This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/fMPPEhoc1eJ7TtYJwhoTEBEj3u0.roa File: fMPPEhoc1eJ7TtYJwhoTEBEj3u0.roa (raw, json) Hash identifier: TFEzfDo3Zwa4HL59NImWxFGsVixNQrbjisILgLkXLHY= Subject key identifier: 7C:C3:CF:12:1A:1C:D5:E2:7B:4E:D6:09:C2:1A:13:10:11:23:DE:ED Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e Certificate serial: 019B7AC7B5F8A44DB9F0CBCBEDA40322A9A0 Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/fMPPEhoc1eJ7TtYJwhoTEBEj3u0.roa Signing time: Thu 01 Jan 2026 18:17:47 +0000 ROA not before: Thu 01 Jan 2026 18:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211211 IP address blocks: 209.131.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.mft rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:b5:f8:a4:4d:b9:f0:cb:cb:ed:a4:03:22:a9:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e Validity Not Before: Jan 1 18:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7cc3cf121a1cd5e27b4ed609c21a13101123deed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6e:14:e7:d5:c3:bd:31:6d:52:30:26:6f:14: 4b:93:3a:32:6d:0b:e1:45:3a:b4:89:6f:6e:2f:e3: 79:49:ef:fa:96:fc:6f:4a:f2:5e:d9:2f:d1:cb:6b: 27:00:69:6a:f4:5d:0f:ab:0c:99:ce:88:69:46:a4: 2f:8d:bc:34:43:db:bd:a8:22:c0:23:23:69:30:d6: 0d:29:28:58:57:12:92:3d:b7:d4:52:3b:8b:24:c5: 4c:4c:71:f7:49:30:44:10:bc:ed:f9:88:da:47:aa: 45:35:d3:c2:23:f3:1f:d4:ad:1f:c4:27:ed:8a:01: fa:3c:13:8f:00:b1:5a:f4:91:c3:2f:f1:db:95:3d: df:e3:83:12:b7:12:ed:46:44:9a:6d:db:36:e8:ee: d8:cd:76:f0:a0:d1:4e:df:22:99:19:d0:1d:b5:fd: 4e:f9:4c:65:5c:62:0f:0c:c3:f0:c1:80:e6:54:9f: ae:b5:f2:a1:45:8b:c6:22:50:d1:88:88:86:cf:50: 62:2b:a3:3c:1a:26:2f:41:76:99:0b:12:86:4a:96: 3b:55:a1:03:36:b7:da:2a:cf:13:45:27:25:07:a7: 20:8e:48:d0:46:52:0f:c3:76:d1:7e:85:77:a4:0f: 5f:b0:d0:3e:75:55:e5:6b:8d:42:c2:f1:5c:f5:88: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C3:CF:12:1A:1C:D5:E2:7B:4E:D6:09:C2:1A:13:10:11:23:DE:ED X509v3 Authority Key Identifier: keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/fMPPEhoc1eJ7TtYJwhoTEBEj3u0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.131.70.0/24 Signature Algorithm: sha256WithRSAEncryption 89:c8:0b:37:e1:28:b3:a7:6a:aa:fb:24:1e:42:0e:eb:12:82: 87:c3:e5:a1:15:dd:57:1d:32:c7:56:19:dc:46:cb:6b:bc:b3: 04:bf:a0:d8:5a:70:51:9c:0d:b6:ad:e0:9e:2f:71:c7:28:0e: 3f:fb:a2:73:df:b1:5c:96:88:e8:59:c3:d8:2e:ce:cf:cb:3c: 95:a7:05:3f:9f:df:7a:fa:1f:23:e2:06:36:45:ec:0f:43:f1: ca:d0:f7:d4:32:5b:29:54:b4:b8:62:ed:97:d7:86:f8:7b:44: a7:6b:dc:32:e6:e1:42:10:2d:84:e7:91:8b:2e:69:67:1c:a0: d0:09:ce:eb:75:ba:05:34:04:1e:fe:9d:d8:e6:c1:e2:0e:2a: 84:92:5e:6e:45:46:97:44:a8:54:af:97:c3:ac:2a:79:b5:48: e2:dd:1f:6d:97:13:c1:5d:17:27:5f:a0:7a:ff:07:a2:6f:63: 6e:e1:43:14:f2:a5:62:c4:71:03:c3:a0:bf:ef:8c:c7:1f:d4: 19:ba:0a:79:01:27:3d:b0:11:2d:c1:d9:f6:35:b6:42:83:b1: 91:d9:d4:30:fd:34:37:c8:92:eb:49:0d:12:e0:ed:b7:da:e3: d6:a9:52:d9:ea:d6:bb:af:a1:32:0c:75:8d:81:21:fc:c5:16: a2:6d:c0:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x7X4pE258MvL7aQDIqmgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjdiZmY3YmFkMWViODM4NGI1ODVkZjdiZWYxMjA2Zjdm MTlmN2UwHhcNMjYwMTAxMTgxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Y2MzY2YxMjFhMWNkNWUyN2I0ZWQ2MDljMjFhMTMxMDExMjNkZWVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA324U59XDvTFtUjAmbxRLkzoybQvh RTq0iW9uL+N5Se/6lvxvSvJe2S/Ry2snAGlq9F0PqwyZzohpRqQvjbw0Q9u9qCLA IyNpMNYNKShYVxKSPbfUUjuLJMVMTHH3STBEELzt+YjaR6pFNdPCI/Mf1K0fxCft igH6PBOPALFa9JHDL/HblT3f44MStxLtRkSabds26O7YzXbwoNFO3yKZGdAdtf1O +UxlXGIPDMPwwYDmVJ+utfKhRYvGIlDRiIiGz1BiK6M8GiYvQXaZCxKGSpY7VaED NrfaKs8TRSclB6cgjkjQRlIPw3bRfoV3pA9fsNA+dVXla41CwvFc9YjQ0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHzDzxIaHNXie07WCcIaExARI97tMB8GA1UdIwQY MBaAFLpnv/e60euDhLWF33vvEgb38Z9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYt ZGE0NTM4MDIyYWM3LzEvZk1QUEVob2MxZUo3VHRZSndob1RFQkVqM3UwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYtZGE0NTM4MDIyYWM3 LzEvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0YNGMA0G CSqGSIb3DQEBCwUAA4IBAQCJyAs34Sizp2qq+yQeQg7rEoKHw+WhFd1XHTLHVhnc RstrvLMEv6DYWnBRnA22reCeL3HHKA4/+6Jz37FclojoWcPYLs7PyzyVpwU/n996 +h8j4gY2RewPQ/HK0PfUMlspVLS4Yu2X14b4e0Sna9wy5uFCEC2E55GLLmlnHKDQ Cc7rdboFNAQe/p3Y5sHiDiqEkl5uRUaXRKhUr5fDrCp5tUji3R9tlxPBXRcnX6B6 /weib2Nu4UMU8qVixHEDw6C/74zHH9QZugp5ASc9sBEtwdn2NbZCg7GR2dQw/TQ3 yJLrSQ0S4O232uPWqVLZ6ta7r6EyDHWNgSH8xRaibcBj -----END CERTIFICATE-----Generated at Mon Jan 26 05:32:29 2026 by rpki-client