This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/86e32b-f067-450f-b67c-3aa150a92ab7/1/FQ-zr24LwDkwYEmw_FlDbzx5P4s.roa File: FQ-zr24LwDkwYEmw_FlDbzx5P4s.roa (raw, json) Hash identifier: 72rsnmpdkRSkNBR0uk4zMj5njaCBagS3GBHGnSWVLYw= Subject key identifier: 15:0F:B3:AF:6E:0B:C0:39:30:60:49:B0:FC:59:43:6F:3C:79:3F:8B Certificate issuer: /CN=ae736cafddb6ebb8d7c76943f4a271e038510aa9 Certificate serial: 019B7F849EEE7B5A08007FA4A25D1E60B35C Authority key identifier: AE:73:6C:AF:DD:B6:EB:B8:D7:C7:69:43:F4:A2:71:E0:38:51:0A:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnNsr92267jXx2lD9KJx4DhRCqk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/86e32b-f067-450f-b67c-3aa150a92ab7/1/FQ-zr24LwDkwYEmw_FlDbzx5P4s.roa Signing time: Fri 02 Jan 2026 16:22:36 +0000 ROA not before: Fri 02 Jan 2026 16:22:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29119 IP address blocks: 5.182.164.0/22 maxlen: 22 185.137.56.0/22 maxlen: 22 185.143.0.0/22 maxlen: 22 185.143.140.0/22 maxlen: 22 185.174.212.0/23 maxlen: 23 185.174.212.0/24 maxlen: 24 185.232.172.0/22 maxlen: 22 185.238.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/86e32b-f067-450f-b67c-3aa150a92ab7/1/rnNsr92267jXx2lD9KJx4DhRCqk.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/86e32b-f067-450f-b67c-3aa150a92ab7/1/rnNsr92267jXx2lD9KJx4DhRCqk.mft rsync://rpki.ripe.net/repository/DEFAULT/rnNsr92267jXx2lD9KJx4DhRCqk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:9e:ee:7b:5a:08:00:7f:a4:a2:5d:1e:60:b3:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae736cafddb6ebb8d7c76943f4a271e038510aa9 Validity Not Before: Jan 2 16:22:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=150fb3af6e0bc039306049b0fc59436f3c793f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:80:c0:46:81:31:b2:06:87:05:a2:8c:e3:7f: cc:da:91:1a:1f:e4:c2:59:20:6f:26:91:16:8b:b0: 2d:e8:96:a9:c8:99:8a:fa:6b:8c:7b:9d:cd:ac:97: 0f:66:3b:31:f5:83:fc:60:db:69:12:f3:98:6f:db: ae:55:e2:fe:e9:cc:3f:d1:a2:aa:6d:74:94:55:34: c0:99:39:50:f3:45:a8:2c:d5:c0:8a:65:68:19:9b: b8:93:0f:15:e4:82:36:ec:75:40:fc:a5:47:40:74: 0f:50:19:b2:bf:fb:31:1c:f1:ef:ee:98:95:8d:89: 38:0a:49:cf:82:17:e7:ec:c8:87:69:f9:84:7f:12: 1b:d7:3e:8a:12:f6:b5:a7:ec:9f:a1:a8:87:19:5d: 0c:d5:8f:8e:66:9d:d7:0a:b3:fd:c0:ef:8a:27:9e: be:71:ce:07:a5:eb:f8:f4:f6:5e:8a:37:ce:57:02: 35:11:9f:c1:e7:0e:5e:d1:31:6a:3d:f9:0d:c5:7d: 8a:6c:8e:77:a1:18:ff:26:c0:c3:87:b8:d6:6f:9f: ce:a8:02:41:85:49:71:d1:1b:16:68:55:2b:59:2a: 62:a9:72:d0:d4:7b:2d:fa:c0:fd:20:a9:e2:80:8c: cb:3f:c9:aa:c0:a2:d4:c9:92:0c:80:ef:a0:b9:c7: af:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0F:B3:AF:6E:0B:C0:39:30:60:49:B0:FC:59:43:6F:3C:79:3F:8B X509v3 Authority Key Identifier: keyid:AE:73:6C:AF:DD:B6:EB:B8:D7:C7:69:43:F4:A2:71:E0:38:51:0A:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnNsr92267jXx2lD9KJx4DhRCqk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/86e32b-f067-450f-b67c-3aa150a92ab7/1/FQ-zr24LwDkwYEmw_FlDbzx5P4s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/86e32b-f067-450f-b67c-3aa150a92ab7/1/rnNsr92267jXx2lD9KJx4DhRCqk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.164.0/22 185.137.56.0/22 185.143.0.0/22 185.143.140.0/22 185.174.212.0/23 185.232.172.0/22 185.238.144.