This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/de4740-d34e-42a7-8968-464b8f3b8363/1/AAeB0P11BLo-0wFOSgELqWi6J00.roa File: AAeB0P11BLo-0wFOSgELqWi6J00.roa (raw, json) Hash identifier: ne5zZYzC8PT1Zd7TFJmCajzK/4fC4/JAvjpEfVor37I= Subject key identifier: 00:07:81:D0:FD:75:04:BA:3E:D3:01:4E:4A:01:0B:A9:68:BA:27:4D Certificate issuer: /CN=317a927426089f3b8c500083221a798a9d2e8466 Certificate serial: 019B79107CC278F5D80538D625B070D6387E Authority key identifier: 31:7A:92:74:26:08:9F:3B:8C:50:00:83:22:1A:79:8A:9D:2E:84:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXqSdCYInzuMUACDIhp5ip0uhGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/de4740-d34e-42a7-8968-464b8f3b8363/1/AAeB0P11BLo-0wFOSgELqWi6J00.roa Signing time: Thu 01 Jan 2026 10:18:02 +0000 ROA not before: Thu 01 Jan 2026 10:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12732 IP address blocks: 91.199.214.0/24 maxlen: 24 2001:67c:27fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/de4740-d34e-42a7-8968-464b8f3b8363/1/MXqSdCYInzuMUACDIhp5ip0uhGY.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/de4740-d34e-42a7-8968-464b8f3b8363/1/MXqSdCYInzuMUACDIhp5ip0uhGY.mft rsync://rpki.ripe.net/repository/DEFAULT/MXqSdCYInzuMUACDIhp5ip0uhGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:7c:c2:78:f5:d8:05:38:d6:25:b0:70:d6:38:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=317a927426089f3b8c500083221a798a9d2e8466 Validity Not Before: Jan 1 10:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=000781d0fd7504ba3ed3014e4a010ba968ba274d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:d6:28:cf:c2:c2:ab:13:b3:ac:46:31:44: 04:ff:7e:52:0f:70:0e:02:73:c5:94:67:b9:69:0c: 3b:d7:71:1e:3f:f3:ba:8d:d4:d9:42:64:6f:0c:71: 49:88:0a:52:5d:49:5e:5a:d0:86:74:ef:2e:1d:e6: 69:89:a6:1e:b0:55:4c:de:99:c7:ac:d6:9b:2a:ee: 87:0e:4b:d7:69:9b:da:e7:a9:c7:d6:6f:51:13:43: 99:fa:72:cf:e9:07:66:e5:9b:c5:ae:3f:1f:4c:42: a7:cf:92:0c:d3:6f:7d:69:24:37:2d:73:3e:44:8d: ae:23:7f:8b:12:ac:7c:7a:68:0a:c1:24:77:bf:bc: 8e:4b:d3:1c:32:3f:68:e0:eb:9a:c1:d0:e4:68:e3: 5b:36:ee:02:3f:84:ac:1e:4a:c7:1c:05:fe:a0:f0: bd:c2:f4:cb:fe:e6:23:ac:0f:d4:00:0a:e8:82:19: e8:4b:68:80:e6:cf:15:0a:5f:20:17:1e:4d:a5:73: 84:eb:97:1a:4b:71:03:17:48:28:63:46:0a:ef:dd: 2e:90:64:d3:e9:d4:df:4a:f7:6e:ec:42:e8:45:0b: 9f:d3:ed:54:4b:7d:59:d7:eb:34:94:6b:6c:81:f9: b4:6a:01:8a:15:8f:c1:bd:ab:52:47:60:b2:0e:35: 7f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:07:81:D0:FD:75:04:BA:3E:D3:01:4E:4A:01:0B:A9:68:BA:27:4D X509v3 Authority Key Identifier: keyid:31:7A:92:74:26:08:9F:3B:8C:50:00:83:22:1A:79:8A:9D:2E:84:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXqSdCYInzuMUACDIhp5ip0uhGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/de4740-d34e-42a7-8968-464b8f3b8363/1/AAeB0P11BLo-0wFOSgELqWi6J00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/de4740-d34e-42a7-8968-464b8f3b8363/1/MXqSdCYInzuMUACDIhp5ip0uhGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.214.0/24 