This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/7CU_Saf57sM-1yN004kvK8zmk90.roa File: 7CU_Saf57sM-1yN004kvK8zmk90.roa (raw, json) Hash identifier: 5bpO+sXcLPXisvn+5cMGZDrHN6oZNZR0ne9tf2cns+o= Subject key identifier: EC:25:3F:49:A7:F9:EE:C3:3E:D7:23:74:D3:89:2F:2B:CC:E6:93:DD Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Certificate serial: 019B7E379B85577B38212D2558EDC1A1BA90 Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/7CU_Saf57sM-1yN004kvK8zmk90.roa Signing time: Fri 02 Jan 2026 10:18:52 +0000 ROA not before: Fri 02 Jan 2026 10:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34744 IP address blocks: 31.133.28.0/22 maxlen: 22 77.36.0.0/23 maxlen: 23 77.36.16.0/21 maxlen: 21 77.232.216.0/22 maxlen: 22 91.246.172.0/22 maxlen: 22 93.120.47.0/24 maxlen: 24 109.197.232.0/22 maxlen: 22 176.115.232.0/22 maxlen: 22 2a01:7d8::/48 maxlen: 48 2a01:7d8:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.mft rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:9b:85:57:7b:38:21:2d:25:58:ed:c1:a1:ba:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa Validity Not Before: Jan 2 10:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ec253f49a7f9eec33ed72374d3892f2bcce693dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c6:42:1a:70:1e:3c:ec:71:50:32:65:ad:03: 10:21:19:82:14:da:3e:d3:68:57:10:6a:dd:51:52: 5c:00:96:84:98:dd:4d:3d:31:82:fe:49:59:cb:0f: 83:f6:b9:cf:fd:9f:be:25:d4:76:01:e1:9e:8d:24: ca:91:40:10:a7:21:c2:12:4a:3a:68:51:2e:bd:21: 79:12:f5:22:14:8b:7f:60:ad:26:b8:7d:51:01:4d: 06:f0:6f:84:60:da:d2:0e:96:46:07:a9:44:37:94: d4:42:25:2b:65:67:e3:78:06:6f:52:be:81:58:f0: 6b:52:a1:a6:19:bb:3e:9b:85:de:d6:3b:67:f5:b3: ff:f5:73:3f:d7:1c:ed:1b:34:0a:75:ae:a2:48:8d: e7:30:cf:c8:7c:55:bd:6a:16:75:f1:31:ba:12:49: f9:3c:92:69:af:99:15:d2:49:c1:3b:18:4c:8c:0b: f3:ac:d5:47:44:4a:cc:c6:04:78:a4:5d:93:e5:10: 63:37:ca:14:f7:73:cd:dd:c8:1a:14:1e:b8:c8:9a: 05:ef:01:51:18:f2:f9:01:1e:2e:c2:c9:e0:26:9d: 5a:b2:01:0f:32:60:9b:3c:cc:e2:ec:0e:bf:89:46: 8c:16:93:13:fd:49:08:a1:6a:9e:62:5e:4f:b3:15: 27:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:25:3F:49:A7:F9:EE:C3:3E:D7:23:74:D3:89:2F:2B:CC:E6:93:DD X509v3 Authority Key Identifier: keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/7CU_Saf57sM-1yN004kvK8zmk90.