This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7hZkh1avgsORX0jFr0OTdejA9wM.roa File: 7hZkh1avgsORX0jFr0OTdejA9wM.roa (raw, json) Hash identifier: ePi6lIXaXUJ5+Fzrm1o26dMQTX225/Zpz6KfzqvGj6M= Subject key identifier: EE:16:64:87:56:AF:82:C3:91:5F:48:C5:AF:43:93:75:E8:C0:F7:03 Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Certificate serial: 019B7B35FF080DDEEDB6EB622348F597F60F Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7hZkh1avgsORX0jFr0OTdejA9wM.roa Signing time: Thu 01 Jan 2026 20:18:14 +0000 ROA not before: Thu 01 Jan 2026 20:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23470 IP address blocks: 185.243.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.mft rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ff:08:0d:de:ed:b6:eb:62:23:48:f5:97:f6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc Validity Not Before: Jan 1 20:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee16648756af82c3915f48c5af439375e8c0f703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:80:b1:f4:4e:52:63:26:79:6e:4f:55:2f:b8: 46:f7:73:c7:29:37:74:98:e6:b8:55:2b:1e:1d:b5: e8:b5:ad:0f:50:97:28:bd:04:28:8c:97:ea:eb:da: c2:ab:38:b1:cb:e7:bf:2f:bd:9f:77:9e:0d:0b:4b: 5f:41:34:a7:aa:f9:98:27:7c:a4:63:a1:77:ee:63: 19:dd:23:82:87:c1:c8:47:52:04:3b:f2:ec:f9:eb: b2:bc:24:c0:2f:74:2a:d9:60:5c:76:ef:1c:a1:2e: 71:d5:17:2f:9c:68:ec:95:ef:95:b7:f6:f9:fc:83: 14:e2:31:79:2f:1e:09:a6:d3:f2:d0:a8:5c:6d:14: 85:0a:ea:c4:36:7a:a9:67:ce:cd:a3:af:4c:b3:65: 90:21:04:4e:9a:55:f8:76:6b:0b:20:3f:80:7b:b2: 76:59:b5:23:0c:31:95:1f:c2:33:8d:9f:a4:78:d4: 63:ef:48:b8:be:bc:1a:28:b7:c9:48:7d:5d:73:87: 69:90:4c:e8:8d:b7:cc:25:e9:ba:fe:c5:a6:4c:16: 6c:72:93:ad:e0:b1:5d:5a:c3:8a:b8:d1:4c:f6:ab: c5:e9:18:ac:34:0d:9f:f8:82:83:cc:40:41:1c:73: b6:6a:99:1d:bc:6d:d9:a4:4a:3e:86:d9:66:66:82: a8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:16:64:87:56:AF:82:C3:91:5F:48:C5:AF:43:93:75:E8:C0:F7:03 X509v3 Authority Key Identifier: keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7hZkh1avgsORX0jFr0OTdejA9wM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.243.5.0/24 Signature Algorithm: sha256WithRSAEncryption 55:f7:11:37:05:78:b6:4d:79:21:27:d2:19:69:46:50:54:db: 99:fc:f5:fc:77:c9:dd:48:20:ca:19:13:b6:7a:13:49:09:aa: 43:75:0f:c0:0f:86:6c:e6:0e:48:f6:1c:cc:06:48:96:a6:4e: 84:7e:52:3b:41:67:c7:31:19:f7:e4:ea:a0:99:a0:55:d0:4e: e9:75:47:85:1b:de:48:f4:eb:57:ad:64:ae:ba:0a:a6:99:31: 7e:b1:26:ad:38:b1:6a:28:70:e4:52:e3:f3:ce:fc:57:5a:33: bc:1a:72:40:04:74:be:99:de:cb:be:64:55:1b:6f:06:3e:7a: 65:54:03:46:24:04:85:28:62:f0:b3:70:fc:e5:06:ad:e0:68: 9a:b6:c4:1b:55:c8:de:fc:2c:fd:cf:b1:44:4f:10:56:e5:1d: 3c:c5:ed:a8:b1:bb:bf:e5:60:4c:76:c3:14:a7:d5:40:27:93: a0:bb:86:eb:b5:ac:6e:00:8d:ca:f9:55:f7:71:78:dd:0e:f5: 36:16:18:72:13:c8:bb:e6:17:a6:fa:8f:b1:7f:89:07:86:36: a9:9a:5f:06:47:0f:77:32:c5:0a:66:87:9c:5c:8e:59:af:63: d5:7d:9e:03:b6:8c:3a:d8:b2:23:97:52:d0:a6:9a:a9:a3:b1: b3:fb:1b:c8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nf8IDd7ttutiI0j1l/YPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2 YzhkY2MwHhcNMjYwMTAxMjAxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTE2NjQ4NzU2YWY4MmMzOTE1ZjQ4YzVhZjQzOTM3NWU4YzBmNzAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oCx9E5SYyZ5bk9VL7hG93PHKTd0 mOa4VSseHbXota0PUJcovQQojJfq69rCqzixy+e/L72fd54NC0tfQTSnqvmYJ3yk Y6F37mMZ3SOCh8HIR1IEO/Ls+euyvCTAL3Qq2WBcdu8coS5x1RcvnGjsle+Vt/b5 /IMU4jF5Lx4JptPy0KhcbRSFCurENnqpZ87No69Ms2WQIQROmlX4dmsLID+Ae7J2 WbUjDDGVH8IzjZ+keNRj70i4vrwaKLfJSH1dc4dpkEzojbfMJem6/sWmTBZscpOt 4LFdWsOKuNFM9qvF6RisNA2f+IKDzEBBHHO2apkdvG3ZpEo+htlmZoKocwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFO4WZIdWr4LDkV9Ixa9Dk3XowPcDMB8GA1UdIwQY MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt OTE4YWM2NDYyNjc5LzEvN2haa2gxYXZnc09SWDBqRnIwT1RkZWpBOXdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5 LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufMFMA0G CSqGSIb3DQEBCwUAA4IBAQBV9xE3BXi2TXkhJ9IZaUZQVNuZ/PX8d8ndSCDKGRO2 ehNJCapDdQ/AD4Zs5g5I9hzMBkiWpk6EflI7QWfHMRn35OqgmaBV0E7pdUeFG95I 9OtXrWSuugqmmTF+sSatOLFqKHDkUuPzzvxXWjO8GnJABHS+md7LvmRVG28GPnpl VANGJASFKGLws3D85Qat4GiatsQbVcje/Cz9z7FETxBW5R08xe2osbu/5WBMdsMU p9VAJ5Ogu4brtaxuAI3K+VX3cXjdDvU2FhhyE8i75hem+o+xf4kHhjapml8GRw93 MsUKZoecXI5Zr2PVfZ4Dtow62LIjl1LQppqpo7Gz+xvI -----END CERTIFICATE-----Generated at Thu Jan 8 09:24:01 2026 by rpki-client