This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/FFrrJg1f7sBn9CMNkWOHWkncPKA.roa File: FFrrJg1f7sBn9CMNkWOHWkncPKA.roa (raw, json) Hash identifier: RRbiIEi7LB7ItO/8kZqYNCorz0xLwEEZeK7jHRHtAV8= Subject key identifier: 14:5A:EB:26:0D:5F:EE:C0:67:F4:23:0D:91:63:87:5A:49:DC:3C:A0 Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa Certificate serial: 019B7F82B71800D4E46994A617668B880D4A Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/FFrrJg1f7sBn9CMNkWOHWkncPKA.roa Signing time: Fri 02 Jan 2026 16:20:31 +0000 ROA not before: Fri 02 Jan 2026 16:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50585 IP address blocks: 194.110.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:b7:18:00:d4:e4:69:94:a6:17:66:8b:88:0d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa Validity Not Before: Jan 2 16:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=145aeb260d5feec067f4230d9163875a49dc3ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:70:41:f2:0e:c0:8d:16:bb:5a:cf:63:66:41: cd:5c:39:80:e0:0a:92:37:83:98:00:31:61:eb:3f: 55:9a:d9:42:99:c2:72:aa:39:3c:7b:9b:2a:d4:d4: 58:c5:4c:05:d1:37:fb:67:34:7b:8f:2b:1f:84:e9: 3b:80:f7:13:d9:79:aa:a3:24:ca:db:72:7f:73:e3: 0e:dc:57:57:dd:86:58:72:9e:32:ef:5c:08:6e:c0: aa:4b:78:3d:77:08:90:a6:25:56:57:f1:28:1b:ad: 2f:a2:ce:3f:ac:bc:80:92:58:53:33:6a:b1:57:59: ff:02:30:ed:4f:5b:5e:9f:46:2e:02:40:c4:1c:85: 90:9a:3a:72:b4:96:90:d6:c3:94:6f:ff:8e:52:97: ba:a6:f7:c7:3f:e4:e2:fe:97:61:88:84:9b:30:76: 68:c4:3d:b7:b5:e7:3d:7c:8b:49:53:2f:b6:f9:5a: 5e:33:35:ff:38:54:da:37:1a:ae:ee:d0:ae:44:ce: 9b:cc:b3:87:9f:ca:69:89:ef:bd:ba:c9:f3:61:ce: 45:44:ab:26:b2:57:c3:09:19:83:e9:f5:a8:1e:7e: 32:23:6f:0f:7d:65:5e:b9:82:71:ed:7f:7e:21:9d: 43:6c:6e:c1:46:3d:a9:98:12:2b:0e:68:df:8d:22: 19:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5A:EB:26:0D:5F:EE:C0:67:F4:23:0D:91:63:87:5A:49:DC:3C:A0 X509v3 Authority Key Identifier: keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/FFrrJg1f7sBn9CMNkWOHWkncPKA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.110.142.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:a0:b8:2d:c3:0a:bd:4c:b6:97:a9:15:80:33:27:08:47:32: 5c:7b:01:70:c6:23:68:77:1e:9c:7e:cb:85:f8:94:ad:5c:9b: 75:00:a3:3a:1d:56:04:53:97:04:26:9e:08:06:7b:d3:e8:3a: e0:cb:1b:11:18:44:f0:c5:96:82:e7:14:03:1f:00:2c:a7:a6: 5a:56:a7:67:8e:aa:86:e8:eb:bb:6e:a7:60:9a:51:d3:f6:c5: a4:d7:0f:42:0e:9d:b1:27:14:8e:06:7b:b1:2c:96:4d:b5:15: 88:1c:45:4d:a3:68:57:ea:77:8e:d9:25:43:45:f3:72:f9:03: 01:51:69:5e:b4:71:3e:71:ce:49:24:93:30:4f:0d:be:21:4c: d6:ea:c7:41:b7:34:45:4d:93:5b:1e:84:e4:42:f1:bd:35:43: b9:b3:08:22:bf:94:85:33:0d:f5:1b:85:81:ab:1c:d1:06:2e: 2c:df:fc:0c:bf:ff:e6:a7:29:0d:f4:57:d1:ed:22:f0:ae:d6: 6d:75:fa:f6:92:94:25:25:f8:3c:3b:2b:c7:ca:5c:07:ed:41: 23:de:04:16:19:71:b4:31:23:6d:a2:d4:50:57:cb:33:c8:f2: 01:f8:5b:8e:22:45:d2:d0:fd:7b:95:77:a3:60:28:1a:52:e4: bd:f8:39:fc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/grcYANTkaZSmF2aLiA1KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl OGI2ZmEwHhcNMjYwMTAyMTYyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDVhZWIyNjBkNWZlZWMwNjdmNDIzMGQ5MTYzODc1YTQ5ZGMzY2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXBB8g7AjRa7Ws9jZkHNXDmA4AqS N4OYADFh6z9VmtlCmcJyqjk8e5sq1NRYxUwF0Tf7ZzR7jysfhOk7gPcT2XmqoyTK 23J/c+MO3FdX3YZYcp4y71wIbsCqS3g9dwiQpiVWV/EoG60vos4/rLyAklhTM2qx V1n/AjDtT1ten0YuAkDEHIWQmjpytJaQ1sOUb/+OUpe6pvfHP+Ti/pdhiISbMHZo xD23tec9fItJUy+2+VpeMzX/OFTaNxqu7tCuRM6bzLOHn8ppie+9usnzYc5FRKsm slfDCRmD6fWoHn4yI28PfWVeuYJx7X9+IZ1DbG7BRj2pmBIrDmjfjSIZuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBRa6yYNX+7AZ/QjDZFjh1pJ3DygMB8GA1UdIwQY MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt NDc3MWQxYTRkZGYwLzEvRkZyckpnMWY3c0JuOUNNTmtXT0hXa25jUEtBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwm6OMA0G CSqGSIb3DQEBCwUAA4IBAQB/oLgtwwq9TLaXqRWAMycIRzJcewFwxiNodx6cfsuF +JStXJt1AKM6HVYEU5cEJp4IBnvT6DrgyxsRGETwxZaC5xQDHwAsp6ZaVqdnjqqG 6Ou7bqdgmlHT9sWk1w9CDp2xJxSOBnuxLJZNtRWIHEVNo2hX6neO2SVDRfNy+QMB UWletHE+cc5JJJMwTw2+IUzW6sdBtzRFTZNbHoTkQvG9NUO5swgiv5SFMw31G4WB qxzRBi4s3/wMv//mpykN9FfR7SLwrtZtdfr2kpQlJfg8OyvHylwH7UEj3gQWGXG0 MSNtotRQV8szyPIB+FuOIkXS0P17lXejYCgaUuS9+Dn8 -----END CERTIFICATE-----Generated at Mon Feb 9 21:26:56 2026 by rpki-client