This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/FYrbP-biAkhXruhifr7O1McOPZQ.roa File: FYrbP-biAkhXruhifr7O1McOPZQ.roa (raw, json) Hash identifier: AUoP4IVKHs2BTsO3edboDlY2BE9t/NvsoIynqQS/l20= Subject key identifier: 15:8A:DB:3F:E6:E2:02:48:57:AE:E8:62:7E:BE:CE:D4:C7:0E:3D:94 Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1 Certificate serial: 019B7AC810B29039DC666F27FE753024E9C3 Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/FYrbP-biAkhXruhifr7O1McOPZQ.roa Signing time: Thu 01 Jan 2026 18:18:10 +0000 ROA not before: Thu 01 Jan 2026 18:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 178.236.224.0/23 maxlen: 24 178.236.226.0/24 maxlen: 24 178.236.227.0/24 maxlen: 24 178.236.235.0/24 maxlen: 24 178.236.236.0/24 maxlen: 24 178.236.238.0/23 maxlen: 24 185.2.49.0/24 maxlen: 24 185.2.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.mft rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:10:b2:90:39:dc:66:6f:27:fe:75:30:24:e9:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1 Validity Not Before: Jan 1 18:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=158adb3fe6e2024857aee8627ebeced4c70e3d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4a:3f:97:34:29:30:d7:e5:c4:6a:61:3c:76: 97:05:ab:15:cc:ec:ce:9a:4f:d7:c0:55:e5:b9:9c: d4:63:32:ae:d0:55:29:24:ef:d4:c2:9b:22:40:0d: 7b:04:7d:4e:82:b7:3b:4f:0f:6c:3c:fe:9a:fa:4e: bc:ad:cd:19:e9:6d:8e:93:74:78:b0:e5:9f:93:75: ba:94:ec:1d:b0:4e:07:28:17:da:0c:ed:5d:57:b6: e7:74:e5:fe:3d:cd:12:ee:23:41:5d:03:4a:2f:0b: 33:5c:18:9d:5a:4b:8f:ef:9d:b3:f4:ca:fa:18:a9: 54:2a:81:cb:46:c1:a9:2b:08:72:0a:b2:9c:01:66: 10:ef:c9:d7:2b:90:5b:42:2d:7b:43:aa:d5:24:5d: 1e:6a:64:0a:84:95:55:60:c3:29:bb:f2:ec:5a:25: 31:3a:c5:44:e3:2b:72:48:df:1d:4e:46:cf:6c:2b: 1b:3e:f8:90:14:bd:b9:37:74:5f:8c:02:42:88:58: 46:6c:5a:20:ce:60:bd:0e:ae:cc:3e:cb:3a:b3:9d: 37:b3:84:9c:06:af:2e:60:32:39:56:87:a0:aa:ed: 7d:9d:e3:8a:4e:96:dc:4b:c7:e4:6a:b2:e0:99:44: ce:40:16:11:f3:06:66:19:b3:69:66:89:5e:26:7f: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8A:DB:3F:E6:E2:02:48:57:AE:E8:62:7E:BE:CE:D4:C7:0E:3D:94 X509v3 Authority Key Identifier: keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/FYrbP-biAkhXruhifr7O1McOPZQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.236.224.0/22 178.236.235.0-178.236.236.255 178.236.238.0/23 185.2.49.0-185.2.51.255 Signature Algorithm: sha256WithRSAEncryption 1b:12:2b:7c:71:dc:81:4a:26:35:f8:ee:e9:89:c0:16:7e:1b: 21:f8:ee:f2:38:5c:2e:2f:b9:e7:31:62:65:91:43:ba:45:bf: b0:36:94:b1:c5:20:9d:cf:8e:92:67:21:02:32:91:67:dd:31: 7a:35:44:5d:ea:5f:28:47:59:0e:a3:7b:8f:6b:95:00:19:2f: a0:60:6c:2c:24:c6:93:e1:a9:00:53:dc:4c:0b:3a:58:97:37: 3d:cb:c8:7f:e4:ba:ac:d8:32:db:d4:27:12:f8:7e:3b:89:e1: 9a:69:a7:c3:d4:f6:f4:34:fa:18:52:fc:5f:19:8f:ee:e4:84: d0:96:86:eb:7f:f3:84:b5:d5:50:d4:13:0a:8d:bd:b0:b1:91: 9f:ce:cf:c4:29:5b:28:e8:c6:13:95:46:1c:56:f8:bc:ed:41: 67:78:b4:0b:a2:b9:13:b8:96:1e:e8:01:4b:11:1b:96:55:62: 56:a4:0e:49:b2:ef:d1:2a:2f:ba:70:d8:e7:64:6d:66:2b:4e: a2:30:af:ba:67:30:f6:41:55:d4:19:eb:93:af:97:a2:85:ce: d0:2d:f0:74:79:fb:e7:76:22:49:6d:d4:2c:c3:6d:2f:ae:b1: 2f:6c:fb:33:a4:bd:07:04:9a:bd:01:b8:ad:8f:93:2c:2a:d3: c1:cf:d9:c7 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt6yBCykDncZm8n/nUwJOnDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3OTRhZmRiNWU2YTE4ODU3ODA5MjBhNTRmZmE4MjQwOGVh ODViYTEwHhcNMjYwMTAxMTgxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNThhZGIzZmU2ZTIwMjQ4NTdhZWU4NjI3ZWJlY2VkNGM3MGUzZDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvko/lzQpMNflxGphPHaXBasVzOzO mk/XwFXluZzUYzKu0FUpJO/UwpsiQA17BH1Ogrc7Tw9sPP6a+k68rc0Z6W2Ok3R4 sOWfk3W6lOwdsE4HKBfaDO1dV7bndOX+Pc0S7iNBXQNKLwszXBidWkuP752z9Mr6 GKlUKoHLRsGpKwhyCrKcAWYQ78nXK5BbQi17Q6rVJF0eamQKhJVVYMMpu/LsWiUx OsVE4ytySN8dTkbPbCsbPviQFL25N3RfjAJCiFhGbFogzmC9Dq7MPss6s503s4Sc Bq8uYDI5Voegqu19neOKTpbcS8fkarLgmUTOQBYR8wZmGbNpZoleJn/y3wIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFBWK2z/m4gJIV67oYn6+ztTHDj2UMB8GA1UdIwQY MBaAFFeUr9teahiFeAkgpU/6gkCOqFuhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQt NDdkODJhNDFhOGYzLzEvRllyYlAtYmlBa2hYcnVoaWZyN08xTWNPUFpRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQtNDdkODJhNDFhOGYz LzEvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQCsuzgMAwD BACy7OsDBACy7OwDBAGy7O4wDAMEALkCMQMEArkCMDANBgkqhkiG9w0BAQsFAAOC AQEAGxIrfHHcgUomNfju6YnAFn4bIfju8jhcLi+55zFiZZFDukW/sDaUscUgnc+O kmchAjKRZ90xejVEXepfKEdZDqN7j2uVABkvoGBsLCTGk+GpAFPcTAs6WJc3PcvI f+S6rNgy29QnEvh+O4nhmmmnw9T29DT6GFL8XxmP7uSE0JaG63/zhLXVUNQTCo29 sLGRn87PxClbKOjGE5VGHFb4vO1BZ3i0C6K5E7iWHugBSxEbllViVqQOSbLv0Sov unDY52RtZitOojCvumcw9kFV1Bnrk6+XooXO0C3wdHn753YiSW3ULMNtL66xL2z7 M6S9BwSavQG4rY+TLCrTwc/Zxw== -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:16 2026 by rpki-client