This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/F13QQirUcyQJSbRfCl6w_cI9WWQ.roa File: F13QQirUcyQJSbRfCl6w_cI9WWQ.roa (raw, json) Hash identifier: Qmtb36fS7mGPq7TyueOpeM3xtlJooopxzuWWdKo+FIo= Subject key identifier: 17:5D:D0:42:2A:D4:73:24:09:49:B4:5F:0A:5E:B0:FD:C2:3D:59:64 Certificate issuer: /CN=ffb4f40f3211561c29f1bbc320bd87cfa2ddd029 Certificate serial: 019B79ECC78FF64FFBD25D49CF4720B2472B Authority key identifier: FF:B4:F4:0F:32:11:56:1C:29:F1:BB:C3:20:BD:87:CF:A2:DD:D0:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/F13QQirUcyQJSbRfCl6w_cI9WWQ.roa Signing time: Thu 01 Jan 2026 14:18:39 +0000 ROA not before: Thu 01 Jan 2026 14:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59943 IP address blocks: 2.59.64.0/24 maxlen: 24 91.208.211.0/24 maxlen: 24 91.223.195.0/24 maxlen: 24 185.3.216.0/22 maxlen: 24 193.104.8.0/24 maxlen: 24 194.32.152.0/22 maxlen: 22 194.32.152.0/24 maxlen: 24 194.32.153.0/24 maxlen: 24 194.32.154.0/24 maxlen: 24 194.32.155.0/24 maxlen: 24 194.247.160.0/23 maxlen: 23 195.225.164.0/22 maxlen: 22 195.225.164.0/24 maxlen: 24 195.225.166.0/24 maxlen: 24 195.225.167.0/24 maxlen: 24 2a02:5b40::/32 maxlen: 32 2a02:5b41::/32 maxlen: 32 2a09:e940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.mft rsync://rpki.ripe.net/repository/DEFAULT/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 23:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c7:8f:f6:4f:fb:d2:5d:49:cf:47:20:b2:47:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffb4f40f3211561c29f1bbc320bd87cfa2ddd029 Validity Not Before: Jan 1 14:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=175dd0422ad473240949b45f0a5eb0fdc23d5964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4b:6c:ba:17:d3:9b:20:89:d1:00:52:54:d3: 60:56:1a:be:30:3b:b1:cf:31:b3:dd:d6:91:9f:91: 29:70:7b:f9:7f:74:5e:3f:fe:37:3f:ea:08:01:21: ad:e4:d0:25:42:6e:e0:cc:b3:e3:b9:ae:0b:88:be: 50:2d:e4:21:f8:e8:51:c1:2d:1f:9f:09:fd:74:c1: e6:27:eb:dd:4a:80:4e:56:f9:57:25:8b:75:00:61: 1a:ac:b5:f9:39:ba:4e:2f:65:ef:e0:4d:10:5f:31: 60:d8:e7:3e:64:c2:9f:ca:1d:e4:84:b1:9a:90:b2: 7a:22:62:b3:c0:9c:3e:72:74:97:c0:f1:98:e5:2d: 3f:0a:3a:c6:a4:68:39:ae:c9:b6:ae:97:c3:94:85: 98:44:82:3e:dd:c8:de:6c:16:b1:9b:ef:ba:b3:da: ed:d5:83:73:c4:12:35:63:fe:f3:13:dd:c1:36:d5: ed:80:4c:79:02:73:31:ba:42:34:16:13:ad:df:d3: 22:03:32:1e:e0:a4:e5:d6:63:5d:64:76:e7:70:3b: ca:da:74:3d:2a:be:d6:79:5a:b9:77:69:0d:c4:a0: 38:8b:4a:54:1d:f1:eb:1b:a2:78:26:e8:c5:1c:78: a6:27:37:0b:a2:cc:5f:3e:03:f9:b0:fe:86:89:0f: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5D:D0:42:2A:D4:73:24:09:49:B4:5F:0A:5E:B0:FD:C2:3D:59:64 X509v3 Authority Key Identifier: keyid:FF:B4:F4:0F:32:11:56:1C:29:F1:BB:C3:20:BD:87:CF:A2:DD:D0:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/F13QQirUcyQJSbRfCl6w_cI9WWQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.64.0/24 