This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/Fa2Vtt7OBxYgHIfhflgQOmFFexE.roa File: Fa2Vtt7OBxYgHIfhflgQOmFFexE.roa (raw, json) Hash identifier: nsncXi1fM+9rcTyQmSh9C2tHMk0W4t5U2Q/c/sbGWGI= Subject key identifier: 15:AD:95:B6:DE:CE:07:16:20:1C:87:E1:7E:58:10:3A:61:45:7B:11 Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68 Certificate serial: 019B7834E3A8CE012512ECCCE4B6FCAE39F0 Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/Fa2Vtt7OBxYgHIfhflgQOmFFexE.roa Signing time: Thu 01 Jan 2026 06:18:10 +0000 ROA not before: Thu 01 Jan 2026 06:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61121 IP address blocks: 91.212.151.0/24 maxlen: 24 185.18.4.0/22 maxlen: 24 185.18.4.0/23 maxlen: 24 185.18.4.0/24 maxlen: 24 185.18.5.0/24 maxlen: 24 185.18.6.0/23 maxlen: 24 185.18.6.0/24 maxlen: 24 185.18.7.0/24 maxlen: 24 2a03:f1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e3:a8:ce:01:25:12:ec:cc:e4:b6:fc:ae:39:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68 Validity Not Before: Jan 1 06:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=15ad95b6dece0716201c87e17e58103a61457b11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:bc:99:bd:0a:48:e8:4f:b6:b9:0e:f8:0c:34: 3e:30:84:b0:96:6e:99:5f:9d:da:ac:05:c0:4b:6e: bb:ac:83:37:5f:76:27:23:09:e9:0f:e9:20:ab:8b: 74:bf:f6:52:f2:fb:2d:13:3d:e4:06:cf:ad:ab:1d: df:a1:7c:68:aa:4d:4d:a7:b1:ff:af:df:4f:df:cd: a8:05:ec:11:31:f2:5f:fb:4e:cb:94:8f:df:e6:78: 5e:89:e6:88:90:7c:28:d7:ee:1f:45:18:88:c1:36: 90:ae:39:55:03:16:88:b0:32:dd:4b:b2:91:42:01: 09:ae:c4:21:6e:12:c1:31:5a:10:f3:7e:cf:37:74: 6b:6a:0e:ab:8c:c2:56:06:ea:77:f1:15:8e:87:1c: 86:c7:9d:af:49:af:58:72:75:a8:e7:cb:9a:e6:0d: 30:45:6f:5d:3c:eb:bc:b3:8c:e8:52:b6:74:f3:fe: c9:95:05:0c:8e:5a:01:fc:06:88:a4:50:93:e8:bf: d8:31:32:a2:c9:2f:c3:d2:97:c9:35:e4:fe:cb:e8: 07:df:79:2c:6f:bb:88:9b:54:47:01:b5:0a:8a:67: e0:52:be:4c:b2:de:80:28:78:01:65:c1:87:19:c2: 14:75:43:da:3f:e8:08:be:0f:b2:a3:99:c8:8b:4c: 39:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AD:95:B6:DE:CE:07:16:20:1C:87:E1:7E:58:10:3A:61:45:7B:11 X509v3 Authority Key Identifier: keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/Fa2Vtt7OBxYgHIfhflgQOmFFexE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.212.151.0/24 185.18.4.0/22 IPv6: 2a03:f1c0::/32 Signature Algorithm: sha256WithRSAEncryption 88:a7:bd:10:59:d1:22:b7:f4:fe:51:25:3f:c2:71:e3:54:d9: e7:f1:20:57:73:9c:a9:5b:84:d2:4b:6e:83:90:06:dc:a3:f6: 