This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8b58e9-3230-4418-8f68-81224e480c03/1/FMo7TJvkPpYtgzLEkKIdGr7kRp4.roa File: FMo7TJvkPpYtgzLEkKIdGr7kRp4.roa (raw, json) Hash identifier: SV7/k04fYgWabF2RHzjM0CZofp3MWJKlFtmZhh/YzbY= Subject key identifier: 14:CA:3B:4C:9B:E4:3E:96:2D:83:32:C4:90:A2:1D:1A:BE:E4:46:9E Certificate issuer: /CN=f8b3d58d993f960840f7ef2fe20c008adc971f97 Certificate serial: 019B7A5AE60556B40789D9F980692E6DAC55 Authority key identifier: F8:B3:D5:8D:99:3F:96:08:40:F7:EF:2F:E2:0C:00:8A:DC:97:1F:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-LPVjZk_lghA9-8v4gwAityXH5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8b58e9-3230-4418-8f68-81224e480c03/1/FMo7TJvkPpYtgzLEkKIdGr7kRp4.roa Signing time: Thu 01 Jan 2026 16:18:56 +0000 ROA not before: Thu 01 Jan 2026 16:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41000 IP address blocks: 176.74.16.0/21 maxlen: 21 185.86.108.0/22 maxlen: 22 185.176.248.0/22 maxlen: 22 193.23.224.0/24 maxlen: 24 193.33.178.0/23 maxlen: 23 194.110.243.0/24 maxlen: 24 195.170.173.0/24 maxlen: 24 2a00:b980::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8b58e9-3230-4418-8f68-81224e480c03/1/1-LPVjZk_lghA9-8v4gwAityXH5c.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8b58e9-3230-4418-8f68-81224e480c03/1/1-LPVjZk_lghA9-8v4gwAityXH5c.mft rsync://rpki.ripe.net/repository/DEFAULT/1-LPVjZk_lghA9-8v4gwAityXH5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:e6:05:56:b4:07:89:d9:f9:80:69:2e:6d:ac:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8b3d58d993f960840f7ef2fe20c008adc971f97 Validity Not Before: Jan 1 16:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=14ca3b4c9be43e962d8332c490a21d1abee4469e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:99:3d:fb:72:86:21:66:63:fd:04:36:76:e9: 06:c2:72:36:2a:81:a6:46:b0:2f:74:15:49:03:0f: 10:a0:d5:bd:03:3d:35:06:69:9b:ca:a3:36:51:53: d0:d9:82:a6:8c:f7:1a:11:0d:e4:f0:4b:13:81:36: e4:97:c8:c2:88:15:ba:b5:05:93:0d:d6:ab:14:5f: 8c:c7:30:74:01:a5:c6:b0:e1:0a:d8:f0:4b:1d:9a: bf:39:32:c6:ae:47:8e:00:f6:c9:74:57:db:7b:83: d3:24:29:10:84:e6:8a:5c:97:de:79:2e:b0:cd:e8: a5:0e:89:1c:0b:5d:f7:c7:db:7b:65:cb:f5:7c:94: ad:d0:67:99:26:b7:a2:4c:48:d5:1d:e0:e9:2c:72: 6a:d3:46:e0:fb:7c:2f:da:5e:44:0b:c9:e3:9e:d0: c5:5e:16:21:e9:60:ab:54:7f:c5:41:ea:eb:a6:af: 51:0a:f4:78:21:07:66:aa:e3:3d:86:d5:67:cc:67: 6c:7c:d9:f8:7b:46:5f:af:48:f0:12:2b:78:ff:e8: f3:df:d0:b3:8c:02:91:67:74:62:79:a2:b9:a3:a6: 02:8a:f3:7a:61:aa:82:d5:30:74:ae:4e:8c:02:ad: e4:dd:2f:68:00:60:d0:b2:36:65:1a:9e:7f:7e:8c: 76:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CA:3B:4C:9B:E4:3E:96:2D:83:32:C4:90:A2:1D:1A:BE:E4:46:9E X509v3 Authority Key Identifier: keyid:F8:B3:D5:8D:99:3F:96:08:40:F7:EF:2F:E2:0C:00:8A:DC:97:1F:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-LPVjZk_lghA9-8v4gwAityXH5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8b58e9-3230-4418-8f68-81224e480c03/1/FMo7TJvkPpYtgzLEkKIdGr7kRp4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8b58e9-3230-4418-8f68-81224e480c03/1/1-LPVjZk_lghA9-8v4gwAityXH5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.74.16.0/21 