This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f4ea59-1810-4210-98f3-709f03624e7e/1/fjoBq7cUoJrRC1EG6pKDwLfdkWo.roa File: fjoBq7cUoJrRC1EG6pKDwLfdkWo.roa (raw, json) Hash identifier: PIJVCUNM2lCSZBzxydlr8AgpZlMx3agile2sKdoLeqo= Subject key identifier: 7E:3A:01:AB:B7:14:A0:9A:D1:0B:51:06:EA:92:83:C0:B7:DD:91:6A Certificate issuer: /CN=34bca94f6b61e10100dc3a7186ffa3f9b00c69dd Certificate serial: 019B7B3680CFEA00750698EDD32CABA053E3 Authority key identifier: 34:BC:A9:4F:6B:61:E1:01:00:DC:3A:71:86:FF:A3:F9:B0:0C:69:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLypT2th4QEA3Dpxhv-j-bAMad0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f4ea59-1810-4210-98f3-709f03624e7e/1/fjoBq7cUoJrRC1EG6pKDwLfdkWo.roa Signing time: Thu 01 Jan 2026 20:18:48 +0000 ROA not before: Thu 01 Jan 2026 20:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207446 IP address blocks: 185.143.20.0/22 maxlen: 24 185.143.20.0/24 maxlen: 24 185.143.21.0/24 maxlen: 24 185.143.22.0/24 maxlen: 24 185.143.23.0/24 maxlen: 24 185.165.48.0/23 maxlen: 24 185.165.48.0/24 maxlen: 24 185.165.49.0/24 maxlen: 24 2a07:1e01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f4ea59-1810-4210-98f3-709f03624e7e/1/NLypT2th4QEA3Dpxhv-j-bAMad0.crl rsync://rpki.ripe.net/repository/DEFAULT/40/f4ea59-1810-4210-98f3-709f03624e7e/1/NLypT2th4QEA3Dpxhv-j-bAMad0.mft rsync://rpki.ripe.net/repository/DEFAULT/NLypT2th4QEA3Dpxhv-j-bAMad0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:80:cf:ea:00:75:06:98:ed:d3:2c:ab:a0:53:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34bca94f6b61e10100dc3a7186ffa3f9b00c69dd Validity Not Before: Jan 1 20:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e3a01abb714a09ad10b5106ea9283c0b7dd916a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fe:8b:8b:04:27:67:a0:b3:1f:c2:c4:76:30: 27:4b:a6:e9:93:86:4c:be:80:bf:56:fc:89:de:f0: 01:c7:8d:69:59:75:7b:46:80:14:49:1d:95:86:44: 90:1c:f1:8d:31:2f:17:8b:0c:49:0b:ac:bf:e5:f9: fc:b4:7a:36:b4:5c:49:48:65:84:aa:14:7a:15:bb: 27:92:9d:d2:68:5b:10:a3:78:e3:51:bb:20:bc:5c: b6:ab:49:81:6a:e9:3e:53:b6:ad:f9:dd:d7:0f:ab: 04:6a:e9:15:60:0c:9f:63:be:88:b7:94:17:03:71: 0b:ee:73:70:8c:8c:08:49:d0:85:68:66:c1:59:60: 3f:15:43:23:56:90:2a:d7:01:22:e5:8f:f4:94:46: c9:0f:36:3e:95:60:b0:c9:dd:7a:12:83:1d:b5:b9: f3:70:27:e6:d1:78:c0:65:c0:0c:05:31:04:11:e6: c4:f6:55:2c:9c:d6:1e:b0:b9:18:ce:e1:9b:ec:49: 2a:8a:0b:8b:8b:21:c9:39:ba:77:dd:b3:33:28:12: ad:2b:d8:de:84:3c:81:39:cc:41:96:a1:7e:9e:f8: f8:fe:d4:47:1f:f2:44:bb:3e:3d:ca:fe:6c:91:6c: ea:01:04:e0:9d:49:6b:49:59:2d:44:9b:15:d9:93: ad:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3A:01:AB:B7:14:A0:9A:D1:0B:51:06:EA:92:83:C0:B7:DD:91:6A X509v3 Authority Key Identifier: keyid:34:BC:A9:4F:6B:61:E1:01:00:DC:3A:71:86:FF:A3:F9:B0:0C:69:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLypT2th4QEA3Dpxhv-j-bAMad0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f4ea59-1810-4210-98f3-709f03624e7e/1/fjoBq7cUoJrRC1EG6pKDwLfdkWo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f4ea59-1810-4210-98f3-709f03624e7e/1/NLypT2th4QEA3Dpxhv-j-bAMad0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.143.20.0/22 185.165.48.0/23 IPv6: 2a07:1e01::/32 Signature Algorithm: sha256WithRSAEncryption 97:16:ac:0e:d3:20:a0:af:ff:e2:0e:cb:dc:8b:9b:0c:0a:0e: bc:c3:b4:3b:f8:df:2b:2c:17:d5:81:e0:13:e0:23:0b:26:3a: d3:2f:3b:02:a8:2f:25:c7:6d:f0:95:70:1e:42:d3:96:49:ed: a4:61:02:a9:3f:9b:4d:c7:14:b7:f7:15:73:20:3a:e3:f8:28: 10:9a:f1:6c:ca:39:35:9f:32:ff:56:fb:39:89:2d:bf:20:66: 99:02:ee:1f:9b:32:d8:9a:7d:46:13:38:65:20:6b:1d:00:5f: 89:11:c2:7e:ad:73:6b:e5:36:10:e2:a9:8d:1b:4a:74:f2:0c: ba:00:5a:1f:80:5b:b1:7c:40:20:41:fe:3f:8b:96:08:25:e1: ff:76:5d:b1:89:71:81:f3:b5:bd:ad:ca:bb:bc:df:c3:b6:12: 32:03:79:93:1e:55:00:b0:1d:5e:15:f3:76:f8:29:f9:6c:0c: 08:2d:87:13:0c:80:97:7a:b6:3c:75:c1:57:ea:ac:c5:84:4f: ba:a4:b7:a2:74:a6:bc:35:e5:8c:7d:8d:d7:4f:b6:0b:d4:c7: 7c:35:fd:b3:9c:3e:3a:54:23:fd:56:bd:26:4b:e1:cd:14:43: d6:ca:4d:55:8a:a1:84:d5:68:e2:66:81:b5:8f:2e:d4:cb:9b: 8d:05:7a:7c -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7NoDP6gB1Bpjt0yyroFPjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0YmNhOTRmNmI2MWUxMDEwMGRjM2E3MTg2ZmZhM2Y5YjAw YzY5ZGQwHhcNMjYwMTAxMjAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTNhMDFhYmI3MTRhMDlhZDEwYjUxMDZlYTkyODNjMGI3ZGQ5MTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/6LiwQnZ6CzH8LEdjAnS6bpk4ZM voC/VvyJ3vABx41pWXV7RoAUSR2VhkSQHPGNMS8XiwxJC6y/5fn8tHo2tFxJSGWE qhR6Fbsnkp3SaFsQo3jjUbsgvFy2q0mBauk+U7at+d3XD6sEaukVYAyfY76It5QX A3EL7nNwjIwISdCFaGbBWWA/FUMjVpAq1wEi5Y/0lEbJDzY+lWCwyd16EoMdtbnz cCfm0XjAZcAMBTEEEebE9lUsnNYesLkYzuGb7EkqiguLiyHJObp33bMzKBKtK9je hDyBOcxBlqF+nvj4/tRHH/JEuz49yv5skWzqAQTgnUlrSVktRJsV2ZOtWwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFH46Aau3FKCa0QtRBuqSg8C33ZFqMB8GA1UdIwQY MBaAFDS8qU9rYeEBANw6cYb/o/mwDGndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkx5cFQydGg0UUVBM0RweGh2LWotYkFNYWQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mNGVhNTktMTgxMC00MjEwLTk4ZjMt NzA5ZjAzNjI0ZTdlLzEvZmpvQnE3Y1VvSnJSQzFFRzZwS0R3TGZka1dvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9mNGVhNTktMTgxMC00MjEwLTk4ZjMtNzA5ZjAzNjI0ZTdl LzEvTkx5cFQydGg0UUVBM0RweGh2LWotYkFNYWQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuY8UAwQB uaUwMA0EAgACMAcDBQAqBx4BMA0GCSqGSIb3DQEBCwUAA4IBAQCXFqwO0yCgr//i Dsvci5sMCg68w7Q7+N8rLBfVgeAT4CMLJjrTLzsCqC8lx23wlXAeQtOWSe2kYQKp P5tNxxS39xVzIDrj+CgQmvFsyjk1nzL/Vvs5iS2/IGaZAu4fmzLYmn1GEzhlIGsd AF+JEcJ+rXNr5TYQ4qmNG0p08gy6AFofgFuxfEAgQf4/i5YIJeH/dl2xiXGB87W9 rcq7vN/DthIyA3mTHlUAsB1eFfN2+Cn5bAwILYcTDICXerY8dcFX6qzFhE+6pLei dKa8NeWMfY3XT7YL1Md8Nf2znD46VCP9Vr0mS+HNFEPWyk1ViqGE1WjiZoG1jy7U y5uNBXp8 -----END CERTIFICATE-----Generated at Mon Feb 9 23:50:44 2026 by rpki-client