This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/aj9euBKzI3NIH66jZPh8bbmGI6A.roa File: aj9euBKzI3NIH66jZPh8bbmGI6A.roa (raw, json) Hash identifier: 8jTNJ61hr37vcKXTL8TlYqDMnFRq1ith6TwEVeBelwE= Subject key identifier: 6A:3F:5E:B8:12:B3:23:73:48:1F:AE:A3:64:F8:7C:6D:B9:86:23:A0 Certificate issuer: /CN=43c16595966afb0bacf1d7937f245d6a052221a3 Certificate serial: 019B7E38AAFAE8324D65413A814563F557A8 Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/aj9euBKzI3NIH66jZPh8bbmGI6A.roa Signing time: Fri 02 Jan 2026 10:20:01 +0000 ROA not before: Fri 02 Jan 2026 10:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60010 IP address blocks: 194.50.196.0/24 maxlen: 24 194.50.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.mft rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:aa:fa:e8:32:4d:65:41:3a:81:45:63:f5:57:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3 Validity Not Before: Jan 2 10:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a3f5eb812b32373481faea364f87c6db98623a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:84:3f:07:7f:63:93:8f:b4:12:6b:1f:a7:55: 26:67:ee:95:94:a1:90:2b:e4:dc:fb:8e:5e:8c:70: 5f:5b:91:db:31:73:74:dd:c8:9b:6f:24:f8:a6:e3: c9:d0:9d:41:e6:55:98:21:62:57:95:33:97:0f:29: 7b:a5:9e:21:5c:b2:e0:01:db:e7:2d:5d:46:d2:34: c7:57:91:e0:49:ee:53:6c:fb:e8:ca:3e:4a:da:e6: b5:e5:07:75:b7:47:99:74:72:76:38:e1:8a:e1:73: 15:a3:24:de:f9:d9:af:8b:e3:c5:0b:00:ff:cd:b3: f0:45:4c:35:9d:25:89:3f:12:e7:b5:eb:3f:c0:f4: 57:64:89:91:8f:ab:c4:6c:5b:b9:58:ba:8b:39:d7: 2d:c4:44:80:22:ea:af:0f:43:ee:66:59:16:1f:98: e5:5a:69:74:9c:4a:73:71:85:82:fe:8c:2e:23:e4: 19:cd:47:b8:b9:8a:31:d0:b9:ee:5b:b7:e1:78:2c: a2:88:74:25:f1:27:82:a0:85:17:58:1a:fe:db:60: d6:e3:2c:09:82:e7:cc:a5:81:79:a7:59:dc:95:93: 92:e8:38:0d:a8:a5:06:77:c8:70:6b:a5:d5:15:ed: 07:c5:f6:7e:a2:aa:b3:d5:1e:c5:0b:91:47:3e:0a: f6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3F:5E:B8:12:B3:23:73:48:1F:AE:A3:64:F8:7C:6D:B9:86:23:A0 X509v3 Authority Key Identifier: keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/aj9euBKzI3NIH66jZPh8bbmGI6A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.196.0/24 194.50.199.0/24 Signature Algorithm: sha256WithRSAEncryption 00:e1:ba:1a:0e:a6:43:53:f0:4d:73:51:41:6f:10:aa:50:3a: 0c:1c:19:0d:ef:70:f0:93:ba:f1:5f:88:e4:8b:92:fa:cb:03: 92:e9:9a:73:bd:ec:5d:e2:71:33:21:5a:a5:f9:e5:34:2c:e8: 36:e2:87:b8:10:03:22:c9:96:e4:22:00:66:29:ee:e5:63:8d: 16:61:a4:c2:87:75:37:58:6b:73:88:2d:c9:5c:6d:26:a5:13: 55:f9:c3:4e:44:0a:27:22:d3:8a:34:23:4f:96:10:41:cf:78: a1:e7:d4:d5:b4:62:81:ae:f1:40:74:0f:36:6b:36:8b:71:ac: e7:3a:cb:ac:bc:d6:cf:d1:32:23:5f:2d:6d:46:96:46:46:ab: a0:db:aa:e7:11:25:e8:dc:88:7c:46:6d:7d:7e:f3:a4:e7:16: 2f:2c:c5:de:f9:80:46:bf:62:f7:06:29:4b:18:a8:ad:91:0a: cc:b7:4b:6a:ab:b5:e6:99:be:93:6f:f1:0e:69:0a:4f:51:33: e8:22:42:56:32:23:51:08:72:3d:86:98:86:18:29:05:38:ed: 11:e0:2b:ef:2d:8e:aa:ae:0e:f6:63:3e:ca:eb:b1:45:14:80: 34:29:1d:ce:ad:45:87:b6:45:36:73:26:66:d9:88:57:99:8d: 37:1b:c1:f4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OKr66DJNZUE6gUVj9VeoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYzE2NTk1OTY2YWZiMGJhY2YxZDc5MzdmMjQ1ZDZhMDUy MjIxYTMwHhcNMjYwMTAyMTAyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YTNmNWViODEyYjMyMzczNDgxZmFlYTM2NGY4N2M2ZGI5ODYyM2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIQ/B39jk4+0Emsfp1UmZ+6VlKGQ K+Tc+45ejHBfW5HbMXN03cibbyT4puPJ0J1B5lWYIWJXlTOXDyl7pZ4hXLLgAdvn LV1G0jTHV5HgSe5TbPvoyj5K2ua15Qd1t0eZdHJ2OOGK4XMVoyTe+dmvi+PFCwD/ zbPwRUw1nSWJPxLntes/wPRXZImRj6vEbFu5WLqLOdctxESAIuqvD0PuZlkWH5jl Wml0nEpzcYWC/owuI+QZzUe4uYox0LnuW7fheCyiiHQl8SeCoIUXWBr+22DW4ywJ gufMpYF5p1nclZOS6DgNqKUGd8hwa6XVFe0HxfZ+oqqz1R7FC5FHPgr2YwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGo/XrgSsyNzSB+uo2T4fG25hiOgMB8GA1UdIwQY MBaAFEPBZZWWavsLrPHXk38kXWoFIiGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGIt NTk5MGVhNThlMDMwLzEvYWo5ZXVCS3pJM05JSDY2alpQaDhiYm1HSTZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9kOTI5MTktOTYyYi00NDhkLTk4ZGItNTk5MGVhNThlMDMw LzEvUThGbGxaWnEtd3VzOGRlVGZ5UmRhZ1VpSWFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwjLEAwQA wjLHMA0GCSqGSIb3DQEBCwUAA4IBAQAA4boaDqZDU/BNc1FBbxCqUDoMHBkN73Dw k7rxX4jki5L6ywOS6Zpzvexd4nEzIVql+eU0LOg24oe4EAMiyZbkIgBmKe7lY40W YaTCh3U3WGtziC3JXG0mpRNV+cNORAonItOKNCNPlhBBz3ih59TVtGKBrvFAdA82 azaLcaznOsusvNbP0TIjXy1tRpZGRqug26rnESXo3Ih8Rm19fvOk5xYvLMXe+YBG v2L3BilLGKitkQrMt0tqq7Xmmb6Tb/EOaQpPUTPoIkJWMiNRCHI9hpiGGCkFOO0R 4CvvLY6qrg72Yz7K67FFFIA0KR3OrUWHtkU2cyZm2YhXmY03G8H0 -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:11 2026 by rpki-client