This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/A7oH_fLfnOw7C8Ezc6fn-0zm-WM.roa File: A7oH_fLfnOw7C8Ezc6fn-0zm-WM.roa (raw, json) Hash identifier: p+2iqj6NoeYI6sIm7F3U7seEwOT2LgHbpeFNruLRw/8= Subject key identifier: 03:BA:07:FD:F2:DF:9C:EC:3B:0B:C1:33:73:A7:E7:FB:4C:E6:F9:63 Certificate issuer: /CN=4bf3d18336642b6a9ac8aedffbf7aee6e5e629f4 Certificate serial: 019B797EC3170C7C12A726C7443EC7A08A24 Authority key identifier: 4B:F3:D1:83:36:64:2B:6A:9A:C8:AE:DF:FB:F7:AE:E6:E5:E6:29:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_PRgzZkK2qayK7f-_eu5uXmKfQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/A7oH_fLfnOw7C8Ezc6fn-0zm-WM.roa Signing time: Thu 01 Jan 2026 12:18:29 +0000 ROA not before: Thu 01 Jan 2026 12:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43989 IP address blocks: 79.98.40.0/21 maxlen: 21 93.188.96.0/21 maxlen: 21 109.234.56.0/21 maxlen: 21 185.181.136.0/22 maxlen: 22 195.206.246.0/23 maxlen: 23 195.216.202.0/23 maxlen: 23 213.217.7.0/24 maxlen: 24 2a01:b600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/S_PRgzZkK2qayK7f-_eu5uXmKfQ.crl rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/S_PRgzZkK2qayK7f-_eu5uXmKfQ.mft rsync://rpki.ripe.net/repository/DEFAULT/S_PRgzZkK2qayK7f-_eu5uXmKfQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:c3:17:0c:7c:12:a7:26:c7:44:3e:c7:a0:8a:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bf3d18336642b6a9ac8aedffbf7aee6e5e629f4 Validity Not Before: Jan 1 12:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03ba07fdf2df9cec3b0bc13373a7e7fb4ce6f963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:d2:de:ef:ae:0b:f3:e0:76:5d:8d:73:f0: b3:c4:7f:b6:59:f8:5f:dc:db:19:2e:a0:d2:b8:20: 06:5e:90:c6:77:4c:a6:11:3d:bc:7e:9d:5c:fb:bb: b9:c9:3c:8f:ee:3f:b4:65:f5:26:b3:24:36:f8:ad: 33:b4:02:3b:c5:59:ca:5a:ee:46:05:9d:84:0a:fd: 27:6e:07:12:15:09:70:6e:c5:40:b5:78:d1:f2:99: b0:66:1f:41:56:14:e2:95:0e:f3:af:e1:ab:22:fe: 46:3d:64:de:2f:2b:5d:c5:17:ba:9a:c8:b6:a8:1e: 7e:5c:c8:9a:f1:58:8a:3d:07:43:5b:8b:38:87:9e: 60:36:f2:ca:93:25:8b:61:95:8c:4d:ea:31:9e:b1: d2:c3:e8:1b:66:2e:5f:fd:4e:70:ae:c9:5d:fa:4b: 8c:76:02:95:4f:d8:1a:0c:07:37:dd:06:24:08:cb: e3:09:dc:e1:10:57:47:5d:2f:83:0d:65:99:64:c9: 3d:1f:91:0a:b1:1d:60:21:dc:b5:b0:07:20:ba:af: ec:51:ff:ee:e5:bb:0d:ff:ba:fe:5c:8b:6a:85:a4: 59:68:ee:bc:c2:36:c7:ab:e2:7a:25:8f:63:b2:48: 27:0e:e9:37:f0:39:2d:ba:dc:0d:70:bd:e7:4c:29: 17:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BA:07:FD:F2:DF:9C:EC:3B:0B:C1:33:73:A7:E7:FB:4C:E6:F9:63 X509v3 Authority Key Identifier: keyid:4B:F3:D1:83:36:64:2B:6A:9A:C8:AE:DF:FB:F7:AE:E6:E5:E6:29:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_PRgzZkK2qayK7f-_eu5uXmKfQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/A7oH_fLfnOw7C8Ezc6fn-0zm-WM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/642897-530e-4613-af84-0da300c7c63d/1/S_PRgzZkK2qayK7f-_eu5uXmKfQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.98.40.0/21 