This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/Fr6b4AVwH2MD_S5KRr6HbDmC_uM.roa File: Fr6b4AVwH2MD_S5KRr6HbDmC_uM.roa (raw, json) Hash identifier: mdYZJP/5rf2B6ZKd33FY0BFdNm1Mr6jeRDpydtaZ020= Subject key identifier: 16:BE:9B:E0:05:70:1F:63:03:FD:2E:4A:46:BE:87:6C:39:82:FE:E3 Certificate issuer: /CN=31f78f3e00410926dbd89c8e8f5c400b102b0379 Certificate serial: 019B7F14DBA06EB743758A7C6D283FA80A83 Authority key identifier: 31:F7:8F:3E:00:41:09:26:DB:D8:9C:8E:8F:5C:40:0B:10:2B:03:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MfePPgBBCSbb2JyOj1xACxArA3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/Fr6b4AVwH2MD_S5KRr6HbDmC_uM.roa Signing time: Fri 02 Jan 2026 14:20:32 +0000 ROA not before: Fri 02 Jan 2026 14:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198256 IP address blocks: 217.194.128.0/23 maxlen: 23 217.194.128.0/24 maxlen: 24 217.194.129.0/24 maxlen: 24 217.194.158.0/23 maxlen: 23 217.194.158.0/24 maxlen: 24 217.194.159.0/24 maxlen: 24 2a14:6f80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/MfePPgBBCSbb2JyOj1xACxArA3k.crl rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/MfePPgBBCSbb2JyOj1xACxArA3k.mft rsync://rpki.ripe.net/repository/DEFAULT/MfePPgBBCSbb2JyOj1xACxArA3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:db:a0:6e:b7:43:75:8a:7c:6d:28:3f:a8:0a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31f78f3e00410926dbd89c8e8f5c400b102b0379 Validity Not Before: Jan 2 14:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=16be9be005701f6303fd2e4a46be876c3982fee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:71:09:ec:65:1a:32:31:53:da:52:d9:6b:10: df:61:1a:e8:ae:aa:19:89:73:de:97:53:05:b0:19: 09:61:f9:54:0e:c7:30:3e:76:cf:91:78:a2:c3:79: ab:9a:21:df:1b:c8:ab:c5:d2:78:30:23:1f:4e:d3: 50:56:9d:df:6e:bf:e7:5c:64:e9:aa:46:f0:bc:d1: 6e:67:5b:21:1c:d8:78:8d:95:30:b5:ee:43:73:66: 81:69:82:39:ff:5e:ce:b8:c9:25:ac:7d:69:99:d6: b4:89:f4:df:86:51:e7:d5:4a:77:7d:1b:fe:72:6f: 55:dc:30:04:7f:6b:32:cf:93:38:1e:0d:b7:d4:9d: bf:7d:eb:9d:f8:4c:68:cb:01:54:a5:c6:5f:b9:0d: d3:12:05:36:92:2b:67:2b:25:98:6f:c0:ae:fd:c1: 27:c8:d9:f9:23:f8:b0:f7:ec:34:02:a4:51:fa:a5: f7:3d:5f:6f:6c:4c:56:ac:aa:14:cd:bf:99:4e:a7: 1f:c4:3e:53:a0:96:8b:46:0c:89:39:9e:96:5f:0f: 56:89:ab:17:2e:9e:bf:17:48:7a:2b:93:cb:e2:ad: e1:df:41:1b:fc:d5:31:cb:b7:76:4a:5a:80:f2:29: 42:bb:a7:55:0b:84:9f:34:b8:88:a9:c9:24:09:bd: f3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:BE:9B:E0:05:70:1F:63:03:FD:2E:4A:46:BE:87:6C:39:82:FE:E3 X509v3 Authority Key Identifier: keyid:31:F7:8F:3E:00:41:09:26:DB:D8:9C:8E:8F:5C:40:0B:10:2B:03:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MfePPgBBCSbb2JyOj1xACxArA3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/Fr6b4AVwH2MD_S5KRr6HbDmC_uM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/07560a-062b-4802-89af-19192e81b831/1/MfePPgBBCSbb2JyOj1xACxArA3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.194.128.0/23 