This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/7Z28ccV7b3JOrHBg1UIO3OEvwT0.roa File: 7Z28ccV7b3JOrHBg1UIO3OEvwT0.roa (raw, json) Hash identifier: 1nSmk3+PfoqP0CPu2acD9nLC2qFRu+YJXluMww4fQsw= Subject key identifier: ED:9D:BC:71:C5:7B:6F:72:4E:AC:70:60:D5:42:0E:DC:E1:2F:C1:3D Certificate issuer: /CN=4a9c5e56aacd01ffb2825a931ed5ede41c3f92e6 Certificate serial: 019B7AC799FEAEE5EB1189B2071123CE4A44 Authority key identifier: 4A:9C:5E:56:AA:CD:01:FF:B2:82:5A:93:1E:D5:ED:E4:1C:3F:92:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SpxeVqrNAf-yglqTHtXt5Bw_kuY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/7Z28ccV7b3JOrHBg1UIO3OEvwT0.roa Signing time: Thu 01 Jan 2026 18:17:40 +0000 ROA not before: Thu 01 Jan 2026 18:17:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2116 IP address blocks: 185.3.4.0/24 maxlen: 24 185.3.5.0/24 maxlen: 24 185.3.6.0/24 maxlen: 24 185.3.7.0/24 maxlen: 24 193.32.40.0/24 maxlen: 24 193.32.102.0/24 maxlen: 24 193.32.110.0/24 maxlen: 24 193.34.194.0/24 maxlen: 24 195.26.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/SpxeVqrNAf-yglqTHtXt5Bw_kuY.crl rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/SpxeVqrNAf-yglqTHtXt5Bw_kuY.mft rsync://rpki.ripe.net/repository/DEFAULT/SpxeVqrNAf-yglqTHtXt5Bw_kuY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:99:fe:ae:e5:eb:11:89:b2:07:11:23:ce:4a:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a9c5e56aacd01ffb2825a931ed5ede41c3f92e6 Validity Not Before: Jan 1 18:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ed9dbc71c57b6f724eac7060d5420edce12fc13d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:5a:ea:58:88:44:7c:c5:8a:70:1d:4d:41: 88:66:fc:9d:47:84:a4:9a:55:b4:83:81:cd:5a:1a: 40:8e:3c:53:a2:3c:e2:8b:3a:d7:75:71:41:b0:cc: e1:92:1b:f3:93:cd:30:c5:c5:3a:c4:86:2e:9a:06: d3:c8:96:a7:c6:94:6d:da:2a:42:1c:38:9b:cf:50: 96:56:5d:df:59:25:bd:e3:1a:08:3b:52:61:94:15: 0b:ae:18:a2:7c:99:11:a4:a4:93:44:53:40:03:93: b9:3a:84:95:11:88:e2:a4:cf:3c:e3:e0:2e:55:8f: 2d:27:96:11:18:f0:80:ea:c6:7e:69:00:07:ee:4c: 4b:74:d2:14:73:a3:56:69:8f:f4:20:6d:45:69:c5: 43:5f:c7:01:87:88:de:4c:21:e7:8a:15:d5:56:dc: 3e:bc:20:34:a9:3a:3c:69:95:78:cf:c4:c8:00:4d: 48:44:c0:d9:fe:13:21:6e:45:77:32:71:11:90:bb: 3a:03:51:1f:de:ac:95:fa:e0:cf:56:cc:64:62:50: 46:24:03:14:c1:ea:88:ee:72:58:da:6d:51:b1:bd: de:6a:7d:22:e5:7f:b4:69:75:8f:f3:89:6a:23:08: 89:36:3d:b9:93:1e:b4:18:f1:4f:76:0b:2e:21:6d: a7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:9D:BC:71:C5:7B:6F:72:4E:AC:70:60:D5:42:0E:DC:E1:2F:C1:3D X509v3 Authority Key Identifier: keyid:4A:9C:5E:56:AA:CD:01:FF:B2:82:5A:93:1E:D5:ED:E4:1C:3F:92:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SpxeVqrNAf-yglqTHtXt5Bw_kuY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/7Z28ccV7b3JOrHBg1UIO3OEvwT0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c010dc-0910-4341-8b33-2e694b339933/1/SpxeVqrNAf-yglqTHtXt5Bw_kuY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.3.4.0/22 