This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/b8d29c-3333-493c-9739-df56ec670de7/1/p-AfH-TKOfnhGj7blmBf1Eou-vY.roa File: p-AfH-TKOfnhGj7blmBf1Eou-vY.roa (raw, json) Hash identifier: zP2xRRGKuJXHvcRgKn99qh8Cqni6s2W90yR9ji222a8= Subject key identifier: A7:E0:1F:1F:E4:CA:39:F9:E1:1A:3E:DB:96:60:5F:D4:4A:2E:FA:F6 Certificate issuer: /CN=fcbe62378bb580af4ed70bfa35abc840945d7803 Certificate serial: 019B7C11C4678A498D3606DF20A36EC7E761 Authority key identifier: FC:BE:62:37:8B:B5:80:AF:4E:D7:0B:FA:35:AB:C8:40:94:5D:78:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_L5iN4u1gK9O1wv6NavIQJRdeAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/b8d29c-3333-493c-9739-df56ec670de7/1/p-AfH-TKOfnhGj7blmBf1Eou-vY.roa Signing time: Fri 02 Jan 2026 00:18:17 +0000 ROA not before: Fri 02 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206084 IP address blocks: 194.15.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/b8d29c-3333-493c-9739-df56ec670de7/1/_L5iN4u1gK9O1wv6NavIQJRdeAM.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/b8d29c-3333-493c-9739-df56ec670de7/1/_L5iN4u1gK9O1wv6NavIQJRdeAM.mft rsync://rpki.ripe.net/repository/DEFAULT/_L5iN4u1gK9O1wv6NavIQJRdeAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:c4:67:8a:49:8d:36:06:df:20:a3:6e:c7:e7:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fcbe62378bb580af4ed70bfa35abc840945d7803 Validity Not Before: Jan 2 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7e01f1fe4ca39f9e11a3edb96605fd44a2efaf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:ea:cc:5a:94:ae:8b:18:fe:39:f5:47:d1:1f: bd:d3:e8:c8:1e:95:91:b9:4d:2d:e9:09:b7:83:f6: 51:10:28:c9:81:b3:e8:96:c1:c2:aa:5f:c5:79:15: a7:2f:59:e7:ca:a4:55:70:3b:0c:bf:3b:83:3f:03: 9a:8c:3e:01:07:8e:b9:16:7e:57:ed:a3:47:59:c8: 40:4b:ff:7b:10:19:ff:9a:67:4a:cd:31:20:3a:c9: 41:90:7b:fe:76:8d:df:01:08:51:2a:09:f8:b4:41: 17:e3:a5:4a:28:9d:94:15:66:85:5c:bc:3c:13:b5: 13:4b:e9:5a:d6:42:71:ef:3f:64:a4:99:91:13:c0: e2:c6:25:e2:2d:a0:05:0a:0d:4a:38:49:f0:83:bc: 90:7c:61:57:67:cf:49:5b:79:85:ab:0a:d0:35:ee: 5c:a4:00:54:4c:d0:f1:68:70:2f:bf:e8:7d:b4:38: 05:0b:b8:0f:23:0c:82:0f:f3:eb:22:a9:08:2b:e3: fa:fa:e2:d8:60:29:dc:da:e4:39:e0:22:e9:30:16: 0a:0e:30:d7:25:77:6b:82:d8:a2:d2:c5:4a:ca:8c: 02:ca:32:49:bb:06:1b:21:6b:55:41:8b:54:c6:25: 30:8a:ca:12:f7:02:3e:8d:0a:4d:14:55:21:1a:ab: 23:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E0:1F:1F:E4:CA:39:F9:E1:1A:3E:DB:96:60:5F:D4:4A:2E:FA:F6 X509v3 Authority Key Identifier: keyid:FC:BE:62:37:8B:B5:80:AF:4E:D7:0B:FA:35:AB:C8:40:94:5D:78:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_L5iN4u1gK9O1wv6NavIQJRdeAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/b8d29c-3333-493c-9739-df56ec670de7/1/p-AfH-TKOfnhGj7blmBf1Eou-vY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/b8d29c-3333-493c-9739-df56ec670de7/1/_L5iN4u1gK9O1wv6NavIQJRdeAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.15.251.0/24 