This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/f3kPFs4waiX6locgjDdwFUiP7tk.roa File: f3kPFs4waiX6locgjDdwFUiP7tk.roa (raw, json) Hash identifier: 4sDGfuSEROWxAzi+C1qp5I+6lZx1ktDF8owXbaFpZn0= Subject key identifier: 7F:79:0F:16:CE:30:6A:25:FA:96:87:20:8C:37:70:15:48:8F:EE:D9 Certificate issuer: /CN=1ba5167888397ff9caa844f554ff837cfdbf9722 Certificate serial: 019B7C808844DB43C653C03C4C6BE016C2B1 Authority key identifier: 1B:A5:16:78:88:39:7F:F9:CA:A8:44:F5:54:FF:83:7C:FD:BF:97:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/f3kPFs4waiX6locgjDdwFUiP7tk.roa Signing time: Fri 02 Jan 2026 02:19:16 +0000 ROA not before: Fri 02 Jan 2026 02:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9063 IP address blocks: 185.44.200.0/22 maxlen: 22 185.44.200.0/23 maxlen: 23 2a01:7820::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/G6UWeIg5f_nKqET1VP-DfP2_lyI.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/G6UWeIg5f_nKqET1VP-DfP2_lyI.mft rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:88:44:db:43:c6:53:c0:3c:4c:6b:e0:16:c2:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ba5167888397ff9caa844f554ff837cfdbf9722 Validity Not Before: Jan 2 02:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7f790f16ce306a25fa9687208c377015488feed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9d:ce:cf:a5:c6:4e:98:b9:11:7d:b8:47:fa: df:b5:ea:4b:78:a2:1e:d5:ee:bd:90:d5:b3:9b:09: ac:35:b2:57:40:42:5f:88:4b:28:1d:3f:ca:d9:20: 61:f6:98:a3:71:fb:7d:5d:1e:08:90:ae:1b:8f:97: 31:fd:31:0f:0c:c6:bf:78:31:41:97:e8:e2:29:83: 10:31:e2:4a:53:8f:40:84:08:40:5d:eb:ae:8a:87: a8:6f:3c:bf:3f:3d:50:eb:1e:87:f4:b6:2d:34:83: cc:b7:0d:b0:f9:19:7d:7b:ad:0b:30:d6:e1:d2:94: 21:a6:35:7f:ba:4d:6b:b2:87:0e:50:a0:8f:9d:f6: e9:af:64:83:8e:15:80:ef:c3:c2:04:4d:96:17:b0: a1:0e:ba:e3:c4:2a:a3:29:db:81:03:b0:a0:24:e4: 98:02:06:e2:c4:1e:1c:85:fb:f3:a9:3c:76:fa:6c: 71:40:e4:ac:1e:21:17:df:86:0b:39:a1:67:59:73: d5:4e:b4:d5:0c:80:29:04:7a:9e:a6:6b:d5:9d:24: 2f:12:e7:ce:49:ec:b6:7d:0d:55:6b:7a:a0:17:ad: f0:5f:dd:b5:6d:16:ae:04:a5:75:a7:45:9c:6d:9c: 0c:85:20:23:10:0d:8a:89:ea:d3:b2:d7:38:f5:65: b4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:79:0F:16:CE:30:6A:25:FA:96:87:20:8C:37:70:15:48:8F:EE:D9 X509v3 Authority Key Identifier: keyid:1B:A5:16:78:88:39:7F:F9:CA:A8:44:F5:54:FF:83:7C:FD:BF:97:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G6UWeIg5f_nKqET1VP-DfP2_lyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/f3kPFs4waiX6locgjDdwFUiP7tk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/066478-b066-4736-ad9f-53f41dfe407f/1/G6UWeIg5f_nKqET1VP-DfP2_lyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.44.200.0/22 