This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/FAhxwnmDeAJMVVhI5YlXylnLsiM.roa File: FAhxwnmDeAJMVVhI5YlXylnLsiM.roa (raw, json) Hash identifier: FA8nAzwRcBfl5+/Pllgr5NzeDPdob+YcG9oEGJZ3NXk= Subject key identifier: 14:08:71:C2:79:83:78:02:4C:55:58:48:E5:89:57:CA:59:CB:B2:23 Certificate issuer: /CN=b4b079ba13ce46abec7f5bc3f3ddcd8bb8675905 Certificate serial: 019B7C119F6806B2D7DC175F737C4D89BC3E Authority key identifier: B4:B0:79:BA:13:CE:46:AB:EC:7F:5B:C3:F3:DD:CD:8B:B8:67:59:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLB5uhPORqvsf1vD893Ni7hnWQU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/FAhxwnmDeAJMVVhI5YlXylnLsiM.roa Signing time: Fri 02 Jan 2026 00:18:08 +0000 ROA not before: Fri 02 Jan 2026 00:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56670 IP address blocks: 91.194.220.0/23 maxlen: 23 194.165.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.mft rsync://rpki.ripe.net/repository/DEFAULT/tLB5uhPORqvsf1vD893Ni7hnWQU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:9f:68:06:b2:d7:dc:17:5f:73:7c:4d:89:bc:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4b079ba13ce46abec7f5bc3f3ddcd8bb8675905 Validity Not Before: Jan 2 00:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=140871c2798378024c555848e58957ca59cbb223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9f:28:fc:9a:92:47:e3:2f:09:7c:3f:8e:4f: f4:19:c7:25:14:44:d9:07:ea:08:e6:f1:62:26:b9: 0c:8d:12:92:e7:e4:92:b5:20:a2:c7:09:3a:03:0a: 7e:54:dd:dd:85:56:8b:9d:a0:65:fc:ae:29:fa:31: 58:b6:d6:f2:e5:f8:f9:3b:a2:38:ed:87:32:b8:4f: d2:cd:28:06:95:d4:4a:ec:fa:e7:22:20:a9:fc:bb: 7e:4d:77:37:04:ae:10:07:87:22:83:82:2a:a1:af: eb:b7:c5:b5:31:7d:49:4b:da:6a:ce:dd:41:ae:88: 4a:6f:37:e2:7a:f9:1a:0e:3c:0e:4e:62:14:96:22: 44:70:f7:7f:a5:27:63:6a:03:8c:52:11:03:69:b2: fb:1e:39:c7:97:28:63:be:46:fe:74:b4:f4:3d:b0: 09:08:b4:6e:c2:28:0a:e3:13:1c:c6:4b:4c:fa:de: 3d:35:7f:3e:dc:62:c3:37:56:80:50:53:5e:fe:a2: 4c:a8:ab:be:b1:20:a0:3f:70:2f:01:21:80:d6:3c: 27:67:58:18:47:ac:9a:e3:3d:7e:a7:48:6c:10:9a: 33:51:54:ea:a1:c6:a5:01:82:78:87:e9:c5:c4:c6: 63:56:a7:3e:24:57:b4:44:e4:5a:0c:ce:96:83:cb: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:08:71:C2:79:83:78:02:4C:55:58:48:E5:89:57:CA:59:CB:B2:23 X509v3 Authority Key Identifier: keyid:B4:B0:79:BA:13:CE:46:AB:EC:7F:5B:C3:F3:DD:CD:8B:B8:67:59:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLB5uhPORqvsf1vD893Ni7hnWQU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/FAhxwnmDeAJMVVhI5YlXylnLsiM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d46a81-3735-42c6-9bbb-1d1799b59c99/1/tLB5uhPORqvsf1vD893Ni7hnWQU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.194.220.0/23 