This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/7wFOH7ecwAxbcPrjKMH8DMVlPm4.roa File: 7wFOH7ecwAxbcPrjKMH8DMVlPm4.roa (raw, json) Hash identifier: oDFpn/TpGeL3vgneJ/VQgGBHX/EOeGEzI4ysPf7pfaY= Subject key identifier: EF:01:4E:1F:B7:9C:C0:0C:5B:70:FA:E3:28:C1:FC:0C:C5:65:3E:6E Certificate issuer: /CN=cbf74cd846493138f522c57c0065b5c60512dd09 Certificate serial: 019B7910DE872D0A0CF996B83A53765BE987 Authority key identifier: CB:F7:4C:D8:46:49:31:38:F5:22:C5:7C:00:65:B5:C6:05:12:DD:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/7wFOH7ecwAxbcPrjKMH8DMVlPm4.roa Signing time: Thu 01 Jan 2026 10:18:27 +0000 ROA not before: Thu 01 Jan 2026 10:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206614 IP address blocks: 141.226.125.0/24 maxlen: 24 141.226.126.0/24 maxlen: 24 141.226.127.0/24 maxlen: 24 141.226.128.0/24 maxlen: 24 141.226.129.0/24 maxlen: 24 141.226.130.0/24 maxlen: 24 141.226.131.0/24 maxlen: 24 2a06:3b80:21::/48 maxlen: 48 2a06:3b80:22::/48 maxlen: 48 2a06:3b80:23::/48 maxlen: 48 2a06:3b80:24::/48 maxlen: 48 2a06:3b80:25::/48 maxlen: 48 2a06:3b80:26::/48 maxlen: 48 2a06:3b80:154::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.crl rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.mft rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 19:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:de:87:2d:0a:0c:f9:96:b8:3a:53:76:5b:e9:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbf74cd846493138f522c57c0065b5c60512dd09 Validity Not Before: Jan 1 10:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef014e1fb79cc00c5b70fae328c1fc0cc5653e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a0:06:19:c1:a0:10:9d:37:6b:f8:47:6a:d1: b6:7b:3f:ce:35:88:be:47:8e:44:1d:2d:5f:1c:05: 4f:a6:5b:91:63:91:a7:af:86:da:3b:9b:89:c1:ee: 86:99:6e:cc:42:65:50:9e:62:5e:84:bd:cb:38:79: c5:af:df:cf:f2:25:7e:cf:8f:89:14:9a:cb:8c:e5: e9:6f:07:b5:56:45:0d:a4:08:f8:81:e1:17:06:ff: c8:33:1f:0c:18:b4:72:4c:91:83:87:e2:ac:c2:b2: 77:57:0c:fd:14:98:70:d2:e6:7d:86:75:8e:e6:2c: d8:bd:ed:6a:99:f5:35:92:96:75:1e:24:4e:4d:d3: 48:b4:77:bb:1c:86:42:84:50:2a:16:db:be:9d:80: 6e:d6:82:d0:84:69:ce:3a:fc:43:4d:5f:04:d0:1e: b5:b1:07:7e:06:9a:86:22:db:3c:67:19:7b:a3:08: e5:2e:1c:d2:b1:88:b3:7f:66:da:73:71:41:d7:01: a0:05:5d:0e:a5:14:6f:fa:f6:22:39:b0:a6:a9:29: ae:d5:06:af:d3:7d:59:42:f0:f0:09:0b:0c:cb:66: da:20:0d:2c:ab:e8:50:08:0e:f5:aa:52:64:f1:8a: 8c:5e:44:5d:34:9a:92:23:f2:b7:7f:50:10:fc:48: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:01:4E:1F:B7:9C:C0:0C:5B:70:FA:E3:28:C1:FC:0C:C5:65:3E:6E X509v3 Authority Key Identifier: keyid:CB:F7:4C:D8:46:49:31:38:F5:22:C5:7C:00:65:B5:C6:05:12:DD:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/7wFOH7ecwAxbcPrjKMH8DMVlPm4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/348789-3208-4847-9c3f-982d1f21a32b/1/y_dM2EZJMTj1IsV8AGW1xgUS3Qk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.226.125.0-141.226.131.255 