824yez9iLAftyJ4zvdxuachpWpx1Yo48rQ= Subject key identifier: 69:70:F4:14:53:5C:85:09:30:2B:7E:02:07:CD:2F:B9:50:85:9E:EF Certificate issuer: /CN=27b2133219989e6a32d71158d0852a516eb6f79f Certificate serial: 019B791020306F843F658A5B4D8B3CE5666E Authority key identifier: 27:B2:13:32:19:98:9E:6A:32:D7:11:58:D0:85:2A:51:6E:B6:F7:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7ITMhmYnmoy1xFY0IUqUW62958.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/aXD0FFNchQkwK34CB80vuVCFnu8.roa Signing time: Thu 01 Jan 2026 10:17:38 +0000 ROA not before: Thu 01 Jan 2026 10:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202675 IP address blocks: 185.17.106.0/23 maxlen: 24 185.56.218.0/23 maxlen: 24 2a02:5620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/J7ITMhmYnmoy1xFY0IUqUW62958.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/J7ITMhmYnmoy1xFY0IUqUW62958.mft rsync://rpki.ripe.net/repository/DEFAULT/J7ITMhmYnmoy1xFY0IUqUW62958.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:20:30:6f:84:3f:65:8a:5b:4d:8b:3c:e5:66:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27b2133219989e6a32d71158d0852a516eb6f79f Validity Not Before: Jan 1 10:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6970f414535c8509302b7e0207cd2fb950859eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:26:03:f2:a3:5a:6b:fd:60:83:72:1e:d6:9c: 2e:82:29:36:04:b7:31:73:05:5a:6d:4b:1c:b1:e3: 9e:29:8b:3f:a1:42:87:09:d4:a6:80:9b:af:83:da: c9:48:77:a2:73:f0:2f:de:05:49:3f:d4:cd:d7:1a: 9f:a0:ea:e8:cc:fa:0a:41:94:c9:92:6b:ff:7a:72: b8:45:bb:a8:b6:f6:33:79:fa:73:5c:d4:fc:e7:61: ba:67:83:dd:b6:de:a6:b7:cc:dc:53:4b:b9:bb:d6: a3:98:02:38:ea:d3:5e:f1:a3:62:04:67:2b:d1:f9: 16:2f:3c:f7:ab:88:d8:6c:ba:80:01:fb:ae:7a:a6: 43:66:6b:a9:2f:16:50:ff:51:c9:a9:ff:4c:5c:71: f7:b1:a1:b4:6d:df:35:67:c6:d6:00:24:5a:1d:86: 15:d3:d3:a0:bd:21:9d:d3:c0:8c:d3:3b:bf:96:00: da:9d:38:43:da:b8:c9:44:ac:73:58:28:00:32:b6: 1d:75:bd:ac:b5:dd:0e:bf:56:c5:e6:d8:52:c7:a9: fe:00:07:2a:8b:7d:6c:2a:24:12:e0:d3:ce:0d:ce: c8:e1:21:72:af:9b:73:ac:bf:65:90:87:c1:7a:70: 5d:10:59:0f:14:f2:b8:ba:1d:3a:ec:26:9d:27:42: 06:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:70:F4:14:53:5C:85:09:30:2B:7E:02:07:CD:2F:B9:50:85:9E:EF X509v3 Authority Key Identifier: keyid:27:B2:13:32:19:98:9E:6A:32:D7:11:58:D0:85:2A:51:6E:B6:F7:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7ITMhmYnmoy1xFY0IUqUW62958.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/aXD0FFNchQkwK34CB80vuVCFnu8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c66606-2ae8-4ada-b35b-c2e8a0303fc3/1/J7ITMhmYnmoy1xFY0IUqUW62958.