91.208.211.0/24 91.223.195.0/24 185.3.216.0/22 193.104.8.0/24 194.32.152.0/22 194.247.160.0/23 195.225.164.0/22 IPv6: 2a02:5b40::/31 2a09:e940::/48 Signature Algorithm: sha256WithRSAEncryption a7:11:be:8d:d1:bb:3b:46:11:4f:ff:03:35:b9:9e:2f:42:86: 0c:b3:22:6a:33:c1:8b:69:6b:f7:22:6a:d4:ca:58:83:bc:2b: 57:fc:cb:1b:5b:40:15:7f:df:ec:db:f0:6b:05:49:03:fb:c5: ea:6f:e3:48:7b:2b:86:2f:87:e9:d6:36:b2:48:ac:38:2a:68: 60:82:12:33:a4:c9:da:4e:05:27:b4:6b:27:33:49:c7:be:0c: a6:6b:2e:0d:39:24:24:62:e7:f3:b7:dc:e6:d0:e0:d5:ef:e1: ea:a9:76:76:fa:e9:a4:be:3c:be:12:88:4f:35:73:b6:68:49: 95:03:ff:80:d4:f0:f4:25:75:c2:be:f2:c3:1c:32:1c:68:15: 87:62:7d:99:5c:8a:d9:ec:bf:37:2f:e7:8f:99:3d:9c:d4:92: 58:2d:d3:f6:8a:2d:fd:e7:67:0a:3d:b3:a9:bf:d6:c6:e0:de: c8:44:0c:ab:e5:eb:18:71:1a:4a:09:29:32:81:d8:6e:84:5c: b1:58:0b:b1:05:49:e2:af:cd:68:fc:d4:ae:85:8a:a7:46:77: f6:4d:6e:48:b6:47:7e:05:01:4d:e5:c7:a5:8d:6f:0a:c0:c9: 02:14:32:ba:fc:b6:01:17:6e:ec:5d:70:f3:8d:0c:54:19:a8: d9:16:a9:0f -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgISAZt57MeP9k/70l1Jz0cgskcrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmYjRmNDBmMzIxMTU2MWMyOWYxYmJjMzIwYmQ4N2NmYTJk ZGQwMjkwHhcNMjYwMTAxMTQxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzVkZDA0MjJhZDQ3MzI0MDk0OWI0NWYwYTVlYjBmZGMyM2Q1OTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzktsuhfTmyCJ0QBSVNNgVhq+MDux zzGz3daRn5EpcHv5f3ReP/43P+oIASGt5NAlQm7gzLPjua4LiL5QLeQh+OhRwS0f nwn9dMHmJ+vdSoBOVvlXJYt1AGEarLX5ObpOL2Xv4E0QXzFg2Oc+ZMKfyh3khLGa kLJ6ImKzwJw+cnSXwPGY5S0/CjrGpGg5rsm2rpfDlIWYRII+3cjebBaxm++6s9rt 1YNzxBI1Y/7zE93BNtXtgEx5AnMxukI0FhOt39MiAzIe4KTl1mNdZHbncDvK2nQ9 Kr7WeVq5d2kNxKA4i0pUHfHrG6J4JujFHHimJzcLosxfPgP5sP6GiQ8m4QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFBdd0EIq1HMkCUm0XwpesP3CPVlkMB8GA1UdIwQY MBaAFP+09A8yEVYcKfG7wyC9h8+i3dApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzdUMER6SVJWaHdwOGJ2RElMMkh6NkxkMENrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xNDhkODgtNjEzNi00Mzc0LTk5NGIt ZDUzZjk0ZTIwN2E5LzEvRjEzUVFpclVjeVFKU2JSZkNsNndfY0k5V1dRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8xNDhkODgtNjEzNi00Mzc0LTk5NGItZDUzZjk0ZTIwN2E5 LzEvXzdUMER6SVJWaHdwOGJ2RElMMkh6NkxkMENrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDA2BAIAATAwAwQAAjtAAwQA W9DTAwQAW9/DAwQCuQPYAwQAwWgIAwQCwiCYAwQBwvegAwQCw+GkMBYEAgACMBAD BQEqAltAAwcAKgnpQAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCnEb6N0bs7RhFP/wM1 uZ4vQoYMsyJqM8GLaWv3ImrUyliDvCtX/MsbW0AVf9/s2/BrBUkD+8Xqb+NIeyuG L4fp1jaySKw4KmhgghIzpMnaTgUntGsnM0nHvgymay4NOSQkYufzt9zm0ODV7+Hq qXZ2+umkvjy+EohPNXO2aEmVA/+A1PD0JXXCvvLDHDIcaBWHYn2ZXIrZ7L83L+eP mT2c1JJYLdP2ii3952cKPbOpv9bG4N7IRAyr5esYcRpKCSkygdhuhFyxWAuxBUni r81o/NSuhYqnRnf2TW5Itkd+BQFN5celjW8KwMkCFDK6/LYBF27sXXDzjQxUGajZ FqkP -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:45 2026 by rpki-client