This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/7h6EpYHyvlwNjKL-y--LMM7dN30.roa File: 7h6EpYHyvlwNjKL-y--LMM7dN30.roa (raw, json) Hash identifier: 3aH/Abz0VTt/8xcti7HWOgVUOTaJe4ANHZ4Pg/QWIhg= Subject key identifier: EE:1E:84:A5:81:F2:BE:5C:0D:8C:A2:FE:CB:EF:8B:30:CE:DD:37:7D Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7E0654F761BB73077F88C19144540 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/7h6EpYHyvlwNjKL-y--LMM7dN30.roa Signing time: Thu 01 Jan 2026 18:17:58 +0000 ROA not before: Thu 01 Jan 2026 18:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213022 IP address blocks: 159.148.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e0:65:4f:76:1b:b7:30:77:f8:8c:19:14:45:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee1e84a581f2be5c0d8ca2fecbef8b30cedd377d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d7:f0:98:26:80:de:ee:52:1f:71:0f:d2:7a: 5e:a1:3a:58:c7:18:c0:6b:1b:91:d6:ad:ad:c1:2f: 76:46:79:c2:c4:f9:45:8b:ad:e8:c1:84:f3:d3:02: 26:0b:3f:c0:71:5e:f6:7b:77:cc:c8:64:45:6a:c4: 99:73:76:70:e7:10:a5:39:52:f3:d3:58:ec:b2:4a: 5b:31:14:4d:23:e5:75:35:f2:ea:7f:da:d7:b3:65: 07:53:5b:e5:4e:74:59:c3:8e:2e:6f:21:f2:f7:1c: 66:4c:3b:e2:b3:c4:f5:03:80:e1:05:c5:04:26:08: 67:19:a0:56:e3:ab:cb:d5:7a:9e:a7:2a:d0:02:64: 45:d0:21:2b:af:fc:2d:75:0e:f6:de:33:1c:72:ad: ed:8f:e3:39:27:1b:42:b1:bd:3c:ef:f2:ae:d5:87: 73:f1:f0:bd:6f:d2:bc:ca:c9:34:ef:00:62:93:cb: 8f:65:bf:85:b2:39:22:1f:14:c3:7a:91:ce:be:fe: bb:75:ae:b1:cd:f4:22:1f:d4:d7:33:33:12:3c:db: f0:5b:02:11:e4:35:90:3e:c2:7a:37:29:40:9e:54: 0b:fc:d8:a4:98:8c:60:ff:b4:d2:06:dc:2c:33:e7: 0c:83:48:71:3c:43:39:f8:7c:0b:ce:e7:90:f9:c6: 08:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1E:84:A5:81:F2:BE:5C:0D:8C:A2:FE:CB:EF:8B:30:CE:DD:37:7D X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/7h6EpYHyvlwNjKL-y--LMM7dN30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.103.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:9d:ed:21:5b:e8:30:a8:11:b2:df:ff:f1:44:ca:6f:b9:ad: 66:12:6a:ac:72:08:ed:d1:33:2a:24:79:3d:ce:37:18:2a:a2: 8c:43:11:79:47:ca:b2:46:ba:04:51:fb:f2:4b:1c:0e:c8:d2: 08:d6:aa:20:73:5e:33:00:44:29:3d:b5:40:6d:85:5a:c5:0f: 48:a3:cc:c8:82:c6:fc:6b:00:b2:33:54:06:14:90:a2:f5:31: de:3f:61:3f:c0:8b:3a:5a:c0:9d:58:17:8a:bb:bb:c2:39:55: a8:71:e1:54:a3:b6:45:ad:80:a5:fc:d2:d2:92:d5:6a:00:2b: e5:c4:35:e9:a0:47:61:cb:4f:a5:82:41:79:0f:1a:0d:69:5c: e7:62:6f:e6:e6:88:cd:f4:96:50:b7:b4:6a:a6:96:66:39:29: 46:ff:41:2d:2c:7f:71:91:85:da:13:cb:37:cc:c3:45:25:c5: d3:6b:04:9c:ed:0f:07:dd:f7:7d:6c:b2:1a:7b:f7:ca:f6:8e: d9:6f:4f:94:e8:b4:1e:45:76:99:26:ca:a0:59:ad:b5:0c:e6: 99:55:5d:21:21:65:d9:f6:8c:cd:dd:4f:bc:28:65:3a:98:d7: 7e:7d:ee:12:5c:37:9e:a3:2e:98:7c:c8:7a:c0:5f:d8:d0:32: 78:35:cf:00 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x+BlT3YbtzB3+IwZFEVAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTFlODRhNTgxZjJiZTVjMGQ4Y2EyZmVjYmVmOGIzMGNlZGQzNzdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodfwmCaA3u5SH3EP0npeoTpYxxjA axuR1q2twS92RnnCxPlFi63owYTz0wImCz/AcV72e3fMyGRFasSZc3Zw5xClOVLz 01jsskpbMRRNI+V1NfLqf9rXs2UHU1vlTnRZw44ubyHy9xxmTDvis8T1A4DhBcUE JghnGaBW46vL1XqepyrQAmRF0CErr/wtdQ723jMccq3tj+M5JxtCsb087/Ku1Ydz 8fC9b9K8ysk07wBik8uPZb+FsjkiHxTDepHOvv67da6xzfQiH9TXMzMSPNvwWwIR 5DWQPsJ6NylAnlQL/NikmIxg/7TSBtwsM+cMg0hxPEM5+HwLzueQ+cYI2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFO4ehKWB8r5cDYyi/svvizDO3Td9MB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvN2g2RXBZSHl2bHdOaktMLXktLUxNTTdkTjMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5RnMA0G CSqGSIb3DQEBCwUAA4IBAQANne0hW+gwqBGy3//xRMpvua1mEmqscgjt0TMqJHk9 zjcYKqKMQxF5R8qyRroEUfvySxwOyNII1qogc14zAEQpPbVAbYVaxQ9Io8zIgsb8 awCyM1QGFJCi9THeP2E/wIs6WsCdWBeKu7vCOVWoceFUo7ZFrYCl/NLSktVqACvl xDXpoEdhy0+lgkF5DxoNaVznYm/m5ojN9JZQt7RqppZmOSlG/0EtLH9xkYXaE8s3 zMNFJcXTawSc7Q8H3fd9bLIae/fK9o7Zb0+U6LQeRXaZJsqgWa21DOaZVV0hIWXZ 9ozN3U+8KGU6mNd+fe4SXDeeoy6YfMh6wF/Y0DJ4Nc8A -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:45 2026 by rpki-client