This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/_7FUJXfD4Ngly6FguO7Icv3bnRs.roa File: _7FUJXfD4Ngly6FguO7Icv3bnRs.roa (raw, json) Hash identifier: uIw7fcvWe1lM1UlpZ2C4ZV/RLkNGSXf/iL61npEiJKw= Subject key identifier: FF:B1:54:25:77:C3:E0:D8:25:CB:A1:60:B8:EE:C8:72:FD:DB:9D:1B Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Certificate serial: 019B7C8035E6F92B4F7B43EB2AC2EAB37198 Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/_7FUJXfD4Ngly6FguO7Icv3bnRs.roa Signing time: Fri 02 Jan 2026 02:18:55 +0000 ROA not before: Fri 02 Jan 2026 02:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 680 IP address blocks: 131.234.0.0/16 maxlen: 16 192.26.174.0/23 maxlen: 23 192.26.176.0/20 maxlen: 20 192.26.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:35:e6:f9:2b:4f:7b:43:eb:2a:c2:ea:b3:71:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Validity Not Before: Jan 2 02:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ffb1542577c3e0d825cba160b8eec872fddb9d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:12:5a:52:c8:91:a6:43:3b:16:b1:22:83: 7a:1a:00:b2:b1:da:40:b9:40:9c:64:18:56:f6:d1: 76:45:9f:0b:e5:8a:94:6e:b0:ac:bf:aa:45:7f:51: 1b:a3:20:10:dc:04:60:7a:c5:80:64:23:d6:99:b4: b1:4e:21:fe:6f:2c:11:b4:c0:38:9b:a2:1f:01:dd: 84:13:29:a7:c8:5f:df:5a:65:96:cd:4e:15:da:68: 68:76:f3:a2:b8:39:b0:ae:26:19:0a:e5:4d:b1:5a: 32:dc:e5:5a:89:8c:b6:23:48:22:9d:a4:16:36:12: 63:a9:15:2d:0a:f3:83:72:af:b0:a7:64:22:35:88: 98:b2:ae:9d:be:55:95:1e:96:ed:de:9b:46:99:e2: d9:49:a3:94:f7:b5:33:95:79:2d:3f:2d:5b:2d:fa: 9e:15:20:b9:f8:82:78:d0:46:98:e1:e3:4f:bc:2e: 66:46:4a:15:ac:f1:20:26:21:42:40:86:ff:a7:8d: 5f:09:2f:11:7f:cd:e3:cb:3c:e5:b1:3a:a6:d3:2c: 09:41:70:b8:45:44:da:14:4e:99:37:fb:d4:bb:d1: a5:36:90:fc:66:51:9e:d9:de:e8:e7:28:1c:a1:d0: ef:63:69:09:c9:82:5d:e9:5b:90:16:13:f8:2e:a2: a8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B1:54:25:77:C3:E0:D8:25:CB:A1:60:B8:EE:C8:72:FD:DB:9D:1B X509v3 Authority Key Identifier: keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/_7FUJXfD4Ngly6FguO7Icv3bnRs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.234.0.0/16 192.26.174.0-192.26.193.255 Signature Algorithm: sha256WithRSAEncryption 0a:cc:d6:ac:6a:b4:a8:57:57:7c:d9:40:b0:2d:6f:50:1e:7d: 3b:e3:f8:c1:ad:40:5e:dd:c6:bc:1b:7e:8d:b4:9c:ab:3d:68: cf:c2:80:bf:50:01:95:99:85:be:a7:19:70:db:63:c1:c9:f4: 93:08:be:cc:bf:8f:e7:af:07:1b:f7:5e:50:26:7a:4d:c0:2f: ef:4c:30:af:eb:cc:34:4b:c9:eb:38:73:18:89:36:65:28:70: a8:75:41:ac:84:61:57:34:d1:14:0c:c6:a8:d0:7b:f2:a4:94: bc:57:19:21:5a:b1:8f:42:f1:f4:ce:b1:08:3c:6b:84:42:57: aa:41:bc:a1:61:f2:fc:53:75:a1:cd:2c:f1:db:24:5c:7e:dc: 17:23:c8:e6:d4:6f:b4:5a:c8:4c:65:e8:58:af:a7:20:cb:55: c5:fb:85:b3:2c:bd:fd:3d:c9:a8:d7:53:03:84:f0:42:c6:76: 19:0b:a3:a0:2d:ed:a4:a9:29:33:d2:04:fe:a2:d2:5f:87:05: 58:af:cb:a2:9a:66:9f:a8:08:8e:85:92:40:ea:a7:18:0b:e1: be:12:82:46:7e:bc:78:16:32:d7:c0:d4:97:f8:7d:dd:6b:18: 33:ff:eb:92:d1:d3:00:d2:9a:5a:ee:04:49:68:73:10:93:b4: 45:de:5c:e1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgISAZt8gDXm+StPe0PrKsLqs3GYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm NWUyNTYwHhcNMjYwMTAyMDIxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZmIxNTQyNTc3YzNlMGQ4MjVjYmExNjBiOGVlYzg3MmZkZGI5ZDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqMSWlLIkaZDOxaxIoN6GgCysdpA uUCcZBhW9tF2RZ8L5YqUbrCsv6pFf1EboyAQ3ARgesWAZCPWmbSxTiH+bywRtMA4 m6IfAd2EEymnyF/fWmWWzU4V2mhodvOiuDmwriYZCuVNsVoy3OVaiYy2I0ginaQW NhJjqRUtCvODcq+wp2QiNYiYsq6dvlWVHpbt3ptGmeLZSaOU97UzlXktPy1bLfqe FSC5+IJ40EaY4eNPvC5mRkoVrPEgJiFCQIb/p41fCS8Rf83jyzzlsTqm0ywJQXC4 RUTaFE6ZN/vUu9GlNpD8ZlGe2d7o5ygcodDvY2kJyYJd6VuQFhP4LqKonQIDAQAB o4ICFjCCAhIwHQYDVR0OBBYEFP+xVCV3w+DYJcuhYLjuyHL9250bMB8GA1UdIwQY MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt MjUwMTdlYzk0MDk1LzEvXzdGVUpYZkQ0TmdseTZGZ3VPN0ljdjNiblJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1 LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAATATAwMAg+owDAME AcAargMEAcAawDANBgkqhkiG9w0BAQsFAAOCAQEACszWrGq0qFdXfNlAsC1vUB59 O+P4wa1AXt3GvBt+jbScqz1oz8KAv1ABlZmFvqcZcNtjwcn0kwi+zL+P568HG/de UCZ6TcAv70wwr+vMNEvJ6zhzGIk2ZShwqHVBrIRhVzTRFAzGqNB78qSUvFcZIVqx j0Lx9M6xCDxrhEJXqkG8oWHy/FN1oc0s8dskXH7cFyPI5tRvtFrITGXoWK+nIMtV xfuFsyy9/T3JqNdTA4TwQsZ2GQujoC3tpKkpM9IE/qLSX4cFWK/Loppmn6gIjoWS QOqnGAvhvhKCRn68eBYy18DUl/h93WsYM//rktHTANKaWu4ESWhzEJO0Rd5c4Q== -----END CERTIFICATE-----Generated at Tue Jan 27 11:28:03 2026 by rpki-client