This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/b73cac-3610-4224-bdba-a5757aaafffa/1/fWVWhQr_IOS3Ere6cXK65HkUY_E.roa File: fWVWhQr_IOS3Ere6cXK65HkUY_E.roa (raw, json) Hash identifier: 6xJw6F8DBsgdoe+Xw5KCeHZGXvkk/TDJRq4n5OCTKlI= Subject key identifier: 7D:65:56:85:0A:FF:20:E4:B7:12:B7:BA:71:72:BA:E4:79:14:63:F1 Certificate issuer: /CN=af17ccce74c1afba83b7ba85d97712b2bcc4a5e8 Certificate serial: 019B7DCAFE5F515AAD1E13F49CCE9D9ABF03 Authority key identifier: AF:17:CC:CE:74:C1:AF:BA:83:B7:BA:85:D9:77:12:B2:BC:C4:A5:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rxfMznTBr7qDt7qF2XcSsrzEpeg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/b73cac-3610-4224-bdba-a5757aaafffa/1/fWVWhQr_IOS3Ere6cXK65HkUY_E.roa Signing time: Fri 02 Jan 2026 08:20:13 +0000 ROA not before: Fri 02 Jan 2026 08:20:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48944 IP address blocks: 164.138.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/b73cac-3610-4224-bdba-a5757aaafffa/1/rxfMznTBr7qDt7qF2XcSsrzEpeg.crl rsync://rpki.ripe.net/repository/DEFAULT/de/b73cac-3610-4224-bdba-a5757aaafffa/1/rxfMznTBr7qDt7qF2XcSsrzEpeg.mft rsync://rpki.ripe.net/repository/DEFAULT/rxfMznTBr7qDt7qF2XcSsrzEpeg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:fe:5f:51:5a:ad:1e:13:f4:9c:ce:9d:9a:bf:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af17ccce74c1afba83b7ba85d97712b2bcc4a5e8 Validity Not Before: Jan 2 08:20:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d6556850aff20e4b712b7ba7172bae4791463f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7e:6c:1b:13:22:87:6e:e7:22:92:58:0d:8b: 92:5f:8a:32:48:6d:ac:cf:5f:72:14:06:c9:46:06: 35:2a:18:a0:b6:29:2d:ff:83:2e:5c:58:bb:70:a5: fe:12:f6:f5:83:98:f5:72:75:aa:0b:77:6c:f0:e5: ff:73:f8:28:b3:fd:e5:0a:f5:cd:5f:01:f2:2f:9b: 7b:23:87:a4:b1:52:e7:b0:8b:91:c8:0d:f2:08:a2: b9:e7:eb:a4:d7:a9:c9:6f:ba:a7:2c:68:9d:d5:5d: ef:08:19:03:f5:36:d3:72:ac:62:ce:51:a0:a9:9c: 30:c8:e1:02:b3:63:65:bc:53:95:45:df:23:b6:45: 72:84:16:d8:04:42:f8:7c:29:08:64:04:20:67:f9: d5:70:be:ff:63:8e:a9:0a:f2:c4:df:70:ca:31:79: 96:6d:d3:4b:ea:4e:da:c8:6d:c0:75:3c:0a:9a:a0: d4:84:1a:83:6d:14:42:e9:fa:00:69:c4:e3:60:9f: 65:af:8a:1a:93:f8:1c:76:0f:ca:6b:44:3e:e0:77: 92:0e:b8:dc:27:13:a8:04:39:20:7e:47:78:ae:5e: 7e:81:73:56:14:66:27:5b:5a:d5:4e:ce:a0:3e:8e: 8e:61:eb:1c:0f:61:2c:90:37:91:a6:41:09:de:66: 7e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:65:56:85:0A:FF:20:E4:B7:12:B7:BA:71:72:BA:E4:79:14:63:F1 X509v3 Authority Key Identifier: keyid:AF:17:CC:CE:74:C1:AF:BA:83:B7:BA:85:D9:77:12:B2:BC:C4:A5:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rxfMznTBr7qDt7qF2XcSsrzEpeg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/b73cac-3610-4224-bdba-a5757aaafffa/1/fWVWhQr_IOS3Ere6cXK65HkUY_E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/b73cac-3610-4224-bdba-a5757aaafffa/1/rxfMznTBr7qDt7qF2XcSsrzEpeg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.138.204.