This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/fiHhL10rcXiVXJM8ME5tS2zlzmI.roa File: fiHhL10rcXiVXJM8ME5tS2zlzmI.roa (raw, json) Hash identifier: ZZ9bbU2lMhqlfPiXmUFfXzZ3y7g+uqHcPavphDQelmA= Subject key identifier: 7E:21:E1:2F:5D:2B:71:78:95:5C:93:3C:30:4E:6D:4B:6C:E5:CE:62 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84ABE0D4C44090A3F5DF0BE94EBC0C Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/fiHhL10rcXiVXJM8ME5tS2zlzmI.roa Signing time: Fri 02 Jan 2026 16:22:39 +0000 ROA not before: Fri 02 Jan 2026 16:22:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44927 IP address blocks: 146.120.89.0/24 maxlen: 24 146.120.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:ab:e0:d4:c4:40:90:a3:f5:df:0b:e9:4e:bc:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e21e12f5d2b7178955c933c304e6d4b6ce5ce62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3c:ae:03:89:62:9f:ef:49:c6:2c:f6:2b:c8: 48:e2:65:37:97:89:f2:30:4f:6c:4e:43:3a:37:4d: 3e:e5:19:a1:62:da:bb:a6:a5:72:f6:8d:79:43:42: 60:ea:f0:c1:54:08:ae:39:1b:6c:57:03:b5:20:23: a6:ce:7a:96:a3:75:85:5f:23:40:69:df:d5:db:3a: 95:d3:23:bf:38:e3:76:06:45:83:e9:f9:eb:d7:56: b4:b2:aa:91:f5:1f:22:ce:a8:27:52:d5:ab:70:64: 40:f3:63:99:6e:96:4c:7a:a3:ac:71:26:63:c9:99: 1b:11:e4:2d:5b:f5:ef:55:14:18:45:f4:38:9d:9c: 06:de:45:02:39:6a:f4:18:85:cf:ca:ec:37:3c:b2: ec:09:f7:eb:ab:7b:54:70:02:ab:50:59:cd:8f:32: 3e:2d:c3:09:0c:c7:86:e4:6c:3d:6d:6c:14:cb:27: 18:df:e0:69:9d:dc:95:97:a9:ff:24:83:2f:8c:b3: 86:15:be:15:ad:97:29:66:f3:dc:fe:e0:61:4e:c9: 5c:5a:12:1a:58:3b:d9:cc:47:ae:63:3b:10:3d:87: 16:4c:09:2b:c8:e8:ec:ab:59:6c:85:77:64:91:33: 5f:9f:49:15:5a:6b:5f:a1:5e:3c:e4:d6:be:16:2d: 22:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:21:E1:2F:5D:2B:71:78:95:5C:93:3C:30:4E:6D:4B:6C:E5:CE:62 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/fiHhL10rcXiVXJM8ME5tS2zlzmI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.120.89.0/24 146.120.96.0/24 Signature Algorithm: sha256WithRSAEncryption 32:64:cb:14:2f:ab:e6:1a:f2:68:75:61:b1:8b:19:a9:80:d3: fc:8c:b2:9a:c5:cb:49:8d:cc:94:23:bc:2f:0c:47:f7:da:f8: 76:e9:3a:68:5b:20:25:c3:7b:96:29:44:a5:76:67:4b:5c:9c: ba:5c:d6:68:77:39:cd:1e:78:0b:02:63:d5:42:13:e4:86:c1: 22:b3:92:0d:e7:74:b2:76:d6:ca:68:69:f8:80:b4:c2:29:de: c9:43:5b:59:48:98:36:7c:8f:6f:81:a0:50:af:f2:63:93:b1: 7a:be:f7:7f:45:90:39:eb:1f:e0:20:fa:6b:a0:71:cb:77:7f: 1c:bd:24:92:a7:a0:81:f4:33:c6:87:86:12:d4:d8:8b:a6:e4: 41:3b:76:0e:5e:af:f1:48:d9:dc:31:fe:84:24:c8:cb:b0:72: d4:ca:9c:f4:dd:f0:39:33:cd:bc:52:c3:f3:77:24:c7:28:51: ca:87:2e:69:77:48:23:21:e9:5e:b1:eb:01:27:a3:01:b8:3a: 13:6c:dd:f3:8f:5a:3a:35:42:58:c8:7f:21:b6:2b:52:e4:4b: 5c:41:49:fc:ba:38:47:9f:17:84:bb:99:89:d6:c0:b4:92:fc: d0:17:e2:52:2c:b1:49:49:2f:84:01:50:3f:f7:e3:94:d2:74: 34:1a:11:60 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hKvg1MRAkKP13wvpTrwMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTIxZTEyZjVkMmI3MTc4OTU1YzkzM2MzMDRlNmQ0YjZjZTVjZTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4TyuA4lin+9Jxiz2K8hI4mU3l4ny ME9sTkM6N00+5RmhYtq7pqVy9o15Q0Jg6vDBVAiuORtsVwO1ICOmznqWo3WFXyNA ad/V2zqV0yO/OON2BkWD6fnr11a0sqqR9R8izqgnUtWrcGRA82OZbpZMeqOscSZj yZkbEeQtW/XvVRQYRfQ4nZwG3kUCOWr0GIXPyuw3PLLsCffrq3tUcAKrUFnNjzI+ LcMJDMeG5Gw9bWwUyycY3+BpndyVl6n/JIMvjLOGFb4VrZcpZvPc/uBhTslcWhIa WDvZzEeuYzsQPYcWTAkryOjsq1lshXdkkTNfn0kVWmtfoV485Na+Fi0ilwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFH4h4S9dK3F4lVyTPDBObUts5c5iMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvZmlIaEwxMHJjWGlWWEpNOE1FNXRTMnpsem1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAknhZAwQA knhgMA0GCSqGSIb3DQEBCwUAA4IBAQAyZMsUL6vmGvJodWGxixmpgNP8jLKaxctJ jcyUI7wvDEf32vh26TpoWyAlw3uWKUSldmdLXJy6XNZodznNHngLAmPVQhPkhsEi s5IN53SydtbKaGn4gLTCKd7JQ1tZSJg2fI9vgaBQr/Jjk7F6vvd/RZA56x/gIPpr oHHLd38cvSSSp6CB9DPGh4YS1NiLpuRBO3YOXq/xSNncMf6EJMjLsHLUypz03fA5 M828UsPzdyTHKFHKhy5pd0gjIelesesBJ6MBuDoTbN3zj1o6NUJYyH8htitS5Etc QUn8ujhHnxeEu5mJ1sC0kvzQF+JSLLFJSS+EAVA/9+OU0nQ0GhFg -----END CERTIFICATE-----Generated at Sun Jan 25 16:27:44 2026 by rpki-client