This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/FktoGPzZbczbmYJMIxqyJDI4khU.roa File: FktoGPzZbczbmYJMIxqyJDI4khU.roa (raw, json) Hash identifier: Pd0QRgXE7TDiEULALaOfHMuU4dgReo9hAwqDI7vm89k= Subject key identifier: 16:4B:68:18:FC:D9:6D:CC:DB:99:82:4C:23:1A:B2:24:32:38:92:15 Certificate issuer: /CN=9cb96ce59c59557530f0eaa44c664503d9c401ed Certificate serial: 019B775887868EF8F551261EA39AEF41BAE4 Authority key identifier: 9C:B9:6C:E5:9C:59:55:75:30:F0:EA:A4:4C:66:45:03:D9:C4:01:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLls5ZxZVXUw8OqkTGZFA9nEAe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/FktoGPzZbczbmYJMIxqyJDI4khU.roa Signing time: Thu 01 Jan 2026 02:17:29 +0000 ROA not before: Thu 01 Jan 2026 02:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15404 IP address blocks: 193.29.144.0/20 maxlen: 20 193.29.146.0/23 maxlen: 23 193.29.150.0/23 maxlen: 23 193.29.152.0/22 maxlen: 22 193.29.156.0/23 maxlen: 23 193.29.159.0/24 maxlen: 24 194.99.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/nLls5ZxZVXUw8OqkTGZFA9nEAe0.crl rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/nLls5ZxZVXUw8OqkTGZFA9nEAe0.mft rsync://rpki.ripe.net/repository/DEFAULT/nLls5ZxZVXUw8OqkTGZFA9nEAe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 08:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:87:86:8e:f8:f5:51:26:1e:a3:9a:ef:41:ba:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9cb96ce59c59557530f0eaa44c664503d9c401ed Validity Not Before: Jan 1 02:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=164b6818fcd96dccdb99824c231ab22432389215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:15:33:f9:c4:e0:ba:64:88:12:e0:e0:4d:9b: 85:33:6e:15:75:75:49:5e:24:c2:5f:d4:2b:39:ce: 59:20:07:36:8f:8d:fb:2f:25:ef:7d:27:70:44:bc: 86:d9:3a:29:2b:5f:6c:22:a1:18:53:c4:7e:9f:c4: 15:94:d1:c3:f2:ea:52:4b:9b:35:43:16:8a:83:eb: 14:4b:f7:8b:5c:7a:39:c5:ce:d1:e2:71:5d:3f:31: 52:ee:c8:bb:8f:7b:b9:d4:bc:b0:58:fa:49:44:1d: 8f:3a:5d:7d:34:d3:76:d5:0f:b5:e3:68:e3:5f:12: 5e:b6:d6:dc:da:fc:2f:57:f6:b3:3e:59:a4:2d:52: a9:f9:27:d4:f6:dd:14:f2:7f:91:ee:70:e0:55:92: 41:3e:5a:6d:58:bc:22:08:64:52:0f:b6:bf:74:3b: fc:3e:6a:9c:f5:44:97:4a:8d:21:c8:f8:5b:ee:16: 3a:21:73:e3:6c:94:7b:18:e2:33:08:db:c3:fb:1f: 4e:93:24:31:11:91:3c:50:21:66:bc:9c:39:b1:28: ea:38:3e:f4:b7:04:50:38:01:4f:ec:e6:ef:ce:9d: 2f:4d:bd:91:a6:3a:e0:e7:8b:9a:65:f3:68:4b:60: eb:5b:74:c3:e3:8b:d0:b1:b1:ff:17:26:99:2b:25: 49:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4B:68:18:FC:D9:6D:CC:DB:99:82:4C:23:1A:B2:24:32:38:92:15 X509v3 Authority Key Identifier: keyid:9C:B9:6C:E5:9C:59:55:75:30:F0:EA:A4:4C:66:45:03:D9:C4:01:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLls5ZxZVXUw8OqkTGZFA9nEAe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/FktoGPzZbczbmYJMIxqyJDI4khU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/5dd7b1-e337-404d-b764-ddb0b148e46b/1/nLls5ZxZVXUw8OqkTGZFA9nEAe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.29.144.0/20 194.99.120.0/21 Signature Algorithm: sha256WithRSAEncryption 67:10:5a:6e:61:0a:13:d9:b9:9c:fc:b0:fa:96:99:5c:34:72: bf:24:b2:f9:c9:fc:ca:9b:95:e7:75:01:f2:b8:04:53:44:b1: ce:65:83:eb:8d:19:03:bf:c5:d3:42:cf:01:c1:61:c0:a4:40: 67:46:46:0e:06:db:7a:19:c6:40:3d:e7:af:1a:cb:e9:09:8f: 1b:bb:31:da:75:76:83:78:06:06:21:77:9e:72:a7:75:d8:bd: 69:97:7f:c8:02:f1:54:97:11:94:55:cb:dc:44:98:82:50:22: 40:43:06:3c:81:f1:4c:2f:44:a9:21:df:8a:e6:81:56:fb:e4: 38:74:4e:f3:52:6d:14:74:91:e9:68:a6:77:a3:de:06:77:43: fe:9f:b4:f9:93:95:9c:0a:c1:91:9c:30:f5:d0:da:06:8b:62: 64:11:33:89:4e:eb:1e:b4:48:f2:eb:42:c5:21:f1:9e:4f:a4: b3:8a:23:48:f1:3e:cc:78:96:16:03:7b:00:3d:84:fd:5c:c2: 43:83:74:2c:d7:e8:1a:3c:5b:c4:a5:b6:f5:a5:cd:c1:05:5f: 60:0e:b8:ae:8e:e4:de:d4:b9:e9:1e:ab:d7:e8:c5:2c:bf:86: 81:c7:25:1d:82:f3:ba:10:0d:5c:d6:5d:c1:c1:c8:40:92:95: 4e:5c:36:66 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WIeGjvj1USYeo5rvQbrkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljYjk2Y2U1OWM1OTU1NzUzMGYwZWFhNDRjNjY0NTAzZDlj NDAxZWQwHhcNMjYwMTAxMDIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNjRiNjgxOGZjZDk2ZGNjZGI5OTgyNGMyMzFhYjIyNDMyMzg5MjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxUz+cTgumSIEuDgTZuFM24VdXVJ XiTCX9QrOc5ZIAc2j437LyXvfSdwRLyG2TopK19sIqEYU8R+n8QVlNHD8upSS5s1 QxaKg+sUS/eLXHo5xc7R4nFdPzFS7si7j3u51LywWPpJRB2POl19NNN21Q+142jj XxJettbc2vwvV/azPlmkLVKp+SfU9t0U8n+R7nDgVZJBPlptWLwiCGRSD7a/dDv8 Pmqc9USXSo0hyPhb7hY6IXPjbJR7GOIzCNvD+x9OkyQxEZE8UCFmvJw5sSjqOD70 twRQOAFP7Obvzp0vTb2Rpjrg54uaZfNoS2DrW3TD44vQsbH/FyaZKyVJawIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBZLaBj82W3M25mCTCMasiQyOJIVMB8GA1UdIwQY MBaAFJy5bOWcWVV1MPDqpExmRQPZxAHtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkxsczVaeFpWWFV3OE9xa1RHWkZBOW5FQWUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS81ZGQ3YjEtZTMzNy00MDRkLWI3NjQt ZGRiMGIxNDhlNDZiLzEvRmt0b0dQelpiY3pibVlKTUl4cXlKREk0a2hVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS81ZGQ3YjEtZTMzNy00MDRkLWI3NjQtZGRiMGIxNDhlNDZi LzEvbkxsczVaeFpWWFV3OE9xa1RHWkZBOW5FQWUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEwR2QAwQD wmN4MA0GCSqGSIb3DQEBCwUAA4IBAQBnEFpuYQoT2bmc/LD6lplcNHK/JLL5yfzK m5XndQHyuARTRLHOZYPrjRkDv8XTQs8BwWHApEBnRkYOBtt6GcZAPeevGsvpCY8b uzHadXaDeAYGIXeecqd12L1pl3/IAvFUlxGUVcvcRJiCUCJAQwY8gfFML0SpId+K 5oFW++Q4dE7zUm0UdJHpaKZ3o94Gd0P+n7T5k5WcCsGRnDD10NoGi2JkETOJTuse tEjy60LFIfGeT6SziiNI8T7MeJYWA3sAPYT9XMJDg3Qs1+gaPFvEpbb1pc3BBV9g DriujuTe1LnpHqvX6MUsv4aBxyUdgvO6EA1c1l3BwchAkpVOXDZm -----END CERTIFICATE-----Generated at Wed Jan 21 13:17:10 2026 by rpki-client