This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FD0w8j2WoKyetKgUUfdYje0NNvs.roa File: FD0w8j2WoKyetKgUUfdYje0NNvs.roa (raw, json) Hash identifier: jESX5AMBLG58dUoE1HEQDYEZ4YMnJBy3dzPDE5Lr4n4= Subject key identifier: 14:3D:30:F2:3D:96:A0:AC:9E:B4:A8:14:51:F7:58:8D:ED:0D:36:FB Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F851DBA1B9E7D025B3D15BAD253CD39 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FD0w8j2WoKyetKgUUfdYje0NNvs.roa Signing time: Fri 02 Jan 2026 16:23:08 +0000 ROA not before: Fri 02 Jan 2026 16:23:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215349 IP address blocks: 92.253.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:1d:ba:1b:9e:7d:02:5b:3d:15:ba:d2:53:cd:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=143d30f23d96a0ac9eb4a81451f7588ded0d36fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9c:c4:2c:ea:1e:e0:73:02:c5:e2:9a:ce:7f: 8e:94:85:fa:a3:84:6e:b6:a6:61:d4:c7:b4:d2:e1: ab:31:70:98:5b:ea:b9:5c:7d:3d:cb:b9:f8:c8:4b: a6:fd:c8:e6:37:23:3d:4f:9e:f6:5a:6d:53:85:14: b1:2c:ab:23:49:30:55:c8:20:08:20:c0:06:fe:42: ab:21:85:17:de:b9:86:14:62:4c:1c:8a:5f:44:e2: ac:4d:af:9e:d0:33:8d:8a:72:00:ea:b2:54:f5:82: 65:f0:ba:ab:1f:3b:63:b4:d7:a8:29:1f:1a:a3:ad: 7f:d7:e1:31:5c:37:8f:39:2a:56:55:da:02:c5:69: e6:53:3b:21:64:65:d5:16:10:ec:e0:40:54:2e:d5: 9d:71:04:1a:61:b6:de:4d:f4:f8:86:79:b2:5e:db: fd:dc:55:4c:7a:50:a9:e1:7c:25:37:7b:87:7d:1a: d4:9f:19:b2:e8:a4:00:88:3b:fc:5a:71:2f:7e:0d: 43:35:ce:53:72:c0:62:4d:1c:83:62:af:7d:66:3c: aa:aa:e0:52:72:a7:9a:73:91:ee:ff:61:8a:ee:79: ac:e8:37:bd:6b:10:bb:73:98:d3:fe:61:0d:ec:1a: ab:19:56:8d:ea:a0:9d:16:44:5b:e3:44:5c:49:be: 8f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3D:30:F2:3D:96:A0:AC:9E:B4:A8:14:51:F7:58:8D:ED:0D:36:FB X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/FD0w8j2WoKyetKgUUfdYje0NNvs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.253.232.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:2c:97:66:5f:d0:9a:ac:aa:09:ad:e7:fd:dc:30:09:1b:28: 15:27:41:66:d1:79:7a:8b:18:1e:fd:c7:6e:dd:33:76:14:69: 51:44:65:78:3b:b6:04:15:ed:c9:ff:0c:cb:c3:a3:83:56:12: 64:d6:d2:b8:da:1e:fb:2a:47:aa:bc:e2:61:5b:7e:c2:d4:83: 21:63:78:81:3d:08:5c:82:de:31:fd:5c:d2:cf:32:34:63:18: fe:60:f0:de:3b:ce:4a:9c:fa:f0:fc:db:e9:1a:a2:92:12:a4: 4f:e9:18:66:94:e0:f5:b8:34:ef:a1:a7:c6:94:dd:5b:90:e6: 6a:d0:35:3c:50:5a:a4:20:fb:d6:d8:7c:8c:d9:f4:ec:45:e5: 8a:bf:c1:e8:cd:e2:4b:2a:5e:fa:af:8b:97:07:07:be:1a:3f: c6:2c:02:f1:64:fe:c5:43:85:a2:76:15:7b:04:98:fd:65:6d: 0d:4d:93:bc:70:c8:62:f7:81:2e:13:e8:42:f9:c1:5f:32:f3: ec:dd:12:50:82:7f:9b:53:2e:97:16:f6:1a:06:04:a6:00:a1: 14:c6:b5:36:c3:40:08:2c:64:ef:30:ae:1b:23:1e:c2:a1:e5: 8c:ca:77:15:ee:3e:19:b2:7c:b0:a4:74:0b:30:8b:30:07:ef: f3:61:32:2e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hR26G559Als9FbrSU805MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDNkMzBmMjNkOTZhMGFjOWViNGE4MTQ1MWY3NTg4ZGVkMGQzNmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05zELOoe4HMCxeKazn+OlIX6o4Ru tqZh1Me00uGrMXCYW+q5XH09y7n4yEum/cjmNyM9T572Wm1ThRSxLKsjSTBVyCAI IMAG/kKrIYUX3rmGFGJMHIpfROKsTa+e0DONinIA6rJU9YJl8LqrHztjtNeoKR8a o61/1+ExXDePOSpWVdoCxWnmUzshZGXVFhDs4EBULtWdcQQaYbbeTfT4hnmyXtv9 3FVMelCp4XwlN3uHfRrUnxmy6KQAiDv8WnEvfg1DNc5TcsBiTRyDYq99ZjyqquBS cqeac5Hu/2GK7nms6De9axC7c5jT/mEN7BqrGVaN6qCdFkRb40RcSb6PAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBQ9MPI9lqCsnrSoFFH3WI3tDTb7MB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvRkQwdzhqMldvS3lldEtnVVVmZFlqZTBOTnZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXP3oMA0G CSqGSIb3DQEBCwUAA4IBAQBvLJdmX9CarKoJref93DAJGygVJ0Fm0Xl6ixge/cdu 3TN2FGlRRGV4O7YEFe3J/wzLw6ODVhJk1tK42h77KkeqvOJhW37C1IMhY3iBPQhc gt4x/VzSzzI0Yxj+YPDeO85KnPrw/NvpGqKSEqRP6RhmlOD1uDTvoafGlN1bkOZq 0DU8UFqkIPvW2HyM2fTsReWKv8HozeJLKl76r4uXBwe+Gj/GLALxZP7FQ4WidhV7 BJj9ZW0NTZO8cMhi94EuE+hC+cFfMvPs3RJQgn+bUy6XFvYaBgSmAKEUxrU2w0AI LGTvMK4bIx7CoeWMyncV7j4ZsnywpHQLMIswB+/zYTIu -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:19 2026 by rpki-client