This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/fRifEZefvRsk6jclv7pVpILB6hQ.roa File: fRifEZefvRsk6jclv7pVpILB6hQ.roa (raw, json) Hash identifier: XNNUYM/7petSjasXKNt7qFQhJMSQer6H9QEr1epnmY8= Subject key identifier: 7D:18:9F:11:97:9F:BD:1B:24:EA:37:25:BF:BA:55:A4:82:C1:EA:14 Certificate issuer: /CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf Certificate serial: 019B7758F67F95E4701A69335277D90B0D1C Authority key identifier: 2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/fRifEZefvRsk6jclv7pVpILB6hQ.roa Signing time: Thu 01 Jan 2026 02:17:57 +0000 ROA not before: Thu 01 Jan 2026 02:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13030 IP address blocks: 185.240.172.0/22 maxlen: 22 2a00:5640::/32 maxlen: 32 2a00:5641::/32 maxlen: 32 2a00:5642::/32 maxlen: 32 2a00:5646::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.crl rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.mft rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:f6:7f:95:e4:70:1a:69:33:52:77:d9:0b:0d:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dbdb89fb4118ffa55fafdbf45e19282be0e7acf Validity Not Before: Jan 1 02:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d189f11979fbd1b24ea3725bfba55a482c1ea14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3c:83:1a:09:f8:a0:30:f8:57:ab:97:79:a9: de:b5:69:8d:3d:07:60:4b:87:87:e1:da:69:36:bd: 75:f0:4f:1d:69:c8:bd:38:72:b1:e1:cf:cd:b6:57: 5f:79:c8:f6:16:bb:1f:ee:a5:d5:19:5e:75:eb:d4: d6:74:35:c3:a0:8f:73:db:30:06:57:ca:79:49:e9: 5d:3f:f7:ba:25:88:57:51:45:44:83:de:a1:08:41: ac:6c:ea:8a:b2:1b:cc:02:f3:6d:f4:df:77:2e:a6: a8:15:c7:f6:57:4a:a5:5c:d9:da:2e:93:9d:61:b2: 9c:ec:8f:76:81:83:fa:70:61:71:5f:f4:66:42:65: 51:4e:9e:ac:08:d1:47:45:8a:85:08:b5:a2:37:b7: d1:2c:d6:9f:ec:2f:60:86:ad:eb:ad:ae:a7:9b:e9: cb:c7:69:3f:ea:96:94:ca:80:06:3e:72:60:3c:59: 29:d9:9e:94:40:cb:2a:ef:6a:ae:92:2b:68:3f:b0: c0:1e:c2:2e:4c:31:ef:3b:e9:52:bf:15:c6:c2:ad: 8f:b1:ef:70:57:34:44:a8:2e:d7:80:aa:33:4d:e2: d1:b4:a8:e1:b5:97:83:f4:41:05:79:c3:6a:15:8e: f3:e2:71:5e:d1:93:9c:36:0c:3a:20:0c:b6:3e:ea: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:18:9F:11:97:9F:BD:1B:24:EA:37:25:BF:BA:55:A4:82:C1:EA:14 X509v3 Authority Key Identifier: keyid:2D:BD:B8:9F:B4:11:8F:FA:55:FA:FD:BF:45:E1:92:82:BE:0E:7A:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lb24n7QRj_pV-v2_ReGSgr4Oes8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/fRifEZefvRsk6jclv7pVpILB6hQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f00ccc-ec3f-40df-a9fc-7cc79917300a/1/Lb24n7QRj_pV-v2_ReGSgr4Oes8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.240.172.0/22 IPv6: 