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.17.106.0/23 185.56.218.0/23 IPv6: 2a02:5620::/32 Signature Algorithm: sha256WithRSAEncryption 10:11:7b:50:15:71:20:b9:6b:b9:b8:9c:18:3a:52:1a:a2:b2: ea:28:fd:41:5e:be:86:e7:7e:61:b9:a8:08:54:6e:9c:95:8c: f0:ec:75:b5:4d:37:eb:cc:82:9b:c4:ac:b6:6a:37:79:12:af: 49:db:1a:5a:d1:04:e8:a4:39:d4:40:12:ef:88:0f:77:5e:9a: 6b:39:85:f8:31:94:d1:4a:b8:53:62:cb:62:a5:89:8d:0e:45: e8:24:8e:f5:15:05:4a:77:f0:b8:d5:6b:0f:c7:3d:5d:32:79: a0:6b:fe:17:65:90:fa:7c:d6:31:89:af:0c:f0:49:65:39:10: a9:2a:b2:6d:d1:e9:aa:7b:ca:0f:c6:b7:2e:25:34:00:71:62: 80:68:be:eb:ae:db:55:74:ff:b8:28:5e:e5:7a:24:d6:47:86: d6:75:fa:3d:02:68:40:ed:a2:d8:7d:10:d8:56:c5:76:30:aa: 61:3e:3a:1c:45:57:d8:bb:4a:90:ac:51:8a:91:3b:7a:da:21: 03:37:fd:46:1b:ee:d7:2f:b1:d6:03:0c:b1:48:2c:3d:45:c4: f6:39:39:47:6a:63:a9:a8:b0:54:9a:a6:a4:03:39:02:da:b8: db:67:d8:32:4c:d3:c5:63:3b:5c:e6:cf:51:93:08:b2:25:4b: 35:61:22:3b -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5ECAwb4Q/ZYpbTYs85WZuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YjIxMzMyMTk5ODllNmEzMmQ3MTE1OGQwODUyYTUxNmVi NmY3OWYwHhcNMjYwMTAxMTAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTcwZjQxNDUzNWM4NTA5MzAyYjdlMDIwN2NkMmZiOTUwODU5ZWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyYD8qNaa/1gg3Ie1pwugik2BLcx cwVabUscseOeKYs/oUKHCdSmgJuvg9rJSHeic/Av3gVJP9TN1xqfoOrozPoKQZTJ kmv/enK4RbuotvYzefpzXNT852G6Z4Pdtt6mt8zcU0u5u9ajmAI46tNe8aNiBGcr 0fkWLzz3q4jYbLqAAfuueqZDZmupLxZQ/1HJqf9MXHH3saG0bd81Z8bWACRaHYYV 09OgvSGd08CM0zu/lgDanThD2rjJRKxzWCgAMrYddb2std0Ov1bF5thSx6n+AAcq i31sKiQS4NPODc7I4SFyr5tzrL9lkIfBenBdEFkPFPK4uh067CadJ0IGvwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFGlw9BRTXIUJMCt+AgfNL7lQhZ7vMB8GA1UdIwQY MBaAFCeyEzIZmJ5qMtcRWNCFKlFutvefMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjdJVE1obVlubW95MXhGWTBJVXFVVzYyOTU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jNjY2MDYtMmFlOC00YWRhLWIzNWIt YzJlOGEwMzAzZmMzLzEvYVhEMEZGTmNoUWt3SzM0Q0I4MHZ1VkNGbnU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jNjY2MDYtMmFlOC00YWRhLWIzNWItYzJlOGEwMzAzZmMz LzEvSjdJVE1obVlubW95MXhGWTBJVXFVVzYyOTU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBuRFqAwQB uTjaMA0EAgACMAcDBQAqAlYgMA0GCSqGSIb3DQEBCwUAA4IBAQAQEXtQFXEguWu5 uJwYOlIaorLqKP1BXr6G535huagIVG6clYzw7HW1TTfrzIKbxKy2ajd5Eq9J2xpa 0QTopDnUQBLviA93XpprOYX4MZTRSrhTYstipYmNDkXoJI71FQVKd/C41WsPxz1d Mnmga/4XZZD6fNYxia8M8EllORCpKrJt0emqe8oPxrcuJTQAcWKAaL7rrttVdP+4 KF7leiTWR4bWdfo9AmhA7aLYfRDYVsV2MKphPjocRVfYu0qQrFGKkTt62iEDN/1G G+7XL7HWAwyxSCw9RcT2OTlHamOpqLBUmqakAzkC2rjbZ9gyTNPFYztc5s9Rkwiy JUs1YSI7 -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:26 2026 by rpki-client