This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/FsVFJYO1evTaMiV2u4HcgttdYQ0.roa File: FsVFJYO1evTaMiV2u4HcgttdYQ0.roa (raw, json) Hash identifier: Q4C8zb+GeEUY9HeZrqKMaBkZLRk/aflBfwGItd6CJCY= Subject key identifier: 16:C5:45:25:83:B5:7A:F4:DA:32:25:76:BB:81:DC:82:DB:5D:61:0D Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Certificate serial: 019B76EB32AF82BEBCC4E86445F72078108D Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/FsVFJYO1evTaMiV2u4HcgttdYQ0.roa Signing time: Thu 01 Jan 2026 00:18:04 +0000 ROA not before: Thu 01 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43489 IP address blocks: 31.177.70.0/24 maxlen: 24 89.104.72.0/24 maxlen: 24 89.104.73.0/24 maxlen: 24 89.104.75.0/24 maxlen: 24 89.104.93.0/24 maxlen: 24 89.104.95.0/24 maxlen: 24 89.111.135.0/24 maxlen: 24 2a01:d8:8::/48 maxlen: 48 2a02:2090:6800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.mft rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 15:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:32:af:82:be:bc:c4:e8:64:45:f7:20:78:10:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=16c5452583b57af4da322576bb81dc82db5d610d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3b:ff:f0:b0:e2:6d:19:8a:6f:0c:39:0a:10: d9:43:e2:8e:ae:a1:85:6e:37:24:00:44:b1:21:e3: 67:1a:c2:69:41:0f:1f:39:b4:dc:94:cf:cc:be:af: 82:f7:b8:ec:0d:28:eb:bf:1c:12:21:9d:9b:ce:8d: 75:ff:bc:3d:c8:75:53:e4:2d:81:8e:36:f0:af:84: 57:93:60:da:f3:0c:b6:95:d2:24:2a:a8:1c:2c:d5: 56:48:fd:8c:b0:7e:6e:d7:b2:df:c2:a8:f4:3b:e6: 41:a6:75:b6:db:72:27:74:95:4b:c6:be:25:a2:7d: 63:d5:fe:64:d6:49:54:8e:9a:d7:8c:4f:8b:3a:98: 5f:87:4a:db:01:01:5f:f6:44:52:c0:bf:54:7a:01: 8b:be:be:a0:3e:65:53:f3:5a:13:0a:46:c4:13:dc: 4b:8f:ed:f4:b5:ae:5f:6b:b6:65:16:84:34:54:d6: ec:cf:f0:de:85:f0:fb:87:17:ee:b7:c3:fa:21:aa: a6:23:64:d2:d1:23:53:13:52:42:7f:9c:ae:8c:1c: 7a:e9:77:56:ca:56:7f:9c:1e:5e:cf:8c:99:e7:1f: 79:4b:68:d2:22:f1:eb:1d:4d:11:67:b5:aa:e2:96: 7e:8f:de:b4:a6:a0:9e:47:8e:72:e0:71:3b:c5:20: 9d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:C5:45:25:83:B5:7A:F4:DA:32:25:76:BB:81:DC:82:DB:5D:61:0D X509v3 Authority Key Identifier: keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/FsVFJYO1evTaMiV2u4HcgttdYQ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.177.70.0/24 89.104.72.0/23 89.104.75.0/24 89.104.93.0/24 89.104.95.0/24 89.111.135.0/24 IPv6: 2a01:d8:8::/48 2a02:2090:6800::/48 Signature