This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/flkFMntj216ik-1RHE5z8QkiuF4.roa File: flkFMntj216ik-1RHE5z8QkiuF4.roa (raw, json) Hash identifier: Gx/ViUGq+C6Lf+xKNlRvkXnmfpj7mqFvEpimMEsP3EM= Subject key identifier: 7E:59:05:32:7B:63:DB:5E:A2:93:ED:51:1C:4E:73:F1:09:22:B8:5E Certificate issuer: /CN=d50cda48c35e54eb802575aaa408cce579927216 Certificate serial: 019B76EB573E411A8B1DDB442AAD87F49B47 Authority key identifier: D5:0C:DA:48:C3:5E:54:EB:80:25:75:AA:A4:08:CC:E5:79:92:72:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QzaSMNeVOuAJXWqpAjM5XmSchY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/flkFMntj216ik-1RHE5z8QkiuF4.roa Signing time: Thu 01 Jan 2026 00:18:13 +0000 ROA not before: Thu 01 Jan 2026 00:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 217.12.224.0/22 maxlen: 28 217.12.234.0/23 maxlen: 28 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/1QzaSMNeVOuAJXWqpAjM5XmSchY.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/1QzaSMNeVOuAJXWqpAjM5XmSchY.mft rsync://rpki.ripe.net/repository/DEFAULT/1QzaSMNeVOuAJXWqpAjM5XmSchY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:57:3e:41:1a:8b:1d:db:44:2a:ad:87:f4:9b:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d50cda48c35e54eb802575aaa408cce579927216 Validity Not Before: Jan 1 00:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e5905327b63db5ea293ed511c4e73f10922b85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:c2:bf:84:5c:37:e0:2d:68:4b:ea:d1:40: 30:1a:51:3b:fa:65:bc:64:1c:05:64:a8:1d:1b:07: 0a:f7:cb:de:1d:a9:3a:06:b8:30:74:bf:d1:03:a8: e4:ec:c9:21:74:16:e2:e9:f9:82:75:5e:4e:ac:1e: 2c:8f:bc:78:9c:ab:69:d2:c4:a7:a1:ff:9d:21:14: 0f:44:9a:2d:f1:e1:3f:eb:c4:4b:5d:3d:0f:28:88: b2:6f:73:29:b9:7f:aa:96:a6:5a:41:db:e6:5e:8c: ad:2d:59:9f:6e:8f:e1:ac:52:5b:dc:67:21:4f:38: 5b:ec:f9:a9:6c:fb:b0:b5:ea:ea:db:c9:9c:01:90: 6a:e9:97:a2:cc:66:82:85:9e:b6:1f:0f:75:aa:29: c2:5a:e1:27:37:fa:7f:eb:ff:c2:81:90:f2:3f:a6: b9:48:e3:dd:f4:74:37:d5:3c:01:90:83:d7:c3:e9: bd:e0:96:18:18:2d:6d:77:56:01:46:a6:59:e9:80: 70:af:4e:f0:09:ac:6f:c7:52:bb:92:d9:1c:e5:32: e2:99:e5:af:4d:ca:8a:2f:3f:92:22:e5:f5:43:4c: ef:36:e0:fd:ca:32:d1:d7:d9:b5:16:3b:97:ee:a8: 10:9b:c3:1c:4d:70:31:7c:f2:82:ee:17:20:18:d6: b2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:59:05:32:7B:63:DB:5E:A2:93:ED:51:1C:4E:73:F1:09:22:B8:5E X509v3 Authority Key Identifier: keyid:D5:0C:DA:48:C3:5E:54:EB:80:25:75:AA:A4:08:CC:E5:79:92:72:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QzaSMNeVOuAJXWqpAjM5XmSchY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/flkFMntj216ik-1RHE5z8QkiuF4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3587eb-ebd4-40ab-a19b-22920565cda4/1/1QzaSMNeVOuAJXWqpAjM5XmSchY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.12.224.0/22 