2a00:5640::-2a00:5642:ffff:ffff:ffff:ffff:ffff:ffff 2a00:5646::/32 Signature Algorithm: sha256WithRSAEncryption ac:2f:57:0d:24:90:be:fc:db:5c:7e:48:31:73:9c:f2:68:b2: e0:a1:ff:1d:6b:be:df:ad:e1:06:46:6e:5d:35:1e:81:ef:e4: cd:7a:52:3c:2e:92:c9:bb:97:fa:ff:70:5e:c9:e9:cd:77:7f: 95:5f:93:c8:65:b2:7d:b7:33:44:f8:28:29:75:0c:00:99:9f: 9f:10:b6:82:cb:b7:2c:eb:fa:48:01:57:d6:97:e2:aa:5f:29: 1e:a7:a9:73:32:18:7e:f5:59:d7:8c:da:e7:38:aa:6b:e2:82: e7:d5:c4:00:91:6d:83:c5:8a:33:51:ef:5f:19:af:3a:a9:9a: f0:86:cf:db:34:e1:09:3a:0b:a4:2d:35:81:15:da:09:2d:59: 39:b2:4c:03:c2:40:25:05:66:ef:2a:07:e2:fa:49:ec:e7:7b: 33:f2:3d:dc:67:17:ab:1c:b7:3d:e1:c8:68:1a:73:ba:60:49: 86:93:80:c2:52:ee:57:34:c8:cc:fe:ac:70:f4:eb:d4:14:4a: d8:e3:09:7b:f4:74:87:bb:ec:8a:10:b4:7d:11:6c:e0:17:bc: 68:19:90:59:bf:55:82:10:ba:c3:66:06:a3:16:60:cd:c3:6f: 00:29:55:63:ae:8b:dd:c5:c8:37:15:ab:92:35:13:64:bd:6b: cf:2e:c1:1b -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt3WPZ/leRwGmkzUnfZCw0cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkYmRiODlmYjQxMThmZmE1NWZhZmRiZjQ1ZTE5MjgyYmUw ZTdhY2YwHhcNMjYwMTAxMDIxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDE4OWYxMTk3OWZiZDFiMjRlYTM3MjViZmJhNTVhNDgyYzFlYTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTyDGgn4oDD4V6uXeanetWmNPQdg S4eH4dppNr118E8daci9OHKx4c/Ntldfecj2Frsf7qXVGV5169TWdDXDoI9z2zAG V8p5SeldP/e6JYhXUUVEg96hCEGsbOqKshvMAvNt9N93LqaoFcf2V0qlXNnaLpOd YbKc7I92gYP6cGFxX/RmQmVRTp6sCNFHRYqFCLWiN7fRLNaf7C9ghq3rra6nm+nL x2k/6paUyoAGPnJgPFkp2Z6UQMsq72qukitoP7DAHsIuTDHvO+lSvxXGwq2Pse9w VzREqC7XgKozTeLRtKjhtZeD9EEFecNqFY7z4nFe0ZOcNgw6IAy2PuqmPQIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFH0YnxGXn70bJOo3Jb+6VaSCweoUMB8GA1UdIwQY MBaAFC29uJ+0EY/6Vfr9v0XhkoK+DnrPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGIyNG43UVJqX3BWLXYyX1JlR1NncjRPZXM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mMDBjY2MtZWMzZi00MGRmLWE5ZmMt N2NjNzk5MTczMDBhLzEvZlJpZkVaZWZ2UnNrNmpjbHY3cFZwSUxCNmhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9mMDBjY2MtZWMzZi00MGRmLWE5ZmMtN2NjNzk5MTczMDBh LzEvTGIyNG43UVJqX3BWLXYyX1JlR1NncjRPZXM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTAMBAIAATAGAwQCufCsMB0E AgACMBcwDgMFBioAVkADBQAqAFZCAwUAKgBWRjANBgkqhkiG9w0BAQsFAAOCAQEA rC9XDSSQvvzbXH5IMXOc8miy4KH/HWu+363hBkZuXTUege/kzXpSPC6SybuX+v9w XsnpzXd/lV+TyGWyfbczRPgoKXUMAJmfnxC2gsu3LOv6SAFX1pfiql8pHqepczIY fvVZ14za5ziqa+KC59XEAJFtg8WKM1HvXxmvOqma8IbP2zThCToLpC01gRXaCS1Z ObJMA8JAJQVm7yoH4vpJ7Od7M/I93GcXqxy3PeHIaBpzumBJhpOAwlLuVzTIzP6s cPTr1BRK2OMJe/R0h7vsihC0fRFs4Be8aBmQWb9VghC6w2YGoxZgzcNvAClVY66L 3cXINxWrkjUTZL1rzy7BGw== -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:35 2026 by rpki-client