This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/amKu-jsoMwsxR9Euv1nnf91FACw.roa File: amKu-jsoMwsxR9Euv1nnf91FACw.roa (raw, json) Hash identifier: hG2SQQAbvE2nMpMXDrClrQrRBBagLC5ssOgwcgvlSt0= Subject key identifier: 6A:62:AE:FA:3B:28:33:0B:31:47:D1:2E:BF:59:E7:7F:DD:45:00:2C Certificate issuer: /CN=bbc55fb24ad556e04202651f6d5a8b27d5bedf97 Certificate serial: 019B79ECC5AAB76B740E99C8250E64842AAD Authority key identifier: BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/amKu-jsoMwsxR9Euv1nnf91FACw.roa Signing time: Thu 01 Jan 2026 14:18:38 +0000 ROA not before: Thu 01 Jan 2026 14:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29014 IP address blocks: 185.168.228.0/22 maxlen: 24 2a0b:f080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.crl rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.mft rsync://rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c5:aa:b7:6b:74:0e:99:c8:25:0e:64:84:2a:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbc55fb24ad556e04202651f6d5a8b27d5bedf97 Validity Not Before: Jan 1 14:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a62aefa3b28330b3147d12ebf59e77fdd45002c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:35:12:81:a5:ce:c9:db:76:9a:fd:24:84:72: ce:67:e0:af:72:e2:7e:f9:83:18:b9:47:75:e3:68: 43:97:0c:1d:ba:de:d5:d8:58:c0:dc:f3:15:79:47: 35:0c:e5:95:12:50:86:d5:fe:3d:bf:13:1c:8e:f1: 6b:3e:b3:d0:d3:f0:f6:e7:01:e6:21:de:e1:9a:c8: 73:8c:5b:95:da:8b:3f:4c:7f:09:cc:c3:1e:ac:23: c9:e0:f3:70:19:c4:99:83:d6:3e:bc:d5:2f:83:60: ea:68:a0:a8:42:a8:5a:ed:f4:77:5d:4f:9b:32:e2: 0c:6b:2a:81:ac:6d:5d:cb:15:57:35:bd:45:10:b9: 1c:38:1c:80:b9:60:05:ba:fa:01:ce:89:f3:ef:c1: a1:13:8d:6d:b4:9d:80:81:cb:17:93:e5:71:47:5f: f3:0a:96:96:2d:2b:53:b0:8f:d6:dc:17:27:50:9a: 8f:75:e3:c4:4b:2c:05:35:33:c5:bc:69:08:15:ba: 14:d3:62:f2:00:2b:eb:65:86:81:fc:62:e1:3b:7a: 16:6e:4a:16:41:1c:73:fc:cb:f3:58:4c:2a:7b:75: 09:77:a0:d2:c3:4e:f0:ff:38:ae:50:b3:b0:f2:61: 46:19:95:b0:81:b9:ce:27:9e:05:58:09:63:00:50: 56:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:62:AE:FA:3B:28:33:0B:31:47:D1:2E:BF:59:E7:7F:DD:45:00:2C X509v3 Authority Key Identifier: keyid:BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/amKu-jsoMwsxR9Euv1nnf91FACw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.168.228.0/22 IPv6: 2a0b:f080::/32 Signature Algorithm: sha256WithRSAEncryption 51:25:b4:66:52:3e:84:a9:73:6b:49:19:a3:4e:c7:98:ca:ae: f6:f7:06:38:90:e9:c1:97:66:e4:ec:3b:fa:00:d8:f1:88:aa: 9f:9c:f5:2f:68:86:df:ff:5b:31:ad:a8:0e:a6:1d:84:2e:e7: 48:4a:fc:51:6c:3b:42:8d:11:9d:d4:45:9f:da:73:d0:cf:e4: 91:15:f2:3a:e0:42:39:8d:44:5f:9b:e2:1c:14:4d:95:73:1a: 51:2f:90:72:f6:c3:0b:d2:35:89:18:a5:65:e4:f3:d7:54:10: 22:92:5f:e9:f9:fb:4c:9d:d2:3c:d3:53:a6:5c:d4:3a:25:cd: 19:d0:70:3f:33:4c:b3:86:6e:74:2a:fb:2e:f9:49:3b:ce:e4: 62:25:f7:12:93:77:6f:b7:a6:73:cf:5e:12:fb:1d:ac:5a:42: 16:86:8e:48:3c:b0:41:6b:4d:2e:92:93:73:ff:e3:0c:59:a5: 9c:42:8e:06:37:05:13:64:1a:2a:c5:40:e3:26:da:c0:e5:b9: f9:6f:ab:24:2e:27:6b:2b:87:18:7d:c7:f8:c9:d2:f3:dd:25: 78:e8:67:15:f4:6b:0a:f4:ec:fd:14:a5:f2:64:05:ac:e2:a4: 24:12:01:f7:85:2d:c7:6d:04:f4:0f:a4:b4:28:f4:79:fc:7f: 65:a5:9d:a0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57MWqt2t0DpnIJQ5khCqtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiYzU1ZmIyNGFkNTU2ZTA0MjAyNjUxZjZkNWE4YjI3ZDVi ZWRmOTcwHhcNMjYwMTAxMTQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTYyYWVmYTNiMjgzMzBiMzE0N2QxMmViZjU5ZTc3ZmRkNDUwMDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjUSgaXOydt2mv0khHLOZ+CvcuJ+ +YMYuUd142hDlwwdut7V2FjA3PMVeUc1DOWVElCG1f49vxMcjvFrPrPQ0/D25wHm Id7hmshzjFuV2os/TH8JzMMerCPJ4PNwGcSZg9Y+vNUvg2DqaKCoQqha7fR3XU+b MuIMayqBrG1dyxVXNb1FELkcOByAuWAFuvoBzonz78GhE41ttJ2AgcsXk+VxR1/z CpaWLStTsI/W3BcnUJqPdePESywFNTPFvGkIFboU02LyACvrZYaB/GLhO3oWbkoW QRxz/MvzWEwqe3UJd6DSw07w/ziuULOw8mFGGZWwgbnOJ54FWAljAFBWZQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFGpirvo7KDMLMUfRLr9Z53/dRQAsMB8GA1UdIwQY MBaAFLvFX7JK1VbgQgJlH21aiyfVvt+XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdThWZnNrclZWdUJDQW1VZmJWcUxKOVctMzVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80NjkyMmYtNWNiNi00ZDk4LWI0ZmMt OTNiZDVlNDA4ZjkxLzEvYW1LdS1qc29Nd3N4UjlFdXYxbm5mOTFGQUN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80NjkyMmYtNWNiNi00ZDk4LWI0ZmMtOTNiZDVlNDA4Zjkx LzEvdThWZnNrclZWdUJDQW1VZmJWcUxKOVctMzVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuajkMA0E AgACMAcDBQAqC/CAMA0GCSqGSIb3DQEBCwUAA4IBAQBRJbRmUj6EqXNrSRmjTseY yq729wY4kOnBl2bk7Dv6ANjxiKqfnPUvaIbf/1sxragOph2ELudISvxRbDtCjRGd 1EWf2nPQz+SRFfI64EI5jURfm+IcFE2VcxpRL5By9sML0jWJGKVl5PPXVBAikl/p +ftMndI801OmXNQ6Jc0Z0HA/M0yzhm50Kvsu+Uk7zuRiJfcSk3dvt6Zzz14S+x2s WkIWho5IPLBBa00ukpNz/+MMWaWcQo4GNwUTZBoqxUDjJtrA5bn5b6skLidrK4cY fcf4ydLz3SV46GcV9GsK9Oz9FKXyZAWs4qQkEgH3hS3HbQT0D6S0KPR5/H9lpZ2g -----END CERTIFICATE-----Generated at Sun Jan 25 11:41:57 2026 by rpki-client