This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/b_fQMMIwgcaDVvrW1QJiiKgK99E.roa File: b_fQMMIwgcaDVvrW1QJiiKgK99E.roa (raw, json) Hash identifier: 5m44p3jiNkF4BUf5irvaCSsfFFem9Luxqo/TF+/TMP8= Subject key identifier: 6F:F7:D0:30:C2:30:81:C6:83:56:FA:D6:D5:02:62:88:A8:0A:F7:D1 Certificate issuer: /CN=66d8a84f0e8cf755137a9680ebcc4fccd20a34b2 Certificate serial: 019B7910CD724A645499E91FD1879B512A93 Authority key identifier: 66:D8:A8:4F:0E:8C:F7:55:13:7A:96:80:EB:CC:4F:CC:D2:0A:34:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/b_fQMMIwgcaDVvrW1QJiiKgK99E.roa Signing time: Thu 01 Jan 2026 10:18:22 +0000 ROA not before: Thu 01 Jan 2026 10:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205804 IP address blocks: 195.246.200.0/22 maxlen: 24 2a0d:12c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.mft rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:cd:72:4a:64:54:99:e9:1f:d1:87:9b:51:2a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66d8a84f0e8cf755137a9680ebcc4fccd20a34b2 Validity Not Before: Jan 1 10:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6ff7d030c23081c68356fad6d5026288a80af7d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4c:c3:38:2d:95:73:f6:32:e8:01:6b:b4:4e: c6:a0:e5:a4:1e:f3:60:05:d2:a2:e3:82:36:a2:22: a7:c9:82:3a:4d:f0:27:4d:68:7a:43:3f:09:f0:c0: 4f:32:b2:1d:ed:f7:8c:5a:60:5b:78:90:31:3b:72: af:37:ea:04:ef:17:9e:11:6b:cd:01:29:96:f8:18: b4:47:3c:aa:60:91:f9:74:85:bc:1b:f8:35:09:90: 2c:13:b4:1c:4a:18:34:23:c3:3a:4f:cc:4f:37:8d: 94:3a:5a:46:9f:1d:9f:3a:ee:ab:d9:01:7d:6b:1d: 92:5a:f5:6c:02:38:42:21:93:c3:bb:26:ab:99:96: 9c:30:46:38:41:22:a8:3d:45:88:cd:91:96:fe:37: 04:7f:fb:ed:8e:65:da:90:44:e7:4a:4f:6a:3b:d5: 14:c9:a6:b3:ad:a6:ab:4f:33:9e:8f:f5:20:5a:5d: ce:a2:14:56:05:21:d1:79:7a:b7:31:91:66:11:44: a6:9f:62:8d:13:ba:0b:d6:3b:3e:a9:a3:7c:86:e8: 6e:be:15:59:46:07:c2:b0:44:39:57:b5:58:dc:c3: 99:fa:6a:43:a0:4c:01:15:af:d2:0d:80:09:23:77: 44:fc:15:fb:07:61:f2:46:75:0a:ef:47:64:db:8f: 1f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F7:D0:30:C2:30:81:C6:83:56:FA:D6:D5:02:62:88:A8:0A:F7:D1 X509v3 Authority Key Identifier: keyid:66:D8:A8:4F:0E:8C:F7:55:13:7A:96:80:EB:CC:4F:CC:D2:0A:34:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtioTw6M91UTepaA68xPzNIKNLI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/b_fQMMIwgcaDVvrW1QJiiKgK99E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5d5cc5-9d98-415a-ab0e-aa1481f0c13a/1/ZtioTw6M91UTepaA68xPzNIKNLI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.246.200.0/22 IPv6: 2a0d:12c0::/32 