This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/fPatIQG_vn-KpCzLNpi1KmGZICQ.roa File: fPatIQG_vn-KpCzLNpi1KmGZICQ.roa (raw, json) Hash identifier: rt2SMboQCCIlzb5Lym5TzRN3RtHv+A8V2C5lF65IdPc= Subject key identifier: 7C:F6:AD:21:01:BF:BE:7F:8A:A4:2C:CB:36:98:B5:2A:61:99:20:24 Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e Certificate serial: 019B7C12826295422C27C134E66BDDB3F7AA Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/fPatIQG_vn-KpCzLNpi1KmGZICQ.roa Signing time: Fri 02 Jan 2026 00:19:06 +0000 ROA not before: Fri 02 Jan 2026 00:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206714 IP address blocks: 91.223.243.0/24 maxlen: 24 2001:67c:1184::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:82:62:95:42:2c:27:c1:34:e6:6b:dd:b3:f7:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e Validity Not Before: Jan 2 00:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7cf6ad2101bfbe7f8aa42ccb3698b52a61992024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0c:5c:49:19:0c:c5:8d:98:43:80:d1:1a:77: c4:80:76:17:d3:25:07:eb:bc:ac:61:93:24:e5:8b: 98:47:1e:a9:f0:4b:ec:26:e1:e0:5d:59:d6:ce:ed: 46:58:6d:f4:99:ca:3a:25:25:c7:fb:53:47:3d:23: 40:9e:1b:03:55:67:72:f5:a4:0a:80:ad:ec:8e:ca: 4c:f8:c7:2b:08:07:64:a2:9e:7c:52:5c:2c:04:06: 3f:bf:e2:a4:25:2f:16:28:4d:ea:dd:51:c3:b3:7d: 9c:18:fb:78:38:af:3b:61:9c:59:67:af:85:4a:9b: 6e:94:c5:54:1f:94:76:8a:c1:4d:9b:3c:0b:06:dd: d6:26:af:24:5d:61:0e:fa:94:70:0e:05:fe:7c:db: c6:67:e2:5d:78:30:5d:7a:f3:e2:2f:e5:f3:2a:1e: d5:2f:67:22:e7:60:f6:f3:66:78:61:23:cc:33:da: f7:e2:ba:f8:86:8c:2f:79:7a:62:65:e4:be:45:1f: 56:0d:70:63:4d:17:52:dc:c3:d2:a2:d1:72:31:21: 3c:52:51:f5:c9:46:51:4a:d3:9d:42:d8:b7:03:68: b8:b3:83:06:df:6f:a6:7b:63:a1:af:c8:75:aa:97: e7:46:d9:5e:79:54:7d:34:e4:59:78:fd:f4:66:25: e4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:F6:AD:21:01:BF:BE:7F:8A:A4:2C:CB:36:98:B5:2A:61:99:20:24 X509v3 Authority Key Identifier: keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/fPatIQG_vn-KpCzLNpi1KmGZICQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.243.0/24 IPv6: 2001:67c:1184::/48 Signature Algorithm: sha256WithRSAEncryption 25:36:0c:b0:b5:5c:79:e8:c9:d5:da:1f:ce:94:99:4c:be:38: ba:c3:c1:07:32:14:ad:16:51:e6:2f:9a:57:30:76:43:3b:78: b9:d7:cc:d1:be:63:43:9a:2b:80:cf:82:3b:94:39:03:19:19: 93:01:f0:af:e2:37:06:ef:2e:c8:30:90:27:f4:fd:0e:ce:02: f1:d3:30:13:7a:a3:11:20:67:a5:44:2c:11:b0:fd:1f:90:bb: 12:91:57:cd:f9:67:cf:eb:ec:bd:e4:20:50:98:7e:e2:61:2c: ad:f9:b3:b2:7d:2b:2e:39:7f:20:f4:da:25:b0:e4:b1:1e:0c: cb:86:1c:a1:f4:42:4e:16:78:9a:4b:0f:a5:3e:b7:09:7f:d2: 16:d7:8c:36:a6:59:0f:b8:ff:1a:db:eb:71:f4:70:77:75:73: 7e:c9:05:4f:34:4a:2d:eb:00:8e:89:0c:d7:90:b9:33:d9:58: fb:41:07:e3:a6:16:4f:00:7b:6e:eb:55:f5:7e:97:57:d4:f6: 0e:a0:78:bf:4b:c3:b2:ea:18:e1:ea:bd:c2:d2:01:a1:d3:6c: 8c:db:ec:c9:90:5b:4d:7f:97:7c:ab:10:95:5c:8b:c5:8d:55: 22:aa:3e:aa:d5:f8:3f:73:12:06:3b:6a:51:9b:d4:77:99:6a: b2:1a:60:1d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EoJilUIsJ8E05mvds/eqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNTg0NWY4NmNiYzNjZmE5ZTBlNzk4N2EwMzgyZDVkMGRk N2NlM2UwHhcNMjYwMTAyMDAxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Y2Y2YWQyMTAxYmZiZTdmOGFhNDJjY2IzNjk4YjUyYTYxOTkyMDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogxcSRkMxY2YQ4DRGnfEgHYX0yUH 67ysYZMk5YuYRx6p8EvsJuHgXVnWzu1GWG30mco6JSXH+1NHPSNAnhsDVWdy9aQK gK3sjspM+McrCAdkop58UlwsBAY/v+KkJS8WKE3q3VHDs32cGPt4OK87YZxZZ6+F SptulMVUH5R2isFNmzwLBt3WJq8kXWEO+pRwDgX+fNvGZ+JdeDBdevPiL+XzKh7V L2ci52D282Z4YSPMM9r34rr4howveXpiZeS+RR9WDXBjTRdS3MPSotFyMSE8UlH1 yUZRStOdQti3A2i4s4MG32+me2Ohr8h1qpfnRtleeVR9NORZeP30ZiXk8QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHz2rSEBv75/iqQsyzaYtSphmSAkMB8GA1UdIwQY MBaAFANYRfhsvDz6ng55h6A4LV0N184+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAt M2I4NGQ3OWFiZGFmLzEvZlBhdElRR192bi1LcEN6TE5waTFLbUdaSUNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9kMjc5ZDMtOTQ3ZS00NWM3LWE4OTAtM2I4NGQ3OWFiZGFm LzEvQTFoRi1HeThQUHFlRG5tSG9EZ3RYUTNYemo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9/zMA8E AgACMAkDBwAgAQZ8EYQwDQYJKoZIhvcNAQELBQADggEBACU2DLC1XHnoydXaH86U mUy+OLrDwQcyFK0WUeYvmlcwdkM7eLnXzNG+Y0OaK4DPgjuUOQMZGZMB8K/iNwbv LsgwkCf0/Q7OAvHTMBN6oxEgZ6VELBGw/R+QuxKRV835Z8/r7L3kIFCYfuJhLK35 s7J9Ky45fyD02iWw5LEeDMuGHKH0Qk4WeJpLD6U+twl/0hbXjDamWQ+4/xrb63H0 cHd1c37JBU80Si3rAI6JDNeQuTPZWPtBB+OmFk8Ae27rVfV+l1fU9g6geL9Lw7Lq GOHqvcLSAaHTbIzb7MmQW01/l3yrEJVci8WNVSKqPqrV+D9zEgY7alGb1HeZarIa YB0= -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:27 2026 by rpki-client