This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/fpgphkHAVC4EKTAhJS44DiaxsvY.roa File: fpgphkHAVC4EKTAhJS44DiaxsvY.roa (raw, json) Hash identifier: 1INMFW9bHkSho9a0wRr4avShYtWQyAKWkemAY5V0/s8= Subject key identifier: 7E:98:29:86:41:C0:54:2E:04:29:30:21:25:2E:38:0E:26:B1:B2:F6 Certificate issuer: /CN=3ac78f33e8e1187327667fa94fd7446b8d91e5b4 Certificate serial: 019B7AC875713F6D2A4DAA1D87AE68408281 Authority key identifier: 3A:C7:8F:33:E8:E1:18:73:27:66:7F:A9:4F:D7:44:6B:8D:91:E5:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OsePM-jhGHMnZn-pT9dEa42R5bQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/fpgphkHAVC4EKTAhJS44DiaxsvY.roa Signing time: Thu 01 Jan 2026 18:18:36 +0000 ROA not before: Thu 01 Jan 2026 18:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206398 IP address blocks: 185.178.187.0/24 maxlen: 24 2a0a:6680:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/OsePM-jhGHMnZn-pT9dEa42R5bQ.crl rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/OsePM-jhGHMnZn-pT9dEa42R5bQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OsePM-jhGHMnZn-pT9dEa42R5bQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:75:71:3f:6d:2a:4d:aa:1d:87:ae:68:40:82:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ac78f33e8e1187327667fa94fd7446b8d91e5b4 Validity Not Before: Jan 1 18:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e98298641c0542e04293021252e380e26b1b2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1f:8b:32:74:c3:f4:b6:b3:86:af:55:cb:bd: 8c:f6:c9:38:dc:8f:77:e0:c6:0d:c1:7b:56:f5:c8: ff:fd:54:1d:36:44:f1:bf:c2:6e:b4:b6:35:cc:f0: 9e:fa:4c:53:80:bd:45:b0:b3:ce:75:fe:18:6a:b8: 71:00:bb:fd:b8:cf:4c:e8:e0:0f:21:2a:d5:98:cc: fa:07:3c:89:23:1e:79:28:95:f9:e5:f8:64:1f:c8: e6:92:4a:9b:ad:a8:b1:38:b2:37:93:e5:fe:69:f5: f5:62:bd:4c:9c:b1:80:d1:00:30:73:35:f2:96:c7: 5e:37:29:43:da:9c:82:ce:05:e6:80:a7:04:33:47: 7d:75:50:0e:1e:8c:cf:c5:90:68:2a:9b:0d:21:26: 2a:16:14:2d:26:9d:a2:86:cd:01:76:95:b8:58:65: 9b:0c:91:99:53:97:0d:25:bf:2b:35:75:af:cd:56: df:8c:ba:70:8f:05:6c:7d:0c:55:84:9b:d3:7b:d7: 75:bb:02:99:f1:86:e2:ec:0e:86:5c:38:0e:ba:93: 08:29:2c:5b:6d:ab:24:9b:72:59:00:21:07:3c:ae: 3d:c2:f6:0e:e8:bf:78:8f:de:c0:2e:ec:51:88:42: 44:20:a1:37:72:b8:54:3e:ad:24:a7:4a:ad:50:84: 1d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:98:29:86:41:C0:54:2E:04:29:30:21:25:2E:38:0E:26:B1:B2:F6 X509v3 Authority Key Identifier: keyid:3A:C7:8F:33:E8:E1:18:73:27:66:7F:A9:4F:D7:44:6B:8D:91:E5:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OsePM-jhGHMnZn-pT9dEa42R5bQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/fpgphkHAVC4EKTAhJS44DiaxsvY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5edaaf-3327-43ed-90b1-dc01f4b4bae4/1/OsePM-jhGHMnZn-pT9dEa42R5bQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.178.187.0/24 