This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Fj143MGHKktmJd-EbkW5Fscgq7Q.roa File: Fj143MGHKktmJd-EbkW5Fscgq7Q.roa (raw, json) Hash identifier: qVq1ZDi68rbqJdslxCJ44DoiVXJKtqjpcHKrD37I/Xk= Subject key identifier: 16:3D:78:DC:C1:87:2A:4B:66:25:DF:84:6E:45:B9:16:C7:20:AB:B4 Certificate issuer: /CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7 Certificate serial: 019B7D5CDC56991C8D7647013AC8DF7D54F3 Authority key identifier: F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Fj143MGHKktmJd-EbkW5Fscgq7Q.roa Signing time: Fri 02 Jan 2026 06:19:55 +0000 ROA not before: Fri 02 Jan 2026 06:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41095 IP address blocks: 2001:3500::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.mft rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:dc:56:99:1c:8d:76:47:01:3a:c8:df:7d:54:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7 Validity Not Before: Jan 2 06:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=163d78dcc1872a4b6625df846e45b916c720abb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6a:c9:c5:f0:57:24:a1:92:f9:98:8d:86:be: 9d:da:15:8b:e6:76:1f:66:16:11:f9:0e:7e:03:33: a3:7a:be:d2:35:98:0b:85:4d:f4:67:fb:fd:9b:e5: ff:db:19:5c:f1:b6:19:a2:98:b0:e4:4c:14:20:02: 87:c0:c1:67:90:94:a9:9a:41:6a:27:13:ea:7a:d8: 28:70:09:f5:50:9b:58:c1:19:65:3d:66:da:80:9f: d4:aa:4f:4b:9f:91:e5:14:15:a0:30:42:7e:ef:5d: 94:d8:45:14:74:5d:a6:74:c8:5c:a6:f2:d7:ad:4f: fd:41:70:f9:c8:3e:2d:2a:bf:b0:86:ea:c7:2a:53: 43:71:bc:95:4a:0a:b9:3b:73:78:0b:11:13:33:51: 26:24:4b:14:12:a9:ce:d4:b5:03:57:e8:46:69:73: 56:96:d1:f8:06:59:a5:59:a6:d2:00:6a:f0:e8:4f: a4:47:a6:e9:8b:ec:18:fd:e5:a7:a2:ba:42:5a:ca: e6:0b:f8:d5:e7:5b:ff:48:58:08:a6:d2:79:2f:3e: 8a:f3:0c:ac:f3:65:d9:8f:13:93:f0:aa:a0:96:9d: c7:a2:ec:37:51:25:b4:c1:12:5f:df:71:a2:6f:9a: 29:fc:a4:04:ab:6c:eb:87:c5:ff:5e:6c:a2:a5:fd: 0b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3D:78:DC:C1:87:2A:4B:66:25:DF:84:6E:45:B9:16:C7:20:AB:B4 X509v3 Authority Key Identifier: keyid:F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/Fj143MGHKktmJd-EbkW5Fscgq7Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3500::/29 Signature Algorithm: sha256WithRSAEncryption 70:1f:0e:84:1f:d4:2d:e8:b7:47:b6:eb:11:ba:c0:bc:02:dc: 29:7e:8a:e3:3e:37:be:8c:15:8a:36:5f:5c:08:77:df:5c:77: 1b:0a:73:88:99:dc:c4:bb:48:6f:0f:55:64:59:73:73:55:06: 07:12:e3:ac:09:c0:75:2a:19:76:8e:ee:b3:e3:cc:f9:ff:51: 36:b7:6a:64:bc:06:f0:01:63:f3:ca:f9:df:0c:a2:4f:88:16: d5:66:d3:c3:d1:ef:cf:9b:76:49:ab:7e:31:f3:1f:9d:5b:5a: 26:22:47:2f:85:68:f4:c5:f4:54:18:d3:a9:46:03:1e:bb:e7: 08:d3:20:bc:ab:c5:85:98:22:f2:24:b4:0f:90:b9:02:c1:f9: dc:b9:99:04:e5:a4:00:1b:da:db:6d:9b:74:04:fd:96:cb:de: 4a:1e:81:ff:87:c8:09:74:d9:78:1b:97:f1:1a:93:84:ef:53: 12:8f:b7:6c:c9:19:e3:5d:a0:c3:48:bb:44:28:bb:60:b5:fc: b5:94:84:83:4b:1d:db:84:ad:96:0a:86:04:5a:7b:a3:10:41: 2e:c0:e9:68:68:85:0d:9e:e8:28:1e:63:57:76:31:42:94:32: 8f:5f:b9:cd:e2:ea:16:b6:7f:c3:a3:99:40:95:f5:39:14:76: 19:00:ae:1d -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt9XNxWmRyNdkcBOsjffVTzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyYTI1M2NkZjUwN2EwM2UxZjU3OWQyMDJkOGRmMTFkNjhm NWMzZDcwHhcNMjYwMTAyMDYxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNjNkNzhkY2MxODcyYTRiNjYyNWRmODQ2ZTQ1YjkxNmM3MjBhYmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GrJxfBXJKGS+ZiNhr6d2hWL5nYf ZhYR+Q5+AzOjer7SNZgLhU30Z/v9m+X/2xlc8bYZopiw5EwUIAKHwMFnkJSpmkFq JxPqetgocAn1UJtYwRllPWbagJ/Uqk9Ln5HlFBWgMEJ+712U2EUUdF2mdMhcpvLX rU/9QXD5yD4tKr+whurHKlNDcbyVSgq5O3N4CxETM1EmJEsUEqnO1LUDV+hGaXNW ltH4BlmlWabSAGrw6E+kR6bpi+wY/eWnorpCWsrmC/jV51v/SFgIptJ5Lz6K8wys 82XZjxOT8Kqglp3Houw3USW0wRJf33Gib5op/KQEq2zrh8X/Xmyipf0LXQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFBY9eNzBhypLZiXfhG5FuRbHIKu0MB8GA1UdIwQY MBaAFPKiU831B6A+H1edIC2N8R1o9cPXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHFKVHpmVUhvRDRmVjUwZ0xZM3hIV2oxdzljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8xMGViZWMtMjc4NC00ZGFhLThkZjct YmU0ZDVkMDlkNzEwLzEvRmoxNDNNR0hLa3RtSmQtRWJrVzVGc2NncTdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8xMGViZWMtMjc4NC00ZGFhLThkZjctYmU0ZDVkMDlkNzEw LzEvOHFKVHpmVUhvRDRmVjUwZ0xZM3hIV2oxdzljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAE1ADAN BgkqhkiG9w0BAQsFAAOCAQEAcB8OhB/ULei3R7brEbrAvALcKX6K4z43vowVijZf XAh331x3GwpziJncxLtIbw9VZFlzc1UGBxLjrAnAdSoZdo7us+PM+f9RNrdqZLwG 8AFj88r53wyiT4gW1WbTw9Hvz5t2Sat+MfMfnVtaJiJHL4Vo9MX0VBjTqUYDHrvn CNMgvKvFhZgi8iS0D5C5AsH53LmZBOWkABva222bdAT9lsveSh6B/4fICXTZeBuX 8RqThO9TEo+3bMkZ412gw0i7RCi7YLX8tZSEg0sd24StlgqGBFp7oxBBLsDpaGiF DZ7oKB5jV3YxQpQyj1+5zeLqFrZ/w6OZQJX1ORR2GQCuHQ== -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:42 2026 by rpki-client