217.12.234.0/23 Signature Algorithm: sha256WithRSAEncryption b1:05:92:4c:b4:1e:24:06:d5:68:ae:8f:56:0e:25:87:19:6b: 0a:59:93:7c:7b:b1:7d:f8:53:52:9a:ce:85:8f:05:bd:e6:69: aa:5d:a1:15:a2:bf:4a:6d:44:f9:aa:f1:26:0b:16:ab:9a:0c: d9:b0:2d:c4:f8:72:64:f2:2f:86:09:54:cf:99:23:af:52:59: a5:23:b5:86:f4:86:e0:83:f7:5b:4f:aa:be:cd:83:1d:b6:4e: 0b:c6:20:9e:28:a2:fe:e8:6f:d5:7b:d1:82:c1:1b:23:2b:28: 25:09:51:79:2a:4d:32:92:d5:55:56:fc:f2:a0:cf:0f:2e:67: df:77:bc:a7:fc:0d:bd:78:79:42:8e:1d:4d:95:4b:24:85:ad: 77:cd:1b:ae:c6:30:5e:4e:34:00:e6:56:ad:9d:b1:3e:16:82: 01:24:f0:ea:f0:25:e7:1d:4d:d4:74:79:9a:74:22:fc:6a:fa: 05:5f:8f:e3:2e:18:fd:ac:c2:64:de:c5:33:65:51:15:0b:d6: 2b:8a:6a:8d:39:2f:e6:48:11:5d:9b:15:7e:be:fe:69:e7:af: 09:c6:ca:b3:05:cc:b0:77:00:e7:e6:43:9b:f0:cd:17:11:6c: 23:1e:ea:3b:01:6a:64:c9:0e:80:2b:30:94:26:f5:59:32:1f: 4c:29:a1:15 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt261c+QRqLHdtEKq2H9JtHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MGNkYTQ4YzM1ZTU0ZWI4MDI1NzVhYWE0MDhjY2U1Nzk5 MjcyMTYwHhcNMjYwMTAxMDAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTU5MDUzMjdiNjNkYjVlYTI5M2VkNTExYzRlNzNmMTA5MjJiODVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhzCv4RcN+AtaEvq0UAwGlE7+mW8 ZBwFZKgdGwcK98veHak6BrgwdL/RA6jk7MkhdBbi6fmCdV5OrB4sj7x4nKtp0sSn of+dIRQPRJot8eE/68RLXT0PKIiyb3MpuX+qlqZaQdvmXoytLVmfbo/hrFJb3Gch Tzhb7PmpbPuwterq28mcAZBq6ZeizGaChZ62Hw91qinCWuEnN/p/6//CgZDyP6a5 SOPd9HQ31TwBkIPXw+m94JYYGC1td1YBRqZZ6YBwr07wCaxvx1K7ktkc5TLimeWv TcqKLz+SIuX1Q0zvNuD9yjLR19m1FjuX7qgQm8McTXAxfPKC7hcgGNayTwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFH5ZBTJ7Y9teopPtURxOc/EJIrheMB8GA1UdIwQY MBaAFNUM2kjDXlTrgCV1qqQIzOV5knIWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVF6YVNNTmVWT3VBSlhXcXBBak01WG1TY2hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zNTg3ZWItZWJkNC00MGFiLWExOWIt MjI5MjA1NjVjZGE0LzEvZmxrRk1udGoyMTZpay0xUkhFNXo4UWtpdUY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zNTg3ZWItZWJkNC00MGFiLWExOWItMjI5MjA1NjVjZGE0 LzEvMVF6YVNNTmVWT3VBSlhXcXBBak01WG1TY2hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQC2QzgAwQB 2QzqMA0GCSqGSIb3DQEBCwUAA4IBAQCxBZJMtB4kBtVoro9WDiWHGWsKWZN8e7F9 +FNSms6FjwW95mmqXaEVor9KbUT5qvEmCxarmgzZsC3E+HJk8i+GCVTPmSOvUlml I7WG9Ibgg/dbT6q+zYMdtk4LxiCeKKL+6G/Ve9GCwRsjKyglCVF5Kk0yktVVVvzy oM8PLmffd7yn/A29eHlCjh1NlUskha13zRuuxjBeTjQA5latnbE+FoIBJPDq8CXn HU3UdHmadCL8avoFX4/jLhj9rMJk3sUzZVEVC9YrimqNOS/mSBFdmxV+vv5p568J xsqzBcywdwDn5kOb8M0XEWwjHuo7AWpkyQ6AKzCUJvVZMh9MKaEV -----END CERTIFICATE-----Generated at Fri Jan 9 06:25:47 2026 by rpki-client