This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/FKdM40ixAn5Mv7sd-loN1AAlLBg.roa File: FKdM40ixAn5Mv7sd-loN1AAlLBg.roa (raw, json) Hash identifier: oxhIXVSaVG2AzY2umVVW0jiHJlu6SrIl96kfe/IkKnU= Subject key identifier: 14:A7:4C:E3:48:B1:02:7E:4C:BF:BB:1D:FA:5A:0D:D4:00:25:2C:18 Certificate issuer: /CN=4eef6aae6fba5c61a61739afcab55a62266e89ee Certificate serial: 019B7A5AFEAE6CA5A34E8E91D125910B2600 Authority key identifier: 4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/FKdM40ixAn5Mv7sd-loN1AAlLBg.roa Signing time: Thu 01 Jan 2026 16:19:02 +0000 ROA not before: Thu 01 Jan 2026 16:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197404 IP address blocks: 194.150.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.mft rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:fe:ae:6c:a5:a3:4e:8e:91:d1:25:91:0b:26:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4eef6aae6fba5c61a61739afcab55a62266e89ee Validity Not Before: Jan 1 16:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=14a74ce348b1027e4cbfbb1dfa5a0dd400252c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:f6:00:26:d5:1c:40:8b:e9:6e:86:13:8f:12: c4:a5:24:11:e0:0b:77:bb:0e:16:ec:2b:fb:26:9d: 6f:b1:8e:7e:8d:c4:f9:95:04:c2:07:be:3a:a5:aa: b8:2e:29:b4:f9:05:4d:c1:33:fd:76:d1:a2:a1:d3: 0c:fa:8c:3b:6b:65:f7:c3:a4:f0:8d:c0:2e:34:0a: 1e:ec:51:66:70:c6:c0:72:94:e6:8f:2a:d3:39:d6: ea:06:06:8e:f2:41:f3:13:bd:70:52:2a:10:b0:79: 5e:50:62:05:82:e2:a3:70:8e:84:41:4f:b3:4d:d5: 97:5d:5f:13:49:84:cc:1f:aa:b0:95:80:34:9a:d0: 13:fc:da:cb:07:bf:2e:c3:60:dd:b7:be:37:00:53: f2:80:b6:96:7f:9b:03:8c:61:ab:28:52:22:16:74: 65:d7:58:35:89:b4:20:c5:d0:e1:1d:46:33:e4:9f: 21:ef:4b:64:2f:0f:a5:84:d4:a2:ce:a4:b3:16:2b: 05:61:08:21:b7:a2:d1:16:e7:a0:6d:2a:d3:3a:55: 55:ed:d6:70:d2:d9:45:90:0e:bc:f6:20:91:59:1d: ce:f5:8e:a0:62:01:0a:d1:41:21:bc:3f:f7:b5:7f: 02:e7:f2:51:bc:67:df:b1:86:e6:80:bc:75:a5:9a: c1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A7:4C:E3:48:B1:02:7E:4C:BF:BB:1D:FA:5A:0D:D4:00:25:2C:18 X509v3 Authority Key Identifier: keyid:4E:EF:6A:AE:6F:BA:5C:61:A6:17:39:AF:CA:B5:5A:62:26:6E:89:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu9qrm-6XGGmFzmvyrVaYiZuie4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/FKdM40ixAn5Mv7sd-loN1AAlLBg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b8e5c4-38eb-445f-b036-c37790e6d482/1/Tu9qrm-6XGGmFzmvyrVaYiZuie4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.150.214.0/24 Signature Algorithm: sha256WithRSAEncryption 