This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/FSRjH62OmIOzSD8Cw7TNZhyzeIE.roa File: FSRjH62OmIOzSD8Cw7TNZhyzeIE.roa (raw, json) Hash identifier: oajsdOrMfY1vgE6M5+Oklmzh+pRKIVrhZXlk/pOgIMc= Subject key identifier: 15:24:63:1F:AD:8E:98:83:B3:48:3F:02:C3:B4:CD:66:1C:B3:78:81 Certificate issuer: /CN=77c6fb655461d73fcf21e8612c318706a089a5c2 Certificate serial: 019B797EEF2457BF3605ECC6A341593BCE27 Authority key identifier: 77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/FSRjH62OmIOzSD8Cw7TNZhyzeIE.roa Signing time: Thu 01 Jan 2026 12:18:40 +0000 ROA not before: Thu 01 Jan 2026 12:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206893 IP address blocks: 185.172.228.0/24 maxlen: 24 185.172.229.0/24 maxlen: 24 185.172.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:ef:24:57:bf:36:05:ec:c6:a3:41:59:3b:ce:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77c6fb655461d73fcf21e8612c318706a089a5c2 Validity Not Before: Jan 1 12:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1524631fad8e9883b3483f02c3b4cd661cb37881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:00:47:cc:f0:7e:c5:95:51:01:85:08:e5:f8: ef:bf:9f:8b:9f:9c:bb:fc:2e:63:a1:6c:e5:80:4f: f7:74:b0:18:c0:4a:3f:39:09:86:05:b0:1c:f9:be: 02:fe:9d:24:8e:c2:b6:f0:e2:1d:40:a5:7a:df:d7: 73:bf:69:d8:10:bf:91:6f:d3:f6:89:9f:e3:a3:d5: c0:37:01:5a:69:0f:ab:56:52:0c:f7:a3:1d:8d:8f: b8:d4:1d:82:a9:54:cc:cb:2b:56:54:be:79:b0:ca: 72:ac:22:ef:b8:1c:85:f7:6d:69:cf:dc:a5:48:b5: af:06:c8:62:16:ec:37:4b:9c:51:72:6c:a7:93:d1: 28:04:51:5a:37:92:ad:39:bd:67:1e:84:4c:ff:cf: b3:78:df:0f:2d:c5:b3:1b:88:71:ae:e4:ad:e0:2f: 40:d9:dc:53:64:97:76:1f:7f:c6:2e:7f:de:18:53: 77:8a:36:5e:81:d2:4f:40:91:27:94:47:e9:be:15: 15:bf:dc:77:29:e9:fc:3c:ff:55:d8:ff:3a:5c:ca: 88:6a:95:93:cf:a6:c1:67:b4:d3:3a:2c:7f:a9:1c: 8a:28:5d:23:14:ae:84:30:ab:55:a0:49:58:94:d1: a0:9c:0e:5e:b6:68:be:ca:24:61:5d:00:64:b8:54: 18:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:24:63:1F:AD:8E:98:83:B3:48:3F:02:C3:B4:CD:66:1C:B3:78:81 X509v3 Authority Key Identifier: keyid:77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/FSRjH62OmIOzSD8Cw7TNZhyzeIE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.228.0-185.172.230.255 Signature Algorithm: sha256WithRSAEncryption 0c:b8:6e:2e:a0:a1:8c:f1:89:03:53:2d:5d:30:b9:1d:b3:4f: e6:16:db:4a:ad:ca:7d:e4:93:03:7c:9e:7a:94:a5:85:45:30: 