This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/fmRq58mpG0rKIM2ubHEkVCGj3lg.roa File: fmRq58mpG0rKIM2ubHEkVCGj3lg.roa (raw, json) Hash identifier: gms/i5htVsFqQUspRwp2t/v4bZzOX6eOsTh27/wJ/To= Subject key identifier: 7E:64:6A:E7:C9:A9:1B:4A:CA:20:CD:AE:6C:71:24:54:21:A3:DE:58 Certificate issuer: /CN=92d7f69a04bd9cad523b39f77a2ddab44c291192 Certificate serial: 019B7CEE006B9EAB255CEC03A8FC68F437DA Authority key identifier: 92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/fmRq58mpG0rKIM2ubHEkVCGj3lg.roa Signing time: Fri 02 Jan 2026 04:18:51 +0000 ROA not before: Fri 02 Jan 2026 04:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2119 IP address blocks: 2001:67c:2458::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:00:6b:9e:ab:25:5c:ec:03:a8:fc:68:f4:37:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92d7f69a04bd9cad523b39f77a2ddab44c291192 Validity Not Before: Jan 2 04:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e646ae7c9a91b4aca20cdae6c71245421a3de58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ac:1c:86:32:47:07:fd:63:80:85:e9:e8:4e: ed:58:d6:76:47:ec:92:c9:f2:39:91:98:f4:dd:3d: cb:50:f8:04:b8:64:dc:c2:54:e1:81:25:36:9c:c1: 22:13:d2:2b:db:67:a5:ac:1e:da:a6:10:cd:55:58: 1c:37:c4:8f:e4:f2:19:16:dd:a4:8a:01:93:64:65: d1:45:3a:18:9b:ec:86:98:9a:d0:30:03:a3:1a:88: 86:75:b2:f4:87:ec:c4:c1:e6:c9:cd:b3:f5:07:39: 74:87:47:99:34:aa:3c:74:ca:f7:83:ca:a7:5c:fb: 43:96:17:b1:cf:d2:72:bc:54:3a:df:ec:eb:d6:77: e9:d7:24:f9:4e:22:9a:65:cd:f8:36:be:ca:74:87: 40:5c:57:3a:54:4b:95:a5:50:90:b9:ac:f4:36:34: e0:fb:9a:11:f7:d8:c3:46:54:44:d3:7a:e7:54:49: 25:fb:86:9d:5b:79:88:c2:99:4a:27:42:2d:c7:f6: 53:55:b0:32:67:60:d7:dd:ee:0e:ec:6b:99:25:75: 0d:4e:a3:34:26:6f:f1:fa:ae:81:78:e8:ba:e1:10: a4:9f:df:fb:b1:01:13:cb:ec:72:4b:d9:46:61:fb: 74:ea:6f:40:ef:a5:6a:95:8e:cf:0a:f6:fb:c7:8d: ab:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:64:6A:E7:C9:A9:1B:4A:CA:20:CD:AE:6C:71:24:54:21:A3:DE:58 X509v3 Authority Key Identifier: keyid:92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/fmRq58mpG0rKIM2ubHEkVCGj3lg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2458::/48 Signature Algorithm: sha256WithRSAEncryption ca:da:71:7c:8f:75:77:4f:bc:28:66:e0:78:cf:1d:bd:49:7a: 91:2c:3b:28:d3:10:6d:4b:75:38:3d:07:56:4b:f3:3e:74:15: c0:83:f7:6a:64:73:98:81:f6:ba:b3:3c:07:65:50:d8:16:57: d5:06:44:03:c4:da:e4:a7:85:ba:bb:da:e8:41:fa:87:a5:22: 4f:37:13:c7:7d:e4:8d:04:e2:53:65:57:12:e7:f9:89:26:d8: 64:99:ad:5d:b2:9b:40:9e:b8:40:95:7a:5e:ee:81:c0:e2:39: a5:d5:b8:96:6f:c4:ea:28:64:d7:7b:a5:bc:ca:c4:24:24:ca: c0:d4:fa:72:c6:d9:1f:11:fc:b9:29:11:31:2d:f6:5b:e7:0c: 32:39:e0:b9:e2:92:ef:94:a5:45:c0:aa:61:9c:66:b3:47:9e: 31:1a:44:d9:77:9b:9a:4b:fa:4c:1d:8b:6c:7f:ff:a9:59:7e: dc:bb:f0:62:22:d4:e6:38:0d:e9:66:c3:c6:d8:7d:76:18:bc: e2:ea:08:99:3f:76:59:28:4d:94:75:be:0a:e6:7d:c0:eb:1d: ca:b5:81:10:c0:34:7d:b3:9d:68:3f:fb:48:4d:8e:5c:19:20: bb:99:8b:ac:73:d3:13:09:d7:c6:1d:f8:8f:a0:a5:9f:50:5e: 84:9f:8a:89 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt87gBrnqslXOwDqPxo9DfaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyZDdmNjlhMDRiZDljYWQ1MjNiMzlmNzdhMmRkYWI0NGMy OTExOTIwHhcNMjYwMTAyMDQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTY0NmFlN2M5YTkxYjRhY2EyMGNkYWU2YzcxMjQ1NDIxYTNkZTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqwchjJHB/1jgIXp6E7tWNZ2R+yS yfI5kZj03T3LUPgEuGTcwlThgSU2nMEiE9Ir22elrB7aphDNVVgcN8SP5PIZFt2k igGTZGXRRToYm+yGmJrQMAOjGoiGdbL0h+zEwebJzbP1Bzl0h0eZNKo8dMr3g8qn XPtDlhexz9JyvFQ63+zr1nfp1yT5TiKaZc34Nr7KdIdAXFc6VEuVpVCQuaz0NjTg +5oR99jDRlRE03rnVEkl+4adW3mIwplKJ0Itx/ZTVbAyZ2DX3e4O7GuZJXUNTqM0 Jm/x+q6BeOi64RCkn9/7sQETy+xyS9lGYft06m9A76VqlY7PCvb7x42r2wIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFH5kaufJqRtKyiDNrmxxJFQho95YMB8GA1UdIwQY MBaAFJLX9poEvZytUjs593ot2rRMKRGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3RmMm1nUzluSzFTT3puM2VpM2F0RXdwRVpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy81MGQ4NTUtY2Q4MS00ODFhLTk1ZWYt Yjg0NDg3ZjkyMGU0LzEvZm1ScTU4bXBHMHJLSU0ydWJIRWtWQ0dqM2xnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy81MGQ4NTUtY2Q4MS00ODFhLTk1ZWYtYjg0NDg3ZjkyMGU0 LzEva3RmMm1nUzluSzFTT3puM2VpM2F0RXdwRVpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCRY MA0GCSqGSIb3DQEBCwUAA4IBAQDK2nF8j3V3T7woZuB4zx29SXqRLDso0xBtS3U4 PQdWS/M+dBXAg/dqZHOYgfa6szwHZVDYFlfVBkQDxNrkp4W6u9roQfqHpSJPNxPH feSNBOJTZVcS5/mJJthkma1dsptAnrhAlXpe7oHA4jml1biWb8TqKGTXe6W8ysQk JMrA1PpyxtkfEfy5KRExLfZb5wwyOeC54pLvlKVFwKphnGazR54xGkTZd5uaS/pM HYtsf/+pWX7cu/BiItTmOA3pZsPG2H12GLzi6giZP3ZZKE2Udb4K5n3A6x3KtYEQ wDR9s51oP/tITY5cGSC7mYusc9MTCdfGHfiPoKWfUF6En4qJ -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:20 2026 by rpki-client