26:c8:29:a1:18:1b:ae:7c:07:f6:4a:97:72:ca:e2:7b:d7:a1: ee:c5:bc:b1:5e:ec:3a:4f:6c:86:8c:46:22:b9:cb:2f:48:3e: 77:c4:be:9d:69:7d:93:04:12:0e:a8:fd:f0:57:a9:43:5f:b2: 19:4c:02:aa:01:7c:ea:48:da:dc:65:60:9e:48:38:9b:6a:cf: df:69:5b:6d:4f:aa:69:b8:46:f9:55:eb:7a:f3:49:43:c4:f1: 0d:c3:ab:82:c6:0b:0d:ec:15:d4:6e:ec:36:de:ad:89:46:b1: 57:2b:12:7d:fa:af:25:c6:5c:1e:c7:59:ab:23:4b:36:ec:cc: ef:a6:66:f8:87:4b:ce:a4:bb:4e:f0:28:55:d5:c5:c0:42:dc: 4a:49:5a:e6:ec:8c:d1:24:a6:87:c6:af:1c:26:cb:d1:c6:17: 71:c5:6b:8f:cb:c1:e3:e6:e7:e1:80:cb:55:48:46:10:a6:1b: 92:d5:c8:a9:f0:e2:9a:61:e5:d4:85:0a:7e:c6:79:c4:58:17: 69:81:97:00:b5:f1:0e:37:d8:8a:b4:46:cf:97:d3:ee:28:0e: d8:6e:b8:ea -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4NOOozgElEuzM5Lb8rjnwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MDczZDA2YjU4NjUyZjg0OWZhOGJjZjNjZWM2Yjk1MDkw OWJkNjgwHhcNMjYwMTAxMDYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNWFkOTViNmRlY2UwNzE2MjAxYzg3ZTE3ZTU4MTAzYTYxNDU3YjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8byZvQpI6E+2uQ74DDQ+MISwlm6Z X53arAXAS267rIM3X3YnIwnpD+kgq4t0v/ZS8vstEz3kBs+tqx3foXxoqk1Np7H/ r99P382oBewRMfJf+07LlI/f5nheieaIkHwo1+4fRRiIwTaQrjlVAxaIsDLdS7KR QgEJrsQhbhLBMVoQ837PN3Rrag6rjMJWBup38RWOhxyGx52vSa9YcnWo58ua5g0w RW9dPOu8s4zoUrZ08/7JlQUMjloB/AaIpFCT6L/YMTKiyS/D0pfJNeT+y+gH33ks b7uIm1RHAbUKimfgUr5Mst6AKHgBZcGHGcIUdUPaP+gIvg+yo5nIi0w5lwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFBWtlbbezgcWIByH4X5YEDphRXsRMB8GA1UdIwQY MBaAFNgHPQa1hlL4SfqLzzzsa5UJCb1oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkFjOUJyV0dVdmhKLW92UFBPeHJsUWtKdldnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83MjE5MjAtOTM5Yi00MTJiLWEzYzUt MjMyOWQ3OWM0YWUzLzEvRmEyVnR0N09CeFlnSElmaGZsZ1FPbUZGZXhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy83MjE5MjAtOTM5Yi00MTJiLWEzYzUtMjMyOWQ3OWM0YWUz LzEvMkFjOUJyV0dVdmhKLW92UFBPeHJsUWtKdldnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAW9SXAwQC uRIEMA0EAgACMAcDBQAqA/HAMA0GCSqGSIb3DQEBCwUAA4IBAQCIp70QWdEit/T+ USU/wnHjVNnn8SBXc5ypW4TSS26DkAbco/YmyCmhGBuufAf2SpdyyuJ716Huxbyx Xuw6T2yGjEYiucsvSD53xL6daX2TBBIOqP3wV6lDX7IZTAKqAXzqSNrcZWCeSDib as/faVttT6ppuEb5Vet680lDxPENw6uCxgsN7BXUbuw23q2JRrFXKxJ9+q8lxlwe x1mrI0s27Mzvpmb4h0vOpLtO8ChV1cXAQtxKSVrm7IzRJKaHxq8cJsvRxhdxxWuP y8Hj5ufhgMtVSEYQphuS1cip8OKaYeXUhQp+xnnEWBdpgZcAtfEON9iKtEbPl9Pu KA7Ybrjq -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:45 2026 by rpki-client