This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/FI0PrHiRp4GLEljk1REP72tG5aA.roa File: FI0PrHiRp4GLEljk1REP72tG5aA.roa (raw, json) Hash identifier: y2UC3YKNbq+ByIed2y8ZO0cXFgTY2+9nY++3BTMrn2E= Subject key identifier: 14:8D:0F:AC:78:91:A7:81:8B:12:58:E4:D5:11:0F:EF:6B:46:E5:A0 Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C115569FB139AD2BE58D74ED60B8DC8 Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/FI0PrHiRp4GLEljk1REP72tG5aA.roa Signing time: Fri 02 Jan 2026 00:17:49 +0000 ROA not before: Fri 02 Jan 2026 00:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12430 IP address blocks: 2.154.0.0/15 maxlen: 16 2.154.0.0/16 maxlen: 16 2.154.192.0/18 maxlen: 18 2.155.0.0/16 maxlen: 16 5.40.0.0/16 maxlen: 16 62.42.0.0/15 maxlen: 16 62.57.0.0/16 maxlen: 16 62.81.0.0/16 maxlen: 24 62.82.0.0/15 maxlen: 16 62.100.96.0/19 maxlen: 19 62.117.128.0/17 maxlen: 17 62.174.0.0/15 maxlen: 19 80.224.0.0/16 maxlen: 16 81.60.0.0/15 maxlen: 18 81.184.0.0/16 maxlen: 16 81.202.0.0/16 maxlen: 16 82.159.0.0/16 maxlen: 16 82.213.128.0/18 maxlen: 18 83.173.128.0/18 maxlen: 18 84.120.0.0/13 maxlen: 19 84.127.229.0/24 maxlen: 24 85.219.0.0/17 maxlen: 17 85.251.0.0/16 maxlen: 17 89.140.0.0/16 maxlen: 16 89.141.0.0/16 maxlen: 16 95.39.0.0/16 maxlen: 19 185.128.128.0/22 maxlen: 24 194.106.0.0/19 maxlen: 19 194.140.128.0/18 maxlen: 18 194.149.192.0/19 maxlen: 19 212.21.224.0/19 maxlen: 19 212.40.224.0/19 maxlen: 19 212.40.224.0/24 maxlen: 24 212.78.128.0/19 maxlen: 19 212.79.128.0/19 maxlen: 19 212.95.192.0/19 maxlen: 19 212.97.160.0/19 maxlen: 19 212.183.192.0/18 maxlen: 18 213.37.0.0/16 maxlen: 16 213.201.0.0/17 maxlen: 17 213.227.0.0/18 maxlen: 18 213.231.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:55:69:fb:13:9a:d2:be:58:d7:4e:d6:0b:8d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=148d0fac7891a7818b1258e4d5110fef6b46e5a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:f4:fa:ef:5d:c4:0a:b3:1c:6b:10:f3:75: d0:1e:f6:34:18:57:75:fe:7e:8a:30:f6:b2:f2:90: 7f:a5:49:fa:6f:f1:87:80:39:28:3f:80:31:29:37: 6f:ba:d1:f4:76:a5:af:62:a6:d1:7e:92:88:f4:57: 09:45:13:ba:35:20:70:a9:6f:6e:67:1f:5c:4c:a9: 16:5c:90:2a:b2:f1:72:18:d2:98:de:1d:ad:2b:b5: 73:f1:8b:2d:ad:eb:27:48:83:19:dd:3d:df:78:bf: bb:ec:bb:48:d8:eb:2e:5f:79:61:ab:1b:90:e6:f7: ba:0c:d3:a2:e1:0d:34:5a:ac:cc:a1:29:e0:a7:64: 0c:3e:06:e4:2d:e6:94:94:d4:37:e7:a5:22:91:a2: 5f:43:c8:3b:c7:2f:67:ec:be:0a:fe:8d:15:7f:a4: 2d:62:0e:89:7f:3b:74:8f:56:85:d6:26:f3:37:c0: be:e5:a6:4e:db:e7:87:1d:c0:b5:0f:75:bf:b5:e7: 21:ef:cc:48:49:99:e2:0b:f6:55:c2:7c:51:eb:c2: 51:06:f8:22:50:2b:ff:c1:d2:ed:43:a0:d1:f2:49: 2b:32:bc:93:00:90:7e:22:5a:3b:c4:ad:e5:95:98: d1:47:a2:23:10:65:09:49:17:86:24:d1:26:99:33: 31:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8D:0F:AC:78:91:A7:81:8B:12:58:E4:D5:11:0F:EF:6B:46:E5:A0 X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/FI0PrHiRp4GLEljk1REP72tG5aA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.154.0.0/15 