This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/fCBNQoZpXWRf7HiESYlfI6ubNuI.roa File: fCBNQoZpXWRf7HiESYlfI6ubNuI.roa (raw, json) Hash identifier: Xi95Rj4tFLGoeBm6XrdM9ofNJV6OvWlEYiGW/UAuLU4= Subject key identifier: 7C:20:4D:42:86:69:5D:64:5F:EC:78:84:49:89:5F:23:AB:9B:36:E2 Certificate issuer: /CN=a98cfb9b5f445fd2f6ccfa179c37c53449b2af06 Certificate serial: 019B76EB6FE65017A5C6052F592453E76B24 Authority key identifier: A9:8C:FB:9B:5F:44:5F:D2:F6:CC:FA:17:9C:37:C5:34:49:B2:AF:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/fCBNQoZpXWRf7HiESYlfI6ubNuI.roa Signing time: Thu 01 Jan 2026 00:18:19 +0000 ROA not before: Thu 01 Jan 2026 00:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48091 IP address blocks: 185.140.236.0/23 maxlen: 24 185.140.238.0/24 maxlen: 24 195.93.216.0/23 maxlen: 24 2001:67c:256c::/48 maxlen: 48 2a05:37c0::/32 maxlen: 48 2a05:37c7:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/qYz7m19EX9L2zPoXnDfFNEmyrwY.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/qYz7m19EX9L2zPoXnDfFNEmyrwY.mft rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:6f:e6:50:17:a5:c6:05:2f:59:24:53:e7:6b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a98cfb9b5f445fd2f6ccfa179c37c53449b2af06 Validity Not Before: Jan 1 00:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c204d4286695d645fec788449895f23ab9b36e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:32:76:e7:dd:15:73:3f:29:c8:2b:ef:8b:01: cd:94:76:2a:e1:1c:a0:f5:b8:d5:87:94:93:71:8d: 57:76:0b:21:fb:99:7f:f1:76:30:db:dc:f4:15:50: 52:be:08:a7:d6:88:3a:60:a0:9d:97:07:03:00:1f: f3:10:2e:b9:a5:7c:1e:6e:3e:0c:34:a4:e6:b4:e8: b9:b6:60:56:48:38:6e:33:32:59:fe:b8:0d:72:c1: b4:35:2d:a3:d8:30:fc:b8:30:d6:6e:80:a6:39:36: 1a:5e:c9:f6:69:17:9c:57:12:fc:3d:46:15:87:7c: ad:39:47:2a:ae:9c:21:f5:c1:65:7c:8b:63:9c:df: 75:a2:48:3f:68:0c:e3:65:2c:0a:c4:70:7e:d8:7c: 40:75:67:c0:4b:fa:ef:35:ef:ad:fa:c6:ed:dd:d7: 09:e2:c9:d0:6a:47:3e:0a:b9:bb:96:29:28:51:41: 92:23:b2:9a:1f:64:79:01:09:dd:fc:d0:dd:0c:bb: 14:15:c6:ca:50:d0:7c:64:75:3f:69:45:42:9c:ea: fc:2e:d2:76:26:bf:79:b8:03:d2:6e:28:63:4a:1d: b1:25:a2:d4:3a:74:8e:ea:2a:90:73:77:59:f4:46: f2:de:74:73:72:0b:4b:f0:5a:9f:a4:89:83:5a:f6: 9f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:20:4D:42:86:69:5D:64:5F:EC:78:84:49:89:5F:23:AB:9B:36:E2 X509v3 Authority Key Identifier: keyid:A9:8C:FB:9B:5F:44:5F:D2:F6:CC:FA:17:9C:37:C5:34:49:B2:AF:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/fCBNQoZpXWRf7HiESYlfI6ubNuI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/qYz7m19EX9L2zPoXnDfFNEmyrwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.140.236.0-185.140.238.255 195.93.216.0/23 