This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FG1fhvp9NMjaDav-yfc6y_6HT9s.roa File: FG1fhvp9NMjaDav-yfc6y_6HT9s.roa (raw, json) Hash identifier: 4YMqYZQIEe5cJwxbXkMnChV9Tmr3FGD8HyKk24RgJ9M= Subject key identifier: 14:6D:5F:86:FA:7D:34:C8:DA:0D:AB:FE:C9:F7:3A:CB:FE:87:4F:DB Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1386A84DCF1A3C9AE98FD06587157B Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FG1fhvp9NMjaDav-yfc6y_6HT9s.roa Signing time: Fri 02 Jan 2026 00:20:13 +0000 ROA not before: Fri 02 Jan 2026 00:20:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202736 IP address blocks: 185.225.1.0/24 maxlen: 24 194.5.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:86:a8:4d:cf:1a:3c:9a:e9:8f:d0:65:87:15:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=146d5f86fa7d34c8da0dabfec9f73acbfe874fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ca:6f:e3:d1:47:d1:01:c9:56:ea:dd:35:06: 58:c9:42:96:5b:b6:bc:ab:b6:7e:5b:66:f4:67:ea: c6:0b:1d:67:8b:eb:45:51:49:ca:55:7d:4d:6a:ae: 72:04:4c:44:e5:5e:08:24:aa:9f:f5:1e:4a:63:6d: 68:c9:ac:c2:af:04:e1:d6:5d:7e:d7:5e:41:98:5d: 37:f3:f1:58:66:d7:e5:61:cf:26:e5:f8:88:e6:13: c0:29:52:2f:ee:12:c1:14:da:79:86:1f:9b:d4:f6: ee:35:88:43:a7:25:f9:97:6e:40:91:ad:6e:05:79: d0:bd:2b:26:f7:08:ee:13:3c:03:c6:fa:1c:96:69: 28:bb:f1:ad:62:47:e0:7b:72:64:0b:25:3a:bc:10: 4a:2d:94:39:a6:b2:91:a8:a2:a8:55:20:89:d7:72: e1:65:29:40:00:9a:d5:45:33:1f:f0:61:f7:d7:26: 4f:d3:6e:be:d8:f6:7a:e5:a9:3d:f9:62:0a:73:cc: c4:d2:10:99:f0:8a:fa:2d:b8:ac:e4:9b:58:d5:8f: 32:08:7f:af:f8:11:b8:b5:b1:53:79:94:ed:16:63: 5f:86:56:6e:fb:b5:3e:25:96:b8:c1:1a:20:58:de: 8c:48:cf:ed:8d:58:93:31:ec:ef:1d:7f:19:33:a1: b8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:6D:5F:86:FA:7D:34:C8:DA:0D:AB:FE:C9:F7:3A:CB:FE:87:4F:DB X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FG1fhvp9NMjaDav-yfc6y_6HT9s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.225.1.0/24 194.5.64.0/24 Signature Algorithm: sha256WithRSAEncryption 18:91:fe:dc:95:54:9a:28:6c:1c:1a:6e:87:c7:53:21:2f:8b: 30:49:e3:1d:0b:73:33:8c:62:be:2d:e7:75:34:f8:1f:10:bc: c7:8e:98:94:bf:60:9f:be:2a:62:e2:a3:8c:a1:3f:4d:ba:57: 14:e9:39:81:74:27:81:bb:a7:a8:e8:08:d4:0a:f5:35:30:17: 45:8e:8f:ac:d8:1b:ed:fd:a5:53:13:6d:41:e9:03:11:26:99: 6b:90:f5:4f:22:37:e8:95:0c:2e:19:8f:34:df:16:0c:06:be: 48:84:a4:fe:3e:f2:9b:ae:5c:77:0d:c9:6b:03:9e:48:c3:bd: ed:5c:2e:f1:a2:8b:15:e2:77:7e:b4:e9:98:d9:9a:01:fd:23: 44:b7:f0:78:47:fd:48:95:cf:61:b7:75:a8:b9:f1:06:fb:b7: 02:a3:15:07:ab:d4:d4:0e:a0:af:19:de:6c:77:9d:e0:7d:03: 99:7f:5a:bb:cd:0b:1a:f2:00:54:08:fd:89:ea:7a:e9:bf:b6: 53:97:60:b3:bb:bf:d3:03:d2:89:f2:16:52:4d:ad:0f:68:34: 04:5e:03:2c:bf:45:ea:dd:7d:39:88:4f:16:eb:ee:c3:25:f3: 3b:de:df:13:c2:2e:16:8b:85:ba:90:eb:03:4f:52:80:94:82: 62:eb:8d:8b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8E4aoTc8aPJrpj9BlhxV7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDZkNWY4NmZhN2QzNGM4ZGEwZGFiZmVjOWY3M2FjYmZlODc0ZmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08pv49FH0QHJVurdNQZYyUKWW7a8 q7Z+W2b0Z+rGCx1ni+tFUUnKVX1Naq5yBExE5V4IJKqf9R5KY21oyazCrwTh1l1+ 115BmF038/FYZtflYc8m5fiI5hPAKVIv7hLBFNp5hh+b1PbuNYhDpyX5l25Aka1u BXnQvSsm9wjuEzwDxvoclmkou/GtYkfge3JkCyU6vBBKLZQ5prKRqKKoVSCJ13Lh ZSlAAJrVRTMf8GH31yZP026+2PZ65ak9+WIKc8zE0hCZ8Ir6Lbis5JtY1Y8yCH+v +BG4tbFTeZTtFmNfhlZu+7U+JZa4wRogWN6MSM/tjViTMezvHX8ZM6G4WwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBRtX4b6fTTI2g2r/sn3Osv+h0/bMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvRkcxZmh2cDlOTWphRGF2LXlmYzZ5XzZIVDlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueEBAwQA wgVAMA0GCSqGSIb3DQEBCwUAA4IBAQAYkf7clVSaKGwcGm6Hx1MhL4swSeMdC3Mz jGK+Led1NPgfELzHjpiUv2Cfvipi4qOMoT9NulcU6TmBdCeBu6eo6AjUCvU1MBdF jo+s2Bvt/aVTE21B6QMRJplrkPVPIjfolQwuGY803xYMBr5IhKT+PvKbrlx3Dclr A55Iw73tXC7xoosV4nd+tOmY2ZoB/SNEt/B4R/1Ilc9ht3WoufEG+7cCoxUHq9TU DqCvGd5sd53gfQOZf1q7zQsa8gBUCP2J6nrpv7ZTl2Czu7/TA9KJ8hZSTa0PaDQE XgMsv0Xq3X05iE8W6+7DJfM73t8Twi4Wi4W6kOsDT1KAlIJi642L -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:28 2026 by rpki-client