This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/e844e8-d2f0-4514-b405-0b801bf80d53/1/FGzaGikutggc0GozzhRYAPMCWAA.roa File: FGzaGikutggc0GozzhRYAPMCWAA.roa (raw, json) Hash identifier: 6i7YJ4mPxoEfox+KpQaovOXMy6INsexpIsotwg+vSHI= Subject key identifier: 14:6C:DA:1A:29:2E:B6:08:1C:D0:6A:33:CE:14:58:00:F3:02:58:00 Certificate issuer: /CN=1ef9312cea5aa7438b4d90c0836c82f050a2a00a Certificate serial: 019B7B3561605544352287F763F5DEA1DB37 Authority key identifier: 1E:F9:31:2C:EA:5A:A7:43:8B:4D:90:C0:83:6C:82:F0:50:A2:A0:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvkxLOpap0OLTZDAg2yC8FCioAo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/e844e8-d2f0-4514-b405-0b801bf80d53/1/FGzaGikutggc0GozzhRYAPMCWAA.roa Signing time: Thu 01 Jan 2026 20:17:34 +0000 ROA not before: Thu 01 Jan 2026 20:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200077 IP address blocks: 77.111.208.0/22 maxlen: 24 185.37.220.0/22 maxlen: 24 2a00:fa60::/32 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/e844e8-d2f0-4514-b405-0b801bf80d53/1/HvkxLOpap0OLTZDAg2yC8FCioAo.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/e844e8-d2f0-4514-b405-0b801bf80d53/1/HvkxLOpap0OLTZDAg2yC8FCioAo.mft rsync://rpki.ripe.net/repository/DEFAULT/HvkxLOpap0OLTZDAg2yC8FCioAo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:61:60:55:44:35:22:87:f7:63:f5:de:a1:db:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ef9312cea5aa7438b4d90c0836c82f050a2a00a Validity Not Before: Jan 1 20:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=146cda1a292eb6081cd06a33ce145800f3025800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dd:b2:8a:85:2b:ab:fb:c9:34:f4:06:6f:4f: 05:3f:0e:cb:3a:31:3d:33:5b:5a:4e:bf:75:36:97: a3:f2:de:9d:93:cb:8f:9b:9a:83:24:f6:73:77:d2: 7b:35:73:40:f7:e4:48:24:f4:53:5d:6a:50:aa:6d: b6:0d:d1:85:db:ae:b6:ee:9d:01:5f:0a:a1:a0:3d: 7e:4f:e4:a1:01:af:6e:0e:89:50:23:ae:55:d8:f3: 21:85:e8:f3:75:22:23:73:81:0a:ed:e1:4b:01:b7: 51:0b:34:c7:cf:be:ca:0c:7e:c1:78:b0:e1:1a:9a: b7:dd:4c:1c:77:62:9c:61:7a:f7:62:45:99:54:53: 74:e9:b2:12:a7:0b:2d:90:9e:5d:fd:42:01:44:1c: 06:ba:bc:26:84:69:4e:ad:b6:d3:16:14:e3:26:66: d7:1e:1a:38:93:52:01:1e:3a:a3:1d:ca:e8:8e:6c: 7a:0a:27:19:75:3e:a7:71:9e:c7:35:da:00:18:af: 35:cb:5a:7b:d4:83:76:bc:34:c5:f0:f4:03:2e:00: f6:a7:3b:97:79:3c:35:86:3d:cd:a0:de:75:25:1f: 0a:aa:a0:bf:bf:06:4b:4b:5d:68:39:d7:55:26:33: 11:ee:fc:bb:d0:25:2a:6f:11:cb:33:6d:df:36:3f: 64:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:6C:DA:1A:29:2E:B6:08:1C:D0:6A:33:CE:14:58:00:F3:02:58:00 X509v3 Authority Key Identifier: keyid:1E:F9:31:2C:EA:5A:A7:43:8B:4D:90:C0:83:6C:82:F0:50:A2:A0:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvkxLOpap0OLTZDAg2yC8FCioAo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e844e8-d2f0-4514-b405-0b801bf80d53/1/FGzaGikutggc0GozzhRYAPMCWAA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e844e8-d2f0-4514-b405-0b801bf80d53/1/HvkxLOpap0OLTZDAg2yC8FCioAo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.111.208.0/22 