This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/F40rkkhDW3ybCB_12cIOKOyXk08.roa File: F40rkkhDW3ybCB_12cIOKOyXk08.roa (raw, json) Hash identifier: h+hLlHz7DDayf/In7Q6RDRACl8fHTXkiC3/X/Kl3h7E= Subject key identifier: 17:8D:2B:92:48:43:5B:7C:9B:08:1F:F5:D9:C2:0E:28:EC:97:93:4F Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba Certificate serial: 019B7AC795DED41F4EDE09381FB14008861B Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/F40rkkhDW3ybCB_12cIOKOyXk08.roa Signing time: Thu 01 Jan 2026 18:17:38 +0000 ROA not before: Thu 01 Jan 2026 18:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60627 IP address blocks: 185.83.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.mft rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:95:de:d4:1f:4e:de:09:38:1f:b1:40:08:86:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba Validity Not Before: Jan 1 18:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=178d2b9248435b7c9b081ff5d9c20e28ec97934f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:71:e3:84:16:de:ea:3a:28:f2:01:8a:f9:20: b9:06:86:2e:23:02:b1:2b:2b:9a:c1:7d:ca:4b:63: 35:0b:f6:f2:b9:88:a6:0b:ca:ac:60:59:e4:73:d5: 7e:77:a8:b4:28:25:38:1e:db:29:bd:f4:aa:07:3a: 53:6e:73:ac:7c:08:ce:cd:85:30:8a:4b:ca:31:45: bd:ac:f9:1a:58:72:b8:a7:c5:3b:8b:f9:2c:02:17: 50:3c:f4:85:3e:e9:83:6b:c0:cc:ef:ea:fb:38:b4: 9e:f5:41:4f:47:0d:77:0b:ad:ac:ce:01:b9:39:37: d3:ed:8a:01:9f:61:3c:9a:54:08:7b:6a:a5:8c:9a: 86:d7:92:46:e4:97:d9:b6:b6:70:45:3d:d9:a2:3f: ce:27:e8:71:b9:77:8a:e7:d1:f3:a7:f7:26:69:7c: 22:78:d6:5a:22:50:d8:73:37:fb:c1:1f:df:40:7b: f6:fd:61:50:fd:5d:df:6a:3a:ce:25:7a:ba:d4:ae: 4a:4a:f5:32:3e:98:5b:d9:2e:e0:ef:3d:1e:23:1b: 17:d2:e4:97:e8:6b:34:5e:c6:96:19:93:40:44:1c: 8c:74:9f:92:f1:17:f2:38:df:47:5c:b2:13:af:13: db:d7:f2:9f:b0:29:bb:0c:d4:6b:4b:56:cc:5f:49: 0e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:8D:2B:92:48:43:5B:7C:9B:08:1F:F5:D9:C2:0E:28:EC:97:93:4F X509v3 Authority Key Identifier: keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/F40rkkhDW3ybCB_12cIOKOyXk08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.83.89.0/24 Signature Algorithm: sha256WithRSAEncryption 02:7b:f7:cc:88:4c:e7:f5:b2:21:09:04:9e:72:23:01:42:42: b9:d3:9f:a0:80:fb:1a:c4:37:93:83:b7:06:a1:67:a7:cc:a5: a6:dc:b2:76:28:32:6e:82:72:64:78:8a:73:78:95:e7:a8:0b: 3a:f3:fd:43:1b:75:5c:ab:73:72:84:85:f2:22:d4:66:07:ce: 11:10:1f:d5:80:fa:4b:21:33:d8:3f:90:41:47:03:40:aa:37: 23:bb:35:f6:8f:4d:21:32:bc:bb:76:07:50:e4:4c:15:5c:9d: 05:85:8b:8d:9d:f4:13:45:f0:d6:d8:f2:1a:6c:b7:ad:f3:31: 8a:0b:37:05:eb:bb:d5:a0:ed:e7:9e:cc:e6:c4:0c:ec:1d:70: fc:3d:4a:9b:5c:5d:e0:45:60:af:3e:7a:37:64:4c:71:32:d0: 96:df:a6:57:7f:4c:be:0c:66:a3:1a:25:8e:1a:a4:f9:b2:ae: 4a:ee:b4:8a:fb:7f:bb:0a:00:e2:bb:22:5d:7b:16:98:c7:82: 46:b0:d1:70:75:52:5c:f0:4c:5e:a2:41:fb:f9:6e:69:16:70: 44:cd:fa:df:5d:99:96:98:fa:75:d9:f3:f0:6a:5c:ee:e5:78: ad:fb:39:08:0b:3a:e3:c5:8c:fe:35:98:12:13:e9:1f:5f:56: 23:92:6e:e8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x5Xe1B9O3gk4H7FACIYbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1 OTVlYmEwHhcNMjYwMTAxMTgxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzhkMmI5MjQ4NDM1YjdjOWIwODFmZjVkOWMyMGUyOGVjOTc5MzRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHHjhBbe6joo8gGK+SC5BoYuIwKx KyuawX3KS2M1C/byuYimC8qsYFnkc9V+d6i0KCU4HtspvfSqBzpTbnOsfAjOzYUw ikvKMUW9rPkaWHK4p8U7i/ksAhdQPPSFPumDa8DM7+r7OLSe9UFPRw13C62szgG5 OTfT7YoBn2E8mlQIe2qljJqG15JG5JfZtrZwRT3Zoj/OJ+hxuXeK59Hzp/cmaXwi eNZaIlDYczf7wR/fQHv2/WFQ/V3fajrOJXq61K5KSvUyPphb2S7g7z0eIxsX0uSX 6Gs0XsaWGZNARByMdJ+S8RfyON9HXLITrxPb1/KfsCm7DNRrS1bMX0kOkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBeNK5JIQ1t8mwgf9dnCDijsl5NPMB8GA1UdIwQY MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt MTA5ODJlMDQwZDUzLzEvRjQwcmtraERXM3liQ0JfMTJjSU9LT3lYazA4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVNZMA0G CSqGSIb3DQEBCwUAA4IBAQACe/fMiEzn9bIhCQSeciMBQkK505+ggPsaxDeTg7cG oWenzKWm3LJ2KDJugnJkeIpzeJXnqAs68/1DG3Vcq3NyhIXyItRmB84REB/VgPpL ITPYP5BBRwNAqjcjuzX2j00hMry7dgdQ5EwVXJ0FhYuNnfQTRfDW2PIabLet8zGK CzcF67vVoO3nnszmxAzsHXD8PUqbXF3gRWCvPno3ZExxMtCW36ZXf0y+DGajGiWO GqT5sq5K7rSK+3+7CgDiuyJdexaYx4JGsNFwdVJc8ExeokH7+W5pFnBEzfrfXZmW mPp12fPwalzu5Xit+zkICzrjxYz+NZgSE+kfX1Yjkm7o -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:56 2026 by rpki-client