This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/S07AeLQ2NYxvgtMR17xnrys_0A8.roa File: S07AeLQ2NYxvgtMR17xnrys_0A8.roa (raw, json) Hash identifier: xF4nltUlnbXwDKnVSE40BEpkV8WuHnGlPrCS02d5En4= Subject key identifier: 4B:4E:C0:78:B4:36:35:8C:6F:82:D3:11:D7:BC:67:AF:2B:3F:D0:0F Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0 Certificate serial: 019B797DFBFC5230F29EBABCC7277B2824D6 Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/S07AeLQ2NYxvgtMR17xnrys_0A8.roa Signing time: Thu 01 Jan 2026 12:17:38 +0000 ROA not before: Thu 01 Jan 2026 12:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12555 IP address blocks: 45.135.92.0/22 maxlen: 22 81.29.128.0/20 maxlen: 20 93.189.144.0/21 maxlen: 21 185.37.63.0/24 maxlen: 24 2a00:f2a0::/32 maxlen: 32 2a0e:8f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.mft rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:fb:fc:52:30:f2:9e:ba:bc:c7:27:7b:28:24:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0 Validity Not Before: Jan 1 12:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4b4ec078b436358c6f82d311d7bc67af2b3fd00f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:78:5d:07:2f:e6:57:77:7f:96:eb:94:67:2a: 76:a7:9c:28:e0:92:ac:d9:08:c6:40:c1:13:33:b2: 55:52:73:9b:a5:ec:65:49:e1:75:d3:6f:d0:fa:55: f0:59:a7:a7:cc:01:99:17:9d:0a:f7:10:25:fe:90: b5:03:0c:6c:19:b2:b4:3e:05:e6:ea:e8:2d:73:aa: cc:9e:9f:ae:fa:98:a3:6d:00:7b:82:41:1b:72:08: 84:13:b5:96:db:20:60:80:92:0a:39:d0:56:a7:8d: a2:9b:91:1d:b4:9d:e6:97:42:d8:ed:f8:ba:8e:61: 39:9a:4a:9c:ac:bb:b6:8f:c6:c4:ba:49:3c:8a:84: e7:15:22:47:c8:86:18:b0:52:3c:d9:b2:98:f8:4b: d9:9f:d4:19:70:f3:c3:b1:4b:0f:ed:8f:20:7a:f6: 51:6e:74:09:f6:ea:3c:36:4d:63:34:13:94:3b:45: 4d:f4:9d:66:8f:c5:9c:2a:d2:99:35:ab:00:4d:62: 01:9d:09:95:42:31:b2:a7:ab:80:9a:90:8d:91:c2: 62:81:4c:f4:9a:05:37:be:cd:67:7a:72:72:52:44: fb:d5:5a:d6:31:01:3b:6d:de:cf:3e:84:c3:e6:92: a0:54:4f:90:e8:14:0b:37:f8:a9:8d:f3:12:d4:77: 37:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4E:C0:78:B4:36:35:8C:6F:82:D3:11:D7:BC:67:AF:2B:3F:D0:0F X509v3 Authority Key Identifier: keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/S07AeLQ2NYxvgtMR17xnrys_0A8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.135.92.0/22 81.29.128.0/20 93.189.144.0/21 185.37.63.0/24 IPv6: 2a00:f2a0::/32 2a0e:8f40::/29 Signature Algorithm: sha256WithRSAEncryption 8f:ed:89:c3:97:4b:32:2c:6e:86:b3:0e:1e:58:9b:e0:74:60: fa:ac:d2:2a:44:c5:2d:f6:90:0e:4a:64:61:10:89:14:ab:69: 