This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/FKqb6xzvddOBKsdPHF3mhYAJS0k.roa File: FKqb6xzvddOBKsdPHF3mhYAJS0k.roa (raw, json) Hash identifier: 910PvDYWRjp0nPe0uzUMCv2AassoiwccQm9jYSF+i2c= Subject key identifier: 14:AA:9B:EB:1C:EF:75:D3:81:2A:C7:4F:1C:5D:E6:85:80:09:4B:49 Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9 Certificate serial: 019B7C116B5152489CB63A2D11AFAF3114E4 Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/FKqb6xzvddOBKsdPHF3mhYAJS0k.roa Signing time: Fri 02 Jan 2026 00:17:54 +0000 ROA not before: Fri 02 Jan 2026 00:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206732 IP address blocks: 185.178.8.0/22 maxlen: 24 2a12:b140::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:6b:51:52:48:9c:b6:3a:2d:11:af:af:31:14:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9 Validity Not Before: Jan 2 00:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=14aa9beb1cef75d3812ac74f1c5de68580094b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:84:a2:7f:5b:6b:d6:3b:f2:eb:f3:f0:b3: 36:26:05:b7:e5:0f:92:59:c1:fa:3b:b2:03:8f:78: ba:27:36:94:34:52:59:94:d4:0a:69:14:b9:2d:fb: 92:44:17:2c:bd:0b:5c:fb:23:6e:c2:1d:21:f2:d9: 43:db:e0:b9:5e:b9:48:c0:6e:78:b2:e7:83:7c:06: a8:32:03:53:c2:18:a7:5a:6b:ad:12:23:52:68:b8: 1c:8a:69:0b:1f:06:51:4a:cb:07:5d:be:f8:c9:63: f3:92:e6:54:c9:1a:10:a1:0e:bb:05:18:c9:cb:e3: 09:24:8a:ce:60:60:56:52:ec:38:d6:4e:d2:1b:3d: 14:0a:99:87:b4:ee:3a:e1:b1:e9:cc:1b:96:43:f0: e5:84:1e:6b:6b:d8:aa:f8:d4:03:30:46:74:ea:63: 3d:16:6f:02:f0:3f:1e:73:b2:f1:5d:d2:e5:63:fa: f5:7d:16:92:51:9d:62:92:a1:e2:c5:7b:67:b0:f1: 69:60:2c:55:42:7d:9a:22:fb:49:e7:c4:70:51:03: 55:9d:2a:ac:6e:91:eb:33:84:bd:3c:e7:15:ff:32: 66:ab:0e:5b:61:62:a1:5e:fd:e5:a9:98:3e:8c:b7: ec:ae:ce:e8:2f:3d:a6:7c:64:1a:c7:f0:7c:d9:d9: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AA:9B:EB:1C:EF:75:D3:81:2A:C7:4F:1C:5D:E6:85:80:09:4B:49 X509v3 Authority Key Identifier: keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/FKqb6xzvddOBKsdPHF3mhYAJS0k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.178.8.0/22 IPv6: 2a12:b140::/29 Signature Algorithm: sha256WithRSAEncryption 1c:b1:82:2b:44:6d:e2:b7:d7:7d:f3:28:d7:62:d9:24:88:ed: 38:11:9b:ef:30:a7:96:72:21:5d:73:b8:4b:6a:36:d6:54:b9: 09:1e:a6:9e:bc:3b:2d:7b:91:14:95:6e:49:18:8e:66:ff:63: 81:19:c6:2b:9c:7d:0b:2d:47:09:de:c8:3f:51:27:6c:14:60: 4f:34:b3:47:e6:73:7d:86:e8:31:6b:08:58:5f:a3:45:87:61: 92:68:d9:9e:14:1f:e0:a4:ec:1d:5c:8a:df:62:9d:a4:b2:cf: d5:fb:f2:89:4c:95:2a:a6:c8:27:6a:fb:73:f4:c0:dc:82:a8: 1a:8b:51:d7:3e:00:57:87:eb:a5:66:99:54:31:60:5e:a2:ca: 00:ea:40:ca:48:f9:b2:f6:02:51:ac:c7:26:4a:ab:72:2c:c9: 63:65:d9:c8:66:c6:cb:7a:5a:13:0b:9d:b8:a0:1a:85:d5:61: f1:4d:75:e4:46:92:9c:a0:36:59:0a:b1:7f:b2:8d:c1:a5:18: b7:dd:0d:59:a5:c8:5a:c2:1a:41:b2:a2:0a:34:83:1b:2d:23: ca:6a:71:97:70:47:5d:2e:5d:52:b7:b5:cc:20:70:bc:93:4a: a4:3f:e2:c5:fe:ee:4e:54:67:c8:ba:54:20:d5:5c:6d:fc:10: d1:73:bf:62 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8EWtRUkictjotEa+vMRTkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyODg5MDNkOTBjMDFlMmQ1Y2UxODc4ODA1YWQ0YTkyZDI4 YWVkYzkwHhcNMjYwMTAyMDAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNGFhOWJlYjFjZWY3NWQzODEyYWM3NGYxYzVkZTY4NTgwMDk0YjQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAye6Eon9ba9Y78uvz8LM2JgW35Q+S WcH6O7IDj3i6JzaUNFJZlNQKaRS5LfuSRBcsvQtc+yNuwh0h8tlD2+C5XrlIwG54 sueDfAaoMgNTwhinWmutEiNSaLgcimkLHwZRSssHXb74yWPzkuZUyRoQoQ67BRjJ y+MJJIrOYGBWUuw41k7SGz0UCpmHtO464bHpzBuWQ/DlhB5ra9iq+NQDMEZ06mM9 Fm8C8D8ec7LxXdLlY/r1fRaSUZ1ikqHixXtnsPFpYCxVQn2aIvtJ58RwUQNVnSqs bpHrM4S9POcV/zJmqw5bYWKhXv3lqZg+jLfsrs7oLz2mfGQax/B82dk0uQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBSqm+sc73XTgSrHTxxd5oWACUtJMB8GA1UdIwQY MBaAFIKIkD2QwB4tXOGHiAWtSpLSiu3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODIt YTFkZTU4YTNiMzViLzEvRktxYjZ4enZkZE9CS3NkUEhGM21oWUFKUzBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODItYTFkZTU4YTNiMzVi LzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubIIMA0E AgACMAcDBQMqErFAMA0GCSqGSIb3DQEBCwUAA4IBAQAcsYIrRG3it9d98yjXYtkk iO04EZvvMKeWciFdc7hLajbWVLkJHqaevDste5EUlW5JGI5m/2OBGcYrnH0LLUcJ 3sg/USdsFGBPNLNH5nN9hugxawhYX6NFh2GSaNmeFB/gpOwdXIrfYp2kss/V+/KJ TJUqpsgnavtz9MDcgqgai1HXPgBXh+ulZplUMWBeosoA6kDKSPmy9gJRrMcmSqty LMljZdnIZsbLeloTC524oBqF1WHxTXXkRpKcoDZZCrF/so3BpRi33Q1ZpchawhpB sqIKNIMbLSPKanGXcEddLl1St7XMIHC8k0qkP+LF/u5OVGfIulQg1Vxt/BDRc79i -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:18 2026 by rpki-client