9a:be:8a:0c:d5:e5:31:54:80:7e:75:ad:59:2b:d0:4d:6d:d7: 52:69:c8:eb:61:f2:f0:ef:2f:34:05:7e:7f:9c:15:94:2d:0d: 31:a7:68:06:68:96:87:a2:fe:56:80:95:bb:c5:a9:0e:84:47: 26:37:b1:5b:78:d8:a0:36:f5:66:a1:29:ad:d1:b8:f0:6e:82: cf:68:ed:9f:cb:be:54:ad:78:62:7f:4b:0d:68:a0:1e:2f:c4: c4:b8:96:15:bc:5b:ca:3d:b8:68:6b:d2:99:f3:9f:a1:ab:96: cb:57:b0:0c:ae:b4:51:f2:d8:f3:3e:13:ab:5b:f0:42:32:82: 10:e5:2f:55:f6:72:bd:74:71:f1:a9:3a:46:a8:e9:7a:e3:75: 07:15:0a:57:b7:9c:4b:fb:25:2d:e5:8f:23:fa:4f:80:f2:ac: ec:4c:da:44:67:4e:83:68:85:c7:cc:c6:41:70:58:9a:03:d4: 10:40:91:ab:3a:9a:bf:43:89:a9:75:f4:ee:75:94:76:d1:22: 36:b9:3f:f6:5a:3c:c7:a8:ce:ee:0c:ba:b1:15:99:ad:3f:19: 27:28:b4:27 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt5fu8kV782BezGo0FZO84nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3YzZmYjY1NTQ2MWQ3M2ZjZjIxZTg2MTJjMzE4NzA2YTA4 OWE1YzIwHhcNMjYwMTAxMTIxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNTI0NjMxZmFkOGU5ODgzYjM0ODNmMDJjM2I0Y2Q2NjFjYjM3ODgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtABHzPB+xZVRAYUI5fjvv5+Ln5y7 /C5joWzlgE/3dLAYwEo/OQmGBbAc+b4C/p0kjsK28OIdQKV639dzv2nYEL+Rb9P2 iZ/jo9XANwFaaQ+rVlIM96MdjY+41B2CqVTMyytWVL55sMpyrCLvuByF921pz9yl SLWvBshiFuw3S5xRcmynk9EoBFFaN5KtOb1nHoRM/8+zeN8PLcWzG4hxruSt4C9A 2dxTZJd2H3/GLn/eGFN3ijZegdJPQJEnlEfpvhUVv9x3Ken8PP9V2P86XMqIapWT z6bBZ7TTOix/qRyKKF0jFK6EMKtVoElYlNGgnA5etmi+yiRhXQBkuFQYiwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFBUkYx+tjpiDs0g/AsO0zWYcs3iBMB8GA1UdIwQY MBaAFHfG+2VUYdc/zyHoYSwxhwagiaXCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDhiN1pWUmgxel9QSWVoaExER0hCcUNKcGNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kZjBlMTEtNTkzYS00ZWU0LThkY2Yt YWIzMDgxYjJhYmE0LzEvRlNSakg2Mk9tSU96U0Q4Q3c3VE5aaHl6ZUlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9kZjBlMTEtNTkzYS00ZWU0LThkY2YtYWIzMDgxYjJhYmE0 LzEvZDhiN1pWUmgxel9QSWVoaExER0hCcUNKcGNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK5rOQD BAC5rOYwDQYJKoZIhvcNAQELBQADggEBAAy4bi6goYzxiQNTLV0wuR2zT+YW20qt yn3kkwN8nnqUpYVFMJq+igzV5TFUgH51rVkr0E1t11JpyOth8vDvLzQFfn+cFZQt DTGnaAZoloei/laAlbvFqQ6ERyY3sVt42KA29WahKa3RuPBugs9o7Z/LvlSteGJ/ Sw1ooB4vxMS4lhW8W8o9uGhr0pnzn6GrlstXsAyutFHy2PM+E6tb8EIyghDlL1X2 cr10cfGpOkao6XrjdQcVCle3nEv7JS3ljyP6T4DyrOxM2kRnToNohcfMxkFwWJoD 1BBAkas6mr9Dial19O51lHbRIja5P/ZaPMeozu4MurEVma0/GScotCc= -----END CERTIFICATE-----Generated at Mon Jan 26 10:53:02 2026 by rpki-client