This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/AQr0Xr5i3xBK0VnBVEVqjXo_PEE.roa File: AQr0Xr5i3xBK0VnBVEVqjXo_PEE.roa (raw, json) Hash identifier: Q7J5BCM0jvKNyBjP+FioWdAANoRPVT9LyCNXJ4wWorw= Subject key identifier: 01:0A:F4:5E:BE:62:DF:10:4A:D1:59:C1:54:45:6A:8D:7A:3F:3C:41 Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801 Certificate serial: 019B7D5C9FCEB7B09E4F64FBED4628472015 Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/AQr0Xr5i3xBK0VnBVEVqjXo_PEE.roa Signing time: Fri 02 Jan 2026 06:19:40 +0000 ROA not before: Fri 02 Jan 2026 06:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59589 IP address blocks: 195.93.248.0/24 maxlen: 24 2a10:1040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 09:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:9f:ce:b7:b0:9e:4f:64:fb:ed:46:28:47:20:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88989264e50f39ae888ae3276109bba802e45801 Validity Not Before: Jan 2 06:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=010af45ebe62df104ad159c154456a8d7a3f3c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:d3:d8:f0:62:e4:57:cb:a9:1c:a9:25:e0:73: 59:32:4d:7a:99:81:40:93:5f:52:df:fd:e3:8f:cc: 5b:41:51:c5:50:e3:17:61:3f:aa:84:da:1b:14:72: 65:f3:31:0b:aa:7a:dc:63:02:af:9c:41:3e:35:d7: 41:5f:f6:3c:84:78:f1:96:98:dc:10:a1:6b:4d:ab: b8:4a:95:3f:8b:20:00:d5:1a:28:2b:39:c9:88:dd: 30:bb:c4:d4:3d:3d:8c:35:b4:22:65:7b:3b:a8:30: 53:29:11:c0:51:be:52:13:7d:c5:e7:1e:04:e7:bd: ac:98:ea:b6:4f:5a:84:81:24:55:80:d1:51:ca:20: cc:1f:be:31:d2:05:ba:3c:63:6d:a7:a5:80:e4:3c: 42:f0:04:62:6e:c7:19:4d:06:75:96:fa:b3:a5:66: 53:ea:9f:b7:30:50:7f:8a:c7:38:78:64:b5:a3:83: 9d:79:3f:c5:39:d5:ae:0c:2d:1d:41:de:12:8e:ae: 30:a8:6e:4e:35:63:fd:fc:ea:c8:d5:45:19:ba:53: 45:03:36:0f:90:e2:c5:95:25:2a:e3:fa:89:09:1d: 0c:92:69:8d:2d:bb:e7:fc:57:e4:fe:2b:3b:29:fb: 72:83:a2:4b:64:4d:ef:6e:99:28:1d:b9:e2:b7:d7: d1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:0A:F4:5E:BE:62:DF:10:4A:D1:59:C1:54:45:6A:8D:7A:3F:3C:41 X509v3 Authority Key Identifier: keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/AQr0Xr5i3xBK0VnBVEVqjXo_PEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.93.248.0/24 IPv6: 2a10:1040::/32 Signature Algorithm: sha256WithRSAEncryption 78:b3:7d:08:88:7c:bc:f3:b9:89:eb:c6:5f:4f:b0:2d:3d:b5: 87:3c:2f:d9:1e:44:a8:db:21:99:53:68:e6:3d:17:9b:6f:37: ab:b0:f9:74:3b:bc:f7:24:6b:c9:ad:88:40:a4:1e:88:c8:f3: 01:ed:3a:5b:2a:9d:24:27:19:1b:ee:c8:f3:e9:1c:0c:ae:32: bb:30:38:9f:fa:88:a2:2e:47:17:99:2d:0c:78:7b:7b:ad:c3: 88:89:54:1b:28:2a:10:4e:33:4c:99:62:a2:a1:bd:08:db:0a: 10:ae:f1:74:a6:90:a1:12:b8:25:3e:d0:54:f3:23:75:aa:25: 55:b1:67:16:0b:f3:ff:13:06:ba:9a:f1:e1:76:21:24:f0:da: 56:77:7b:67:4d:00:5d:a1:1b:72:d4:64:97:2f:8d:02:85:dd: d5:37:fb:56:7b:09:50:a8:09:03:e8:92:9a:2f:42:e6:e8:8d: df:74:8b:9c:0e:7c:f2:24:26:21:a5:5a:25:82:41:23:a4:1c: 88:bc:9f:fe:1c:ac:13:62:43:f7:4c:fe:9d:5d:27:8a:ac:30: 68:9f:34:7c:3d:34:79:51:52:9c:1d:f1:90:26:da:b0:5f:ce: cf:40:14:8a:aa:ac:e9:4d:b8:7c:8e:8e:22:c3:21:89:c5:ac: ad:c0:44:34 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9XJ/Ot7CeT2T77UYoRyAVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4OTg5MjY0ZTUwZjM5YWU4ODhhZTMyNzYxMDliYmE4MDJl NDU4MDEwHhcNMjYwMTAyMDYxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTBhZjQ1ZWJlNjJkZjEwNGFkMTU5YzE1NDQ1NmE4ZDdhM2YzYzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAitPY8GLkV8upHKkl4HNZMk16mYFA k19S3/3jj8xbQVHFUOMXYT+qhNobFHJl8zELqnrcYwKvnEE+NddBX/Y8hHjxlpjc EKFrTau4SpU/iyAA1RooKznJiN0wu8TUPT2MNbQiZXs7qDBTKRHAUb5SE33F5x4E 572smOq2T1qEgSRVgNFRyiDMH74x0gW6PGNtp6WA5DxC8ARibscZTQZ1lvqzpWZT 6p+3MFB/isc4eGS1o4OdeT/FOdWuDC0dQd4Sjq4wqG5ONWP9/OrI1UUZulNFAzYP kOLFlSUq4/qJCR0MkmmNLbvn/Ffk/is7Kftyg6JLZE3vbpkoHbnit9fRSQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAEK9F6+Yt8QStFZwVRFao16PzxBMB8GA1UdIwQY MBaAFIiYkmTlDzmuiIrjJ2EJu6gC5FgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUppU1pPVVBPYTZJaXVNbllRbTdxQUxrV0FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81NzEyNDQtOWM5YS00M2FjLTkzMGMt MzcwYzgwNzY5ODMxLzEvQVFyMFhyNWkzeEJLMFZuQlZFVnFqWG9fUEVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81NzEyNDQtOWM5YS00M2FjLTkzMGMtMzcwYzgwNzY5ODMx LzEvaUppU1pPVVBPYTZJaXVNbllRbTdxQUxrV0FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw134MA0E AgACMAcDBQAqEBBAMA0GCSqGSIb3DQEBCwUAA4IBAQB4s30IiHy887mJ68ZfT7At PbWHPC/ZHkSo2yGZU2jmPRebbzersPl0O7z3JGvJrYhApB6IyPMB7TpbKp0kJxkb 7sjz6RwMrjK7MDif+oiiLkcXmS0MeHt7rcOIiVQbKCoQTjNMmWKiob0I2woQrvF0 ppChErglPtBU8yN1qiVVsWcWC/P/Ewa6mvHhdiEk8NpWd3tnTQBdoRty1GSXL40C hd3VN/tWewlQqAkD6JKaL0Lm6I3fdIucDnzyJCYhpVolgkEjpByIvJ/+HKwTYkP3 TP6dXSeKrDBonzR8PTR5UVKcHfGQJtqwX87PQBSKqqzpTbh8jo4iwyGJxaytwEQ0 -----END CERTIFICATE-----Generated at Mon Jan 12 14:06:40 2026 by rpki-client