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:f8:c6:7f:81:fd:5a:e9:ab:02:7c:59:52:73:49:b4:5d:66: 7b:8b:66:fc:57:16:ca:2d:ad:bb:be:9c:d5:bd:5b:50:ae:ff: 39:9a:13:41:b4:28:fc:69:db:f1:26:8f:4a:bb:8c:cd:7d:35: b0:17:38:64:ba:d2:06:cb:3c:59:2b:a9:07:c2:63:b4:da:a3: 1b:11:29:67:fe:c0:bb:30:ad:cc:55:29:2b:d7:9c:e6:c9:06: a8:da:1d:fb:48:fd:45:72:7d:4b:17:04:bb:4e:14:42:1f:c8: 2d:b4:49:ef:77:43:0c:a0:32:da:d5:e8:5e:29:22:4c:f5:5d: 8e:b7:e6:e1:a0:34:37:d7:78:0c:89:80:84:c2:d5:56:62:e2: aa:1b:c1:f4:d3:53:3b:50:10:fb:a4:02:33:f4:d4:c0:1a:c8: fe:93:77:2d:d7:ed:ab:42:68:60:c4:e3:48:be:13:4b:b7:4d: 14:ae:23:8c:ce:45:8d:24:72:07:8c:e8:2a:9d:cf:69:28:27: b6:39:88:c1:20:0b:3a:15:e2:90:25:d5:2c:61:70:e1:0a:f5: c9:16:47:47:2c:1a:19:89:67:a9:a9:f7:18:67:7e:d6:04:bc: 12:2a:9c:50:82:46:1c:d0:02:62:ba:ae:a5:a6:02:2c:1c:d2: ba:23:c1:95 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yv5fUVqtHhP0nM6dmr8DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMTdjY2NlNzRjMWFmYmE4M2I3YmE4NWQ5NzcxMmIyYmNj NGE1ZTgwHhcNMjYwMTAyMDgyMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDY1NTY4NTBhZmYyMGU0YjcxMmI3YmE3MTcyYmFlNDc5MTQ2M2YxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA635sGxMih27nIpJYDYuSX4oySG2s z19yFAbJRgY1Khigtikt/4MuXFi7cKX+Evb1g5j1cnWqC3ds8OX/c/gos/3lCvXN XwHyL5t7I4eksVLnsIuRyA3yCKK55+uk16nJb7qnLGid1V3vCBkD9TbTcqxizlGg qZwwyOECs2NlvFOVRd8jtkVyhBbYBEL4fCkIZAQgZ/nVcL7/Y46pCvLE33DKMXmW bdNL6k7ayG3AdTwKmqDUhBqDbRRC6foAacTjYJ9lr4oak/gcdg/Ka0Q+4HeSDrjc JxOoBDkgfkd4rl5+gXNWFGYnW1rVTs6gPo6OYescD2EskDeRpkEJ3mZ+yQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH1lVoUK/yDktxK3unFyuuR5FGPxMB8GA1UdIwQY MBaAFK8XzM50wa+6g7e6hdl3ErK8xKXoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnhmTXpuVEJyN3FEdDdxRjJYY1NzcnpFcGVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9iNzNjYWMtMzYxMC00MjI0LWJkYmEt YTU3NTdhYWFmZmZhLzEvZldWV2hRcl9JT1MzRXJlNmNYSzY1SGtVWV9FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS9iNzNjYWMtMzYxMC00MjI0LWJkYmEtYTU3NTdhYWFmZmZh LzEvcnhmTXpuVEJyN3FEdDdxRjJYY1NzcnpFcGVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQApIrMMA0G CSqGSIb3DQEBCwUAA4IBAQBt+MZ/gf1a6asCfFlSc0m0XWZ7i2b8VxbKLa27vpzV vVtQrv85mhNBtCj8advxJo9Ku4zNfTWwFzhkutIGyzxZK6kHwmO02qMbESln/sC7 MK3MVSkr15zmyQao2h37SP1Fcn1LFwS7ThRCH8gttEnvd0MMoDLa1eheKSJM9V2O t+bhoDQ313gMiYCEwtVWYuKqG8H001M7UBD7pAIz9NTAGsj+k3ct1+2rQmhgxONI vhNLt00UriOMzkWNJHIHjOgqnc9pKCe2OYjBIAs6FeKQJdUsYXDhCvXJFkdHLBoZ iWepqfcYZ37WBLwSKpxQgkYc0AJiuq6lpgIsHNK6I8GV -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:57 2026 by rpki-client