This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/f_FM5aYYFD8ySbs3-yt5otduaRM.roa File: f_FM5aYYFD8ySbs3-yt5otduaRM.roa (raw, json) Hash identifier: lIl1eF0+KnIkUbSdLUIqNysQ5npLcyCf9ozlvmFKa8A= Subject key identifier: 7F:F1:4C:E5:A6:18:14:3F:32:49:BB:37:FB:2B:79:A2:D7:6E:69:13 Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019B7F15FFFB3B0B3141ACA0DA030EB9C980 Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/f_FM5aYYFD8ySbs3-yt5otduaRM.roa Signing time: Fri 02 Jan 2026 14:21:46 +0000 ROA not before: Fri 02 Jan 2026 14:21:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 85.239.156.0/24 maxlen: 24 85.239.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ff:fb:3b:0b:31:41:ac:a0:da:03:0e:b9:c9:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Jan 2 14:21:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ff14ce5a618143f3249bb37fb2b79a2d76e6913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:21:49:d7:42:8f:b1:a8:fc:59:9a:b1:36:15: 8f:f7:39:f0:1c:3b:21:7c:71:c6:6b:1f:1c:8d:3e: 64:9c:64:45:5f:39:12:6a:30:19:88:4a:e3:25:4f: c0:8b:33:da:d4:a9:90:8c:32:89:06:74:f0:eb:62: ca:f9:2f:76:99:45:44:19:22:5c:25:fb:e4:ce:9b: 7f:01:3d:39:ff:63:2f:fb:cc:f8:1d:6f:a2:80:7e: 27:38:d3:d0:45:01:e5:9f:f2:7a:8f:75:6f:d3:2e: 28:16:fc:77:4b:20:da:44:aa:f0:0b:60:fb:2d:8a: a0:79:c8:08:aa:1d:09:69:fa:b3:c2:94:1a:91:66: ec:54:e3:55:8f:cf:ce:61:7c:eb:40:60:38:22:5c: 1e:c0:63:33:83:8f:c9:c7:b9:39:bd:05:20:31:e6: ad:74:9f:9b:46:d6:af:08:a4:27:d3:de:84:fd:44: 24:6a:90:b0:fc:87:e3:91:1a:77:d7:70:e5:41:0e: 68:c9:bb:e0:91:3f:2c:52:30:9a:11:cf:fa:41:5f: 85:59:02:2e:9e:6e:ae:e2:17:d3:49:8d:b2:9f:77: 4d:36:0e:22:2f:34:62:ee:55:0a:41:dd:f4:1b:70: be:a9:b6:02:d7:34:af:8b:c5:71:cf:2b:40:75:13: 89:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F1:4C:E5:A6:18:14:3F:32:49:BB:37:FB:2B:79:A2:D7:6E:69:13 X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/f_FM5aYYFD8ySbs3-yt5otduaRM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.239.156.0/24 85.239.158.0/24 Signature Algorithm: sha256WithRSAEncryption 67:53:2a:15:03:f7:df:c5:4f:b8:8b:4d:72:01:16:70:7c:f8: 74:a7:f1:4f:10:d0:df:2f:ac:2e:3f:a0:00:3b:5b:f8:79:ac: e8:87:25:ce:27:66:79:82:17:88:33:92:88:d8:de:b6:bb:f7: 30:a1:9b:42:67:65:2e:e4:97:0b:82:ba:a8:73:f4:e7:62:9f: 40:83:0f:0e:78:59:26:a9:28:d2:1a:14:b7:a8:dc:c9:a4:74: 9b:6b:04:4b:ee:83:79:69:40:9b:31:d8:d9:7a:de:12:fb:c5: b0:6a:86:94:70:20:56:39:fa:6b:41:a2:ba:fc:00:a4:65:7d: f9:ba:04:f2:b1:71:d7:6c:ed:ff:21:6b:59:9e:b5:88:95:75: 6a:62:16:b0:5e:c7:c4:d4:68:69:1d:23:4e:1c:73:32:d1:2b: d9:23:a9:26:bb:c3:2c:99:f3:2d:93:75:de:7f:68:f3:d7:d2: a1:fa:f4:68:d4:b5:ff:67:bd:7d:ee:63:2f:02:1e:88:71:9d: 51:a8:00:df:2e:85:25:5f:17:ff:8e:5a:84:54:df:4e:68:be: 1c:1f:d7:27:37:d9:57:c7:1f:ac:c6:bb:d6:3a:73:65:bf:b5: df:3e:72:69:31:c0:39:75:98:d8:e9:c5:21:63:91:61:ab:f7: 36:a0:df:67 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/Ff/7OwsxQayg2gMOucmAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjYwMTAyMTQyMTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZmYxNGNlNWE2MTgxNDNmMzI0OWJiMzdmYjJiNzlhMmQ3NmU2OTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiFJ10KPsaj8WZqxNhWP9znwHDsh fHHGax8cjT5knGRFXzkSajAZiErjJU/AizPa1KmQjDKJBnTw62LK+S92mUVEGSJc Jfvkzpt/AT05/2Mv+8z4HW+igH4nONPQRQHln/J6j3Vv0y4oFvx3SyDaRKrwC2D7 LYqgecgIqh0JafqzwpQakWbsVONVj8/OYXzrQGA4IlwewGMzg4/Jx7k5vQUgMeat dJ+bRtavCKQn096E/UQkapCw/IfjkRp313DlQQ5oybvgkT8sUjCaEc/6QV+FWQIu nm6u4hfTSY2yn3dNNg4iLzRi7lUKQd30G3C+qbYC1zSvi8VxzytAdROJxwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFH/xTOWmGBQ/Mkm7N/sreaLXbmkTMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvZl9GTTVhWVlGRDh5U2JzMy15dDVvdGR1YVJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVe+cAwQA Ve+eMA0GCSqGSIb3DQEBCwUAA4IBAQBnUyoVA/ffxU+4i01yARZwfPh0p/FPENDf L6wuP6AAO1v4eazohyXOJ2Z5gheIM5KI2N62u/cwoZtCZ2Uu5JcLgrqoc/TnYp9A gw8OeFkmqSjSGhS3qNzJpHSbawRL7oN5aUCbMdjZet4S+8WwaoaUcCBWOfprQaK6 /ACkZX35ugTysXHXbO3/IWtZnrWIlXVqYhawXsfE1GhpHSNOHHMy0SvZI6kmu8Ms mfMtk3Xef2jz19Kh+vRo1LX/Z7197mMvAh6IcZ1RqADfLoUlXxf/jlqEVN9OaL4c H9cnN9lXxx+sxrvWOnNlv7XfPnJpMcA5dZjY6cUhY5Fhq/c2oN9n -----END CERTIFICATE-----Generated at Mon Jan 19 11:47:16 2026 by rpki-client