This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/FGksGgzRp3dqx5JNslhPDHOeSF8.roa File: FGksGgzRp3dqx5JNslhPDHOeSF8.roa (raw, json) Hash identifier: Ae+SgijVIMWeitkLixTQZhBAwcIx6R8bn51UQHedapk= Subject key identifier: 14:69:2C:1A:0C:D1:A7:77:6A:C7:92:4D:B2:58:4F:0C:73:9E:48:5F Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29 Certificate serial: 019B7F8322844502B341EFB4A8A6B4D2BC1E Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/FGksGgzRp3dqx5JNslhPDHOeSF8.roa Signing time: Fri 02 Jan 2026 16:20:59 +0000 ROA not before: Fri 02 Jan 2026 16:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41446 IP address blocks: 192.166.12.0/22 maxlen: 22 2001:67c:2108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:22:84:45:02:b3:41:ef:b4:a8:a6:b4:d2:bc:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29 Validity Not Before: Jan 2 16:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=14692c1a0cd1a7776ac7924db2584f0c739e485f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:65:94:7d:b8:90:7b:60:83:86:87:5d:56: 2c:de:03:1a:03:f4:21:f8:d0:0b:c3:c1:34:ba:72: a2:16:bb:cb:20:0b:e5:59:12:af:98:09:54:e1:32: c4:78:77:da:2c:34:9c:77:2c:55:e7:ce:2c:13:5c: 93:6d:ac:e9:73:73:69:59:c5:05:81:16:c2:51:6e: f7:3e:79:60:8e:41:b5:53:62:ac:26:67:20:d6:c1: 42:35:f3:c1:00:32:5d:d6:fe:55:80:b5:ed:98:53: 56:d4:9d:c7:64:c4:86:0e:fa:88:84:b2:80:30:81: 01:37:38:0e:82:34:97:79:f8:9d:33:12:5c:d9:bc: f1:81:66:41:3a:a4:40:22:17:f8:a7:c0:e2:33:17: ae:87:e7:f3:7d:ce:e0:2b:f1:f5:f5:1c:08:b8:c9: bb:16:bd:4c:8d:26:49:ab:a4:7e:9a:6b:3d:dc:54: 0b:44:dd:ef:b8:71:6e:bc:4d:d0:f4:02:2b:50:31: 93:73:03:e1:8d:70:f8:ab:9e:14:99:2a:eb:43:52: cb:4a:f5:1f:52:cc:6f:59:e1:0e:89:b9:76:6d:b8: 32:72:d8:a7:b2:be:42:f5:11:97:7c:f5:06:11:b4: 70:93:96:1c:3a:15:3a:a3:51:97:3a:5f:e6:55:4e: f1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:69:2C:1A:0C:D1:A7:77:6A:C7:92:4D:B2:58:4F:0C:73:9E:48:5F X509v3 Authority Key Identifier: keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/FGksGgzRp3dqx5JNslhPDHOeSF8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.166.12.0/22 IPv6: 2001:67c:2108::/48 Signature Algorithm: sha256WithRSAEncryption 07:85:60:b0:68:a3:7c:c8:bc:8a:22:bf:98:c2:62:8d:b9:d5: df:c3:98:fd:e3:68:fa:63:60:83:6e:a0:1c:05:bf:c6:42:08: 13:62:cd:94:dd:a6:b4:40:0c:fc:1b:ea:50:66:0f:a0:9d:58: 6d:21:85:71:90:73:d8:5a:26:24:25:3a:4b:16:2d:ef:00:2b: b9:0d:38:eb:24:83:36:17:0c:d8:44:f3:80:32:ad:1b:da:30: a6:3b:25:bc:8a:c9:5f:84:c7:2b:0c:ea:ff:31:5c:b4:bd:38: 7a:de:52:82:e7:d0:c9:51:3e:6f:33:26:30:c1:b5:7a:48:73: 09:00:02:53:44:dc:d1:b7:d4:df:11:b3:d4:e9:23:2d:fd:1d: 10:19:2c:54:7e:61:9e:20:70:af:2a:ae:7d:c7:13:72:f1:d3: 4f:9d:81:64:92:02:99:78:99:de:18:f8:e9:52:1c:47:8c:4d: d1:3a:21:99:40:f9:bb:f8:aa:6f:14:e1:41:1e:f9:c7:9d:48: ec:19:96:91:21:21:12:fd:17:6b:9e:fe:3a:9a:96:a4:d9:6f: d6:fb:07:55:07:f6:c3:49:b5:c5:cc:67:7f:77:17:6e:2d:05: 2e:24:60:a9:dc:c1:67:84:58:a8:a0:8c:0d:e9:f1:58:15:85: 5e:6e:76:e8 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/gyKERQKzQe+0qKa00rweMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MGI0MGNlZDM2ZTMxZjkwNWUxYTZlOGUwM2M2MjFlOWZi ZmNiMjkwHhcNMjYwMTAyMTYyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDY5MmMxYTBjZDFhNzc3NmFjNzkyNGRiMjU4NGYwYzczOWU0ODVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv09llH24kHtgg4aHXVYs3gMaA/Qh +NALw8E0unKiFrvLIAvlWRKvmAlU4TLEeHfaLDScdyxV584sE1yTbazpc3NpWcUF gRbCUW73PnlgjkG1U2KsJmcg1sFCNfPBADJd1v5VgLXtmFNW1J3HZMSGDvqIhLKA MIEBNzgOgjSXefidMxJc2bzxgWZBOqRAIhf4p8DiMxeuh+fzfc7gK/H19RwIuMm7 Fr1MjSZJq6R+mms93FQLRN3vuHFuvE3Q9AIrUDGTcwPhjXD4q54UmSrrQ1LLSvUf UsxvWeEOibl2bbgyctinsr5C9RGXfPUGEbRwk5YcOhU6o1GXOl/mVU7x0QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFBRpLBoM0ad3aseSTbJYTwxznkhfMB8GA1UdIwQY MBaAFDULQM7TbjH5BeGm6OA8Yh6fv8spMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yMjFmY2QtNjFlNS00YjQ1LWEzNTkt NzJmNmNhNzU3YTA4LzEvRkdrc0dnelJwM2RxeDVKTnNsaFBESE9lU0Y4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yMjFmY2QtNjFlNS00YjQ1LWEzNTktNzJmNmNhNzU3YTA4 LzEvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCwKYMMA8E AgACMAkDBwAgAQZ8IQgwDQYJKoZIhvcNAQELBQADggEBAAeFYLBoo3zIvIoiv5jC Yo251d/DmP3jaPpjYINuoBwFv8ZCCBNizZTdprRADPwb6lBmD6CdWG0hhXGQc9ha JiQlOksWLe8AK7kNOOskgzYXDNhE84AyrRvaMKY7JbyKyV+ExysM6v8xXLS9OHre UoLn0MlRPm8zJjDBtXpIcwkAAlNE3NG31N8Rs9TpIy39HRAZLFR+YZ4gcK8qrn3H E3Lx00+dgWSSApl4md4Y+OlSHEeMTdE6IZlA+bv4qm8U4UEe+cedSOwZlpEhIRL9 F2ue/jqalqTZb9b7B1UH9sNJtcXMZ393F24tBS4kYKncwWeEWKigjA3p8VgVhV5u dug= -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:20 2026 by rpki-client