This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/FOJKdxNuqjVGPbbrMp8t_2VYx_s.roa File: FOJKdxNuqjVGPbbrMp8t_2VYx_s.roa (raw, json) Hash identifier: J1HTXUiG+hNvgt80srZDZjNIbT1PKFO7h2A504O6/B8= Subject key identifier: 14:E2:4A:77:13:6E:AA:35:46:3D:B6:EB:32:9F:2D:FF:65:58:C7:FB Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Certificate serial: 019B77594DEEC87BD0402FD24122F2F6EEE7 Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/FOJKdxNuqjVGPbbrMp8t_2VYx_s.roa Signing time: Thu 01 Jan 2026 02:18:19 +0000 ROA not before: Thu 01 Jan 2026 02:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42225 IP address blocks: 86.105.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:4d:ee:c8:7b:d0:40:2f:d2:41:22:f2:f6:ee:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Validity Not Before: Jan 1 02:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=14e24a77136eaa35463db6eb329f2dff6558c7fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:17:e6:07:63:65:3a:2f:8b:e1:57:30:c6:9a: 5c:6d:5a:63:b9:3e:6f:9f:5b:80:50:a3:f3:d6:80: 33:fc:04:be:39:43:7d:4a:0c:a8:15:30:a7:46:41: 0f:fd:a0:b7:d5:92:a9:43:95:d4:ae:8b:12:8b:d8: d5:4b:f5:76:a9:0d:84:4e:1f:65:67:14:fb:e3:bb: d1:1c:75:a2:23:9f:04:15:45:33:a9:24:42:81:1c: ff:61:4d:a5:61:f6:23:2a:9e:90:a1:0f:0e:ed:ae: 94:c2:d3:fc:bc:ec:b8:93:fc:fb:39:08:5e:19:3a: 49:b2:17:1e:b3:b3:97:ef:56:74:5f:49:74:8d:19: 67:c9:e4:39:b1:b8:e9:ba:b1:62:fb:2b:a9:46:94: 2f:7d:c6:88:3c:7b:5c:01:8c:c9:c0:f7:05:02:b2: 99:f7:30:12:3f:bc:96:8b:2b:94:9e:a3:a4:0b:7e: 20:0a:97:5c:0d:93:e1:4f:03:0c:4b:83:33:99:d0: f5:dd:f4:1b:a1:9b:51:ba:b0:c1:3d:0c:78:a8:5d: 97:1b:5f:d3:f6:c9:f1:15:90:a4:fa:17:40:10:fb: 7b:15:81:bf:1c:a8:19:4b:8d:31:1e:85:88:cc:4d: 4b:0c:4d:d6:08:12:b2:df:85:47:90:91:b2:8d:ca: dd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E2:4A:77:13:6E:AA:35:46:3D:B6:EB:32:9F:2D:FF:65:58:C7:FB X509v3 Authority Key Identifier: keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/FOJKdxNuqjVGPbbrMp8t_2VYx_s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.105.171.0/24 Signature Algorithm: sha256WithRSAEncryption 03:2f:4c:7e:b4:84:b4:c9:fe:e3:96:ef:eb:b4:aa:fe:68:34: 6e:85:07:df:f8:ea:76:3f:8d:76:9b:21:73:39:c2:8b:4a:7d: b4:f8:9e:e8:36:91:7c:75:a0:84:18:bd:2c:d3:3a:56:38:a7: 70:20:94:80:41:54:34:d6:84:c4:36:34:00:46:59:b3:c3:46: 3f:d4:a0:5b:79:94:e4:66:11:0a:f5:b6:d9:94:9a:67:9c:55: 29:c4:a0:9b:08:8d:e2:d9:25:eb:1f:dd:60:a0:af:c4:8a:b9: 24:29:53:68:ae:38:6b:3f:33:2a:87:86:c7:2c:bc:02:ba:d1: 17:bf:29:08:a0:aa:83:bf:ad:36:6e:a7:2b:58:21:b4:a4:0c: 84:66:12:bd:80:f1:86:c2:45:3f:c0:59:e7:bb:cb:a8:ba:a1: 2e:57:8d:a3:3f:52:e5:e0:3a:b5:e1:38:3e:02:b9:67:31:27: 4c:a9:e8:73:56:a5:d7:cd:3e:11:a5:ce:be:67:2b:a5:1f:f4: 6d:e7:38:29:91:f5:03:fe:37:a5:9f:4f:09:5c:8c:6f:b1:81: 65:19:af:28:b7:f8:29:b9:15:65:5e:e8:55:83:44:6f:19:5c: 19:6a:9e:c5:e1:38:6e:01:f3:a4:2a:29:9e:88:6e:fb:09:89: 5c:df:a3:4c -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt3WU3uyHvQQC/SQSLy9u7nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy MTliNTkwHhcNMjYwMTAxMDIxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNGUyNGE3NzEzNmVhYTM1NDYzZGI2ZWIzMjlmMmRmZjY1NThjN2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphfmB2NlOi+L4VcwxppcbVpjuT5v n1uAUKPz1oAz/AS+OUN9SgyoFTCnRkEP/aC31ZKpQ5XUrosSi9jVS/V2qQ2ETh9l ZxT747vRHHWiI58EFUUzqSRCgRz/YU2lYfYjKp6QoQ8O7a6UwtP8vOy4k/z7OQhe GTpJshces7OX71Z0X0l0jRlnyeQ5sbjpurFi+yupRpQvfcaIPHtcAYzJwPcFArKZ 9zASP7yWiyuUnqOkC34gCpdcDZPhTwMMS4MzmdD13fQboZtRurDBPQx4qF2XG1/T 9snxFZCk+hdAEPt7FYG/HKgZS40xHoWIzE1LDE3WCBKy34VHkJGyjcrdCQIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFBTiSncTbqo1Rj226zKfLf9lWMf7MB8GA1UdIwQY MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl LTkyZTI1ZmUxNjMzMS8xL0ZPSktkeE51cWpWR1BiYnJNcDh0XzJWWXhfcy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABWaasw DQYJKoZIhvcNAQELBQADggEBAAMvTH60hLTJ/uOW7+u0qv5oNG6FB9/46nY/jXab IXM5wotKfbT4nug2kXx1oIQYvSzTOlY4p3AglIBBVDTWhMQ2NABGWbPDRj/UoFt5 lORmEQr1ttmUmmecVSnEoJsIjeLZJesf3WCgr8SKuSQpU2iuOGs/MyqHhscsvAK6 0Re/KQigqoO/rTZupytYIbSkDIRmEr2A8YbCRT/AWee7y6i6oS5XjaM/UuXgOrXh OD4CuWcxJ0yp6HNWpdfNPhGlzr5nK6Uf9G3nOCmR9QP+N6WfTwlcjG+xgWUZryi3 +Cm5FWVe6FWDRG8ZXBlqnsXhOG4B86QqKZ6IbvsJiVzfo0w= -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:10 2026 by rpki-client