This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/FIc01Lo1yeWxE-xTe7CiddAVpBk.roa File: FIc01Lo1yeWxE-xTe7CiddAVpBk.roa (raw, json) Hash identifier: hMcJ6OK+PeXHDyYgCQtCCTDn1eungDLXByvXPV4zXXA= Subject key identifier: 14:87:34:D4:BA:35:C9:E5:B1:13:EC:53:7B:B0:A2:75:D0:15:A4:19 Certificate issuer: /CN=64757185472f16d53eeb68a140e3513fa31c31d8 Certificate serial: 019B7758DB4660D0CD8D14504BAEC6BC9F06 Authority key identifier: 64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/FIc01Lo1yeWxE-xTe7CiddAVpBk.roa Signing time: Thu 01 Jan 2026 02:17:50 +0000 ROA not before: Thu 01 Jan 2026 02:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39010 IP address blocks: 185.70.224.0/24 maxlen: 24 185.70.225.0/24 maxlen: 24 185.70.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.mft rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:db:46:60:d0:cd:8d:14:50:4b:ae:c6:bc:9f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64757185472f16d53eeb68a140e3513fa31c31d8 Validity Not Before: Jan 1 02:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=148734d4ba35c9e5b113ec537bb0a275d015a419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:07:ff:d2:b0:a6:c7:7d:9e:96:f3:8d:6c:ce: b2:ba:15:de:b0:0a:36:36:5a:04:da:d8:ab:01:a0: 0b:26:27:26:51:06:f5:d0:f8:da:45:ec:f7:c4:8b: b5:0d:3a:af:53:81:33:a1:ff:24:7d:eb:67:0a:70: 79:83:fc:7d:ba:6b:08:fc:76:3c:e1:ef:59:93:5b: ea:28:b4:3a:f1:3c:49:43:37:5b:fd:ed:9e:2f:4f: 83:75:e9:98:e9:5f:06:cf:63:e8:b0:52:44:21:82: 77:61:2d:86:ff:4c:19:54:db:8a:be:6a:27:dc:26: 46:88:66:ee:3c:fa:f0:42:f6:ec:bd:17:1a:49:35: fa:e5:cf:12:40:e1:98:83:ab:2c:c8:65:63:5c:72: 34:f4:71:c8:64:6b:c2:cf:9f:fb:7e:44:17:59:a2: c5:e2:ec:e1:59:a5:2c:2f:17:15:da:41:87:8f:3c: b8:1f:6e:bb:92:bc:e3:3e:de:c0:37:e7:21:09:37: db:ef:16:82:2b:ee:3a:2b:74:8b:89:c0:d5:09:ed: 76:a3:bb:0c:be:2a:03:52:20:e2:8b:ac:6b:20:53: dd:ab:25:94:34:2c:dd:60:81:0b:f0:4d:6b:bc:d1: c0:77:ff:89:20:f2:c3:9f:6d:8f:5d:da:97:eb:9d: 82:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:87:34:D4:BA:35:C9:E5:B1:13:EC:53:7B:B0:A2:75:D0:15:A4:19 X509v3 Authority Key Identifier: keyid:64:75:71:85:47:2F:16:D5:3E:EB:68:A1:40:E3:51:3F:A3:1C:31:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZHVxhUcvFtU-62ihQONRP6McMdg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/FIc01Lo1yeWxE-xTe7CiddAVpBk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/121447-d2c8-4ca8-96c7-81d10073dee4/1/ZHVxhUcvFtU-62ihQONRP6McMdg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.70.224.0-185.70.226.255 Signature