IPv6: 2001:67c:256c::/48 2a05:37c0::/32 2a05:37c7:100::/40 Signature Algorithm: sha256WithRSAEncryption 12:c9:d1:bd:b5:99:b1:5f:6e:e9:78:9e:66:13:9e:09:09:09: c5:53:94:9a:72:ef:f0:14:0a:aa:67:bd:b5:89:e1:24:f8:a6: f6:78:68:81:d2:62:5b:e6:21:fb:ed:d9:f9:b2:fb:34:48:d5: e1:39:b6:02:7e:d6:a4:13:0f:96:24:1a:b7:55:15:01:f0:5f: a9:8f:2f:6d:56:a5:bb:51:a4:f2:28:d7:11:75:a0:b0:c7:7a: 49:d4:c9:39:f1:9c:cf:55:c1:53:7d:7f:4b:d9:30:90:54:2e: ad:65:4f:54:d5:04:3f:8f:d6:52:06:0c:e0:be:6e:40:5b:bb: 48:e7:ba:d2:b3:f3:4d:fc:01:1e:7e:07:84:57:92:f2:09:ea: e8:3d:20:66:62:5e:55:62:6c:7f:ec:bf:5f:5f:17:49:7b:e8: 35:47:af:c1:20:fb:e0:8a:35:a4:25:44:55:26:c6:1c:a5:7c: 4e:79:a9:2e:99:84:51:97:cd:80:47:71:c9:c4:80:66:74:6a: 8f:34:dd:78:98:17:d7:5f:27:31:80:d2:3a:50:dc:a9:25:10: b9:70:b2:f2:35:bc:dd:d6:12:71:22:83:5e:0b:a9:12:1b:cb: 0b:1f:b8:dc:58:ce:2b:79:67:97:3f:0a:70:65:48:9a:33:45: 1f:7f:8d:f9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISAZt262/mUBelxgUvWSRT52skMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5OGNmYjliNWY0NDVmZDJmNmNjZmExNzljMzdjNTM0NDli MmFmMDYwHhcNMjYwMTAxMDAxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YzIwNGQ0Mjg2Njk1ZDY0NWZlYzc4ODQ0OTg5NWYyM2FiOWIzNmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9zJ2590Vcz8pyCvviwHNlHYq4Ryg 9bjVh5STcY1Xdgsh+5l/8XYw29z0FVBSvgin1og6YKCdlwcDAB/zEC65pXwebj4M NKTmtOi5tmBWSDhuMzJZ/rgNcsG0NS2j2DD8uDDWboCmOTYaXsn2aRecVxL8PUYV h3ytOUcqrpwh9cFlfItjnN91okg/aAzjZSwKxHB+2HxAdWfAS/rvNe+t+sbt3dcJ 4snQakc+Crm7likoUUGSI7KaH2R5AQnd/NDdDLsUFcbKUNB8ZHU/aUVCnOr8LtJ2 Jr95uAPSbihjSh2xJaLUOnSO6iqQc3dZ9Eby3nRzcgtL8FqfpImDWvafkwIDAQAB o4ICNzCCAjMwHQYDVR0OBBYEFHwgTUKGaV1kX+x4hEmJXyOrmzbiMB8GA1UdIwQY MBaAFKmM+5tfRF/S9sz6F5w3xTRJsq8GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVl6N20xOUVYOUwyelBvWG5EZkZORW15cndZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9kZjg1NTEtM2Y5Zi00NGIyLWI3ZTQt ODg2NTkzZjdkY2UwLzEvZkNCTlFvWnBYV1JmN0hpRVNZbGZJNnViTnVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9kZjg1NTEtM2Y5Zi00NGIyLWI3ZTQtODg2NTkzZjdkY2Uw LzEvcVl6N20xOUVYOUwyelBvWG5EZkZORW15cndZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDAaBAIAATAUMAwDBAK5jOwD BAC5jO4DBAHDXdgwHgQCAAIwGAMHACABBnwlbAMFACoFN8ADBgAqBTfHATANBgkq hkiG9w0BAQsFAAOCAQEAEsnRvbWZsV9u6XieZhOeCQkJxVOUmnLv8BQKqme9tYnh JPim9nhogdJiW+Yh++3Z+bL7NEjV4Tm2An7WpBMPliQat1UVAfBfqY8vbValu1Gk 8ijXEXWgsMd6SdTJOfGcz1XBU31/S9kwkFQurWVPVNUEP4/WUgYM4L5uQFu7SOe6 0rPzTfwBHn4HhFeS8gnq6D0gZmJeVWJsf+y/X18XSXvoNUevwSD74Io1pCVEVSbG HKV8TnmpLpmEUZfNgEdxycSAZnRqjzTdeJgX118nMYDSOlDcqSUQuXCy8jW83dYS cSKDXgupEhvLCx+43FjOK3lnlz8KcGVImjNFH3+N+Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:02:00 2026 by rpki-client