185.37.220.0/22 IPv6: 2a00:fa60::/32 Signature Algorithm: sha256WithRSAEncryption 81:b8:e0:53:b2:9b:2d:29:69:3d:86:6f:7c:2b:b5:d6:e7:fd: 46:60:84:94:b7:2d:be:68:aa:59:9b:0b:b8:95:2e:ee:f8:3e: 5c:3e:15:41:84:ac:f0:c7:da:83:0a:88:4b:dc:6d:f6:08:9a: 69:9b:96:d4:bc:12:a4:f8:5c:49:74:d2:4a:5f:76:63:b4:b9: df:dc:94:bc:79:0e:6b:52:94:26:6d:ad:39:6f:58:8d:d4:3f: 55:8e:e4:42:7f:97:46:a2:af:d0:b0:5a:7b:12:b6:27:40:a4: 0c:6f:e8:08:3c:b1:97:e9:83:b6:f7:1d:89:fe:db:fc:bb:cb: 0f:fb:59:79:fe:60:87:5c:85:7b:77:ba:2b:09:c9:4f:fd:ce: 59:ed:4b:e2:b4:40:b1:04:3f:ea:02:87:ef:fb:ba:05:db:26: 25:97:43:33:15:33:ff:75:fd:bf:81:9f:cc:51:0d:22:7c:0f: 29:39:2d:d1:52:5f:44:6f:dd:42:81:d3:66:5c:92:53:82:91: b0:5d:32:bf:8a:66:bc:d3:b0:71:10:15:06:6f:32:e7:d7:8e: 0e:7f:6a:52:64:a1:df:de:a1:8b:0b:78:58:bd:5a:5a:e6:72: 7f:55:d3:ae:bc:7e:54:db:67:98:45:90:1f:88:5c:fb:f5:a5: 30:3b:a4:3b -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7NWFgVUQ1Iof3Y/Xeods3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZjkzMTJjZWE1YWE3NDM4YjRkOTBjMDgzNmM4MmYwNTBh MmEwMGEwHhcNMjYwMTAxMjAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDZjZGExYTI5MmViNjA4MWNkMDZhMzNjZTE0NTgwMGYzMDI1ODAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv92yioUrq/vJNPQGb08FPw7LOjE9 M1taTr91Npej8t6dk8uPm5qDJPZzd9J7NXNA9+RIJPRTXWpQqm22DdGF26627p0B XwqhoD1+T+ShAa9uDolQI65V2PMhhejzdSIjc4EK7eFLAbdRCzTHz77KDH7BeLDh Gpq33Uwcd2KcYXr3YkWZVFN06bISpwstkJ5d/UIBRBwGurwmhGlOrbbTFhTjJmbX Hho4k1IBHjqjHcrojmx6CicZdT6ncZ7HNdoAGK81y1p71IN2vDTF8PQDLgD2pzuX eTw1hj3NoN51JR8KqqC/vwZLS11oOddVJjMR7vy70CUqbxHLM23fNj9k0wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFBRs2hopLrYIHNBqM84UWADzAlgAMB8GA1UdIwQY MBaAFB75MSzqWqdDi02QwINsgvBQoqAKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHZreExPcGFwME9MVFpEQWcyeUM4RkNpb0FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9lODQ0ZTgtZDJmMC00NTE0LWI0MDUt MGI4MDFiZjgwZDUzLzEvRkd6YUdpa3V0Z2djMEdvenpoUllBUE1DV0FBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9lODQ0ZTgtZDJmMC00NTE0LWI0MDUtMGI4MDFiZjgwZDUz LzEvSHZreExPcGFwME9MVFpEQWcyeUM4RkNpb0FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCTW/QAwQC uSXcMA0EAgACMAcDBQAqAPpgMA0GCSqGSIb3DQEBCwUAA4IBAQCBuOBTspstKWk9 hm98K7XW5/1GYISUty2+aKpZmwu4lS7u+D5cPhVBhKzwx9qDCohL3G32CJppm5bU vBKk+FxJdNJKX3ZjtLnf3JS8eQ5rUpQmba05b1iN1D9VjuRCf5dGoq/QsFp7ErYn QKQMb+gIPLGX6YO29x2J/tv8u8sP+1l5/mCHXIV7d7orCclP/c5Z7UvitECxBD/q Aofv+7oF2yYll0MzFTP/df2/gZ/MUQ0ifA8pOS3RUl9Eb91CgdNmXJJTgpGwXTK/ ima807BxEBUGbzLn144Of2pSZKHf3qGLC3hYvVpa5nJ/VdOuvH5U22eYRZAfiFz7 9aUwO6Q7 -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:40 2026 by rpki-client