This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d6179f-4bda-4871-8977-c80d33a26535/1/7v2ZUdL5cbvsxZ3SJ5Ih0L5h5Cw.roa File: 7v2ZUdL5cbvsxZ3SJ5Ih0L5h5Cw.roa (raw, json) Hash identifier: Fh4U2aM1V+vRKIdMaRS0oiOF0z5hb7HFVxTHs/Kfn8g= Subject key identifier: EE:FD:99:51:D2:F9:71:BB:EC:C5:9D:D2:27:92:21:D0:BE:61:E4:2C Certificate issuer: /CN=3efde2ad7123b3a86008058805bb1016f6b73fb0 Certificate serial: 019B77C7520BF64D9E5DD70E6E67A0734973 Authority key identifier: 3E:FD:E2:AD:71:23:B3:A8:60:08:05:88:05:BB:10:16:F6:B7:3F:B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pv3irXEjs6hgCAWIBbsQFva3P7A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d6179f-4bda-4871-8977-c80d33a26535/1/7v2ZUdL5cbvsxZ3SJ5Ih0L5h5Cw.roa Signing time: Thu 01 Jan 2026 04:18:29 +0000 ROA not before: Thu 01 Jan 2026 04:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25279 IP address blocks: 217.68.0.0/20 maxlen: 24 2a02:328::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d6179f-4bda-4871-8977-c80d33a26535/1/Pv3irXEjs6hgCAWIBbsQFva3P7A.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d6179f-4bda-4871-8977-c80d33a26535/1/Pv3irXEjs6hgCAWIBbsQFva3P7A.mft rsync://rpki.ripe.net/repository/DEFAULT/Pv3irXEjs6hgCAWIBbsQFva3P7A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:52:0b:f6:4d:9e:5d:d7:0e:6e:67:a0:73:49:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3efde2ad7123b3a86008058805bb1016f6b73fb0 Validity Not Before: Jan 1 04:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eefd9951d2f971bbecc59dd2279221d0be61e42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:04:40:8b:e3:34:ea:8f:6f:c5:47:c4:be:a0: 88:f6:85:fd:e2:9f:96:ce:b5:21:79:48:ff:ab:ee: e3:14:70:c1:2b:85:27:7a:1a:ca:e5:d6:ab:fb:35: 9e:f2:ff:e0:f7:5c:5e:a4:06:be:fb:35:aa:74:6f: bf:75:bd:59:f0:0e:09:77:55:ff:c1:d6:62:4f:86: d0:74:68:49:77:87:34:5b:58:fe:d9:d5:7b:cd:83: 44:92:88:e5:c0:18:7a:72:68:2b:e5:f3:6b:9c:95: 5a:fd:8e:08:24:39:f4:15:96:58:8d:a7:2e:35:72: b6:55:dd:39:42:d8:31:64:7f:0d:a8:fd:81:65:bf: 60:a8:9f:71:e0:5a:65:27:95:1f:d1:c2:ca:7d:ce: 2f:14:93:73:ae:c7:31:c2:9c:26:96:7e:a3:19:72: d2:b4:96:7e:0e:70:43:8f:94:35:c8:eb:5c:48:75: 81:a6:7e:41:30:d8:87:9e:75:f0:23:d0:03:9b:3c: 4b:05:15:fd:81:b0:e5:58:2f:f5:54:bd:82:e4:e3: 5c:61:c7:67:b2:2c:f3:bf:00:c8:b2:d4:39:a0:ac: 9a:7c:8b:a7:67:33:61:37:96:45:43:f8:98:15:ec: 2b:a6:fc:8d:16:3d:bb:55:65:a1:1c:de:2f:81:8e: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FD:99:51:D2:F9:71:BB:EC:C5:9D:D2:27:92:21:D0:BE:61:E4:2C X509v3 Authority Key Identifier: keyid:3E:FD:E2:AD:71:23:B3:A8:60:08:05:88:05:BB:10:16:F6:B7:3F:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pv3irXEjs6hgCAWIBbsQFva3P7A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6179f-4bda-4871-8977-c80d33a26535/1/7v2ZUdL5cbvsxZ3SJ5Ih0L5h5Cw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d6179f-4bda-4871-8977-c80d33a26535/1/Pv3irXEjs6hgCAWIBbsQFva3P7A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.68.0.0/20 