This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/c5a530-130b-4a62-9820-6310bf63051f/1/fGpklCDH_wyaIOJ-mpwmbhVEyVM.roa File: fGpklCDH_wyaIOJ-mpwmbhVEyVM.roa (raw, json) Hash identifier: 55kvoIa9qkI1hdvmgneIAy4TGhe1IxvQIHXZfjKMKEM= Subject key identifier: 7C:6A:64:94:20:C7:FF:0C:9A:20:E2:7E:9A:9C:26:6E:15:44:C9:53 Certificate issuer: /CN=0de2720c57db027610c821c84047b110bc36ddc3 Certificate serial: 019B7C7F269ACA6C12A403EA8E3AA3F4D53D Authority key identifier: 0D:E2:72:0C:57:DB:02:76:10:C8:21:C8:40:47:B1:10:BC:36:DD:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DeJyDFfbAnYQyCHIQEexELw23cM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/c5a530-130b-4a62-9820-6310bf63051f/1/fGpklCDH_wyaIOJ-mpwmbhVEyVM.roa Signing time: Fri 02 Jan 2026 02:17:46 +0000 ROA not before: Fri 02 Jan 2026 02:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202829 IP address blocks: 185.152.188.0/22 maxlen: 24 194.11.16.0/24 maxlen: 24 194.11.19.0/24 maxlen: 24 194.11.25.0/24 maxlen: 24 194.11.83.0/24 maxlen: 24 2a07:80c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/c5a530-130b-4a62-9820-6310bf63051f/1/DeJyDFfbAnYQyCHIQEexELw23cM.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/c5a530-130b-4a62-9820-6310bf63051f/1/DeJyDFfbAnYQyCHIQEexELw23cM.mft rsync://rpki.ripe.net/repository/DEFAULT/DeJyDFfbAnYQyCHIQEexELw23cM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:26:9a:ca:6c:12:a4:03:ea:8e:3a:a3:f4:d5:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0de2720c57db027610c821c84047b110bc36ddc3 Validity Not Before: Jan 2 02:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c6a649420c7ff0c9a20e27e9a9c266e1544c953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fa:ce:51:ef:4f:3d:ba:ef:7b:08:7d:a1:ac: 84:f4:2b:a7:dd:f0:3a:a3:ec:c7:6f:2b:71:58:a4: 36:c8:20:ed:bd:52:fc:0a:62:b1:dc:02:8f:fb:6a: d5:fc:d2:e5:20:af:f4:f2:c4:3b:be:8c:e1:92:34: 98:7d:f2:7d:a9:cb:24:e6:9d:17:58:11:9d:9b:24: f2:b3:f8:2a:95:24:45:bc:2c:fc:18:7e:51:86:60: d7:3b:66:f9:d1:8f:32:1f:37:ba:e9:fd:b1:8a:b1: 7d:a7:36:90:b8:7d:62:8b:cf:14:2f:32:91:70:a6: 80:c2:05:9f:cf:34:0b:aa:e6:44:76:cb:7e:9e:ec: ff:b7:df:6f:bf:1e:03:6b:3d:9c:36:0d:44:c9:84: ab:92:7e:14:0b:38:5d:be:da:a8:dd:bb:8f:31:1a: c2:51:7a:10:cb:c0:42:a9:65:14:3c:97:f8:1f:25: 95:24:8c:87:ec:ed:8d:df:6e:53:35:f5:d3:a6:76: 01:26:13:ec:ff:c5:78:4c:f3:41:f0:45:4a:b4:95: 96:1f:22:11:f5:d3:66:40:9b:8f:d3:ba:af:8a:34: b8:7a:e3:10:c8:0e:5f:b7:71:94:e1:34:8b:14:cb: 2f:dc:41:ef:37:e8:c9:da:ed:1c:46:cd:e3:89:fb: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6A:64:94:20:C7:FF:0C:9A:20:E2:7E:9A:9C:26:6E:15:44:C9:53 X509v3 Authority Key Identifier: keyid:0D:E2:72:0C:57:DB:02:76:10:C8:21:C8:40:47:B1:10:BC:36:DD:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DeJyDFfbAnYQyCHIQEexELw23cM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/c5a530-130b-4a62-9820-6310bf63051f/1/fGpklCDH_wyaIOJ-mpwmbhVEyVM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/c5a530-130b-4a62-9820-6310bf63051f/1/DeJyDFfbAnYQyCHIQEexELw23cM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.152.188.0/22 