This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/7KqDQ5EQuGmvhILgEAo_YtQ7FJ4.roa File: 7KqDQ5EQuGmvhILgEAo_YtQ7FJ4.roa (raw, json) Hash identifier: bvJPZ/mgeT5elBDOrMpk/TrY61qYzctI3tuX2E3hfic= Subject key identifier: EC:AA:83:43:91:10:B8:69:AF:84:82:E0:10:0A:3F:62:D4:3B:14:9E Certificate issuer: /CN=70e7ad0598208a6af9d1500a740d73bcf28f0384 Certificate serial: 019B7B36B23940CDFABB742F3091DC35334F Authority key identifier: 70:E7:AD:05:98:20:8A:6A:F9:D1:50:0A:74:0D:73:BC:F2:8F:03:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOetBZggimr50VAKdA1zvPKPA4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/7KqDQ5EQuGmvhILgEAo_YtQ7FJ4.roa Signing time: Thu 01 Jan 2026 20:19:00 +0000 ROA not before: Thu 01 Jan 2026 20:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29663 IP address blocks: 193.201.116.0/24 maxlen: 24 2001:67c:5e8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/cOetBZggimr50VAKdA1zvPKPA4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/cOetBZggimr50VAKdA1zvPKPA4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/cOetBZggimr50VAKdA1zvPKPA4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:b2:39:40:cd:fa:bb:74:2f:30:91:dc:35:33:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70e7ad0598208a6af9d1500a740d73bcf28f0384 Validity Not Before: Jan 1 20:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ecaa83439110b869af8482e0100a3f62d43b149e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:38:a5:4a:ea:6b:0f:6d:24:34:b3:3a:06:9d: 38:3f:0f:9e:e2:fb:45:61:e5:7a:14:75:f5:a6:79: ba:8b:95:1e:72:d2:97:c4:09:61:29:f3:26:c3:53: b5:2e:c4:5d:2a:c3:df:c6:fd:c0:b0:07:ed:03:7e: f0:d5:cc:f4:f2:71:c1:b9:ab:31:67:f8:6f:f7:67: 29:1d:86:92:cb:82:09:dd:55:fa:4c:14:2a:f4:93: c1:be:fe:f9:b1:5b:6a:40:7e:8c:c5:d3:6f:dd:3a: 99:96:e6:8e:25:78:9e:d7:09:13:e4:0b:92:c8:95: ae:0a:1a:7c:53:a5:1a:89:b9:1f:c9:29:d5:9b:04: a0:24:f6:7f:4c:23:7e:00:3b:8e:c3:ac:7e:07:4d: e7:59:eb:da:a5:b1:ec:fb:07:df:a2:15:34:07:a7: 96:38:02:db:ae:f1:df:9b:b6:6c:de:c2:b8:5f:fb: 33:21:1d:23:6e:cb:89:07:4e:06:9d:04:be:00:c8: ca:78:2c:10:3d:1e:47:be:e4:9f:0e:cd:f7:5c:a6: 7f:04:76:ca:ac:08:45:ce:64:87:57:83:ef:90:f6: f7:1d:f4:6d:3d:64:90:e5:0f:ae:13:1e:e1:6e:d5: 29:9d:b3:16:bf:f4:7e:6f:b5:95:94:67:f5:89:0b: ec:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AA:83:43:91:10:B8:69:AF:84:82:E0:10:0A:3F:62:D4:3B:14:9E X509v3 Authority Key Identifier: keyid:70:E7:AD:05:98:20:8A:6A:F9:D1:50:0A:74:0D:73:BC:F2:8F:03:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOetBZggimr50VAKdA1zvPKPA4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/7KqDQ5EQuGmvhILgEAo_YtQ7FJ4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/666404-c28f-4d29-96e4-607e17aec750/1/cOetBZggimr50VAKdA1zvPKPA4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.201.116.0/24 