194.165.12.0/23 Signature Algorithm: sha256WithRSAEncryption d1:a8:14:ca:61:90:1e:3c:4f:9a:b4:c3:5b:93:be:6a:27:d8: f4:65:7a:5f:51:0a:ee:7d:ac:06:b6:61:a2:a6:25:cb:71:32: 98:ff:9a:6d:01:ad:31:fa:02:9a:b2:6b:71:1f:00:bb:8d:81: 83:f9:46:38:3b:ec:7c:fa:fb:8c:90:d1:99:ff:78:9c:41:12: 82:ab:dc:1b:40:7d:8a:ee:41:ff:a7:b4:12:05:b8:b8:c7:3f: e1:70:ec:90:d7:e3:19:23:0d:c0:5a:24:01:6e:24:9c:a2:de: 8b:de:b6:d0:9e:88:b8:67:09:ec:aa:57:a4:5b:bd:01:f8:39: 01:62:8b:f3:24:61:6a:ba:8b:aa:19:3e:3c:cb:c0:0d:3e:a9: 48:d2:f0:85:f7:1e:3c:79:0e:19:e3:0f:12:11:c3:fb:2e:13: 4e:91:47:65:84:9f:a3:e8:58:dd:c6:bd:dc:61:e1:6f:10:df: 03:09:e8:4b:a9:68:c7:e7:ba:31:c4:a9:04:35:2e:e6:7c:bc: af:00:df:c0:b4:d3:89:a3:4d:71:75:31:bf:16:c1:c9:38:46: fb:48:51:85:25:92:1c:a9:dc:e8:ae:ab:b7:47:b1:a4:da:32: 03:fa:9f:76:5d:b5:db:51:09:7b:7b:4f:de:a2:01:24:bc:27: 6b:d0:54:78 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EZ9oBrLX3Bdfc3xNibw+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YjA3OWJhMTNjZTQ2YWJlYzdmNWJjM2YzZGRjZDhiYjg2 NzU5MDUwHhcNMjYwMTAyMDAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNDA4NzFjMjc5ODM3ODAyNGM1NTU4NDhlNTg5NTdjYTU5Y2JiMjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA558o/JqSR+MvCXw/jk/0GcclFETZ B+oI5vFiJrkMjRKS5+SStSCixwk6Awp+VN3dhVaLnaBl/K4p+jFYttby5fj5O6I4 7YcyuE/SzSgGldRK7PrnIiCp/Lt+TXc3BK4QB4cig4Iqoa/rt8W1MX1JS9pqzt1B rohKbzfievkaDjwOTmIUliJEcPd/pSdjagOMUhEDabL7HjnHlyhjvkb+dLT0PbAJ CLRuwigK4xMcxktM+t49NX8+3GLDN1aAUFNe/qJMqKu+sSCgP3AvASGA1jwnZ1gY R6ya4z1+p0hsEJozUVTqocalAYJ4h+nFxMZjVqc+JFe0RORaDM6Wg8shYQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBQIccJ5g3gCTFVYSOWJV8pZy7IjMB8GA1UdIwQY MBaAFLSweboTzkar7H9bw/PdzYu4Z1kFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdExCNXVoUE9ScXZzZjF2RDg5M05pN2huV1FVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9kNDZhODEtMzczNS00MmM2LTliYmIt MWQxNzk5YjU5Yzk5LzEvRkFoeHdubURlQUpNVlZoSTVZbFh5bG5Mc2lNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9kNDZhODEtMzczNS00MmM2LTliYmItMWQxNzk5YjU5Yzk5 LzEvdExCNXVoUE9ScXZzZjF2RDg5M05pN2huV1FVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW8LcAwQB wqUMMA0GCSqGSIb3DQEBCwUAA4IBAQDRqBTKYZAePE+atMNbk75qJ9j0ZXpfUQru fawGtmGipiXLcTKY/5ptAa0x+gKasmtxHwC7jYGD+UY4O+x8+vuMkNGZ/3icQRKC q9wbQH2K7kH/p7QSBbi4xz/hcOyQ1+MZIw3AWiQBbiScot6L3rbQnoi4Zwnsqlek W70B+DkBYovzJGFquouqGT48y8ANPqlI0vCF9x48eQ4Z4w8SEcP7LhNOkUdlhJ+j 6Fjdxr3cYeFvEN8DCehLqWjH57oxxKkENS7mfLyvAN/AtNOJo01xdTG/FsHJOEb7 SFGFJZIcqdzorqu3R7Gk2jID+p92XbXbUQl7e0/eogEkvCdr0FR4 -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:49 2026 by rpki-client