This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/ed17c8-abd4-414f-bc30-7d08291a7662/1/fOlQP3-PfpjSE6EMsORwi3KiU_0.roa File: fOlQP3-PfpjSE6EMsORwi3KiU_0.roa (raw, json) Hash identifier: 9xJNvssU8LW9KKQFyieBw8RskBII5JpvnR6eOew6NAc= Subject key identifier: 7C:E9:50:3F:7F:8F:7E:98:D2:13:A1:0C:B0:E4:70:8B:72:A2:53:FD Certificate issuer: /CN=a10c73530bb684fd569dfc432704675704183429 Certificate serial: 019B7758C1CC4976B2FEFEE82817FE1A9609 Authority key identifier: A1:0C:73:53:0B:B6:84:FD:56:9D:FC:43:27:04:67:57:04:18:34:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQxzUwu2hP1WnfxDJwRnVwQYNCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/ed17c8-abd4-414f-bc30-7d08291a7662/1/fOlQP3-PfpjSE6EMsORwi3KiU_0.roa Signing time: Thu 01 Jan 2026 02:17:44 +0000 ROA not before: Thu 01 Jan 2026 02:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47492 IP address blocks: 81.161.224.0/24 maxlen: 24 81.161.225.0/24 maxlen: 24 81.161.227.0/24 maxlen: 24 185.94.232.0/22 maxlen: 24 185.94.232.0/23 maxlen: 24 185.94.232.0/24 maxlen: 24 185.94.233.0/24 maxlen: 24 185.94.234.0/23 maxlen: 24 185.94.234.0/24 maxlen: 24 185.94.235.0/24 maxlen: 24 2a03:e841::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/ed17c8-abd4-414f-bc30-7d08291a7662/1/oQxzUwu2hP1WnfxDJwRnVwQYNCk.crl rsync://rpki.ripe.net/repository/DEFAULT/af/ed17c8-abd4-414f-bc30-7d08291a7662/1/oQxzUwu2hP1WnfxDJwRnVwQYNCk.mft rsync://rpki.ripe.net/repository/DEFAULT/oQxzUwu2hP1WnfxDJwRnVwQYNCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:c1:cc:49:76:b2:fe:fe:e8:28:17:fe:1a:96:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a10c73530bb684fd569dfc432704675704183429 Validity Not Before: Jan 1 02:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ce9503f7f8f7e98d213a10cb0e4708b72a253fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b6:a3:1c:3f:f1:98:29:a9:34:85:d0:ea:b3: 6b:a2:84:5e:0a:c7:1a:f6:10:de:c3:cd:fe:f8:0c: 27:e4:89:33:b4:0b:bd:7f:e2:4d:41:65:57:6f:93: 7b:1f:df:65:62:5c:79:7d:e1:3e:30:32:c7:a5:31: 73:1a:33:23:68:3e:90:9c:fc:e0:79:18:59:21:f8: 2d:48:cb:9b:3b:21:d3:e0:71:c1:72:05:fb:1c:44: 9e:6e:b8:79:d7:7e:77:63:34:62:8b:72:e8:ad:d1: 75:58:83:2c:e7:00:10:c2:f6:c9:c1:62:27:37:52: 80:74:f6:52:64:98:64:19:59:ec:40:49:74:98:7b: d5:7f:05:98:f7:89:c2:3d:5e:39:e0:30:07:55:21: be:0c:5a:25:40:13:84:83:75:24:d7:56:a4:08:b7: 33:94:ad:0e:13:da:b5:7a:00:c7:9c:4b:9a:ea:87: a7:91:44:86:b4:5f:95:00:bf:61:af:2c:0b:54:b1: ce:b9:9a:ad:e3:0e:d8:6c:f3:32:4d:c6:2d:eb:83: 90:66:ad:d5:28:8d:e4:e1:a5:dd:ff:fb:b4:7d:93: f3:b4:5b:86:52:96:a1:17:29:fc:6e:8c:6f:de:7e: c1:bb:e5:9f:a9:a5:96:5c:71:1f:d4:32:97:a5:8f: 4a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E9:50:3F:7F:8F:7E:98:D2:13:A1:0C:B0:E4:70:8B:72:A2:53:FD X509v3 Authority Key Identifier: keyid:A1:0C:73:53:0B:B6:84:FD:56:9D:FC:43:27:04:67:57:04:18:34:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQxzUwu2hP1WnfxDJwRnVwQYNCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ed17c8-abd4-414f-bc30-7d08291a7662/1/fOlQP3-PfpjSE6EMsORwi3KiU_0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/ed17c8-abd4-414f-bc30-7d08291a7662/1/oQxzUwu2hP1WnfxDJwRnVwQYNCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.161.224.0/23 81.161.227.0/24 185.94.232.0/22 IPv6: 2a03:e841::/32 Signature Algorithm: sha256WithRSAEncryption a2:cc:2c:90:7d:d1:cb:54:2d:74:90:a1:ea:de:1d:af:e5:ad: ce:45:a7:0f:99:4f:f7:2c:b8:82:52:6b:21:75:a8:99:c5:61: 1a:ee:8a:5b:91:9c:10:ba:10:f7:8a:11:13:cc:bb:b3:d2:da: ea:68:a4:1d:2b:50:68:17:10:69:a9:fa:23:d5:fa:ba:69:49: 85:7b:88:6b:0a:21:e2:8d:96:bd:a5:ba:28:ab:2a:65:35:c4: 84:28:74:fd:d2:ea:ad:96:58:5e:b1:7b:c4:be:cb:28:c4:d2: ed:22:29:44:c5:73:c1:dc:4f:ac:40:c9:6a:92:44:fa:55:1b: 53:03:9d:c6:da:32:3c:65:8e:b7:c5:38:cb:4e:58:b2:4c:49: a4:49:32:ef:d1:df:fc:2f:64:98:e5:88:11:80:92:76:3e:d6: 59:f9:e9:7a:3d:d6:c7:ec:cf:1b:2d:ba:6c:83:a3:79:29:da: 9c:6c:13:32:50:9e:4e:bd:1d:a1:2b:e2:d1:ec:18:09:a0:69: bf:d4:ff:c9:15:e6:64:4d:19:72:53:c6:09:ce:41:5b:cf:89: 58:bd:24:c2:01:53:eb:0d:eb:a2:a4:0c:2b:82:2d:6f:12:11: cb:ac:a0:62:7c:c2:3f:a7:88:66:2e:ae:f7:39:00:56:74:49: 5f:fb:fa:07 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt3WMHMSXay/v7oKBf+GpYJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMGM3MzUzMGJiNjg0ZmQ1NjlkZmM0MzI3MDQ2NzU3MDQx ODM0MjkwHhcNMjYwMTAxMDIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Y2U5NTAzZjdmOGY3ZTk4ZDIxM2ExMGNiMGU0NzA4YjcyYTI1M2ZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbajHD/xmCmpNIXQ6rNrooReCsca 9hDew83++Awn5IkztAu9f+JNQWVXb5N7H99lYlx5feE+MDLHpTFzGjMjaD6QnPzg eRhZIfgtSMubOyHT4HHBcgX7HESebrh51353YzRii3LordF1WIMs5wAQwvbJwWIn N1KAdPZSZJhkGVnsQEl0mHvVfwWY94nCPV454DAHVSG+DFolQBOEg3Uk11akCLcz lK0OE9q1egDHnEua6oenkUSGtF+VAL9hrywLVLHOuZqt4w7YbPMyTcYt64OQZq3V KI3k4aXd//u0fZPztFuGUpahFyn8boxv3n7Bu+WfqaWWXHEf1DKXpY9KFwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFHzpUD9/j36Y0hOhDLDkcItyolP9MB8GA1UdIwQY MBaAFKEMc1MLtoT9Vp38QycEZ1cEGDQpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1F4elV3dTJoUDFXbmZ4REp3Um5Wd1FZTkNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9lZDE3YzgtYWJkNC00MTRmLWJjMzAt N2QwODI5MWE3NjYyLzEvZk9sUVAzLVBmcGpTRTZFTXNPUndpM0tpVV8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9lZDE3YzgtYWJkNC00MTRmLWJjMzAtN2QwODI5MWE3NjYy LzEvb1F4elV3dTJoUDFXbmZ4REp3Um5Wd1FZTkNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBUaHgAwQA UaHjAwQCuV7oMA0EAgACMAcDBQAqA+hBMA0GCSqGSIb3DQEBCwUAA4IBAQCizCyQ fdHLVC10kKHq3h2v5a3ORacPmU/3LLiCUmshdaiZxWEa7opbkZwQuhD3ihETzLuz 0trqaKQdK1BoFxBpqfoj1fq6aUmFe4hrCiHijZa9pbooqyplNcSEKHT90uqtllhe sXvEvssoxNLtIilExXPB3E+sQMlqkkT6VRtTA53G2jI8ZY63xTjLTliyTEmkSTLv 0d/8L2SY5YgRgJJ2PtZZ+el6PdbH7M8bLbpsg6N5KdqcbBMyUJ5OvR2hK+LR7BgJ oGm/1P/JFeZkTRlyU8YJzkFbz4lYvSTCAVPrDeuipAwrgi1vEhHLrKBifMI/p4hm Lq73OQBWdElf+/oH -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:23 2026 by rpki-client