185.86.108.0/22 185.176.248.0/22 193.23.224.0/24 193.33.178.0/23 194.110.243.0/24 195.170.173.0/24 IPv6: 2a00:b980::/29 Signature Algorithm: sha256WithRSAEncryption 9e:82:09:80:a4:73:0d:71:ed:40:0e:a3:30:13:2e:63:48:57: 3b:43:31:54:11:6a:a8:3c:02:0c:8f:1b:9c:8b:74:7a:85:7c: d4:96:f4:90:88:46:55:9b:9e:ea:0e:f3:6d:0f:ba:92:36:f2: ff:6a:7a:12:b3:54:c3:fa:f9:2d:b0:75:bb:85:73:ee:07:57: 30:8b:8e:de:02:fb:17:27:f2:6e:bd:45:b2:3f:0c:9c:bb:7b: d1:eb:cd:27:fa:db:23:05:84:30:b7:d1:15:e2:49:cf:29:55: 3a:18:47:0c:a6:b0:37:8f:24:7d:33:b9:eb:03:14:eb:87:f9: 4f:3b:54:09:51:1f:11:05:95:7c:00:4e:8d:81:7b:68:1d:2f: 59:33:1a:f7:d5:4e:22:bd:b8:2b:fd:4f:3b:7b:55:ca:56:c1: 4a:3b:35:f4:36:8a:88:c0:08:b7:19:9a:a9:fc:f1:8f:83:16: 59:4a:81:47:5d:f8:7f:69:a8:20:d6:6c:72:a0:a9:b7:b3:27: 1c:af:90:2a:b4:f6:83:25:2c:ae:47:84:9a:2f:a9:83:70:77: be:a6:b8:6d:53:6d:c5:ce:27:55:56:46:e5:32:21:4f:fa:57: 0b:73:64:8d:2f:9c:27:f2:a2:8f:dd:6b:b0:f7:73:28:a9:64: b9:d5:91:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZt6WuYFVrQHidn5gGkubaxVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4YjNkNThkOTkzZjk2MDg0MGY3ZWYyZmUyMGMwMDhhZGM5 NzFmOTcwHhcNMjYwMTAxMTYxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNGNhM2I0YzliZTQzZTk2MmQ4MzMyYzQ5MGEyMWQxYWJlZTQ0NjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqZk9+3KGIWZj/QQ2dukGwnI2KoGm RrAvdBVJAw8QoNW9Az01BmmbyqM2UVPQ2YKmjPcaEQ3k8EsTgTbkl8jCiBW6tQWT DdarFF+MxzB0AaXGsOEK2PBLHZq/OTLGrkeOAPbJdFfbe4PTJCkQhOaKXJfeeS6w zeilDokcC133x9t7Zcv1fJSt0GeZJreiTEjVHeDpLHJq00bg+3wv2l5EC8njntDF XhYh6WCrVH/FQerrpq9RCvR4IQdmquM9htVnzGdsfNn4e0Zfr0jwEit4/+jz39Cz jAKRZ3RieaK5o6YCivN6YaqC1TB0rk6MAq3k3S9oAGDQsjZlGp5/fox2xQIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFBTKO0yb5D6WLYMyxJCiHRq+5EaeMB8GA1UdIwQY MBaAFPiz1Y2ZP5YIQPfvL+IMAIrclx+XMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1MUFZqWmtfbGdoQTktOHY0Z3dBaXR5WEg1Yy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIvOGI1OGU5LTMyMzAtNDQxOC04ZjY4 LTgxMjI0ZTQ4MGMwMy8xL0ZNbzdUSnZrUHBZdGd6TEVrS0lkR3I3a1JwNC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYTIvOGI1OGU5LTMyMzAtNDQxOC04ZjY4LTgxMjI0ZTQ4MGMw My8xLzEtTFBWalprX2xnaEE5LTh2NGd3QWl0eVhINWMuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwUgYIKwYBBQUHAQcBAf8EQzBBMDAEAgABMCoDBAOwShAD BAK5VmwDBAK5sPgDBADBF+ADBAHBIbIDBADCbvMDBADDqq0wDQQCAAIwBwMFAyoA uYAwDQYJKoZIhvcNAQELBQADggEBAJ6CCYCkcw1x7UAOozATLmNIVztDMVQRaqg8 AgyPG5yLdHqFfNSW9JCIRlWbnuoO820PupI28v9qehKzVMP6+S2wdbuFc+4HVzCL jt4C+xcn8m69RbI/DJy7e9HrzSf62yMFhDC30RXiSc8pVToYRwymsDePJH0zuesD FOuH+U87VAlRHxEFlXwATo2Be2gdL1kzGvfVTiK9uCv9Tzt7VcpWwUo7NfQ2iojA CLcZmqn88Y+DFllKgUdd+H9pqCDWbHKgqbezJxyvkCq09oMlLK5HhJovqYNwd76m uG1TbcXOJ1VWRuUyIU/6VwtzZI0vnCfyoo/da7D3cyipZLnVkY4= -----END CERTIFICATE-----Generated at Wed Feb 4 06:57:41 2026 by rpki-client