This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/FaALcy5Rtdmr2uieYxRcTmINxY0.roa File: FaALcy5Rtdmr2uieYxRcTmINxY0.roa (raw, json) Hash identifier: o5V0XpUincjUZD8yuz4NaYPFOSAiOXTebna/NUT2JTM= Subject key identifier: 15:A0:0B:73:2E:51:B5:D9:AB:DA:E8:9E:63:14:5C:4E:62:0D:C5:8D Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984 Certificate serial: 019B7B366BD016FFF18CC075E697D75F7C56 Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/FaALcy5Rtdmr2uieYxRcTmINxY0.roa Signing time: Thu 01 Jan 2026 20:18:42 +0000 ROA not before: Thu 01 Jan 2026 20:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60558 IP address blocks: 37.140.238.0/24 maxlen: 24 37.140.239.0/24 maxlen: 24 185.28.188.0/24 maxlen: 24 185.28.189.0/24 maxlen: 24 185.28.190.0/24 maxlen: 24 185.28.191.0/24 maxlen: 24 2a00:8860:100::/40 maxlen: 64 2a00:8861:100::/40 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:6b:d0:16:ff:f1:8c:c0:75:e6:97:d7:5f:7c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984 Validity Not Before: Jan 1 20:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=15a00b732e51b5d9abdae89e63145c4e620dc58d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:d9:b6:4f:68:e7:5c:d6:13:97:7b:d5:62: a5:25:a4:15:95:fe:83:26:a4:b0:93:7a:67:d4:d3: 98:54:aa:38:db:3f:16:18:35:1e:07:ab:10:dc:ba: 36:6c:54:5c:93:d7:e9:26:08:25:4e:cb:b6:24:a3: ab:48:83:eb:64:22:66:a8:63:42:f9:7c:cd:e4:98: b1:f7:df:ff:87:78:b7:af:54:69:5c:d3:02:29:09: 28:97:e3:91:a4:7c:5b:4a:7c:18:6e:ba:0b:80:64: b1:12:aa:ce:a2:f7:bb:98:9e:67:e7:a9:45:c4:e1: d0:aa:48:10:43:cf:68:a6:c2:a8:b4:8d:87:11:25: 53:7c:95:16:86:1a:30:4f:39:ef:0e:8c:5a:ed:d4: be:07:77:00:bc:3a:68:86:f1:8c:8f:9e:2e:e7:92: 57:0e:ec:6d:ab:2e:14:8d:af:17:48:be:71:02:8b: 2a:b9:67:27:e5:58:1c:9b:03:a2:8a:f1:f4:f5:e3: cb:3a:79:37:51:01:c0:76:14:65:56:ba:6f:28:99: 22:fe:1c:11:42:df:f6:03:2e:93:af:df:87:47:93: 0d:4f:da:06:2d:6b:1a:e4:22:d3:64:c3:24:2f:4b: 5d:fc:93:ed:db:b9:ae:2a:27:4f:aa:cb:68:bf:3d: 08:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A0:0B:73:2E:51:B5:D9:AB:DA:E8:9E:63:14:5C:4E:62:0D:C5:8D X509v3 Authority Key Identifier: keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/FaALcy5Rtdmr2uieYxRcTmINxY0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.140.238.0/23 185.28.188.0/22 IPv6: 2a00:8860:100::/40 2a00:8861:100::/40 Signature Algorithm: sha256WithRSAEncryption 