This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/AHnNibYpBfUdvSGboILQ1teAIw4.roa File: AHnNibYpBfUdvSGboILQ1teAIw4.roa (raw, json) Hash identifier: 42GSIkMZbcrmZ8XMph6d+mXrtH34NIs/JYMf8WUp4vM= Subject key identifier: 00:79:CD:89:B6:29:05:F5:1D:BD:21:9B:A0:82:D0:D6:D7:80:23:0E Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71 Certificate serial: 019B7DCAA5BFFF751817862F15C141D0DCB1 Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/AHnNibYpBfUdvSGboILQ1teAIw4.roa Signing time: Fri 02 Jan 2026 08:19:51 +0000 ROA not before: Fri 02 Jan 2026 08:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49081 IP address blocks: 188.92.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:a5:bf:ff:75:18:17:86:2f:15:c1:41:d0:dc:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71 Validity Not Before: Jan 2 08:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0079cd89b62905f51dbd219ba082d0d6d780230e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:c4:0d:76:a3:90:66:d5:ec:44:bc:2f:fe: 01:8a:02:a0:7e:2f:c2:b3:d5:92:c8:40:d6:d4:f9: a1:3f:ca:4a:2a:b2:91:bf:a0:c1:1f:f5:31:ac:94: 77:8e:67:a0:a1:64:1d:ac:41:61:68:b8:6e:8f:b7: af:ed:cc:37:73:56:a8:6b:af:9f:5a:b7:44:61:28: a1:db:93:20:53:c4:2e:2b:30:50:bf:41:01:b4:3d: de:01:1e:80:34:a4:21:7e:4f:ca:c4:24:01:61:ca: 79:de:e0:be:2f:14:91:ee:d3:c9:03:56:1d:07:b8: fb:b7:9d:ba:c7:59:be:7b:51:60:28:6b:23:1d:cb: 16:53:72:ab:ba:72:ff:6d:ee:42:d6:95:b7:19:b2: c7:ad:08:51:d1:05:1e:70:03:14:45:bc:46:88:af: bb:71:85:55:db:7e:8c:51:2b:68:e7:2b:52:75:2c: be:95:4f:f0:cf:e6:73:78:48:c5:2e:05:86:e5:77: 37:c0:b1:c8:ed:b1:57:8e:49:d6:00:b4:c2:c2:df: 6b:08:cc:cb:c3:59:bc:57:10:89:d1:b0:2c:12:3e: 7d:e2:10:c1:eb:e3:59:fd:98:ce:63:81:10:d3:51: b3:10:0f:23:66:20:84:ef:03:cd:7c:9b:c7:05:49: 0a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:79:CD:89:B6:29:05:F5:1D:BD:21:9B:A0:82:D0:D6:D7:80:23:0E X509v3 Authority Key Identifier: keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/AHnNibYpBfUdvSGboILQ1teAIw4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.92.32.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:51:2d:68:4d:a3:ef:99:a1:fe:ac:39:6f:77:f6:42:0f:b5: 3b:90:cd:ba:3d:c0:61:76:ee:78:30:d9:76:7f:85:0c:eb:48: c2:7d:90:23:e1:23:e6:ab:d0:68:c9:db:af:b2:d2:2d:5f:42: 66:f6:2a:f4:65:62:d5:68:26:06:3a:ac:64:17:de:b4:43:4b: 30:d3:95:c3:38:91:01:f4:11:be:13:11:6f:95:5f:14:60:06: b8:29:c4:4e:e5:8d:55:03:ef:a3:10:da:9f:15:27:28:96:4d: e7:76:19:4f:8c:e9:13:14:f3:8a:4f:e5:d1:ea:02:4a:56:1a: 50:fa:8f:ff:05:ff:74:2d:7f:7f:b3:4f:d2:8e:91:49:13:3f: 64:d8:f1:6c:39:84:6b:41:49:fe:3c:02:75:b7:6a:04:b8:75: d1:45:3f:e4:4b:57:09:f8:5b:55:1a:99:c0:b8:65:5b:fd:4b: fc:b9:f7:7c:e3:bc:9f:f0:fc:26:32:0f:de:9e:5c:c3:10:83: 29:82:f0:4d:cd:f7:1c:2a:2a:d2:25:d7:62:99:e4:7b:00:cd: a0:9f:25:1e:da:ca:9e:99:f1:65:51:ac:1a:46:70:14:9c:90: 84:4b:f0:83:bb:82:41:be:49:bb:d7:19:4b:a1:44:05:89:e5: 29:51:a4:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yqW//3UYF4YvFcFB0NyxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1YTIxOTZlZjExOTIyMTE1NWUxNjgzZjg5NjdkMjU0NjI1 ZGFlNzEwHhcNMjYwMTAyMDgxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDc5Y2Q4OWI2MjkwNWY1MWRiZDIxOWJhMDgyZDBkNmQ3ODAyMzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AbEDXajkGbV7ES8L/4BigKgfi/C s9WSyEDW1PmhP8pKKrKRv6DBH/UxrJR3jmegoWQdrEFhaLhuj7ev7cw3c1aoa6+f WrdEYSih25MgU8QuKzBQv0EBtD3eAR6ANKQhfk/KxCQBYcp53uC+LxSR7tPJA1Yd B7j7t526x1m+e1FgKGsjHcsWU3KrunL/be5C1pW3GbLHrQhR0QUecAMURbxGiK+7 cYVV236MUSto5ytSdSy+lU/wz+ZzeEjFLgWG5Xc3wLHI7bFXjknWALTCwt9rCMzL w1m8VxCJ0bAsEj594hDB6+NZ/ZjOY4EQ01GzEA8jZiCE7wPNfJvHBUkKiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAB5zYm2KQX1Hb0hm6CC0NbXgCMOMB8GA1UdIwQY MBaAFNWiGW7xGSIRVeFoP4ln0lRiXa5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWFJWmJ2RVpJaEZWNFdnX2lXZlNWR0pkcm5FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9iMDYzMzctNjUxNy00MDBiLThjYjUt N2FmYTBiY2Q3OTc2LzEvQUhuTmliWXBCZlVkdlNHYm9JTFExdGVBSXc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9iMDYzMzctNjUxNy00MDBiLThjYjUtN2FmYTBiY2Q3OTc2 LzEvMWFJWmJ2RVpJaEZWNFdnX2lXZlNWR0pkcm5FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDvFwgMA0G CSqGSIb3DQEBCwUAA4IBAQA9US1oTaPvmaH+rDlvd/ZCD7U7kM26PcBhdu54MNl2 f4UM60jCfZAj4SPmq9BoyduvstItX0Jm9ir0ZWLVaCYGOqxkF960Q0sw05XDOJEB 9BG+ExFvlV8UYAa4KcRO5Y1VA++jENqfFScolk3ndhlPjOkTFPOKT+XR6gJKVhpQ +o//Bf90LX9/s0/SjpFJEz9k2PFsOYRrQUn+PAJ1t2oEuHXRRT/kS1cJ+FtVGpnA uGVb/Uv8ufd847yf8PwmMg/enlzDEIMpgvBNzfccKirSJddimeR7AM2gnyUe2sqe mfFlUawaRnAUnJCES/CDu4JBvkm71xlLoUQFieUpUaTe -----END CERTIFICATE-----Generated at Mon Jan 12 17:17:47 2026 by rpki-client