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.133.28.0/22 77.36.0.0/23 77.36.16.0/21 77.232.216.0/22 91.246.172.0/22 93.120.47.0/24 109.197.232.0/22 176.115.232.0/22 IPv6: 2a01:7d8::/47 Signature Algorithm: sha256WithRSAEncryption 12:cf:0e:b0:c6:22:95:8b:f9:09:95:aa:a7:e1:84:d7:8f:f7: 55:a7:ed:fb:f2:78:46:07:a2:c2:0a:e3:1f:e8:00:67:76:1f: 47:e9:6c:96:0f:5c:92:0d:57:cd:86:b5:0d:fb:cc:bb:4e:1d: 1b:5b:d8:99:b7:d3:a0:5a:b5:fc:bc:d5:c5:2e:c4:02:5b:ac: 1b:17:b5:e9:6d:0b:f7:52:98:4f:d8:17:65:ec:60:5f:07:2b: 31:ae:27:3e:2a:29:4f:c4:a9:89:8c:16:b2:53:70:6e:35:ae: 58:3b:a0:eb:77:01:10:6e:e7:bf:d0:69:f0:d5:99:66:86:65: 6b:78:d0:a7:60:ab:c5:cf:5b:1b:3a:0c:be:1f:bf:eb:51:8d: 8c:f3:37:39:bb:d2:ff:ad:44:30:15:f0:87:77:9d:59:75:9c: 4c:bf:0e:e9:dd:94:73:77:6b:36:c5:f5:f4:83:09:2d:2e:ec: 5b:71:fc:a3:90:46:4b:fb:88:8c:55:2a:26:3e:36:fa:d0:79: a8:45:09:1e:df:9a:6b:b8:43:30:a6:b4:fd:26:4d:ed:63:1e: 87:4a:43:7b:e3:1f:ed:39:2d:7e:e1:c2:62:68:58:dd:ae:ee: b4:3e:22:57:f7:f6:db:b4:0c:a7:20:dd:d1:97:d6:b2:da:6d: fe:aa:9f:69 -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISAZt+N5uFV3s4IS0lWO3BobqQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy MjRkYWEwHhcNMjYwMTAyMTAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYzI1M2Y0OWE3ZjllZWMzM2VkNzIzNzRkMzg5MmYyYmNjZTY5M2RkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsZCGnAePOxxUDJlrQMQIRmCFNo+ 02hXEGrdUVJcAJaEmN1NPTGC/klZyw+D9rnP/Z++JdR2AeGejSTKkUAQpyHCEko6 aFEuvSF5EvUiFIt/YK0muH1RAU0G8G+EYNrSDpZGB6lEN5TUQiUrZWfjeAZvUr6B WPBrUqGmGbs+m4Xe1jtn9bP/9XM/1xztGzQKda6iSI3nMM/IfFW9ahZ18TG6Ekn5 PJJpr5kV0knBOxhMjAvzrNVHRErMxgR4pF2T5RBjN8oU93PN3cgaFB64yJoF7wFR GPL5AR4uwsngJp1asgEPMmCbPMzi7A6/iUaMFpMT/UkIoWqeYl5PsxUntwIDAQAB o4ICRDCCAkAwHQYDVR0OBBYEFOwlP0mn+e7DPtcjdNOJLyvM5pPdMB8GA1UdIwQY MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt ZGMwNmRkODA1OTYwLzEvN0NVX1NhZjU3c00tMXlOMDA0a3ZLOHptazkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTA2BAIAATAwAwQCH4UcAwQB TSQAAwQDTSQQAwQCTejYAwQCW/asAwQAXXgvAwQCbcXoAwQCsHPoMA8EAgACMAkD BwEqAQfYAAAwDQYJKoZIhvcNAQELBQADggEBABLPDrDGIpWL+QmVqqfhhNeP91Wn 7fvyeEYHosIK4x/oAGd2H0fpbJYPXJINV82GtQ37zLtOHRtb2Jm306Batfy81cUu xAJbrBsXteltC/dSmE/YF2XsYF8HKzGuJz4qKU/EqYmMFrJTcG41rlg7oOt3ARBu 57/QafDVmWaGZWt40Kdgq8XPWxs6DL4fv+tRjYzzNzm70v+tRDAV8Id3nVl1nEy/ DundlHN3azbF9fSDCS0u7Ftx/KOQRkv7iIxVKiY+NvrQeahFCR7fmmu4QzCmtP0m Te1jHodKQ3vjH+05LX7hwmJoWN2u7rQ+Ilf39tu0DKcg3dGX1rLabf6qn2k= -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:00 2026 by rpki-client