This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/09af2b-64f7-4c1d-abd4-d07464b9b378/1/tOte9icBvp7fZ4JFtJj262jmG2k.roa File: tOte9icBvp7fZ4JFtJj262jmG2k.roa (raw, json) Hash identifier: 9UlFr1VWg8sSAFkwJ6utTCjAp2VRA7ApImW+9wnEJvg= Subject key identifier: B4:EB:5E:F6:27:01:BE:9E:DF:67:82:45:B4:98:F6:EB:68:E6:1B:69 Certificate issuer: /CN=fc13f7fa237f89d011233bac7328c2219ba7d62c Certificate serial: 019B7F8267040D8D386E0CEB2647B318705B Authority key identifier: FC:13:F7:FA:23:7F:89:D0:11:23:3B:AC:73:28:C2:21:9B:A7:D6:2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_BP3-iN_idARIzuscyjCIZun1iw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/09af2b-64f7-4c1d-abd4-d07464b9b378/1/tOte9icBvp7fZ4JFtJj262jmG2k.roa Signing time: Fri 02 Jan 2026 16:20:11 +0000 ROA not before: Fri 02 Jan 2026 16:20:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24582 IP address blocks: 5.61.80.0/21 maxlen: 24 62.40.27.24/29 maxlen: 29 80.87.160.0/20 maxlen: 24 185.32.32.0/22 maxlen: 24 195.135.178.8/30 maxlen: 30 195.135.178.240/29 maxlen: 29 212.237.160.0/21 maxlen: 24 2a00:5f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/09af2b-64f7-4c1d-abd4-d07464b9b378/1/_BP3-iN_idARIzuscyjCIZun1iw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/09af2b-64f7-4c1d-abd4-d07464b9b378/1/_BP3-iN_idARIzuscyjCIZun1iw.mft rsync://rpki.ripe.net/repository/DEFAULT/_BP3-iN_idARIzuscyjCIZun1iw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:67:04:0d:8d:38:6e:0c:eb:26:47:b3:18:70:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc13f7fa237f89d011233bac7328c2219ba7d62c Validity Not Before: Jan 2 16:20:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4eb5ef62701be9edf678245b498f6eb68e61b69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:13:63:16:25:d1:ad:0e:9c:c1:a5:1d:e0:29: 33:8c:5b:ab:5e:b7:26:ce:14:10:ef:19:8b:8e:62: 75:72:26:54:c7:7a:3d:4b:07:73:44:cc:4c:46:36: f8:86:d3:ce:2f:e1:0f:c5:05:0d:ba:27:a1:f2:e2: fd:c5:99:05:46:2d:a7:54:b0:ea:56:e5:b3:e6:84: b5:e2:d9:d2:a9:ca:cf:2d:3b:03:0e:49:85:5f:cc: 9c:bb:c0:e8:4d:bf:a6:9c:4b:2a:aa:fa:cd:ec:63: 18:af:c3:29:bc:40:07:e0:47:f7:fa:fa:dc:92:f0: 6b:62:a6:fa:c7:b9:eb:7b:fe:b2:70:b3:2e:40:7b: 74:89:60:47:7d:f7:5c:13:c2:c0:36:bc:e4:82:eb: c1:18:eb:4b:00:12:db:58:67:7a:ef:19:86:26:80: 95:36:c2:21:9f:a2:9c:36:d8:5a:99:84:7a:c4:65: e7:fd:4c:cd:dc:36:4c:84:09:15:ec:03:08:5c:de: 9e:5d:b4:1d:80:e5:60:a2:e2:90:9b:b9:22:dc:18: 93:0e:08:fc:5f:43:9f:c5:02:0c:4d:60:1c:82:2b: 50:25:e9:5c:12:6b:0d:c8:52:e1:d9:93:87:3f:e8: 95:68:0c:d8:1a:cc:02:57:f9:3d:bf:1c:ae:0a:ba: 4e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EB:5E:F6:27:01:BE:9E:DF:67:82:45:B4:98:F6:EB:68:E6:1B:69 X509v3 Authority Key Identifier: keyid:FC:13:F7:FA:23:7F:89:D0:11:23:3B:AC:73:28:C2:21:9B:A7:D6:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_BP3-iN_idARIzuscyjCIZun1iw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/09af2b-64f7-4c1d-abd4-d07464b9b378/1/tOte9icBvp7fZ4JFtJj262jmG2k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/09af2b-64f7-4c1d-abd4-d07464b9b378/1/_BP3-iN_idARIzuscyjCIZun1iw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.61.80.0/21 