This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/FEiTqIT1cqpRLflYOI_79JGhaks.roa File: FEiTqIT1cqpRLflYOI_79JGhaks.roa (raw, json) Hash identifier: ifbVEX7UepiZjjPVlo2crki0TP+d7TO8G3eiigYipls= Subject key identifier: 14:48:93:A8:84:F5:72:AA:51:2D:F9:58:38:8F:FB:F4:91:A1:6A:4B Certificate issuer: /CN=7e3150f8c67063121027328954968d08d4cf329a Certificate serial: 019BA23DBEEE98F576256E2CF6AA776F5FC8 Authority key identifier: 7E:31:50:F8:C6:70:63:12:10:27:32:89:54:96:8D:08:D4:CF:32:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/FEiTqIT1cqpRLflYOI_79JGhaks.roa Signing time: Fri 09 Jan 2026 10:11:54 +0000 ROA not before: Fri 09 Jan 2026 10:11:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207345 IP address blocks: 2a06:2c80:3000::/36 maxlen: 48 2a06:2c80:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.mft rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a2:3d:be:ee:98:f5:76:25:6e:2c:f6:aa:77:6f:5f:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e3150f8c67063121027328954968d08d4cf329a Validity Not Before: Jan 9 10:11:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=144893a884f572aa512df958388ffbf491a16a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a4:ec:bc:0f:f3:84:72:7a:18:7d:6e:bd:5a: 92:d0:5e:23:3b:31:cf:f8:9f:13:55:e9:40:74:8c: d8:56:a7:22:38:9c:8a:9f:5c:6f:d8:ae:fc:ec:c7: 16:4c:68:93:ac:41:68:52:7c:44:fd:e5:87:71:91: a1:72:57:eb:51:a6:b0:35:fb:b7:3a:4b:52:ef:27: fe:03:3a:8b:04:39:51:77:ef:eb:34:2e:b7:a0:47: 6e:4e:eb:0d:24:de:9d:84:0e:fe:ef:a2:df:1e:73: e5:18:5b:7c:a0:4f:7c:64:21:10:95:a1:5b:7a:a6: 1b:86:c8:a2:8f:5e:30:f5:69:88:dc:38:b7:f7:6f: f7:14:11:0b:7a:ab:0e:59:af:dc:ea:9e:1c:53:07: bb:76:5e:a6:fb:18:a7:e4:b2:2a:76:db:1c:63:27: b6:ce:1c:89:fb:5a:ee:77:db:76:3e:70:18:86:72: bd:90:11:c1:8d:6f:af:a3:d7:bb:9d:af:b1:ec:2c: f4:2f:a4:0b:92:5e:d3:6d:31:b7:67:66:37:86:7d: 6c:74:0a:e6:0d:d8:b3:ed:a5:47:35:fa:22:20:78: 7c:00:da:f3:cc:13:58:10:a9:8b:ea:a7:7f:c7:cb: d1:20:f4:45:ff:78:f4:56:c2:cd:ee:ed:eb:9f:c8: 38:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:48:93:A8:84:F5:72:AA:51:2D:F9:58:38:8F:FB:F4:91:A1:6A:4B X509v3 Authority Key Identifier: keyid:7E:31:50:F8:C6:70:63:12:10:27:32:89:54:96:8D:08:D4:CF:32:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/FEiTqIT1cqpRLflYOI_79JGhaks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8bcfd7-f6d3-432a-b5f0-935e418bdbe7/1/fjFQ-MZwYxIQJzKJVJaNCNTPMpo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:2c80:3000::/36 2a06:2c80:5000::/36 Signature Algorithm: sha256WithRSAEncryption 48:9f:8a:ff:43:69:72:4a:a1:bd:2c:21:b1:01:72:86:25:ed: 81:fa:8d:a4:80:d1:f3:53:4a:6b:36:8e:8e:12:cd:d9:42:a8: dd:b1:b2:fb:ab:3e:37:18:44:07:03:4e:f8:a1:65:e7:e4:83: 01:9c:84:ee:9c:cf:d1:e1:a4:da:e3:88:30:e3:7d:f4:a7:ee: a3:1a:7a:26:40:bf:5b:72:25:da:1d:6e:e4:14:48:ee:67:cb: 29:dd:ee:7c:e3:d0:c1:0b:79:43:a8:32:73:44:4f:ea:4c:f1: f7:f4:89:fe:83:70:36:0e:50:3e:4b:94:a2:6c:dd:6c:4e:c2: 10:ed:a4:4e:9b:d6:fd:c4:4f:9b:c9:f0:8a:0b:a1:7a:3e:a8: 89:a8:f1:e8:97:5a:81:54:e3:2f:3f:01:0e:59:fd:b7:4f:81: 8e:c2:12:53:2b:d1:2f:69:ed:eb:8a:17:a3:d6:ea:01:eb:70: bf:b7:94:a2:6c:30:25:0e:ba:32:0d:d4:3d:91:0a:57:64:a5: f4:ec:6e:87:b0:a6:df:ac:83:28:3d:fc:10:68:70:82:66:99: 50:95:74:c8:1c:91:f3:57:aa:15:5c:4e:24:c7:5a:0b:c8:f3: c7:af:02:2b:02:db:21:77:a1:15:ea:fb:77:ad:37:d6:ae:34: 0b:63:c7:1d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISAZuiPb7umPV2JW4s9qp3b1/IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMzE1MGY4YzY3MDYzMTIxMDI3MzI4OTU0OTY4ZDA4ZDRj ZjMyOWEwHhcNMjYwMTA5MTAxMTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDQ4OTNhODg0ZjU3MmFhNTEyZGY5NTgzODhmZmJmNDkxYTE2YTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKTsvA/zhHJ6GH1uvVqS0F4jOzHP +J8TVelAdIzYVqciOJyKn1xv2K787McWTGiTrEFoUnxE/eWHcZGhclfrUaawNfu3 OktS7yf+AzqLBDlRd+/rNC63oEduTusNJN6dhA7+76LfHnPlGFt8oE98ZCEQlaFb eqYbhsiij14w9WmI3Di392/3FBELeqsOWa/c6p4cUwe7dl6m+xin5LIqdtscYye2 zhyJ+1rud9t2PnAYhnK9kBHBjW+vo9e7na+x7Cz0L6QLkl7TbTG3Z2Y3hn1sdArm Ddiz7aVHNfoiIHh8ANrzzBNYEKmL6qd/x8vRIPRF/3j0VsLN7u3rn8g4xQIDAQAB o4ICEzCCAg8wHQYDVR0OBBYEFBRIk6iE9XKqUS35WDiP+/SRoWpLMB8GA1UdIwQY MBaAFH4xUPjGcGMSECcyiVSWjQjUzzKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmpGUS1NWndZeElRSnpLSlZKYU5DTlRQTXBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84YmNmZDctZjZkMy00MzJhLWI1ZjAt OTM1ZTQxOGJkYmU3LzEvRkVpVHFJVDFjcXBSTGZsWU9JXzc5SkdoYWtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi84YmNmZDctZjZkMy00MzJhLWI1ZjAtOTM1ZTQxOGJkYmU3 LzEvZmpGUS1NWndZeElRSnpLSlZKYU5DTlRQTXBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYEKgYsgDAD BgQqBiyAUDANBgkqhkiG9w0BAQsFAAOCAQEASJ+K/0NpckqhvSwhsQFyhiXtgfqN pIDR81NKazaOjhLN2UKo3bGy+6s+NxhEBwNO+KFl5+SDAZyE7pzP0eGk2uOIMON9 9Kfuoxp6JkC/W3Il2h1u5BRI7mfLKd3ufOPQwQt5Q6gyc0RP6kzx9/SJ/oNwNg5Q PkuUomzdbE7CEO2kTpvW/cRPm8nwiguhej6oiajx6JdagVTjLz8BDln9t0+BjsIS UyvRL2nt64oXo9bqAetwv7eUomwwJQ66Mg3UPZEKV2Sl9Oxuh7Cm36yDKD38EGhw gmaZUJV0yByR81eqFVxOJMdaC8jzx68CKwLbIXehFer7d6031q40C2PHHQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:59 2026 by rpki-client