IPv6: 2001:67c:27fc::/48 Signature Algorithm: sha256WithRSAEncryption 66:c9:db:71:10:16:e6:5c:42:46:29:80:c9:74:e7:e6:84:5f: 5f:a1:45:09:c3:f0:d4:6c:44:e7:e0:5b:48:c0:55:a9:ef:88: 01:68:cd:01:ea:15:1d:1a:32:83:98:36:10:af:a1:61:df:02: 20:69:2d:29:e8:ba:fc:f7:dc:1a:7d:d7:89:59:7c:d7:a3:c0: 43:53:82:3d:d2:32:98:12:ef:97:1f:e8:7d:ac:42:d3:33:ad: 2d:b8:3b:e7:69:6d:9b:a0:f0:66:61:7f:f7:86:18:db:69:97: e0:8f:d6:63:b9:d3:34:c4:53:c5:92:ec:a1:a9:8f:78:4c:5d: 06:8e:11:73:75:b5:07:1f:88:af:8b:de:36:fe:ed:bd:fc:eb: ea:7e:76:30:6a:0e:b2:c2:4a:96:da:6e:ea:12:d9:09:6d:df: 5a:ab:b0:95:55:d9:1b:0d:0d:9b:79:c9:56:c8:f8:d6:07:71: 18:12:17:1b:63:69:92:16:db:a2:e0:24:de:5b:09:3c:b0:28: f4:f3:0b:79:2e:8f:c8:14:d6:24:ca:71:74:bf:77:c6:a4:70: 03:d0:58:af:7b:02:c5:27:56:2e:21:d6:4a:e5:f2:4c:18:3b: 24:79:1b:10:52:fd:21:92:79:29:70:e3:c1:85:6d:cb:1b:6c: 43:3a:af:65 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5EHzCePXYBTjWJbBw1jh+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxN2E5Mjc0MjYwODlmM2I4YzUwMDA4MzIyMWE3OThhOWQy ZTg0NjYwHhcNMjYwMTAxMTAxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDA3ODFkMGZkNzUwNGJhM2VkMzAxNGU0YTAxMGJhOTY4YmEyNzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqu7WKM/CwqsTs6xGMUQE/35SD3AO AnPFlGe5aQw713EeP/O6jdTZQmRvDHFJiApSXUleWtCGdO8uHeZpiaYesFVM3pnH rNabKu6HDkvXaZva56nH1m9RE0OZ+nLP6Qdm5ZvFrj8fTEKnz5IM0299aSQ3LXM+ RI2uI3+LEqx8emgKwSR3v7yOS9McMj9o4OuawdDkaONbNu4CP4SsHkrHHAX+oPC9 wvTL/uYjrA/UAAroghnoS2iA5s8VCl8gFx5NpXOE65caS3EDF0goY0YK790ukGTT 6dTfSvdu7ELoRQuf0+1US31Z1+s0lGtsgfm0agGKFY/BvatSR2CyDjV/KQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAAHgdD9dQS6PtMBTkoBC6louidNMB8GA1UdIwQY MBaAFDF6knQmCJ87jFAAgyIaeYqdLoRmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVhxU2RDWUluenVNVUFDRElocDVpcDB1aEdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9kZTQ3NDAtZDM0ZS00MmE3LTg5Njgt NDY0YjhmM2I4MzYzLzEvQUFlQjBQMTFCTG8tMHdGT1NnRUxxV2k2SjAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9kZTQ3NDAtZDM0ZS00MmE3LTg5NjgtNDY0YjhmM2I4MzYz LzEvTVhxU2RDWUluenVNVUFDRElocDVpcDB1aEdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW8fWMA8E AgACMAkDBwAgAQZ8J/wwDQYJKoZIhvcNAQELBQADggEBAGbJ23EQFuZcQkYpgMl0 5+aEX1+hRQnD8NRsROfgW0jAVanviAFozQHqFR0aMoOYNhCvoWHfAiBpLSnouvz3 3Bp914lZfNejwENTgj3SMpgS75cf6H2sQtMzrS24O+dpbZug8GZhf/eGGNtpl+CP 1mO50zTEU8WS7KGpj3hMXQaOEXN1tQcfiK+L3jb+7b386+p+djBqDrLCSpbabuoS 2Qlt31qrsJVV2RsNDZt5yVbI+NYHcRgSFxtjaZIW26LgJN5bCTywKPTzC3kuj8gU 1iTKcXS/d8akcAPQWK97AsUnVi4h1krl8kwYOyR5GxBS/SGSeSlw48GFbcsbbEM6 r2U= -----END CERTIFICATE-----Generated at Mon Jan 26 11:39:58 2026 by rpki-client