This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/1db213-4afd-4407-ba9c-bd73609ee5da/1/fKz1A69yLCD9Hy5RMB-BhxbMKoI.roa File: fKz1A69yLCD9Hy5RMB-BhxbMKoI.roa (raw, json) Hash identifier: gMBhZrPmuKQd2KYBjPZnqO6rV1OivjKrkRnC0qrBguI= Subject key identifier: 7C:AC:F5:03:AF:72:2C:20:FD:1F:2E:51:30:1F:81:87:16:CC:2A:82 Certificate issuer: /CN=58d87d92f890c2d36596deca1cb0b0bb8b07a122 Certificate serial: 019B7CEE5342DF806FB0CE129BB48444D53D Authority key identifier: 58:D8:7D:92:F8:90:C2:D3:65:96:DE:CA:1C:B0:B0:BB:8B:07:A1:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WNh9kviQwtNllt7KHLCwu4sHoSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/1db213-4afd-4407-ba9c-bd73609ee5da/1/fKz1A69yLCD9Hy5RMB-BhxbMKoI.roa Signing time: Fri 02 Jan 2026 04:19:12 +0000 ROA not before: Fri 02 Jan 2026 04:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22351 IP address blocks: 80.255.32.0/19 maxlen: 19 80.255.32.0/23 maxlen: 23 80.255.44.0/23 maxlen: 23 82.206.128.0/17 maxlen: 17 82.206.163.0/24 maxlen: 24 82.206.219.0/24 maxlen: 24 213.185.96.0/19 maxlen: 19 2a00:fd8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/1db213-4afd-4407-ba9c-bd73609ee5da/1/WNh9kviQwtNllt7KHLCwu4sHoSI.crl rsync://rpki.ripe.net/repository/DEFAULT/10/1db213-4afd-4407-ba9c-bd73609ee5da/1/WNh9kviQwtNllt7KHLCwu4sHoSI.mft rsync://rpki.ripe.net/repository/DEFAULT/WNh9kviQwtNllt7KHLCwu4sHoSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:53:42:df:80:6f:b0:ce:12:9b:b4:84:44:d5:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58d87d92f890c2d36596deca1cb0b0bb8b07a122 Validity Not Before: Jan 2 04:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7cacf503af722c20fd1f2e51301f818716cc2a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:dd:fa:e1:96:27:81:ab:fb:cf:a3:00:6e: ff:9f:69:d9:7a:6d:e5:fb:35:6e:6a:88:4a:ab:34: 21:4c:a5:f1:09:d7:ff:65:4a:d3:d7:34:1f:96:ea: e3:19:26:93:88:92:72:a2:89:a5:16:0b:6b:73:76: 86:0b:04:80:b5:ee:41:10:ba:8c:a1:fe:49:40:a6: 64:00:a9:70:41:ec:e3:a3:8b:3a:0e:b7:28:c8:87: 69:fb:9a:44:85:e0:bf:80:9b:1d:ce:96:a2:a1:73: 57:da:0b:55:0d:d4:dc:f3:40:b7:0b:5c:1f:42:b5: 73:4f:20:22:ed:e2:c0:3b:9a:0e:db:dc:d7:b3:3d: ba:cb:50:9e:51:e2:39:fd:9b:ff:4d:f8:df:9c:4b: 95:7a:8d:d5:9e:05:fe:24:df:8a:4d:1f:9c:ad:15: fe:46:57:b9:44:77:57:fd:9b:d0:f4:ae:63:14:4c: 3e:c4:ae:d9:77:07:6c:2b:8f:16:e6:be:8a:7d:e4: f8:f4:01:1a:b2:b4:a7:a2:45:69:c5:96:d2:81:56: 34:95:db:4d:3c:01:92:fe:24:49:fc:17:39:8d:6e: 36:eb:b7:57:01:65:d2:a0:39:4a:84:3e:8e:e9:90: 9e:64:79:7d:2e:62:85:ec:bd:63:1d:96:97:0d:d7: 01:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AC:F5:03:AF:72:2C:20:FD:1F:2E:51:30:1F:81:87:16:CC:2A:82 X509v3 Authority Key Identifier: keyid:58:D8:7D:92:F8:90:C2:D3:65:96:DE:CA:1C:B0:B0:BB:8B:07:A1:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WNh9kviQwtNllt7KHLCwu4sHoSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/1db213-4afd-4407-ba9c-bd73609ee5da/1/fKz1A69yLCD9Hy5RMB-BhxbMKoI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/1db213-4afd-4407-ba9c-bd73609ee5da/1/WNh9kviQwtNllt7KHLCwu4sHoSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.255.32.0/19 82.206.128.0/17 213.185.96.0/19 IPv6: 2a00:fd8::/32 Signature Algorithm: sha256WithRSAEncryption 4d:17:21:4f:a3:55:b4:99:dc:0d:e5:af:58:d7:f1:e9:f2:ea: c4:40:0b:8b:95:eb:bc:05:01:3f:b6:22:54:a9:c5:03:48:94: 1e:77:12:52:ac:f4:2f:64:58:04:3c:16:b9:00:87:63:ad:9f: 5f:dc:f8:3e:44:c0:e6:9f:a2:de:53:d5:92:86:50:49:c3:55: bc:12:7f:39:2e:0d:16:ba:30:73:b0:1a:39:b8:5c:80:65:b4: a8:46:40:67:e3:b6:40:0c:09:77:0b:98:3f:c1:df:25:4c:46: 5f:19:f2:2d:46:a2:55:da:94:c3:c8:34:92:db:27:2f:7f:e2: aa:4c:af:e7:97:ec:3d:95:a2:81:4b:82:9e:c2:1b:e8:fa:03: 0a:61:5e:4e:54:d3:bc:53:15:81:a3:3a:30:be:b4:4f:d1:c8: d6:9f:1f:e7:fe:04:42:1f:d9:86:32:0a:b1:a3:d4:04:48:2f: f9:1a:03:5c:11:74:61:e6:3f:77:a7:4a:f3:a3:4a:6d:25:e3: 09:90:cb:18:99:3a:da:e3:63:64:b4:ca:23:6c:48:a2:50:7b: 9d:5e:95:a0:27:d1:a2:88:97:3d:a1:4e:92:fc:e7:ab:07:42: fc:dc:7b:b6:5c:34:77:2c:08:74:13:e0:92:1e:01:b0:e6:72: 56:cd:e5:f3 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt87lNC34BvsM4Sm7SERNU9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ZDg3ZDkyZjg5MGMyZDM2NTk2ZGVjYTFjYjBiMGJiOGIw N2ExMjIwHhcNMjYwMTAyMDQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Y2FjZjUwM2FmNzIyYzIwZmQxZjJlNTEzMDFmODE4NzE2Y2MyYTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRvd+uGWJ4Gr+8+jAG7/n2nZem3l +zVuaohKqzQhTKXxCdf/ZUrT1zQflurjGSaTiJJyoomlFgtrc3aGCwSAte5BELqM of5JQKZkAKlwQezjo4s6DrcoyIdp+5pEheC/gJsdzpaioXNX2gtVDdTc80C3C1wf QrVzTyAi7eLAO5oO29zXsz26y1CeUeI5/Zv/TfjfnEuVeo3VngX+JN+KTR+crRX+ Rle5RHdX/ZvQ9K5jFEw+xK7ZdwdsK48W5r6KfeT49AEasrSnokVpxZbSgVY0ldtN PAGS/iRJ/Bc5jW4267dXAWXSoDlKhD6O6ZCeZHl9LmKF7L1jHZaXDdcBDwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFHys9QOvciwg/R8uUTAfgYcWzCqCMB8GA1UdIwQY MBaAFFjYfZL4kMLTZZbeyhywsLuLB6EiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV05oOWt2aVF3dE5sbHQ3S0hMQ3d1NHNIb1NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8xZGIyMTMtNGFmZC00NDA3LWJhOWMt YmQ3MzYwOWVlNWRhLzEvZkt6MUE2OXlMQ0Q5SHk1Uk1CLUJoeGJNS29JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8xZGIyMTMtNGFmZC00NDA3LWJhOWMtYmQ3MzYwOWVlNWRh LzEvV05oOWt2aVF3dE5sbHQ3S0hMQ3d1NHNIb1NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQFUP8gAwQH Us6AAwQF1blgMA0EAgACMAcDBQAqAA/YMA0GCSqGSIb3DQEBCwUAA4IBAQBNFyFP o1W0mdwN5a9Y1/Hp8urEQAuLleu8BQE/tiJUqcUDSJQedxJSrPQvZFgEPBa5AIdj rZ9f3Pg+RMDmn6LeU9WShlBJw1W8En85Lg0WujBzsBo5uFyAZbSoRkBn47ZADAl3 C5g/wd8lTEZfGfItRqJV2pTDyDSS2ycvf+KqTK/nl+w9laKBS4Kewhvo+gMKYV5O VNO8UxWBozowvrRP0cjWnx/n/gRCH9mGMgqxo9QESC/5GgNcEXRh5j93p0rzo0pt JeMJkMsYmTra42NktMojbEiiUHudXpWgJ9GiiJc9oU6S/OerB0L83Hu2XDR3LAh0 E+CSHgGw5nJWzeXz -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:10 2026 by rpki-client