93.188.96.0/21 109.234.56.0/21 185.181.136.0/22 195.206.246.0/23 195.216.202.0/23 213.217.7.0/24 IPv6: 2a01:b600::/32 Signature Algorithm: sha256WithRSAEncryption 8c:55:f1:9f:45:a1:24:12:a7:45:3d:3f:56:30:8f:9a:9e:96: e3:a9:07:96:f3:51:64:45:5e:fd:b3:82:8b:a3:b1:32:b2:b6: b7:f1:c3:77:71:76:6f:e8:35:91:84:25:64:e7:39:f6:f6:1d: 5c:7a:71:2f:c0:ef:af:e5:6d:d0:88:30:93:ea:80:04:91:52: 44:a8:6b:4d:cf:3f:94:15:9d:39:fb:3e:36:d1:70:96:d0:99: 3e:25:11:30:04:44:a3:25:9e:19:53:68:d6:44:20:34:5a:fa: 3f:6a:9f:bc:de:d9:ca:80:a2:b5:9b:5d:e1:90:b8:b0:b6:84: 9d:f5:b6:02:73:99:83:3e:52:b9:29:32:50:d9:9b:d7:3a:f0: b8:08:55:66:91:fc:0a:77:d6:0c:9f:c8:0e:44:d9:bd:b3:bf: 18:f3:6b:e1:09:13:8a:be:2e:fa:e4:23:67:1e:88:e9:0e:78: d9:7c:cd:56:a4:0f:3a:a2:4a:00:d4:26:69:0f:5a:09:6e:57: a6:7e:1e:84:6e:5b:4c:00:19:2b:bc:f4:b5:46:92:4a:98:e5: f1:e2:ea:12:0f:4e:e4:ce:48:d7:58:cd:6d:af:6b:a9:bd:b5: 5b:b6:64:70:10:c5:12:38:72:82:8e:11:9f:38:1c:c9:41:e6: 93:af:f8:4b -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt5fsMXDHwSpybHRD7HoIokMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiZjNkMTgzMzY2NDJiNmE5YWM4YWVkZmZiZjdhZWU2ZTVl NjI5ZjQwHhcNMjYwMTAxMTIxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwM2JhMDdmZGYyZGY5Y2VjM2IwYmMxMzM3M2E3ZTdmYjRjZTZmOTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYTS3u+uC/Pgdl2Nc/CzxH+2Wfhf 3NsZLqDSuCAGXpDGd0ymET28fp1c+7u5yTyP7j+0ZfUmsyQ2+K0ztAI7xVnKWu5G BZ2ECv0nbgcSFQlwbsVAtXjR8pmwZh9BVhTilQ7zr+GrIv5GPWTeLytdxRe6msi2 qB5+XMia8ViKPQdDW4s4h55gNvLKkyWLYZWMTeoxnrHSw+gbZi5f/U5wrsld+kuM dgKVT9gaDAc33QYkCMvjCdzhEFdHXS+DDWWZZMk9H5EKsR1gIdy1sAcguq/sUf/u 5bsN/7r+XItqhaRZaO68wjbHq+J6JY9jskgnDuk38DktutwNcL3nTCkXFQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFAO6B/3y35zsOwvBM3On5/tM5vljMB8GA1UdIwQY MBaAFEvz0YM2ZCtqmsiu3/v3rubl5in0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU19QUmd6WmtLMnFheUs3Zi1fZXU1dVhtS2ZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi82NDI4OTctNTMwZS00NjEzLWFmODQt MGRhMzAwYzdjNjNkLzEvQTdvSF9mTGZuT3c3QzhFemM2Zm4tMHptLVdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi82NDI4OTctNTMwZS00NjEzLWFmODQtMGRhMzAwYzdjNjNk LzEvU19QUmd6WmtLMnFheUs3Zi1fZXU1dVhtS2ZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDT2IoAwQD XbxgAwQDbeo4AwQCubWIAwQBw872AwQBw9jKAwQA1dkHMA0EAgACMAcDBQAqAbYA MA0GCSqGSIb3DQEBCwUAA4IBAQCMVfGfRaEkEqdFPT9WMI+anpbjqQeW81FkRV79 s4KLo7Eysra38cN3cXZv6DWRhCVk5zn29h1cenEvwO+v5W3QiDCT6oAEkVJEqGtN zz+UFZ05+z420XCW0Jk+JREwBESjJZ4ZU2jWRCA0Wvo/ap+83tnKgKK1m13hkLiw toSd9bYCc5mDPlK5KTJQ2ZvXOvC4CFVmkfwKd9YMn8gORNm9s78Y82vhCROKvi76 5CNnHojpDnjZfM1WpA86okoA1CZpD1oJblemfh6EbltMABkrvPS1RpJKmOXx4uoS D07kzkjXWM1tr2upvbVbtmRwEMUSOHKCjhGfOBzJQeaTr/hL -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:34 2026 by rpki-client