IPv6: 2a06:3b80:21::-2a06:3b80:26:ffff:ffff:ffff:ffff:ffff 2a06:3b80:154::/48 Signature Algorithm: sha256WithRSAEncryption 0f:a4:bf:3c:9c:f1:ab:52:e7:47:3d:03:5b:90:16:f2:b8:78: 2a:1b:d8:72:f6:92:90:66:ef:ad:50:f9:f2:77:fa:91:5c:98: 21:6b:6b:e3:f4:3a:26:db:ee:b1:15:9e:da:d2:2a:ec:b1:9c: 44:81:8f:ff:b2:2e:d5:a4:21:a3:a6:3f:95:79:dd:a1:dd:30: 40:46:c9:01:36:97:2d:ac:42:ff:95:2d:4a:ce:e9:5c:98:16: 8f:b4:10:5c:62:e0:f7:d9:bd:75:b7:22:f1:d3:7e:83:41:7d: 21:0e:62:fa:7d:8d:1e:a1:f5:a0:2d:5b:ab:6b:5f:2a:98:8d: a1:ec:3b:45:91:c7:5e:e7:34:5d:4e:76:23:02:b7:84:30:2e: 78:de:7d:8e:3a:76:06:e3:84:be:01:f6:fa:92:c9:75:f6:e0: ba:17:d3:97:e8:4e:d2:0e:34:31:d6:b4:a6:af:93:9e:2f:ba: 91:b3:53:ac:1b:3d:d7:6e:25:20:8f:9e:ca:d4:9f:89:9b:97: 69:41:ce:ee:4e:02:81:36:69:0b:c0:e6:51:ea:9d:0f:8e:2f: d9:04:2f:bd:4b:99:85:b0:4b:f3:96:97:de:d4:ed:08:11:a2: 67:37:cd:c5:98:79:93:a8:e6:9c:51:c4:25:46:bd:8c:9b:fa: 97:42:9f:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt5EN6HLQoM+Za4OlN2W+mHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZjc0Y2Q4NDY0OTMxMzhmNTIyYzU3YzAwNjViNWM2MDUx MmRkMDkwHhcNMjYwMTAxMTAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjAxNGUxZmI3OWNjMDBjNWI3MGZhZTMyOGMxZmMwY2M1NjUzZTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtaAGGcGgEJ03a/hHatG2ez/ONYi+ R45EHS1fHAVPpluRY5Gnr4baO5uJwe6GmW7MQmVQnmJehL3LOHnFr9/P8iV+z4+J FJrLjOXpbwe1VkUNpAj4geEXBv/IMx8MGLRyTJGDh+KswrJ3Vwz9FJhw0uZ9hnWO 5izYve1qmfU1kpZ1HiROTdNItHe7HIZChFAqFtu+nYBu1oLQhGnOOvxDTV8E0B61 sQd+BpqGIts8Zxl7owjlLhzSsYizf2bac3FB1wGgBV0OpRRv+vYiObCmqSmu1Qav 031ZQvDwCQsMy2baIA0sq+hQCA71qlJk8YqMXkRdNJqSI/K3f1AQ/EhvpQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFO8BTh+3nMAMW3D64yjB/AzFZT5uMB8GA1UdIwQY MBaAFMv3TNhGSTE49SLFfABltcYFEt0JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveV9kTTJFWkpNVGoxSXNWOEFHVzF4Z1VTM1FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zNDg3ODktMzIwOC00ODQ3LTljM2Yt OTgyZDFmMjFhMzJiLzEvN3dGT0g3ZWN3QXhiY1ByaktNSDhETVZsUG00LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zNDg3ODktMzIwOC00ODQ3LTljM2YtOTgyZDFmMjFhMzJi LzEveV9kTTJFWkpNVGoxSXNWOEFHVzF4Z1VTM1FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAUBAIAATAOMAwDBACN4n0D BAKN4oAwIwQCAAIwHTASAwcAKgY7gAAhAwcAKgY7gAAmAwcAKgY7gAFUMA0GCSqG SIb3DQEBCwUAA4IBAQAPpL88nPGrUudHPQNbkBbyuHgqG9hy9pKQZu+tUPnyd/qR XJgha2vj9Dom2+6xFZ7a0irssZxEgY//si7VpCGjpj+Ved2h3TBARskBNpctrEL/ lS1KzulcmBaPtBBcYuD32b11tyLx036DQX0hDmL6fY0eofWgLVura18qmI2h7DtF kcde5zRdTnYjAreEMC543n2OOnYG44S+Afb6ksl19uC6F9OX6E7SDjQx1rSmr5Oe L7qRs1OsGz3XbiUgj57K1J+Jm5dpQc7uTgKBNmkLwOZR6p0Pji/ZBC+9S5mFsEvz lpfe1O0IEaJnN83FmHmTqOacUcQlRr2Mm/qXQp+Q -----END CERTIFICATE-----Generated at Sun Jan 11 02:59:08 2026 by rpki-client