194.11.16.0/24 194.11.19.0/24 194.11.25.0/24 194.11.83.0/24 IPv6: 2a07:80c0::/29 Signature Algorithm: sha256WithRSAEncryption 11:7c:65:f2:bd:d7:ad:d6:32:06:26:0c:99:e9:86:84:4a:51: f0:7e:37:ac:d2:87:1e:df:f6:3a:3c:c2:77:e9:59:17:6b:1c: af:0b:a1:87:bf:c7:3f:eb:c4:83:d0:0e:55:ba:93:22:e6:b5: c8:c0:bd:ee:64:9e:5b:1c:b5:c1:03:d4:89:bc:e6:3b:0e:b2: 9e:b8:fe:57:83:61:cc:e6:63:66:bc:0f:bc:85:db:e8:cd:d3: 50:62:ee:b2:bf:3b:14:13:32:3a:22:9c:8f:dd:07:dc:87:e9: 08:82:43:47:e7:5e:89:11:d4:13:dc:cd:26:be:3f:57:2b:ac: 7a:52:c3:e3:a6:a3:53:09:28:af:d8:2c:70:27:0c:7a:09:2a: 3b:40:a4:81:3c:2b:b8:75:ee:4c:09:81:70:94:ba:cc:34:89: 8d:80:f7:d5:fb:3a:27:89:4c:3a:c9:0c:79:e7:fd:7c:49:51: 78:52:47:9e:03:fa:6d:fa:6e:82:a1:e6:b8:a3:10:b8:be:a4: 39:39:f9:30:c7:bc:f6:ce:a3:17:9b:86:5b:a6:6b:78:7f:73: 13:b6:dd:65:9a:db:83:ba:3a:45:8d:41:42:88:bc:b7:b8:d2: 32:f9:ac:e5:c9:ce:6e:d8:d6:df:f3:61:aa:2c:31:77:03:f1: ee:ab:ef:4d -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt8fyaaymwSpAPqjjqj9NU9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkZTI3MjBjNTdkYjAyNzYxMGM4MjFjODQwNDdiMTEwYmMz NmRkYzMwHhcNMjYwMTAyMDIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YzZhNjQ5NDIwYzdmZjBjOWEyMGUyN2U5YTljMjY2ZTE1NDRjOTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofrOUe9PPbrvewh9oayE9Cun3fA6 o+zHbytxWKQ2yCDtvVL8CmKx3AKP+2rV/NLlIK/08sQ7vozhkjSYffJ9qcsk5p0X WBGdmyTys/gqlSRFvCz8GH5RhmDXO2b50Y8yHze66f2xirF9pzaQuH1ii88ULzKR cKaAwgWfzzQLquZEdst+nuz/t99vvx4Daz2cNg1EyYSrkn4UCzhdvtqo3buPMRrC UXoQy8BCqWUUPJf4HyWVJIyH7O2N325TNfXTpnYBJhPs/8V4TPNB8EVKtJWWHyIR 9dNmQJuP07qvijS4euMQyA5ft3GU4TSLFMsv3EHvN+jJ2u0cRs3jifv09wIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFHxqZJQgx/8MmiDifpqcJm4VRMlTMB8GA1UdIwQY MBaAFA3icgxX2wJ2EMghyEBHsRC8Nt3DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGVKeURGZmJBbllReUNISVFFZXhFTHcyM2NNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9jNWE1MzAtMTMwYi00YTYyLTk4MjAt NjMxMGJmNjMwNTFmLzEvZkdwa2xDREhfd3lhSU9KLW1wd21iaFZFeVZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9jNWE1MzAtMTMwYi00YTYyLTk4MjAtNjMxMGJmNjMwNTFm LzEvRGVKeURGZmJBbllReUNISVFFZXhFTHcyM2NNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCuZi8AwQA wgsQAwQAwgsTAwQAwgsZAwQAwgtTMA0EAgACMAcDBQMqB4DAMA0GCSqGSIb3DQEB CwUAA4IBAQARfGXyvdet1jIGJgyZ6YaESlHwfjes0oce3/Y6PMJ36VkXaxyvC6GH v8c/68SD0A5VupMi5rXIwL3uZJ5bHLXBA9SJvOY7DrKeuP5Xg2HM5mNmvA+8hdvo zdNQYu6yvzsUEzI6IpyP3Qfch+kIgkNH516JEdQT3M0mvj9XK6x6UsPjpqNTCSiv 2CxwJwx6CSo7QKSBPCu4de5MCYFwlLrMNImNgPfV+zoniUw6yQx55/18SVF4Ukee A/pt+m6Coea4oxC4vqQ5Ofkwx7z2zqMXm4Zbpmt4f3MTtt1lmtuDujpFjUFCiLy3 uNIy+azlyc5u2Nbf82GqLDF3A/Huq+9N -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:22 2026 by rpki-client