This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/F9UQlAebc29GSseukVGk2Ly4-ig.roa File: F9UQlAebc29GSseukVGk2Ly4-ig.roa (raw, json) Hash identifier: SXDWRzwFnYBqyLhZKjGPwwWVf1aIUUbUr34+3OpNV9g= Subject key identifier: 17:D5:10:94:07:9B:73:6F:46:4A:C7:AE:91:51:A4:D8:BC:B8:FA:28 Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Certificate serial: 019B7C80A4A4A128989D874200610C464D12 Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/F9UQlAebc29GSseukVGk2Ly4-ig.roa Signing time: Fri 02 Jan 2026 02:19:24 +0000 ROA not before: Fri 02 Jan 2026 02:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216314 IP address blocks: 89.43.40.0/24 maxlen: 24 89.43.42.0/24 maxlen: 24 89.43.43.0/24 maxlen: 24 89.43.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:a4:a4:a1:28:98:9d:87:42:00:61:0c:46:4d:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9 Validity Not Before: Jan 2 02:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17d51094079b736f464ac7ae9151a4d8bcb8fa28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:29:1f:df:1e:3f:7b:d9:18:25:6d:a4:e0:3e: 0e:cb:ff:15:c3:f2:f3:43:7b:66:5e:7f:bb:6c:e0: c7:16:4d:3b:38:ca:0b:61:b1:ac:9e:76:f3:c5:36: 54:8b:03:5f:68:11:80:14:c7:26:6c:c8:2c:ea:c8: 4d:18:1c:09:83:4a:8a:cc:a7:c1:44:47:c6:6f:08: b5:6b:94:9c:44:e8:7e:b7:ec:c7:c0:39:5c:da:34: a7:27:a0:66:18:86:0d:b2:9b:5a:93:1a:62:62:b5: 93:b3:7f:22:04:f1:19:e2:cd:2e:a1:45:c5:9c:89: da:40:10:f1:39:5b:fc:17:b7:5e:ee:0a:a2:8e:b7: 6f:33:18:f6:19:c7:ea:dd:54:f7:e4:40:5e:76:97: d4:d9:39:96:94:9c:2e:7d:74:3d:ec:f2:97:58:0a: 72:25:2b:f8:e9:be:30:45:45:5b:01:94:62:e0:43: 96:70:cb:89:e9:35:88:bd:9b:8a:ac:dc:03:76:e2: 0b:9d:26:a5:1c:61:85:cd:e5:45:74:a7:9a:41:11: 11:ff:1d:33:94:c7:7e:9b:5a:52:c7:88:e3:c3:8e: a5:3e:a7:4f:74:c9:56:61:5e:00:2f:92:12:5a:3d: 29:d1:c6:14:22:ce:24:4f:71:19:57:dc:97:07:1d: 8c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D5:10:94:07:9B:73:6F:46:4A:C7:AE:91:51:A4:D8:BC:B8:FA:28 X509v3 Authority Key Identifier: keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/F9UQlAebc29GSseukVGk2Ly4-ig.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.43.40.0/24 89.43.42.0-89.43.44.255 Signature Algorithm: sha256WithRSAEncryption 15:dc:45:81:1e:75:ee:b9:2b:5f:1a:c7:19:ab:6c:25:03:af: ac:6f:84:9d:2c:05:be:75:a5:99:3c:b0:ff:db:4c:80:3b:67: 21:64:9c:8e:3d:42:40:f9:d4:a3:67:30:13:a1:2b:35:bd:64: 05:19:70:d7:04:a0:58:3c:5e:d4:2c:d6:e2:e4:c1:9e:72:c0: 74:9f:20:a1:a4:c8:8c:f5:13:42:4e:5e:eb:53:37:a5:34:a9: 2f:c6:b0:f6:9a:b0:b4:c6:2d:a2:87:d9:0f:71:bd:c2:30:54: c6:44:cc:85:a6:7a:7b:54:90:8e:a2:35:5b:d4:5e:21:50:dd: 7b:4d:c7:a6:e3:b0:b0:a5:06:aa:50:b2:54:a1:d3:c6:74:0e: 67:50:fc:a5:88:b5:54:7f:77:0f:ad:94:4a:b8:6f:61:70:21: c1:e9:1e:f3:4f:50:44:6c:d4:ec:11:74:fd:b9:a0:ad:7e:62: 4b:4c:7b:a5:a5:8a:78:9e:0e:7a:d6:c8:47:45:e2:26:af:ea: fc:4a:4a:1a:b2:18:10:48:a5:bb:85:5a:ec:5c:2a:1c:2b:00: 30:4c:db:9c:c2:83:79:4b:57:87:ac:59:75:f5:00:27:34:a1: ba:36:5f:ae:d4:46:ee:98:88:64:1f:ec:34:fd:4c:55:ea:85: 4c:e9:77:6b -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt8gKSkoSiYnYdCAGEMRk0SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNTg5NTJkMzkzOTM1ZjBkM2JjZTgxNGZkOTE3OGQwNDY5 M2FlYjkwHhcNMjYwMTAyMDIxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxN2Q1MTA5NDA3OWI3MzZmNDY0YWM3YWU5MTUxYTRkOGJjYjhmYTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ckf3x4/e9kYJW2k4D4Oy/8Vw/Lz Q3tmXn+7bODHFk07OMoLYbGsnnbzxTZUiwNfaBGAFMcmbMgs6shNGBwJg0qKzKfB REfGbwi1a5ScROh+t+zHwDlc2jSnJ6BmGIYNsptakxpiYrWTs38iBPEZ4s0uoUXF nInaQBDxOVv8F7de7gqijrdvMxj2Gcfq3VT35EBedpfU2TmWlJwufXQ97PKXWApy JSv46b4wRUVbAZRi4EOWcMuJ6TWIvZuKrNwDduILnSalHGGFzeVFdKeaQRER/x0z lMd+m1pSx4jjw46lPqdPdMlWYV4AL5ISWj0p0cYUIs4kT3EZV9yXBx2MwwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFBfVEJQHm3NvRkrHrpFRpNi8uPooMB8GA1UdIwQY MBaAFP5YlS05OTXw07zoFP2ReNBGk665MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUt NWQ0OGI2NWNlNTczLzEvRjlVUWxBZWJjMjlHU3NldWtWR2syTHk0LWlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9iMjZhYTgtYWNlNy00ZmE2LTllOGUtNWQ0OGI2NWNlNTcz LzEvX2xpVkxUazVOZkRUdk9nVV9aRjQwRWFUcnJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAWSsoMAwD BAFZKyoDBABZKywwDQYJKoZIhvcNAQELBQADggEBABXcRYEede65K18axxmrbCUD r6xvhJ0sBb51pZk8sP/bTIA7ZyFknI49QkD51KNnMBOhKzW9ZAUZcNcEoFg8XtQs 1uLkwZ5ywHSfIKGkyIz1E0JOXutTN6U0qS/GsPaasLTGLaKH2Q9xvcIwVMZEzIWm entUkI6iNVvUXiFQ3XtNx6bjsLClBqpQslSh08Z0DmdQ/KWItVR/dw+tlEq4b2Fw IcHpHvNPUERs1OwRdP25oK1+YktMe6WlinieDnrWyEdF4iav6vxKShqyGBBIpbuF WuxcKhwrADBM25zCg3lLV4esWXX1ACc0obo2X67URu6YiGQf7DT9TFXqhUzpd2s= -----END CERTIFICATE-----Generated at Wed Jan 21 10:46:57 2026 by rpki-client