This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/7pgJyQEhPGE9dXbf6EcHY0j7uuY.roa File: 7pgJyQEhPGE9dXbf6EcHY0j7uuY.roa (raw, json) Hash identifier: ptYDlgyfUaBAmMsMOgj+f0CY335JokuQ/NfrWH0iFkk= Subject key identifier: EE:98:09:C9:01:21:3C:61:3D:75:76:DF:E8:47:07:63:48:FB:BA:E6 Certificate issuer: /CN=9c0d5540bdcd33052bc00fff266338bf3cc82a80 Certificate serial: 019B76EB33142B4DBA480B3545E84BFEA716 Authority key identifier: 9C:0D:55:40:BD:CD:33:05:2B:C0:0F:FF:26:63:38:BF:3C:C8:2A:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/7pgJyQEhPGE9dXbf6EcHY0j7uuY.roa Signing time: Thu 01 Jan 2026 00:18:04 +0000 ROA not before: Thu 01 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400161 IP address blocks: 195.96.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/nA1VQL3NMwUrwA__JmM4vzzIKoA.crl rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/nA1VQL3NMwUrwA__JmM4vzzIKoA.mft rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:33:14:2b:4d:ba:48:0b:35:45:e8:4b:fe:a7:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c0d5540bdcd33052bc00fff266338bf3cc82a80 Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee9809c901213c613d7576dfe847076348fbbae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f5:85:74:a5:b1:27:fa:d2:e6:ea:bf:f4:a1: e9:57:42:bb:98:3e:47:fb:79:62:cc:4b:5a:92:d8: a7:d2:be:c1:00:b0:06:03:1f:27:f0:aa:4b:65:2c: fd:3a:e3:e8:e1:65:8a:14:14:0c:22:47:08:4d:cd: 4b:9a:06:9b:7e:51:e0:cd:40:4c:67:81:58:2c:14: 04:29:00:c4:b2:0e:aa:e2:b4:8e:34:d3:84:f5:62: fa:b0:70:36:44:e6:98:29:25:98:cd:77:59:f4:f1: db:8d:bf:21:d1:7a:8d:6c:7b:af:dd:ae:62:01:89: 4e:43:bc:55:cb:d8:3b:0b:68:c3:27:4f:0a:57:02: 8f:6a:68:79:fb:67:85:ba:5b:4e:6d:ea:84:4d:77: 3d:a8:6d:c2:e0:cd:ac:89:38:09:90:61:33:9a:04: b0:a7:bb:f4:0e:3f:37:15:d5:67:24:de:9b:87:0d: 3b:a1:1f:06:2f:01:1d:3f:e4:3b:30:eb:8d:c4:81: 53:aa:b6:e0:cf:cc:11:de:79:9e:84:09:c9:ef:69: c1:2c:b6:c4:92:c6:86:9c:3c:88:9b:25:27:1c:2e: 81:55:e7:28:73:3c:12:ad:18:f7:51:8d:45:4d:57: 6c:d2:c3:e6:3f:b1:d7:4b:71:fe:98:b8:27:a9:a9: e1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:98:09:C9:01:21:3C:61:3D:75:76:DF:E8:47:07:63:48:FB:BA:E6 X509v3 Authority Key Identifier: keyid:9C:0D:55:40:BD:CD:33:05:2B:C0:0F:FF:26:63:38:BF:3C:C8:2A:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nA1VQL3NMwUrwA__JmM4vzzIKoA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/7pgJyQEhPGE9dXbf6EcHY0j7uuY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/70ddc4-f9c4-498b-85ee-16fc9d44ec7d/1/nA1VQL3NMwUrwA__JmM4vzzIKoA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.96.137.0/24 