47:f8:70:7e:7d:85:45:76:16:b0:39:82:3a:d2:62:0f:77:66: 31:a3:26:19:a1:e9:90:56:02:28:c6:de:41:67:10:c5:c9:27: 48:f5:88:fa:ff:63:31:b9:88:c7:79:94:ce:31:4f:26:0e:93: d4:3c:cd:25:ed:f5:36:fb:bf:af:48:45:f4:fe:4a:69:47:db: ff:49:28:60:40:70:13:85:7b:7b:bf:a1:40:61:9a:8a:4a:49: 02:7e:a6:2f:9a:ef:46:d2:a3:b4:7d:77:30:b7:5f:94:89:eb: ba:f9:d5:35:c6:ed:5a:70:70:0e:54:17:ca:b4:15:de:cb:40: 89:a1:d5:6d:6a:46:88:a2:ab:53:7a:f8:b1:66:ac:3c:44:da: 61:05:54:65:8d:5b:c5:ae:2a:37:fb:9a:b2:ff:07:0c:1c:d9: 11:19:75:e6:de:26:27:8b:5d:c4:90:a5:47:4e:a1:40:4c:3d: 86:06:2f:66:e7:b9:5a:0a:e4:3c:b8:5e:bc:27:dd:17:62:ec: 3f:db:05:ce:31:9c:99:9a:44:95:70:4a:51:a0:8f:b7:e6:42: 6a:eb:ab:36 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt5ffv8UjDynrq8xyd7KCTWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzNDM1MTQ2MzBkYzE3ZjNmZTliNTFkZDQzNDE4NGQwYjYy YjAzYzAwHhcNMjYwMTAxMTIxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjRlYzA3OGI0MzYzNThjNmY4MmQzMTFkN2JjNjdhZjJiM2ZkMDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7nhdBy/mV3d/luuUZyp2p5wo4JKs 2QjGQMETM7JVUnObpexlSeF102/Q+lXwWaenzAGZF50K9xAl/pC1AwxsGbK0PgXm 6ugtc6rMnp+u+pijbQB7gkEbcgiEE7WW2yBggJIKOdBWp42im5EdtJ3ml0LY7fi6 jmE5mkqcrLu2j8bEukk8ioTnFSJHyIYYsFI82bKY+EvZn9QZcPPDsUsP7Y8gevZR bnQJ9uo8Nk1jNBOUO0VN9J1mj8WcKtKZNasATWIBnQmVQjGyp6uAmpCNkcJigUz0 mgU3vs1nenJyUkT71VrWMQE7bd7PPoTD5pKgVE+Q6BQLN/ipjfMS1Hc3FwIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFEtOwHi0NjWMb4LTEde8Z68rP9APMB8GA1UdIwQY MBaAFLNDUUYw3Bfz/ptR3UNBhNC2KwPAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczBOUlJqRGNGX1AtbTFIZFEwR0UwTFlyQThBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMzgwNDYtN2JlMC00MDE3LWE5OGIt YTcyNDdlOWQ1ZjNhLzEvUzA3QWVMUTJOWXh2Z3RNUjE3eG5yeXNfMEE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMzgwNDYtN2JlMC00MDE3LWE5OGItYTcyNDdlOWQ1ZjNh LzEvczBOUlJqRGNGX1AtbTFIZFEwR0UwTFlyQThBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQCLYdcAwQE UR2AAwQDXb2QAwQAuSU/MBQEAgACMA4DBQAqAPKgAwUDKg6PQDANBgkqhkiG9w0B AQsFAAOCAQEAj+2Jw5dLMixuhrMOHlib4HRg+qzSKkTFLfaQDkpkYRCJFKtpR/hw fn2FRXYWsDmCOtJiD3dmMaMmGaHpkFYCKMbeQWcQxcknSPWI+v9jMbmIx3mUzjFP Jg6T1DzNJe31Nvu/r0hF9P5KaUfb/0koYEBwE4V7e7+hQGGaikpJAn6mL5rvRtKj tH13MLdflInruvnVNcbtWnBwDlQXyrQV3stAiaHVbWpGiKKrU3r4sWasPETaYQVU ZY1bxa4qN/uasv8HDBzZERl15t4mJ4tdxJClR06hQEw9hgYvZue5WgrkPLhevCfd F2LsP9sFzjGcmZpElXBKUaCPt+ZCauurNg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:48 2026 by rpki-client