77:82:4b:27:37:f5:e2:4d:b4:4c:c7:3b:b9:13:0f:d9:5b:68: d9:e9:a2:c3:b4:68:16:84:fc:d7:8c:c4:fd:e6:a1:4a:79:5c: c9:f1:1a:7e:70:19:1a:29:4c:81:3e:8a:8a:d6:11:4c:59:66: 05:bc:23:fb:b2:c7:47:b3:aa:c1:90:a2:45:00:ee:d3:8a:86: 24:4b:12:bf:55:08:9b:9a:e1:9c:1f:d9:8f:3a:69:5a:a1:8a: 13:f3:40:10:bd:55:84:28:73:7b:dd:b0:61:0a:88:13:86:b6: ee:40:f3:5b:46:88:92:46:02:5d:c6:38:13:ae:ed:e1:a4:79: 11:81:8e:ba:e6:4e:5f:72:97:c9:75:f3:1f:6a:4f:f5:ed:6f: 04:2f:39:fd:15:81:2e:59:7c:44:96:35:78:18:fc:ba:55:e6: 5b:52:43:a6:ef:e8:2a:bc:ad:3a:91:3a:a5:b7:fc:8c:64:82: 12:09:35:e2:47:7e:05:7d:9f:4b:45:00:d9:75:4f:f8:4e:5a: 9d:c9:58:1c:89:22:4e:66:8f:eb:90:72:37:57:cd:d6:17:51: ae:cc:11:3f:4d:0f:57:7e:07:8f:6c:a1:35:9b:49:b3:b3:0d: ee:af:3b:49:73:68:54:d3:09:fb:3d:64:a3:3d:1e:f9:3c:40: 41:4b:9d:04 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wv6ubKWjTo6R0SWRCyYAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZWY2YWFlNmZiYTVjNjFhNjE3MzlhZmNhYjU1YTYyMjY2 ZTg5ZWUwHhcNMjYwMTAxMTYxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNGE3NGNlMzQ4YjEwMjdlNGNiZmJiMWRmYTVhMGRkNDAwMjUyYzE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhPYAJtUcQIvpboYTjxLEpSQR4At3 uw4W7Cv7Jp1vsY5+jcT5lQTCB746paq4Lim0+QVNwTP9dtGiodMM+ow7a2X3w6Tw jcAuNAoe7FFmcMbAcpTmjyrTOdbqBgaO8kHzE71wUioQsHleUGIFguKjcI6EQU+z TdWXXV8TSYTMH6qwlYA0mtAT/NrLB78uw2Ddt743AFPygLaWf5sDjGGrKFIiFnRl 11g1ibQgxdDhHUYz5J8h70tkLw+lhNSizqSzFisFYQght6LRFuegbSrTOlVV7dZw 0tlFkA689iCRWR3O9Y6gYgEK0UEhvD/3tX8C5/JRvGffsYbmgLx1pZrB4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBSnTONIsQJ+TL+7HfpaDdQAJSwYMB8GA1UdIwQY MBaAFE7vaq5vulxhphc5r8q1WmImbonuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHU5cXJtLTZYR0dtRnptdnlyVmFZaVp1aWU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9iOGU1YzQtMzhlYi00NDVmLWIwMzYt YzM3NzkwZTZkNDgyLzEvRktkTTQwaXhBbjVNdjdzZC1sb04xQUFsTEJnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9iOGU1YzQtMzhlYi00NDVmLWIwMzYtYzM3NzkwZTZkNDgy LzEvVHU5cXJtLTZYR0dtRnptdnlyVmFZaVp1aWU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpbWMA0G CSqGSIb3DQEBCwUAA4IBAQB3gksnN/XiTbRMxzu5Ew/ZW2jZ6aLDtGgWhPzXjMT9 5qFKeVzJ8Rp+cBkaKUyBPoqK1hFMWWYFvCP7ssdHs6rBkKJFAO7TioYkSxK/VQib muGcH9mPOmlaoYoT80AQvVWEKHN73bBhCogThrbuQPNbRoiSRgJdxjgTru3hpHkR gY665k5fcpfJdfMfak/17W8ELzn9FYEuWXxEljV4GPy6VeZbUkOm7+gqvK06kTql t/yMZIISCTXiR34FfZ9LRQDZdU/4TlqdyVgciSJOZo/rkHI3V83WF1GuzBE/TQ9X fgePbKE1m0mzsw3urztJc2hU0wn7PWSjPR75PEBBS50E -----END CERTIFICATE-----Generated at Mon Jan 26 05:49:41 2026 by rpki-client