217.194.158.0/23 IPv6: 2a14:6f80::/29 Signature Algorithm: sha256WithRSAEncryption 78:5c:b0:d5:86:aa:35:ae:13:83:cc:38:25:82:72:36:07:2a: 2b:82:7f:7f:51:e3:f8:3c:6c:44:8f:2e:17:68:19:4a:31:b1: 67:30:5c:6c:d6:c6:f8:84:c2:ee:01:56:a2:ca:7b:2a:55:c9: e0:26:7b:51:f5:5c:79:a3:c0:6b:a9:f0:a7:58:e3:0b:d2:47: ca:10:d0:fd:6c:91:8e:5b:13:29:97:ba:fb:94:6e:3c:7a:96: 00:79:26:6a:9a:b4:92:e3:71:ed:1b:11:5f:0f:1c:c1:3a:6b: 52:1d:5f:c8:88:2f:31:1a:65:5e:b5:a5:29:68:8a:d0:58:08: 14:03:2e:2d:08:25:0a:7f:18:26:96:23:f6:18:a3:1a:be:39: d1:e5:d6:db:29:68:af:cd:f5:31:20:ff:a2:6d:01:d6:e1:d3: 5d:39:bf:3f:65:bb:19:32:64:72:75:f0:f1:bc:78:6e:14:6a: 55:95:c8:2a:cf:96:17:f5:c4:c6:30:53:28:c4:bc:48:e3:a7: ed:80:5b:fc:d8:df:5c:0f:9c:c6:be:bc:17:c3:19:2e:41:d9: db:61:bd:77:89:57:02:f2:0e:fc:17:a6:70:82:eb:3a:f2:bd: 90:25:eb:8b:0c:86:0e:62:63:57:f0:35:97:6e:ed:d4:19:9d: 84:43:15:5a -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt/FNugbrdDdYp8bSg/qAqDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxZjc4ZjNlMDA0MTA5MjZkYmQ4OWM4ZThmNWM0MDBiMTAy YjAzNzkwHhcNMjYwMTAyMTQyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNmJlOWJlMDA1NzAxZjYzMDNmZDJlNGE0NmJlODc2YzM5ODJmZWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/nEJ7GUaMjFT2lLZaxDfYRrorqoZ iXPel1MFsBkJYflUDscwPnbPkXiiw3mrmiHfG8irxdJ4MCMfTtNQVp3fbr/nXGTp qkbwvNFuZ1shHNh4jZUwte5Dc2aBaYI5/17OuMklrH1pmda0ifTfhlHn1Up3fRv+ cm9V3DAEf2syz5M4Hg231J2/feud+ExoywFUpcZfuQ3TEgU2kitnKyWYb8Cu/cEn yNn5I/iw9+w0AqRR+qX3PV9vbExWrKoUzb+ZTqcfxD5ToJaLRgyJOZ6WXw9WiasX Lp6/F0h6K5PL4q3h30Eb/NUxy7d2SlqA8ilCu6dVC4SfNLiIqckkCb3zKwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFBa+m+AFcB9jA/0uSka+h2w5gv7jMB8GA1UdIwQY MBaAFDH3jz4AQQkm29icjo9cQAsQKwN5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWZlUFBnQkJDU2JiMkp5T2oxeEFDeEFyQTNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8wNzU2MGEtMDYyYi00ODAyLTg5YWYt MTkxOTJlODFiODMxLzEvRnI2YjRBVndIMk1EX1M1S1JyNkhiRG1DX3VNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8wNzU2MGEtMDYyYi00ODAyLTg5YWYtMTkxOTJlODFiODMx LzEvTWZlUFBnQkJDU2JiMkp5T2oxeEFDeEFyQTNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQB2cKAAwQB 2cKeMA0EAgACMAcDBQMqFG+AMA0GCSqGSIb3DQEBCwUAA4IBAQB4XLDVhqo1rhOD zDglgnI2Byorgn9/UeP4PGxEjy4XaBlKMbFnMFxs1sb4hMLuAVaiynsqVcngJntR 9Vx5o8BrqfCnWOML0kfKEND9bJGOWxMpl7r7lG48epYAeSZqmrSS43HtGxFfDxzB OmtSHV/IiC8xGmVetaUpaIrQWAgUAy4tCCUKfxgmliP2GKMavjnR5dbbKWivzfUx IP+ibQHW4dNdOb8/ZbsZMmRydfDxvHhuFGpVlcgqz5YX9cTGMFMoxLxI46ftgFv8 2N9cD5zGvrwXwxkuQdnbYb13iVcC8g78F6Zwgus68r2QJeuLDIYOYmNX8DWXbu3U GZ2EQxVa -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:05 2026 by rpki-client