193.32.40.0/24 193.32.102.0/24 193.32.110.0/24 193.34.194.0/24 195.26.0.0/23 Signature Algorithm: sha256WithRSAEncryption 80:60:e5:04:5d:8c:cb:7c:50:4f:1a:ce:9a:9c:83:12:24:03: 82:62:10:59:f0:18:f3:85:6c:9f:ed:fa:04:f3:09:b5:d5:99: 97:fb:ae:1c:48:43:0f:a3:e2:fa:7b:e7:a6:80:f8:e2:7a:1a: 35:3c:18:8b:50:d2:71:f3:29:b4:1c:bb:df:7a:5f:4d:2a:a4: 8e:ff:b7:67:12:6e:21:a8:fc:52:b5:6c:65:06:a3:64:47:b1: 9e:de:ec:cf:8c:22:e0:1f:14:72:fc:0a:9d:f0:17:29:c8:8c: 36:da:d9:6c:4f:4d:57:40:2d:b9:66:56:c8:60:d0:e6:3a:f3: ba:f2:c1:41:1a:85:cc:71:9f:49:9c:68:61:e5:95:68:67:6f: 92:6f:64:6f:9f:e1:b8:62:a6:45:3d:96:fa:7a:cd:33:a4:4c: 3f:c9:42:48:97:eb:66:e5:fc:97:63:09:7e:d9:b1:b5:6c:76: 09:e2:07:94:f9:03:18:92:a6:61:d6:0f:66:cf:ee:1d:09:75: 9d:38:29:42:17:ee:83:6b:68:8e:89:d9:46:46:5d:ad:82:55: 49:3d:90:59:af:04:3e:b4:2e:95:79:cc:02:7f:b8:f2:29:62: 64:34:03:fc:87:35:cd:a2:e4:6a:50:35:74:97:c4:e0:6c:f0: 57:94:91:cd -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt6x5n+ruXrEYmyBxEjzkpEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhOWM1ZTU2YWFjZDAxZmZiMjgyNWE5MzFlZDVlZGU0MWMz ZjkyZTYwHhcNMjYwMTAxMTgxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZDlkYmM3MWM1N2I2ZjcyNGVhYzcwNjBkNTQyMGVkY2UxMmZjMTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsS5a6liIRHzFinAdTUGIZvydR4Sk mlW0g4HNWhpAjjxTojziizrXdXFBsMzhkhvzk80wxcU6xIYumgbTyJanxpRt2ipC HDibz1CWVl3fWSW94xoIO1JhlBULrhiifJkRpKSTRFNAA5O5OoSVEYjipM884+Au VY8tJ5YRGPCA6sZ+aQAH7kxLdNIUc6NWaY/0IG1FacVDX8cBh4jeTCHnihXVVtw+ vCA0qTo8aZV4z8TIAE1IRMDZ/hMhbkV3MnERkLs6A1Ef3qyV+uDPVsxkYlBGJAMU weqI7nJY2m1Rsb3ean0i5X+0aXWP84lqIwiJNj25kx60GPFPdgsuIW2nLwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFO2dvHHFe29yTqxwYNVCDtzhL8E9MB8GA1UdIwQY MBaAFEqcXlaqzQH/soJakx7V7eQcP5LmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3B4ZVZxck5BZi15Z2xxVEh0WHQ1Qndfa3VZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9jMDEwZGMtMDkxMC00MzQxLThiMzMt MmU2OTRiMzM5OTMzLzEvN1oyOGNjVjdiM0pPckhCZzFVSU8zT0V2d1QwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9jMDEwZGMtMDkxMC00MzQxLThiMzMtMmU2OTRiMzM5OTMz LzEvU3B4ZVZxck5BZi15Z2xxVEh0WHQ1Qndfa3VZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCuQMEAwQA wSAoAwQAwSBmAwQAwSBuAwQAwSLCAwQBwxoAMA0GCSqGSIb3DQEBCwUAA4IBAQCA YOUEXYzLfFBPGs6anIMSJAOCYhBZ8BjzhWyf7foE8wm11ZmX+64cSEMPo+L6e+em gPjieho1PBiLUNJx8ym0HLvfel9NKqSO/7dnEm4hqPxStWxlBqNkR7Ge3uzPjCLg HxRy/Aqd8BcpyIw22tlsT01XQC25ZlbIYNDmOvO68sFBGoXMcZ9JnGhh5ZVoZ2+S b2Rvn+G4YqZFPZb6es0zpEw/yUJIl+tm5fyXYwl+2bG1bHYJ4geU+QMYkqZh1g9m z+4dCXWdOClCF+6Da2iOidlGRl2tglVJPZBZrwQ+tC6VecwCf7jyKWJkNAP8hzXN ouRqUDV0l8TgbPBXlJHN -----END CERTIFICATE-----Generated at Mon Jan 26 16:57:56 2026 by rpki-client