Algorithm: sha256WithRSAEncryption 6e:83:17:99:38:6e:77:38:03:b6:df:dd:ac:59:fb:da:b2:87: ac:49:ba:0b:80:63:de:ba:c2:e1:cf:76:cc:38:79:c4:dd:a2: 80:95:5a:8a:39:f2:b2:a2:d5:c0:29:d1:a8:18:5b:09:22:bc: 85:2d:2f:62:8e:c7:30:39:b3:2e:15:66:b8:64:5f:c6:d8:74: 74:46:24:05:85:45:7b:56:c8:d4:6b:2a:94:36:e4:e5:8c:2d: c4:4c:bf:99:74:ca:5d:fc:11:11:ba:91:3d:20:5a:52:76:a9: fc:0c:48:56:db:57:eb:2e:6c:45:dd:b9:fa:84:5b:e4:80:ab: 6d:0f:b5:05:49:b0:aa:b0:2f:de:a2:c7:7f:c0:9f:28:79:9f: 65:a2:3b:b0:60:47:cb:cc:8d:03:51:82:49:e3:77:61:44:e4: d1:92:16:1f:45:4e:ac:f4:d9:70:3e:5f:b6:a0:d1:a8:26:f3: 9a:40:fe:bc:f4:a1:c7:09:3e:55:c0:e6:dc:c1:1b:2e:d8:51: 8c:ec:88:25:76:03:03:48:f1:6f:6a:ac:dd:c8:9f:02:f7:e8: 91:61:18:76:d5:2c:df:26:bd:69:9f:5d:fa:d9:65:66:92:8a: f8:62:fa:2d:2d:92:34:a4:6f:fc:ed:a7:4f:c6:d9:91:52:b4: 3c:f9:88:94 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt26zKvgr68xOhkRfcgeBCNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZmFkMjNlMTFjZjBkMjRhNDc3NTk0ZWJhMDlmOTlhY2M2 ZjFmZmYwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNmM1NDUyNTgzYjU3YWY0ZGEzMjI1NzZiYjgxZGM4MmRiNWQ2MTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzv/8LDibRmKbww5ChDZQ+KOrqGF bjckAESxIeNnGsJpQQ8fObTclM/Mvq+C97jsDSjrvxwSIZ2bzo11/7w9yHVT5C2B jjbwr4RXk2Da8wy2ldIkKqgcLNVWSP2MsH5u17Lfwqj0O+ZBpnW223IndJVLxr4l on1j1f5k1klUjprXjE+LOphfh0rbAQFf9kRSwL9UegGLvr6gPmVT81oTCkbEE9xL j+30ta5fa7ZlFoQ0VNbsz/DehfD7hxfut8P6IaqmI2TS0SNTE1JCf5yujBx66XdW ylZ/nB5ez4yZ5x95S2jSIvHrHU0RZ7Wq4pZ+j960pqCeR45y4HE7xSCdVQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBbFRSWDtXr02jIldruB3ILbXWENMB8GA1UdIwQY MBaAFL360j4Rzw0kpHdZTroJ+ZrMbx//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEt NGY0ZTcxZTMyMDg0LzEvRnNWRkpZTzFldlRhTWlWMnU0SGNndHRkWVEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEtNGY0ZTcxZTMyMDg0 LzEvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjAqBAIAATAkAwQAH7FGAwQB WWhIAwQAWWhLAwQAWWhdAwQAWWhfAwQAWW+HMBgEAgACMBIDBwAqAQDYAAgDBwAq AiCQaAAwDQYJKoZIhvcNAQELBQADggEBAG6DF5k4bnc4A7bf3axZ+9qyh6xJuguA Y966wuHPdsw4ecTdooCVWoo58rKi1cAp0agYWwkivIUtL2KOxzA5sy4VZrhkX8bY dHRGJAWFRXtWyNRrKpQ25OWMLcRMv5l0yl38ERG6kT0gWlJ2qfwMSFbbV+subEXd ufqEW+SAq20PtQVJsKqwL96ix3/Anyh5n2WiO7BgR8vMjQNRgknjd2FE5NGSFh9F Tqz02XA+X7ag0agm85pA/rz0occJPlXA5tzBGy7YUYzsiCV2AwNI8W9qrN3InwL3 6JFhGHbVLN8mvWmfXfrZZWaSivhi+i0tkjSkb/ztp0/G2ZFStDz5iJQ= -----END CERTIFICATE-----Generated at Tue Jan 27 19:15:44 2026 by rpki-client