This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-sZNf9muu9U1hhvyCSyDMfB8YpI.roa File: 1-sZNf9muu9U1hhvyCSyDMfB8YpI.roa (raw, json) Hash identifier: ZTCQU0Xa904Op6SoRgBrlLkJy0zOrm95WiClUW4+PNY= Subject key identifier: FA:C6:4D:7F:D9:AE:BB:D5:35:86:1B:F2:09:2C:83:31:F0:7C:62:92 Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c Certificate serial: 019B7F1547428C6837E8DBC56C64D54F4120 Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-sZNf9muu9U1hhvyCSyDMfB8YpI.roa Signing time: Fri 02 Jan 2026 14:20:59 +0000 ROA not before: Fri 02 Jan 2026 14:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211873 IP address blocks: 81.27.224.0/22 maxlen: 22 185.105.40.0/22 maxlen: 24 185.105.40.0/24 maxlen: 24 185.105.41.0/24 maxlen: 24 185.105.42.0/23 maxlen: 23 185.149.28.0/22 maxlen: 22 185.149.28.0/24 maxlen: 24 185.149.29.0/24 maxlen: 24 185.149.30.0/24 maxlen: 24 185.149.31.0/24 maxlen: 24 2a06:34c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.mft rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:47:42:8c:68:37:e8:db:c5:6c:64:d5:4f:41:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c Validity Not Before: Jan 2 14:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fac64d7fd9aebbd535861bf2092c8331f07c6292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2e:c2:77:92:76:c5:51:92:34:bc:de:61:f0: 64:5d:0e:2a:57:e0:8a:82:87:6f:75:47:a8:67:8e: 4f:45:54:35:08:0b:50:ee:db:66:b4:57:89:ee:8f: 0a:a0:74:6a:62:03:90:3b:ea:63:31:c3:a3:04:23: 22:ed:33:21:b1:54:45:4c:64:8e:9d:e9:61:a9:b4: 21:42:31:6c:50:12:03:b4:59:06:4a:63:fd:8e:24: 8c:a1:ca:84:5d:f6:4a:22:21:9b:b9:47:62:4e:e9: ab:04:9a:37:ec:44:e9:3a:29:53:f0:ad:05:48:62: 0d:76:c0:57:87:95:4d:bf:22:05:22:ef:0e:59:f7: a2:5e:97:f5:b0:a0:03:a8:9d:a5:b5:47:51:c6:28: e0:df:86:b1:09:f7:29:00:29:ac:25:7a:27:01:7c: 5d:a2:58:e4:bd:62:b2:a2:07:80:d8:8b:e6:23:d4: 20:fe:8f:83:1c:b6:cd:95:ed:32:5a:b2:6a:e1:50: 42:b2:60:de:d8:0d:35:19:1b:4d:dc:43:88:ae:22: 97:de:e4:9a:85:ad:83:86:e3:f5:10:e2:8d:a3:a8: 86:52:c2:6d:bb:51:95:5c:d9:c0:81:da:ff:f2:79: 3f:b1:ca:5b:83:be:c5:b0:ff:10:15:2b:a2:41:52: cb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C6:4D:7F:D9:AE:BB:D5:35:86:1B:F2:09:2C:83:31:F0:7C:62:92 X509v3 Authority Key Identifier: keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-sZNf9muu9U1hhvyCSyDMfB8YpI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.27.224.0/22 185.105.40.0/22 185.149.28.0/22 IPv6: 2a06:34c0::/29 Signature Algorithm: sha256WithRSAEncryption 99:6f:79:9e:ba:3f:39:ef:d8:24:b6:48:05:e5:03:4e:9e:78: e8:9a:19:07:35:a8:77:2a:98:9b:98:19:9d:41:b5:88:de:64: 65:7b:24:db:ce:4f:f9:ba:3f:cc:37:43:04:5b:02:69:ec:81: ac:17:ca:af:6b:09:9e:8c:a7:fd:f3:93:80:48:29:90:ab:92: 11:f3:cc:73:37:48:15:bb:f6:2b:71:2a:3f:3b:a8:ba:a2:db: 57:93:25:6f:ae:6f:13:f6:e7:fe:c8:14:ae:3b:64:f6:be:cf: 53:4c:b4:53:7b:f4:d0:bf:49:b8:e7:4c:e4:49:98:1d:27:b8: 45:d6:63:7e:85:6b:6a:36:94:08:8d:f3:79:fc:bf:2b:9a:fe: 5d:9c:c7:77:6f:8a:41:f1:97:be:69:52:db:b4:72:6a:61:9b: c1:6e:95:cd:14:27:14:bf:5b:9f:cc:09:66:16:d5:84:95:da: c7:04:6d:ea:b9:8d:a3:74:f5:b5:3b:e9:d7:c1:5d:64:a3:05: 3e:8a:46:c5:5b:16:d7:03:25:a4:d6:c6:50:47:80:fd:7b:93: d6:82:e3:04:a8:e0:c8:81:b8:f8:81:63:1d:73:27:af:05:96: 54:f0:42:40:55:04:9f:2e:e0:ae:6f:e7:bb:8c:8f:b2:91:38: e8:ca:5a:61 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt/FUdCjGg36NvFbGTVT0EgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiZmNkNDUxNWI0OTMwMzkyMTY3NThkZTczOGU0ZjFhZThl MzIyNGMwHhcNMjYwMTAyMTQyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYWM2NGQ3ZmQ5YWViYmQ1MzU4NjFiZjIwOTJjODMzMWYwN2M2MjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3C7Cd5J2xVGSNLzeYfBkXQ4qV+CK godvdUeoZ45PRVQ1CAtQ7ttmtFeJ7o8KoHRqYgOQO+pjMcOjBCMi7TMhsVRFTGSO nelhqbQhQjFsUBIDtFkGSmP9jiSMocqEXfZKIiGbuUdiTumrBJo37ETpOilT8K0F SGINdsBXh5VNvyIFIu8OWfeiXpf1sKADqJ2ltUdRxijg34axCfcpACmsJXonAXxd oljkvWKyogeA2IvmI9Qg/o+DHLbNle0yWrJq4VBCsmDe2A01GRtN3EOIriKX3uSa ha2DhuP1EOKNo6iGUsJtu1GVXNnAgdr/8nk/scpbg77FsP8QFSuiQVLL8wIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFPrGTX/ZrrvVNYYb8gksgzHwfGKSMB8GA1UdIwQY MBaAFPv81FFbSTA5IWdY3nOOTxro4yJMMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1felVVVnRKTURraFoxamVjNDVQR3Vqaklrdy5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjgvZDY0ODZhLThmZjctNDI2Zi04ZDg2 LTA5OGQwNGNlNTFiMi8xLzEtc1pOZjltdXU5VTFoaHZ5Q1N5RE1mQjhZcEkucm9h MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzY4L2Q2NDg2YS04ZmY3LTQyNmYtOGQ4Ni0wOThkMDRjZTUx YjIvMS8xLV96VVVWdEpNRGtoWjFqZWM0NVBHdWpqSWt3LmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCURvg AwQCuWkoAwQCuZUcMA0EAgACMAcDBQMqBjTAMA0GCSqGSIb3DQEBCwUAA4IBAQCZ b3meuj8579gktkgF5QNOnnjomhkHNah3KpibmBmdQbWI3mRleyTbzk/5uj/MN0ME WwJp7IGsF8qvawmejKf985OASCmQq5IR88xzN0gVu/YrcSo/O6i6ottXkyVvrm8T 9uf+yBSuO2T2vs9TTLRTe/TQv0m450zkSZgdJ7hF1mN+hWtqNpQIjfN5/L8rmv5d nMd3b4pB8Ze+aVLbtHJqYZvBbpXNFCcUv1ufzAlmFtWEldrHBG3quY2jdPW1O+nX wV1kowU+ikbFWxbXAyWk1sZQR4D9e5PWguMEqODIgbj4gWMdcyevBZZU8EJAVQSf LuCub+e7jI+ykTjoylph -----END CERTIFICATE-----Generated at Tue Feb 10 04:13:59 2026 by rpki-client