IPv6: 2a01:7820::/32 Signature Algorithm: sha256WithRSAEncryption 47:28:60:00:f7:99:82:43:a0:8d:2a:fe:3c:90:f4:cf:7d:7d: b0:34:23:be:4d:47:5a:f1:21:98:e7:04:d1:bc:6e:18:35:15: ee:52:5b:28:80:7a:6a:ae:07:c9:58:67:95:f7:19:5b:0d:ef: e0:58:4a:7b:b2:07:85:36:db:b9:85:d3:ee:bc:6e:6f:2e:44: 58:0b:c3:ca:89:20:9f:2c:79:eb:5f:81:91:61:1d:c9:dc:1c: 10:f7:f8:83:9e:56:7c:57:d7:4a:82:e2:d7:56:cc:dd:98:9b: da:bd:65:cb:10:e5:51:79:bb:4e:2c:69:72:7a:3e:24:8f:65: 01:e9:fb:df:90:3a:32:50:5c:3e:c2:56:b8:db:7e:60:92:1d: 04:6e:27:09:9d:48:71:03:59:d0:6a:81:82:9c:28:71:00:32: 17:c1:63:be:ff:ed:81:6e:0e:09:d0:61:f5:39:d7:63:33:68: 88:5e:c7:ec:65:9d:23:df:22:cf:a1:83:d9:e0:5f:a6:11:26: a4:8a:95:ea:f1:c7:a2:f6:71:9a:5a:22:51:1a:3e:38:e3:14: ff:e0:2f:2a:97:7d:2a:6c:1b:61:f2:2c:77:02:42:b6:d0:10: f8:70:79:8f:16:d1:bb:87:4d:2b:3d:7a:9a:dc:d8:cb:50:4c: 86:5f:4a:c4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gIhE20PGU8A8TGvgFsKxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiYTUxNjc4ODgzOTdmZjljYWE4NDRmNTU0ZmY4MzdjZmRi Zjk3MjIwHhcNMjYwMTAyMDIxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Zjc5MGYxNmNlMzA2YTI1ZmE5Njg3MjA4YzM3NzAxNTQ4OGZlZWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp3Oz6XGTpi5EX24R/rftepLeKIe 1e69kNWzmwmsNbJXQEJfiEsoHT/K2SBh9pijcft9XR4IkK4bj5cx/TEPDMa/eDFB l+jiKYMQMeJKU49AhAhAXeuuioeobzy/Pz1Q6x6H9LYtNIPMtw2w+Rl9e60LMNbh 0pQhpjV/uk1rsocOUKCPnfbpr2SDjhWA78PCBE2WF7ChDrrjxCqjKduBA7CgJOSY AgbixB4chfvzqTx2+mxxQOSsHiEX34YLOaFnWXPVTrTVDIApBHqepmvVnSQvEufO Sey2fQ1Va3qgF63wX921bRauBKV1p0WcbZwMhSAjEA2KierTstc49WW0qQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFH95DxbOMGol+paHIIw3cBVIj+7ZMB8GA1UdIwQY MBaAFBulFniIOX/5yqhE9VT/g3z9v5ciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzZVV2VJZzVmX25LcUVUMVZQLURmUDJfbHlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8wNjY0NzgtYjA2Ni00NzM2LWFkOWYt NTNmNDFkZmU0MDdmLzEvZjNrUEZzNHdhaVg2bG9jZ2pEZHdGVWlQN3RrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8wNjY0NzgtYjA2Ni00NzM2LWFkOWYtNTNmNDFkZmU0MDdm LzEvRzZVV2VJZzVmX25LcUVUMVZQLURmUDJfbHlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuSzIMA0E AgACMAcDBQAqAXggMA0GCSqGSIb3DQEBCwUAA4IBAQBHKGAA95mCQ6CNKv48kPTP fX2wNCO+TUda8SGY5wTRvG4YNRXuUlsogHpqrgfJWGeV9xlbDe/gWEp7sgeFNtu5 hdPuvG5vLkRYC8PKiSCfLHnrX4GRYR3J3BwQ9/iDnlZ8V9dKguLXVszdmJvavWXL EOVRebtOLGlyej4kj2UB6fvfkDoyUFw+wla4235gkh0EbicJnUhxA1nQaoGCnChx ADIXwWO+/+2Bbg4J0GH1OddjM2iIXsfsZZ0j3yLPoYPZ4F+mESakipXq8cei9nGa WiJRGj444xT/4C8ql30qbBth8ix3AkK20BD4cHmPFtG7h00rPXqa3NjLUEyGX0rE -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:53 2026 by rpki-client