Signature Algorithm: sha256WithRSAEncryption 58:4c:78:21:28:de:d9:76:29:24:b6:f9:ac:77:92:2c:a3:6c: 70:8b:b0:9c:d0:11:7c:36:84:71:d6:98:4f:e4:7a:a8:c9:f5: 77:ea:57:cd:86:b3:f5:47:c1:58:72:dc:7f:a5:60:37:11:35: ee:39:21:6c:dc:25:ce:10:16:bb:25:45:6c:15:20:b1:e3:b2: c6:c4:c3:0d:94:7b:11:47:a3:d2:24:8e:37:60:87:f4:5d:db: 19:a8:07:04:78:cd:29:b1:37:32:fa:99:24:53:92:6b:a7:fa: d0:78:32:e7:e9:e1:85:a1:e7:6b:14:a0:36:85:c0:3d:69:73: ad:b3:23:26:85:1d:52:37:f0:a5:ad:d6:38:ec:75:34:14:1a: 5f:89:8a:cc:bd:67:c9:d7:73:28:c3:5f:dd:30:5e:dd:2d:9b: ab:0a:a1:92:43:24:e1:28:00:78:09:28:13:c6:d7:c8:4d:78: 9b:fd:bd:c0:9e:ef:d0:90:30:c4:f2:e2:cb:73:05:97:ca:b1: 68:52:94:54:63:8e:88:3a:77:98:e0:1a:b9:e8:57:c3:c4:d0: a2:0c:d1:8c:a7:04:a2:e3:42:e4:b2:b7:67:b4:32:04:9d:ab: e8:88:0b:ab:15:b3:ea:9f:87:50:27:cb:aa:9c:b0:01:5b:ac: 86:39:e4:69 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EM1ySmRUmekf0YebUSqTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZDhhODRmMGU4Y2Y3NTUxMzdhOTY4MGViY2M0ZmNjZDIw YTM0YjIwHhcNMjYwMTAxMTAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZmY3ZDAzMGMyMzA4MWM2ODM1NmZhZDZkNTAyNjI4OGE4MGFmN2QxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEzDOC2Vc/Yy6AFrtE7GoOWkHvNg BdKi44I2oiKnyYI6TfAnTWh6Qz8J8MBPMrId7feMWmBbeJAxO3KvN+oE7xeeEWvN ASmW+Bi0RzyqYJH5dIW8G/g1CZAsE7QcShg0I8M6T8xPN42UOlpGnx2fOu6r2QF9 ax2SWvVsAjhCIZPDuyarmZacMEY4QSKoPUWIzZGW/jcEf/vtjmXakETnSk9qO9UU yaazraarTzOej/UgWl3OohRWBSHReXq3MZFmEUSmn2KNE7oL1js+qaN8huhuvhVZ RgfCsEQ5V7VY3MOZ+mpDoEwBFa/SDYAJI3dE/BX7B2HyRnUK70dk248fDwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFG/30DDCMIHGg1b61tUCYoioCvfRMB8GA1UdIwQY MBaAFGbYqE8OjPdVE3qWgOvMT8zSCjSyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnRpb1R3Nk05MVVUZXBhQTY4eFB6TklLTkxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81ZDVjYzUtOWQ5OC00MTVhLWFiMGUt YWExNDgxZjBjMTNhLzEvYl9mUU1NSXdnY2FEVnZyVzFRSmlpS2dLOTlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81ZDVjYzUtOWQ5OC00MTVhLWFiMGUtYWExNDgxZjBjMTNh LzEvWnRpb1R3Nk05MVVUZXBhQTY4eFB6TklLTkxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCw/bIMA0E AgACMAcDBQAqDRLAMA0GCSqGSIb3DQEBCwUAA4IBAQBYTHghKN7Zdikktvmsd5Is o2xwi7Cc0BF8NoRx1phP5HqoyfV36lfNhrP1R8FYctx/pWA3ETXuOSFs3CXOEBa7 JUVsFSCx47LGxMMNlHsRR6PSJI43YIf0XdsZqAcEeM0psTcy+pkkU5Jrp/rQeDLn 6eGFoedrFKA2hcA9aXOtsyMmhR1SN/ClrdY47HU0FBpfiYrMvWfJ13Mow1/dMF7d LZurCqGSQyThKAB4CSgTxtfITXib/b3Anu/QkDDE8uLLcwWXyrFoUpRUY46IOneY 4Bq56FfDxNCiDNGMpwSi40LksrdntDIEnavoiAurFbPqn4dQJ8uqnLABW6yGOeRp -----END CERTIFICATE-----Generated at Mon Jan 26 12:20:46 2026 by rpki-client