IPv6: 2a0a:6680:a000::/36 Signature Algorithm: sha256WithRSAEncryption 74:7b:dd:c5:2e:5a:9c:81:e3:db:8e:bc:54:84:03:58:14:0f: be:9d:70:20:8f:df:33:c1:5b:0f:b9:0f:8e:1a:15:55:67:51: a1:74:b3:23:cf:af:48:6c:d5:8b:8a:29:94:e9:67:11:51:fe: d3:3d:8b:fe:17:44:7d:d7:70:93:70:56:c4:72:11:26:a5:52: a5:42:2f:74:ef:88:86:0d:6b:68:2e:ef:cb:52:47:9a:63:52: 67:37:63:4a:0a:69:9a:4f:1b:ea:9e:61:cb:d8:52:e9:50:95: 3a:69:4b:87:f1:4d:ac:13:dc:d6:aa:de:df:36:51:64:cf:81: 06:da:ee:01:f0:bc:ac:f0:23:bb:13:4d:b7:45:dc:b4:2e:50: c5:30:bd:68:b4:54:bc:11:9f:29:c3:a0:89:9c:d2:db:65:11: 6b:f3:d4:b6:e5:62:cd:60:b0:7e:8f:e5:b0:26:44:eb:72:a1: 73:01:a2:30:2e:1d:8c:a2:3c:6a:d7:67:93:7d:c9:ae:43:2e: 09:57:01:fc:0b:aa:e5:8c:3b:e9:fb:b8:37:0e:05:61:e2:02: 14:37:ba:55:78:31:ff:6a:2b:ea:37:fe:b0:2b:cf:28:b7:b5: cf:d5:63:d7:13:75:d1:16:53:c5:af:8f:67:83:b6:1b:27:4a: b2:6c:17:c8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt6yHVxP20qTaodh65oQIKBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhYzc4ZjMzZThlMTE4NzMyNzY2N2ZhOTRmZDc0NDZiOGQ5 MWU1YjQwHhcNMjYwMTAxMTgxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTk4Mjk4NjQxYzA1NDJlMDQyOTMwMjEyNTJlMzgwZTI2YjFiMmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvx+LMnTD9Lazhq9Vy72M9sk43I93 4MYNwXtW9cj//VQdNkTxv8JutLY1zPCe+kxTgL1FsLPOdf4YarhxALv9uM9M6OAP ISrVmMz6BzyJIx55KJX55fhkH8jmkkqbraixOLI3k+X+afX1Yr1MnLGA0QAwczXy lsdeNylD2pyCzgXmgKcEM0d9dVAOHozPxZBoKpsNISYqFhQtJp2ihs0BdpW4WGWb DJGZU5cNJb8rNXWvzVbfjLpwjwVsfQxVhJvTe9d1uwKZ8Ybi7A6GXDgOupMIKSxb baskm3JZACEHPK49wvYO6L94j97ALuxRiEJEIKE3crhUPq0kp0qtUIQdJwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFH6YKYZBwFQuBCkwISUuOA4msbL2MB8GA1UdIwQY MBaAFDrHjzPo4RhzJ2Z/qU/XRGuNkeW0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3NlUE0tamhHSE1uWm4tcFQ5ZEVhNDJSNWJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81ZWRhYWYtMzMyNy00M2VkLTkwYjEt ZGMwMWY0YjRiYWU0LzEvZnBncGhrSEFWQzRFS1RBaEpTNDREaWF4c3ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy81ZWRhYWYtMzMyNy00M2VkLTkwYjEtZGMwMWY0YjRiYWU0 LzEvT3NlUE0tamhHSE1uWm4tcFQ5ZEVhNDJSNWJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAubK7MA4E AgACMAgDBgQqCmaAoDANBgkqhkiG9w0BAQsFAAOCAQEAdHvdxS5anIHj2468VIQD WBQPvp1wII/fM8FbD7kPjhoVVWdRoXSzI8+vSGzVi4oplOlnEVH+0z2L/hdEfddw k3BWxHIRJqVSpUIvdO+Ihg1raC7vy1JHmmNSZzdjSgppmk8b6p5hy9hS6VCVOmlL h/FNrBPc1qre3zZRZM+BBtruAfC8rPAjuxNNt0XctC5QxTC9aLRUvBGfKcOgiZzS 22URa/PUtuVizWCwfo/lsCZE63KhcwGiMC4djKI8atdnk33JrkMuCVcB/Auq5Yw7 6fu4Nw4FYeICFDe6VXgx/2or6jf+sCvPKLe1z9Vj1xN10RZTxa+PZ4O2GydKsmwX yA== -----END CERTIFICATE-----Generated at Mon Jan 26 18:19:11 2026 by rpki-client