This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/FFmkaHI1-AjpTMvLVy0yIvPC144.roa File: FFmkaHI1-AjpTMvLVy0yIvPC144.roa (raw, json) Hash identifier: H/52vb22D+lG19vqg99HrmXFwVSjXB0UxG/KPlij0NI= Subject key identifier: 14:59:A4:68:72:35:F8:08:E9:4C:CB:CB:57:2D:32:22:F3:C2:D7:8E Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512 Certificate serial: 019BE1C210FD8DDBFD53606E8BD3A5E76A29 Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/FFmkaHI1-AjpTMvLVy0yIvPC144.roa Signing time: Wed 21 Jan 2026 18:12:30 +0000 ROA not before: Wed 21 Jan 2026 18:12:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202615 IP address blocks: 2a14:c380:24::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.mft rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e1:c2:10:fd:8d:db:fd:53:60:6e:8b:d3:a5:e7:6a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512 Validity Not Before: Jan 21 18:12:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1459a4687235f808e94ccbcb572d3222f3c2d78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:2c:88:53:63:e3:fd:78:35:8e:3f:86:b1:a9: 93:34:60:3f:76:f2:51:e4:ed:e2:9a:81:b1:f7:49: e4:75:b5:41:d9:7d:25:27:a5:3d:a2:79:b0:84:c5: ec:d5:72:ce:d5:a3:87:2d:36:a5:32:8e:d9:be:61: b5:c7:2b:e9:24:14:17:98:c6:81:b5:92:0d:9a:34: 96:91:12:0c:16:dd:c5:30:32:d2:6a:46:50:cf:1c: bf:50:82:0f:72:93:8d:12:1c:86:82:09:00:b3:a6: 4a:35:5d:69:55:7c:b7:48:42:93:36:d6:48:28:61: cc:42:f7:e1:83:d9:d0:9a:ef:f5:2e:32:f3:86:b6: 1c:68:bc:60:7b:90:91:ab:20:1c:99:6c:a1:c0:9c: 69:0f:3a:87:ee:ad:d3:3a:2f:24:0b:e3:fc:03:70: 56:c2:a1:56:a8:e0:d2:70:ea:02:91:0a:67:9d:1b: 9f:02:b6:ba:00:a7:8c:b2:1a:d0:d9:f1:80:7f:41: 9e:39:fb:4b:dc:d6:52:1f:90:c3:26:60:60:0b:03: 8b:fa:41:e6:42:12:56:2b:e4:c7:8f:a4:71:30:4e: 67:e6:2d:28:d9:c6:ba:4e:48:fc:98:9a:aa:e5:28: 5e:68:50:29:63:e5:55:d3:b0:2f:8c:86:60:c7:64: ff:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:59:A4:68:72:35:F8:08:E9:4C:CB:CB:57:2D:32:22:F3:C2:D7:8E X509v3 Authority Key Identifier: keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/FFmkaHI1-AjpTMvLVy0yIvPC144.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:c380:24::/48 Signature Algorithm: sha256WithRSAEncryption 0f:83:88:79:7e:a4:3a:3c:79:4f:ef:14:ff:9d:9c:47:3e:09: 57:15:09:81:1a:3a:4b:cf:08:e1:39:66:c8:94:2a:e9:fa:44: 1b:50:6f:4a:26:d0:ab:8e:97:7b:8c:96:ba:92:1e:53:63:a5: 80:69:f9:07:bc:b3:71:64:6c:f1:03:21:61:b8:34:49:8c:2f: 41:3c:be:40:ec:57:3c:fe:18:82:45:91:af:cb:f8:5f:01:ee: 54:4e:71:97:b4:c0:7b:37:55:76:8b:91:2d:90:af:57:53:32: 13:d7:a1:80:3b:de:e0:3c:18:80:57:51:dc:4a:9c:74:0f:f5: a6:9a:8d:e6:a7:e0:14:3b:09:e5:20:c2:fa:46:fb:76:4e:01: 65:09:64:ad:c1:7f:eb:af:3c:63:32:a8:b4:27:dc:d1:36:83: d6:5e:6f:d1:58:39:06:bd:1a:02:ea:50:3e:cd:a2:98:b1:55: 52:76:af:ce:f9:b3:da:55:41:c5:70:cc:ab:39:58:f5:85:7b: 50:e4:48:c1:92:1e:f4:81:b7:31:d3:3f:34:d8:b5:28:04:76: a6:ca:36:cc:d9:eb:06:2e:d5:cc:1d:12:09:da:df:4a:7b:fa: 43:82:66:bd:4d:00:81:90:bb:1b:18:76:31:12:ac:04:e5:e9: e6:e8:f2:90 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZvhwhD9jdv9U2Bui9Ol52opMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YjNkZTVmOWFkYjUwZmU0MWY2ZGM3OGZmZDBhMmM5MDg2 ZDI1MTIwHhcNMjYwMTIxMTgxMjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDU5YTQ2ODcyMzVmODA4ZTk0Y2NiY2I1NzJkMzIyMmYzYzJkNzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8iyIU2Pj/Xg1jj+GsamTNGA/dvJR 5O3imoGx90nkdbVB2X0lJ6U9onmwhMXs1XLO1aOHLTalMo7ZvmG1xyvpJBQXmMaB tZINmjSWkRIMFt3FMDLSakZQzxy/UIIPcpONEhyGggkAs6ZKNV1pVXy3SEKTNtZI KGHMQvfhg9nQmu/1LjLzhrYcaLxge5CRqyAcmWyhwJxpDzqH7q3TOi8kC+P8A3BW wqFWqODScOoCkQpnnRufAra6AKeMshrQ2fGAf0GeOftL3NZSH5DDJmBgCwOL+kHm QhJWK+THj6RxME5n5i0o2ca6Tkj8mJqq5SheaFApY+VV07AvjIZgx2T/yQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFBRZpGhyNfgI6UzLy1ctMiLzwteOMB8GA1UdIwQY MBaAFFiz3l+a21D+QfbceP/QoskIbSUSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0xQZVg1cmJVUDVCOXR4NF85Q2l5UWh0SlJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC82Yjc0OTAtZTEwYS00MmUwLTllMmUt NTMyMWQ2OWQ5NzlkLzEvRkZta2FISTEtQWpwVE12TFZ5MHlJdlBDMTQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC82Yjc0OTAtZTEwYS00MmUwLTllMmUtNTMyMWQ2OWQ5Nzlk LzEvV0xQZVg1cmJVUDVCOXR4NF85Q2l5UWh0SlJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhTDgAAk MA0GCSqGSIb3DQEBCwUAA4IBAQAPg4h5fqQ6PHlP7xT/nZxHPglXFQmBGjpLzwjh OWbIlCrp+kQbUG9KJtCrjpd7jJa6kh5TY6WAafkHvLNxZGzxAyFhuDRJjC9BPL5A 7Fc8/hiCRZGvy/hfAe5UTnGXtMB7N1V2i5EtkK9XUzIT16GAO97gPBiAV1HcSpx0 D/Wmmo3mp+AUOwnlIML6Rvt2TgFlCWStwX/rrzxjMqi0J9zRNoPWXm/RWDkGvRoC 6lA+zaKYsVVSdq/O+bPaVUHFcMyrOVj1hXtQ5EjBkh70gbcx0z802LUoBHamyjbM 2esGLtXMHRIJ2t9Ke/pDgma9TQCBkLsbGHYxEqwE5enm6PKQ -----END CERTIFICATE-----Generated at Sun Jan 25 16:17:48 2026 by rpki-client