IPv6: 2a02:328::/29 Signature Algorithm: sha256WithRSAEncryption 75:b4:e5:4c:6b:8f:a9:22:fe:27:90:9b:2d:a4:61:dd:b1:94: d6:dd:56:79:7d:32:0d:c8:a2:b8:7d:1a:06:84:c0:ac:a6:4a: 97:f8:be:20:37:9c:2d:6d:36:cb:0e:c8:5a:14:65:83:fc:eb: 90:69:4e:64:fc:8b:0a:d3:90:bb:02:41:b0:59:0e:fa:c0:14: db:27:d5:56:b1:04:19:06:d6:8f:8e:40:2a:fc:7f:25:36:ba: 5e:01:91:74:14:b0:83:01:00:ff:b3:bc:7d:35:35:5c:09:8f: 6c:51:0d:2d:92:b3:f8:98:b8:5a:22:e9:59:84:5d:d0:32:d5: ee:16:e5:66:2d:2c:48:77:f2:2c:63:c1:94:1b:27:e9:49:9c: 05:2f:69:1a:61:37:fb:b6:4e:67:99:76:ff:c5:9d:a7:71:4e: c6:4a:df:29:62:d3:b4:05:0b:82:bb:70:01:59:37:8b:ef:8b: 3a:30:e6:0d:bd:5a:8b:98:15:1c:bf:b6:44:f2:4b:36:72:a5: 69:e1:2e:4b:c8:3c:66:fe:80:a8:0c:8d:c8:3d:67:8e:d9:ba: 8c:4c:90:b5:4e:47:36:51:64:90:49:26:2d:ba:10:49:35:69: c4:9a:13:bb:01:58:e9:08:92:47:3b:f9:e1:a2:a1:07:b6:5d: fa:00:4a:38 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3x1IL9k2eXdcObmegc0lzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZmRlMmFkNzEyM2IzYTg2MDA4MDU4ODA1YmIxMDE2ZjZi NzNmYjAwHhcNMjYwMTAxMDQxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZWZkOTk1MWQyZjk3MWJiZWNjNTlkZDIyNzkyMjFkMGJlNjFlNDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gRAi+M06o9vxUfEvqCI9oX94p+W zrUheUj/q+7jFHDBK4UnehrK5dar+zWe8v/g91xepAa++zWqdG+/db1Z8A4Jd1X/ wdZiT4bQdGhJd4c0W1j+2dV7zYNEkojlwBh6cmgr5fNrnJVa/Y4IJDn0FZZYjacu NXK2Vd05QtgxZH8NqP2BZb9gqJ9x4FplJ5Uf0cLKfc4vFJNzrscxwpwmln6jGXLS tJZ+DnBDj5Q1yOtcSHWBpn5BMNiHnnXwI9ADmzxLBRX9gbDlWC/1VL2C5ONcYcdn sizzvwDIstQ5oKyafIunZzNhN5ZFQ/iYFewrpvyNFj27VWWhHN4vgY5TQQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFO79mVHS+XG77MWd0ieSIdC+YeQsMB8GA1UdIwQY MBaAFD794q1xI7OoYAgFiAW7EBb2tz+wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHYzaXJYRWpzNmhnQ0FXSUJic1FGdmEzUDdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNjE3OWYtNGJkYS00ODcxLTg5Nzct YzgwZDMzYTI2NTM1LzEvN3YyWlVkTDVjYnZzeFozU0o1SWgwTDVoNUN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kNjE3OWYtNGJkYS00ODcxLTg5NzctYzgwZDMzYTI2NTM1 LzEvUHYzaXJYRWpzNmhnQ0FXSUJic1FGdmEzUDdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQE2UQAMA0E AgACMAcDBQMqAgMoMA0GCSqGSIb3DQEBCwUAA4IBAQB1tOVMa4+pIv4nkJstpGHd sZTW3VZ5fTINyKK4fRoGhMCspkqX+L4gN5wtbTbLDshaFGWD/OuQaU5k/IsK05C7 AkGwWQ76wBTbJ9VWsQQZBtaPjkAq/H8lNrpeAZF0FLCDAQD/s7x9NTVcCY9sUQ0t krP4mLhaIulZhF3QMtXuFuVmLSxId/IsY8GUGyfpSZwFL2kaYTf7tk5nmXb/xZ2n cU7GSt8pYtO0BQuCu3ABWTeL74s6MOYNvVqLmBUcv7ZE8ks2cqVp4S5LyDxm/oCo DI3IPWeO2bqMTJC1Tkc2UWSQSSYtuhBJNWnEmhO7AVjpCJJHO/nhoqEHtl36AEo4 -----END CERTIFICATE-----Generated at Mon Feb 9 22:28:05 2026 by rpki-client