Algorithm: sha256WithRSAEncryption 81:94:6c:85:d1:f0:fb:e9:d4:8d:32:92:74:31:81:01:54:f5: 82:41:22:15:77:a4:f6:95:5a:d4:03:50:dc:7e:59:ff:8b:39: 80:4e:1f:f9:26:4b:bf:f8:e8:96:c9:8a:03:4f:32:a3:06:5e: 8b:67:e3:f4:ca:58:a0:80:07:48:d3:a3:cc:02:4f:95:aa:68: 14:13:b3:d2:b6:a1:68:19:3a:31:24:a4:bf:09:1f:b0:c1:f7: 6a:03:95:51:ee:a9:14:4b:d6:23:34:33:f8:b2:a9:e9:3c:25: 02:53:fc:02:23:64:01:e8:07:7e:e6:7b:a2:b7:6d:2d:91:89: 95:89:77:a9:04:f7:84:b3:a2:b1:02:7d:85:23:b6:84:33:e8: 8c:b8:8b:a6:11:57:4a:c7:e4:80:55:79:12:6f:57:01:86:3d: fd:25:ad:62:2c:bc:d8:66:77:11:fa:b5:0c:e1:05:51:82:1b: a7:4f:e7:21:b5:ca:02:4c:39:3c:f1:11:9d:c3:97:01:96:14: a4:96:cd:d5:b9:c8:f7:cd:cf:4f:19:d0:96:40:64:f7:a8:cb: 60:e8:3f:29:26:fe:e1:3d:20:78:0e:0f:5e:83:73:31:75:05: dd:d9:39:8f:58:42:75:93:8b:0c:a8:23:c9:97:bc:aa:13:e9: d5:80:89:4a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3WNtGYNDNjRRQS67GvJ8GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0NzU3MTg1NDcyZjE2ZDUzZWViNjhhMTQwZTM1MTNmYTMx YzMxZDgwHhcNMjYwMTAxMDIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDg3MzRkNGJhMzVjOWU1YjExM2VjNTM3YmIwYTI3NWQwMTVhNDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQf/0rCmx32elvONbM6yuhXesAo2 NloE2tirAaALJicmUQb10PjaRez3xIu1DTqvU4Ezof8kfetnCnB5g/x9umsI/HY8 4e9Zk1vqKLQ68TxJQzdb/e2eL0+DdemY6V8Gz2PosFJEIYJ3YS2G/0wZVNuKvmon 3CZGiGbuPPrwQvbsvRcaSTX65c8SQOGYg6ssyGVjXHI09HHIZGvCz5/7fkQXWaLF 4uzhWaUsLxcV2kGHjzy4H267krzjPt7AN+chCTfb7xaCK+46K3SLicDVCe12o7sM vioDUiDii6xrIFPdqyWUNCzdYIEL8E1rvNHAd/+JIPLDn22PXdqX652CEQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFBSHNNS6NcnlsRPsU3uwonXQFaQZMB8GA1UdIwQY MBaAFGR1cYVHLxbVPutooUDjUT+jHDHYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkhWeGhVY3ZGdFUtNjJpaFFPTlJQNk1jTWRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8xMjE0NDctZDJjOC00Y2E4LTk2Yzct ODFkMTAwNzNkZWU0LzEvRkljMDFMbzF5ZVd4RS14VGU3Q2lkZEFWcEJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8xMjE0NDctZDJjOC00Y2E4LTk2YzctODFkMTAwNzNkZWU0 LzEvWkhWeGhVY3ZGdFUtNjJpaFFPTlJQNk1jTWRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAW5RuAD BAC5RuIwDQYJKoZIhvcNAQELBQADggEBAIGUbIXR8Pvp1I0yknQxgQFU9YJBIhV3 pPaVWtQDUNx+Wf+LOYBOH/kmS7/46JbJigNPMqMGXotn4/TKWKCAB0jTo8wCT5Wq aBQTs9K2oWgZOjEkpL8JH7DB92oDlVHuqRRL1iM0M/iyqek8JQJT/AIjZAHoB37m e6K3bS2RiZWJd6kE94SzorECfYUjtoQz6Iy4i6YRV0rH5IBVeRJvVwGGPf0lrWIs vNhmdxH6tQzhBVGCG6dP5yG1ygJMOTzxEZ3DlwGWFKSWzdW5yPfNz08Z0JZAZPeo y2DoPykm/uE9IHgOD16DczF1Bd3ZOY9YQnWTiwyoI8mXvKoT6dWAiUo= -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:16 2026 by rpki-client