7d:8f:1e:19:61:02:e9:ea:0b:23:86:7a:98:70:a1:c7:63:ac: 81:fa:0b:cd:fa:f7:3e:1e:a5:f7:1c:c2:28:68:dc:a8:f3:29: 25:82:5d:a1:6c:71:74:c5:01:8c:a4:15:b6:49:33:bf:c2:1e: 92:03:45:7c:bc:8b:d3:16:1b:23:23:b0:bd:93:7d:9c:2e:e4: 04:73:a1:86:51:25:98:7e:b8:f5:17:42:85:fb:91:b5:e1:ab: 47:53:0c:d9:1c:58:1a:1d:a8:73:a7:b1:7c:2e:94:bc:1c:9e: 8b:2a:70:8d:d8:bb:75:c8:40:6b:05:3d:9f:d8:cf:2b:66:60: c1:a7:fc:1a:78:41:3d:65:48:0b:5e:69:9a:42:81:2e:0d:19: 5b:16:bb:51:fa:e7:9d:b4:c1:97:3f:c3:d6:d6:46:49:41:99: 74:83:2f:34:da:4f:5d:68:24:5a:19:a0:18:a7:d5:bd:95:10: ba:17:64:a1:8b:5a:3d:4f:73:46:fd:96:75:2a:62:22:7f:ee: d1:f5:d1:e7:fe:14:91:9f:00:e7:be:8c:cc:31:ec:93:a2:35: 08:c0:e0:a8:cc:4e:25:70:cc:89:8e:7c:71:25:e6:4a:cc:a6: 56:c9:09:1b:dc:8b:76:57:07:ec:ec:a2:17:00:6b:47:45:0f: 3a:0f:80:fa -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt7NmvQFv/xjMB15pfXX3xWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjAzNDYzZWI5NDRiMjVjNjUxMzVjYTQ3YmRiZGFiNjQ2 ZjM5ODQwHhcNMjYwMTAxMjAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNWEwMGI3MzJlNTFiNWQ5YWJkYWU4OWU2MzE0NWM0ZTYyMGRjNThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoK/Ztk9o51zWE5d71WKlJaQVlf6D JqSwk3pn1NOYVKo42z8WGDUeB6sQ3Lo2bFRck9fpJgglTsu2JKOrSIPrZCJmqGNC +XzN5Jix99//h3i3r1RpXNMCKQkol+ORpHxbSnwYbroLgGSxEqrOove7mJ5n56lF xOHQqkgQQ89opsKotI2HESVTfJUWhhowTznvDoxa7dS+B3cAvDpohvGMj54u55JX Duxtqy4Uja8XSL5xAosquWcn5VgcmwOiivH09ePLOnk3UQHAdhRlVrpvKJki/hwR Qt/2Ay6Tr9+HR5MNT9oGLWsa5CLTZMMkL0td/JPt27muKidPqstovz0I8QIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFBWgC3MuUbXZq9ronmMUXE5iDcWNMB8GA1UdIwQY MBaAFDggNGPrlEslxlE1yke9vatkbzmEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wYTI5ODQtYTg2OS00NDBkLWI1Nzgt NTg5MzUxNzliOTg1LzEvRmFBTGN5NVJ0ZG1yMnVpZVl4UmNUbUlOeFkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8wYTI5ODQtYTg2OS00NDBkLWI1NzgtNTg5MzUxNzliOTg1 LzEvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQBJYzuAwQC uRy8MBYEAgACMBADBgAqAIhgAQMGACoAiGEBMA0GCSqGSIb3DQEBCwUAA4IBAQB9 jx4ZYQLp6gsjhnqYcKHHY6yB+gvN+vc+HqX3HMIoaNyo8yklgl2hbHF0xQGMpBW2 STO/wh6SA0V8vIvTFhsjI7C9k32cLuQEc6GGUSWYfrj1F0KF+5G14atHUwzZHFga Hahzp7F8LpS8HJ6LKnCN2Lt1yEBrBT2f2M8rZmDBp/waeEE9ZUgLXmmaQoEuDRlb FrtR+uedtMGXP8PW1kZJQZl0gy802k9daCRaGaAYp9W9lRC6F2Shi1o9T3NG/ZZ1 KmIif+7R9dHn/hSRnwDnvozMMeyTojUIwOCozE4lcMyJjnxxJeZKzKZWyQkb3It2 Vwfs7KIXAGtHRQ86D4D6 -----END CERTIFICATE-----Generated at Sun Jan 25 18:22:07 2026 by rpki-client