62.40.27.24/29 80.87.160.0/20 185.32.32.0/22 195.135.178.8/30 195.135.178.240/29 212.237.160.0/21 IPv6: 2a00:5f40::/29 Signature Algorithm: sha256WithRSAEncryption 3a:2c:1f:da:af:18:f4:c6:d7:09:44:7c:8f:aa:87:ca:b0:17: 88:90:54:50:ba:8d:67:81:f7:77:fc:90:e0:cd:05:f6:f4:ba: 4d:09:cf:92:51:ff:b4:a6:41:b7:06:c3:b3:53:d1:a1:79:2a: ef:74:db:31:34:40:ee:05:0d:d6:18:a3:37:57:c9:79:4e:d4: cd:77:f0:52:41:5e:9f:9f:4b:29:96:b8:6c:bc:e4:02:36:5b: bf:00:91:29:d8:40:16:25:43:25:0b:0b:d7:5d:a5:12:10:a8: 66:73:91:b7:9c:94:12:f7:3d:59:e4:25:ee:79:72:db:de:6e: 69:f9:ea:c6:89:da:b9:d4:99:7e:57:77:7b:46:19:eb:db:49: 41:a1:16:60:72:ce:4f:bf:7f:b6:e5:bc:dc:1e:ff:8e:09:ed: 40:9f:6e:83:81:b6:0a:8d:74:9e:a4:b4:89:f1:f2:5b:6d:5f: f5:d9:28:df:bc:b3:12:6c:df:0f:52:72:8f:33:44:f9:75:ae: a2:43:97:24:a0:21:5c:ed:41:38:45:1e:8b:b2:ba:cf:d9:9b: 7f:d1:7e:6e:d9:d9:ef:84:18:97:cc:81:d8:d4:89:0b:a0:df: 69:11:aa:73:2c:7e:38:bc:99:a5:e2:6b:12:24:11:70:ce:fa: d0:05:8f:38 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZt/gmcEDY04bgzrJkezGHBbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjMTNmN2ZhMjM3Zjg5ZDAxMTIzM2JhYzczMjhjMjIxOWJh N2Q2MmMwHhcNMjYwMTAyMTYyMDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGViNWVmNjI3MDFiZTllZGY2NzgyNDViNDk4ZjZlYjY4ZTYxYjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBNjFiXRrQ6cwaUd4CkzjFurXrcm zhQQ7xmLjmJ1ciZUx3o9SwdzRMxMRjb4htPOL+EPxQUNuieh8uL9xZkFRi2nVLDq VuWz5oS14tnSqcrPLTsDDkmFX8ycu8DoTb+mnEsqqvrN7GMYr8MpvEAH4Ef3+vrc kvBrYqb6x7nre/6ycLMuQHt0iWBHffdcE8LANrzkguvBGOtLABLbWGd67xmGJoCV NsIhn6KcNthamYR6xGXn/UzN3DZMhAkV7AMIXN6eXbQdgOVgouKQm7ki3BiTDgj8 X0OfxQIMTWAcgitQJelcEmsNyFLh2ZOHP+iVaAzYGswCV/k9vxyuCrpO+wIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFLTrXvYnAb6e32eCRbSY9uto5htpMB8GA1UdIwQY MBaAFPwT9/ojf4nQESM7rHMowiGbp9YsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0JQMy1pTl9pZEFSSXp1c2N5akNJWnVuMWl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8wOWFmMmItNjRmNy00YzFkLWFiZDQt ZDA3NDY0YjliMzc4LzEvdE90ZTlpY0J2cDdmWjRKRnRKajI2MmptRzJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8wOWFmMmItNjRmNy00YzFkLWFiZDQtZDA3NDY0YjliMzc4 LzEvX0JQMy1pTl9pZEFSSXp1c2N5akNJWnVuMWl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDAzBAIAATAtAwQDBT1QAwUD PigbGAMEBFBXoAMEArkgIAMFAsOHsggDBQPDh7LwAwQD1O2gMA0EAgACMAcDBQMq AF9AMA0GCSqGSIb3DQEBCwUAA4IBAQA6LB/arxj0xtcJRHyPqofKsBeIkFRQuo1n gfd3/JDgzQX29LpNCc+SUf+0pkG3BsOzU9GheSrvdNsxNEDuBQ3WGKM3V8l5TtTN d/BSQV6fn0splrhsvOQCNlu/AJEp2EAWJUMlCwvXXaUSEKhmc5G3nJQS9z1Z5CXu eXLb3m5p+erGidq51Jl+V3d7Rhnr20lBoRZgcs5Pv3+25bzcHv+OCe1An26DgbYK jXSepLSJ8fJbbV/12SjfvLMSbN8PUnKPM0T5da6iQ5ckoCFc7UE4RR6LsrrP2Zt/ 0X5u2dnvhBiXzIHY1IkLoN9pEapzLH44vJml4msSJBFwzvrQBY84 -----END CERTIFICATE-----Generated at Sun Jan 25 20:00:58 2026 by rpki-client