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:36:23:ef:9e:7e:08:d2:3e:af:48:36:25:2c:63:3e:80:21: 69:e7:c8:55:d6:54:d4:ec:b2:f5:b7:73:23:7d:89:c2:53:4f: cb:f6:da:64:1b:12:a3:47:53:6f:c3:08:50:c2:60:a0:56:12: a8:c4:31:81:72:1b:5c:51:b1:3a:0c:36:f6:a5:7b:85:d5:37: 7f:5a:8f:64:58:44:d5:63:b4:78:45:07:6b:d1:eb:64:83:fc: 1e:d7:6b:85:a9:3c:e8:b8:15:66:72:0a:14:7a:e0:90:84:8b: 5f:8b:20:f0:ba:13:0a:c4:27:f8:1a:17:75:76:7e:48:52:b8: e8:25:25:6f:23:dc:62:e7:c0:c6:da:72:b0:02:0a:b4:54:94: 45:ad:34:16:48:06:d3:48:71:aa:8c:63:74:f6:43:2b:e6:c9: 83:2e:cf:ef:0a:82:80:75:b4:15:a8:09:6b:b8:e3:bc:55:25: 94:29:96:dd:27:2f:5a:6f:39:4f:e6:5f:32:3b:89:d9:0e:d6: e4:5f:04:7e:65:d1:7c:2e:66:60:02:b1:9b:08:34:f4:89:f5: 6c:b1:c8:9e:01:06:80:c4:d2:5e:05:cb:3a:6f:d6:6e:af:fe: c7:ac:45:18:d5:3b:dc:80:5b:1b:53:e6:b9:2b:b3:5c:88:92: b7:1c:76:d3 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt/hJ7ue1oIAH+kol0eYLNcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNzM2Y2FmZGRiNmViYjhkN2M3Njk0M2Y0YTI3MWUwMzg1 MTBhYTkwHhcNMjYwMTAyMTYyMjM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNTBmYjNhZjZlMGJjMDM5MzA2MDQ5YjBmYzU5NDM2ZjNjNzkzZjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIDARoExsgaHBaKM43/M2pEaH+TC WSBvJpEWi7At6JapyJmK+muMe53NrJcPZjsx9YP8YNtpEvOYb9uuVeL+6cw/0aKq bXSUVTTAmTlQ80WoLNXAimVoGZu4kw8V5II27HVA/KVHQHQPUBmyv/sxHPHv7piV jYk4CknPghfn7MiHafmEfxIb1z6KEva1p+yfoaiHGV0M1Y+OZp3XCrP9wO+KJ56+ cc4Hpev49PZeijfOVwI1EZ/B5w5e0TFqPfkNxX2KbI53oRj/JsDDh7jWb5/OqAJB hUlx0RsWaFUrWSpiqXLQ1Hst+sD9IKnigIzLP8mqwKLUyZIMgO+gucevJQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFBUPs69uC8A5MGBJsPxZQ288eT+LMB8GA1UdIwQY MBaAFK5zbK/dtuu418dpQ/SiceA4UQqpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm5Oc3I5MjI2N2pYeDJsRDlLSng0RGhSQ3FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS84NmUzMmItZjA2Ny00NTBmLWI2N2Mt M2FhMTUwYTkyYWI3LzEvRlEtenIyNEx3RGt3WUVtd19GbERieng1UDRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS84NmUzMmItZjA2Ny00NTBmLWI2N2MtM2FhMTUwYTkyYWI3 LzEvcm5Oc3I5MjI2N2pYeDJsRDlLSng0RGhSQ3FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCBbakAwQC uYk4AwQCuY8AAwQCuY+MAwQBua7UAwQCueisAwQCue6QMA0GCSqGSIb3DQEBCwUA A4IBAQAONiPvnn4I0j6vSDYlLGM+gCFp58hV1lTU7LL1t3MjfYnCU0/L9tpkGxKj R1NvwwhQwmCgVhKoxDGBchtcUbE6DDb2pXuF1Td/Wo9kWETVY7R4RQdr0etkg/we 12uFqTzouBVmcgoUeuCQhItfiyDwuhMKxCf4Ghd1dn5IUrjoJSVvI9xi58DG2nKw Agq0VJRFrTQWSAbTSHGqjGN09kMr5smDLs/vCoKAdbQVqAlruOO8VSWUKZbdJy9a bzlP5l8yO4nZDtbkXwR+ZdF8LmZgArGbCDT0ifVsscieAQaAxNJeBcs6b9Zur/7H rEUY1TvcgFsbU+a5K7NciJK3HHbT -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:10 2026 by rpki-client