Signature Algorithm: sha256WithRSAEncryption ac:20:4e:d2:e6:9f:ad:c4:3f:d6:fb:51:80:fb:86:b9:89:03: 6a:0b:4f:c6:25:32:74:00:2a:3d:c5:e3:ee:34:29:d1:08:9a: 68:3d:87:bc:8e:21:da:b5:58:54:85:23:13:cf:fd:0a:ef:67: ae:f7:cf:04:fe:c5:25:5b:65:2c:07:4d:89:f1:20:7d:94:39: fb:9f:17:a1:30:57:f3:9e:98:76:d2:e8:e2:b8:05:cd:f8:eb: d2:b9:bb:04:ec:29:5e:fa:f1:3a:7f:f8:61:b6:ba:c9:48:04: 0c:2d:8d:c9:54:24:46:ae:d5:8b:75:ee:e3:ed:d2:98:27:9b: 50:ec:fe:eb:12:da:0a:cb:c4:99:9a:9e:61:7c:90:b8:9e:26: d2:56:fc:95:47:40:b2:f6:26:d0:83:5a:b5:82:dc:c7:11:c8: 87:06:5a:88:5b:54:a4:19:b4:54:31:aa:ba:78:e3:60:38:7c: 25:33:0f:61:c7:19:e0:6e:61:6e:a8:bf:4b:f9:bb:33:57:e9: ab:92:ab:62:39:20:e7:71:75:8c:1c:62:21:49:d4:8f:af:ac: f6:26:f0:d3:4c:75:47:66:a0:6d:c2:06:52:b1:2c:2f:bc:fe: 70:05:a6:e7:23:40:64:9b:bc:b6:2f:90:1b:77:8d:08:cf:55: 63:4d:9a:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26zMUK026SAs1RehL/qcWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMGQ1NTQwYmRjZDMzMDUyYmMwMGZmZjI2NjMzOGJmM2Nj ODJhODAwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTk4MDljOTAxMjEzYzYxM2Q3NTc2ZGZlODQ3MDc2MzQ4ZmJiYWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8fWFdKWxJ/rS5uq/9KHpV0K7mD5H +3lizEtaktin0r7BALAGAx8n8KpLZSz9OuPo4WWKFBQMIkcITc1LmgabflHgzUBM Z4FYLBQEKQDEsg6q4rSONNOE9WL6sHA2ROaYKSWYzXdZ9PHbjb8h0XqNbHuv3a5i AYlOQ7xVy9g7C2jDJ08KVwKPamh5+2eFultObeqETXc9qG3C4M2siTgJkGEzmgSw p7v0Dj83FdVnJN6bhw07oR8GLwEdP+Q7MOuNxIFTqrbgz8wR3nmehAnJ72nBLLbE ksaGnDyImyUnHC6BVecoczwSrRj3UY1FTVds0sPmP7HXS3H+mLgnqanhiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFO6YCckBITxhPXV23+hHB2NI+7rmMB8GA1UdIwQY MBaAFJwNVUC9zTMFK8AP/yZjOL88yCqAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkExVlFMM05Nd1Vyd0FfX0ptTTR2enpJS29BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi83MGRkYzQtZjljNC00OThiLTg1ZWUt MTZmYzlkNDRlYzdkLzEvN3BnSnlRRWhQR0U5ZFhiZjZFY0hZMGo3dXVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi83MGRkYzQtZjljNC00OThiLTg1ZWUtMTZmYzlkNDRlYzdk LzEvbkExVlFMM05Nd1Vyd0FfX0ptTTR2enpJS29BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw2CJMA0G CSqGSIb3DQEBCwUAA4IBAQCsIE7S5p+txD/W+1GA+4a5iQNqC0/GJTJ0ACo9xePu NCnRCJpoPYe8jiHatVhUhSMTz/0K72eu988E/sUlW2UsB02J8SB9lDn7nxehMFfz nph20ujiuAXN+OvSubsE7Cle+vE6f/hhtrrJSAQMLY3JVCRGrtWLde7j7dKYJ5tQ 7P7rEtoKy8SZmp5hfJC4nibSVvyVR0Cy9ibQg1q1gtzHEciHBlqIW1SkGbRUMaq6 eONgOHwlMw9hxxngbmFuqL9L+bszV+mrkqtiOSDncXWMHGIhSdSPr6z2JvDTTHVH ZqBtwgZSsSwvvP5wBabnI0Bkm7y2L5Abd40Iz1VjTZrj -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:54 2026 by rpki-client