IPv6: 2001:67c:5e8::/48 Signature Algorithm: sha256WithRSAEncryption 14:e7:eb:fc:3f:24:0c:af:3e:da:48:a5:33:05:c1:9c:f2:61: 7b:d9:40:91:f8:5c:38:46:c6:b0:d5:e2:0b:d3:47:69:5a:46: 0b:b4:10:47:1e:3b:90:66:1d:70:ef:00:42:1c:67:ac:65:f2: 5c:ce:25:10:1b:b0:d3:8b:31:dc:91:8e:52:f4:6c:fe:41:d3: b7:dd:75:bd:70:1c:f7:03:d3:82:09:d9:50:e6:12:3e:c1:e6: 6e:d6:08:a0:09:76:98:d2:4c:4e:b6:6b:ca:b3:b1:2e:42:0e: 1f:be:ef:f2:54:1f:b5:d1:62:de:37:24:55:d2:01:10:c6:11: f7:5a:61:84:1e:9f:ad:d5:90:3b:e8:86:95:e1:08:a3:05:16: 6c:4d:a5:5c:c9:19:b2:57:0e:fd:af:b2:d4:86:47:7e:bd:b6: 30:b2:49:89:83:60:af:a2:0f:94:f7:2b:ee:69:9a:92:9d:3c: af:10:d1:92:d3:6d:b4:83:76:d5:df:e3:5e:01:da:cd:93:ac: 30:c8:95:03:1e:f1:6a:0a:2b:e0:3a:ff:a5:cc:2c:8b:10:85: 5f:44:5c:3d:20:77:b0:2d:56:20:ac:9b:7c:89:aa:49:f4:67: af:5e:5c:64:f3:6c:2c:0a:c5:5e:da:e4:17:28:20:12:e8:70: 8e:d3:15:92 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7NrI5QM36u3QvMJHcNTNPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZTdhZDA1OTgyMDhhNmFmOWQxNTAwYTc0MGQ3M2JjZjI4 ZjAzODQwHhcNMjYwMTAxMjAxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2FhODM0MzkxMTBiODY5YWY4NDgyZTAxMDBhM2Y2MmQ0M2IxNDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jilSuprD20kNLM6Bp04Pw+e4vtF YeV6FHX1pnm6i5UectKXxAlhKfMmw1O1LsRdKsPfxv3AsAftA37w1cz08nHBuasx Z/hv92cpHYaSy4IJ3VX6TBQq9JPBvv75sVtqQH6MxdNv3TqZluaOJXie1wkT5AuS yJWuChp8U6UaibkfySnVmwSgJPZ/TCN+ADuOw6x+B03nWevapbHs+wffohU0B6eW OALbrvHfm7Zs3sK4X/szIR0jbsuJB04GnQS+AMjKeCwQPR5HvuSfDs33XKZ/BHbK rAhFzmSHV4PvkPb3HfRtPWSQ5Q+uEx7hbtUpnbMWv/R+b7WVlGf1iQvs6QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFOyqg0ORELhpr4SC4BAKP2LUOxSeMB8GA1UdIwQY MBaAFHDnrQWYIIpq+dFQCnQNc7zyjwOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09ldEJaZ2dpbXI1MFZBS2RBMXp2UEtQQTRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS82NjY0MDQtYzI4Zi00ZDI5LTk2ZTQt NjA3ZTE3YWVjNzUwLzEvN0txRFE1RVF1R212aElMZ0VBb19ZdFE3Rko0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS82NjY0MDQtYzI4Zi00ZDI5LTk2ZTQtNjA3ZTE3YWVjNzUw LzEvY09ldEJaZ2dpbXI1MFZBS2RBMXp2UEtQQTRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwcl0MA8E AgACMAkDBwAgAQZ8BegwDQYJKoZIhvcNAQELBQADggEBABTn6/w/JAyvPtpIpTMF wZzyYXvZQJH4XDhGxrDV4gvTR2laRgu0EEceO5BmHXDvAEIcZ6xl8lzOJRAbsNOL MdyRjlL0bP5B07fddb1wHPcD04IJ2VDmEj7B5m7WCKAJdpjSTE62a8qzsS5CDh++ 7/JUH7XRYt43JFXSARDGEfdaYYQen63VkDvohpXhCKMFFmxNpVzJGbJXDv2vstSG R369tjCySYmDYK+iD5T3K+5pmpKdPK8Q0ZLTbbSDdtXf414B2s2TrDDIlQMe8WoK K+A6/6XMLIsQhV9EXD0gd7AtViCsm3yJqkn0Z69eXGTzbCwKxV7a5BcoIBLocI7T FZI= -----END CERTIFICATE-----Generated at Mon Feb 9 18:44:14 2026 by rpki-client