5.40.0.0/16 62.42.0.0/15 62.57.0.0/16 62.81.0.0-62.83.255.255 62.100.96.0/19 62.117.128.0/17 62.174.0.0/15 80.224.0.0/16 81.60.0.0/15 81.184.0.0/16 81.202.0.0/16 82.159.0.0/16 82.213.128.0/18 83.173.128.0/18 84.120.0.0/13 85.219.0.0/17 85.251.0.0/16 89.140.0.0/15 95.39.0.0/16 185.128.128.0/22 194.106.0.0/19 194.140.128.0/18 194.149.192.0/19 212.21.224.0/19 212.40.224.0/19 212.78.128.0/19 212.79.128.0/19 212.95.192.0/19 212.97.160.0/19 212.183.192.0/18 213.37.0.0/16 213.201.0.0/17 213.227.0.0/18 213.231.64.0/18 Signature Algorithm: sha256WithRSAEncryption 22:22:fd:79:9b:b0:46:6e:bc:ef:e7:e7:f0:ed:12:47:86:b4: 5a:99:84:28:b9:40:28:d2:d4:73:3b:49:56:e0:2b:51:4b:97: 2c:24:9c:1c:8d:15:4a:35:76:e5:00:d3:0f:a9:65:83:bb:da: ec:55:51:4d:4d:36:72:c5:32:0e:b9:b9:91:55:a8:37:64:36: 67:f0:08:bb:89:ae:97:80:1b:49:e3:22:45:fb:c1:99:0c:a1: 1f:e5:c9:86:da:27:f1:85:13:35:4e:f6:2c:1d:cb:aa:88:95: 5a:d8:b5:65:97:2a:29:66:e2:c2:28:13:77:99:67:65:d5:e7: b5:5a:45:9d:fc:c8:7e:0f:be:fe:0c:32:34:f0:4c:87:38:c1: 82:4b:10:7f:98:ac:d5:d4:cf:7b:5f:0b:c7:f9:fa:14:dd:a9: f9:10:54:b7:a6:e8:b7:00:78:68:98:3f:f5:99:29:0f:8c:fd: 78:eb:d6:1a:85:39:23:ff:04:9a:fe:0d:13:37:4c:3a:ed:95: da:79:61:d1:bf:c2:38:83:f7:58:3d:87:b6:99:1a:0d:69:2d: cb:48:f5:18:74:8b:5b:d3:e1:33:9c:e9:19:69:b9:a7:94:b8: 8a:7e:85:b8:93:77:d4:bd:90:c4:64:ca:38:0f:fa:ff:9e:5a: a3:27:7c:4a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgISAZt8EVVp+xOa0r5Y107WC43IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDhkMGZhYzc4OTFhNzgxOGIxMjU4ZTRkNTExMGZlZjZiNDZlNWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkL0+u9dxAqzHGsQ83XQHvY0GFd1 /n6KMPay8pB/pUn6b/GHgDkoP4AxKTdvutH0dqWvYqbRfpKI9FcJRRO6NSBwqW9u Zx9cTKkWXJAqsvFyGNKY3h2tK7Vz8YstresnSIMZ3T3feL+77LtI2OsuX3lhqxuQ 5ve6DNOi4Q00WqzMoSngp2QMPgbkLeaUlNQ356UikaJfQ8g7xy9n7L4K/o0Vf6Qt Yg6Jfzt0j1aF1ibzN8C+5aZO2+eHHcC1D3W/tech78xISZniC/ZVwnxR68JRBvgi UCv/wdLtQ6DR8kkrMryTAJB+Ilo7xK3llZjRR6IjEGUJSReGJNEmmTMxNQIDAQAB o4IC0TCCAs0wHQYDVR0OBBYEFBSND6x4kaeBixJY5NURD+9rRuWgMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvRkkwUHJIaVJwNEdMRWxqazFSRVA3MnRHNWFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHmBggrBgEFBQcBBwEB/wSB1jCB0zCB0AQCAAEwgckDAwEC mgMDAAUoAwMBPioDAwA+OTAKAwMAPlEDAwI+UAMEBT5kYAMEBz51gAMDAT6uAwMA UOADAwFRPAMDAFG4AwMAUcoDAwBSnwMEBlLVgAMEBlOtgAMDA1R4AwQHVdsAAwMA VfsDAwFZjAMDAF8nAwQCuYCAAwQFwmoAAwQGwoyAAwQFwpXAAwQF1BXgAwQF1Cjg AwQF1E6AAwQF1E+AAwQF1F/AAwQF1GGgAwQG1LfAAwMA1SUDBAfVyQADBAbV4wAD BAbV50AwDQYJKoZIhvcNAQELBQADggEBACIi/XmbsEZuvO/n5/DtEkeGtFqZhCi5 QCjS1HM7SVbgK1FLlywknByNFUo1duUA0w+pZYO72uxVUU1NNnLFMg65uZFVqDdk NmfwCLuJrpeAG0njIkX7wZkMoR/lyYbaJ/GFEzVO9iwdy6qIlVrYtWWXKilm4sIo E3eZZ2XV57VaRZ38yH4Pvv4MMjTwTIc4wYJLEH+YrNXUz3tfC8f5+hTdqfkQVLem 6LcAeGiYP/WZKQ+M/Xjr1hqFOSP/BJr+DRM3TDrtldp5YdG/wjiD91g9h7aZGg1p LctI9Rh0i1vT4TOc6RlpuaeUuIp+hbiTd9S9kMRkyjgP+v+eWqMnfEo= -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:58 2026 by rpki-client