Signature Algorithm: sha256WithRSAEncryption 70:e6:d6:ac:f4:c7:7d:f2:41:67:a8:50:dc:ce:43:bf:a2:5a: b0:31:cb:2d:55:fe:6a:2f:dc:4f:c0:fc:63:36:73:bd:f6:cc: a4:57:af:ca:46:82:01:e9:c7:6a:46:99:98:88:87:ea:e6:28: b7:ce:33:6a:05:58:56:76:fa:7a:92:0c:dc:eb:53:0e:8d:a8: 9f:c7:68:ef:12:62:81:59:91:49:be:27:db:ed:77:db:45:23: 07:f1:91:e8:b8:48:18:be:67:9c:1f:99:17:d2:ae:19:92:fe: f7:1a:49:33:3a:79:ce:d8:6f:ab:69:f7:38:c4:a2:e0:2e:1a: 0c:47:30:b0:fa:a8:55:ff:9a:d9:17:48:a8:b1:f7:2e:6b:fb: 69:92:c5:ad:8d:03:1e:d2:88:22:b4:90:b1:14:44:3f:ae:77: 33:e4:e6:ea:8d:38:a5:9c:e9:14:7e:cd:94:37:49:09:de:27: 56:39:c4:1e:81:3a:0f:cd:1b:49:a1:c2:57:45:b9:19:4a:47: 9d:c4:6e:01:64:14:86:28:d6:3a:39:c7:3f:d3:3b:89:67:a9: 5b:87:5b:42:a9:30:cb:df:9b:11:45:92:1b:72:72:ff:64:e6: f5:16:18:2d:bd:ba:4f:a8:d3:68:26:29:ce:1c:d2:f0:9b:dd: ea:76:ea:4e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EcRnikmNNgbfIKNux+dhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjYmU2MjM3OGJiNTgwYWY0ZWQ3MGJmYTM1YWJjODQwOTQ1 ZDc4MDMwHhcNMjYwMTAyMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2UwMWYxZmU0Y2EzOWY5ZTExYTNlZGI5NjYwNWZkNDRhMmVmYWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOrMWpSuixj+OfVH0R+90+jIHpWR uU0t6Qm3g/ZRECjJgbPolsHCql/FeRWnL1nnyqRVcDsMvzuDPwOajD4BB465Fn5X 7aNHWchAS/97EBn/mmdKzTEgOslBkHv+do3fAQhRKgn4tEEX46VKKJ2UFWaFXLw8 E7UTS+la1kJx7z9kpJmRE8DixiXiLaAFCg1KOEnwg7yQfGFXZ89JW3mFqwrQNe5c pABUTNDxaHAvv+h9tDgFC7gPIwyCD/PrIqkIK+P6+uLYYCnc2uQ54CLpMBYKDjDX JXdrgtii0sVKyowCyjJJuwYbIWtVQYtUxiUwisoS9wI+jQpNFFUhGqsjPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKfgHx/kyjn54Ro+25ZgX9RKLvr2MB8GA1UdIwQY MBaAFPy+YjeLtYCvTtcL+jWryECUXXgDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0w1aU40dTFnSzlPMXd2Nk5hdklRSlJkZUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9iOGQyOWMtMzMzMy00OTNjLTk3Mzkt ZGY1NmVjNjcwZGU3LzEvcC1BZkgtVEtPZm5oR2o3YmxtQmYxRW91LXZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9iOGQyOWMtMzMzMy00OTNjLTk3MzktZGY1NmVjNjcwZGU3 LzEvX0w1aU40dTFnSzlPMXd2Nk5hdklRSlJkZUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwg/7MA0G CSqGSIb3DQEBCwUAA4IBAQBw5tas9Md98kFnqFDczkO/olqwMcstVf5qL9xPwPxj NnO99sykV6/KRoIB6cdqRpmYiIfq5ii3zjNqBVhWdvp6kgzc61MOjaifx2jvEmKB WZFJvifb7XfbRSMH8ZHouEgYvmecH5kX0q4Zkv73GkkzOnnO2G+rafc4xKLgLhoM RzCw+qhV/5rZF0iosfcua/tpksWtjQMe0ogitJCxFEQ/rncz5ObqjTilnOkUfs2U N0kJ3idWOcQegToPzRtJocJXRbkZSkedxG4BZBSGKNY6Occ/0zuJZ6lbh1tCqTDL 35sRRZIbcnL/ZOb1FhgtvbpPqNNoJinOHNLwm93qdupO -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:52 2026 by rpki-client