This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/7FcZY5ssnNOL522u1DPAzU2AH3o.roa File: 7FcZY5ssnNOL522u1DPAzU2AH3o.roa (raw, json) Hash identifier: jO6v8d55L7jkpTC7tOGRMEIqorSWul+ySibJuBhbg1E= Subject key identifier: EC:57:19:63:9B:2C:9C:D3:8B:E7:6D:AE:D4:33:C0:CD:4D:80:1F:7A Certificate issuer: /CN=5035205c3d01713f9d8b5b00e3539619b2335232 Certificate serial: 019B7759183EED5B17B9E3C1C40568217B5D Authority key identifier: 50:35:20:5C:3D:01:71:3F:9D:8B:5B:00:E3:53:96:19:B2:33:52:32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDUgXD0BcT-di1sA41OWGbIzUjI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/7FcZY5ssnNOL522u1DPAzU2AH3o.roa Signing time: Thu 01 Jan 2026 02:18:06 +0000 ROA not before: Thu 01 Jan 2026 02:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203622 IP address blocks: 37.18.58.0/24 maxlen: 24 185.26.184.0/24 maxlen: 24 185.26.185.0/24 maxlen: 24 185.26.186.0/24 maxlen: 24 185.26.187.0/24 maxlen: 24 185.129.0.0/24 maxlen: 24 185.129.1.0/24 maxlen: 24 185.129.2.0/24 maxlen: 24 185.129.3.0/24 maxlen: 24 2a0f:7040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/UDUgXD0BcT-di1sA41OWGbIzUjI.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/UDUgXD0BcT-di1sA41OWGbIzUjI.mft rsync://rpki.ripe.net/repository/DEFAULT/UDUgXD0BcT-di1sA41OWGbIzUjI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Feb 2026 11:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:18:3e:ed:5b:17:b9:e3:c1:c4:05:68:21:7b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5035205c3d01713f9d8b5b00e3539619b2335232 Validity Not Before: Jan 1 02:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ec5719639b2c9cd38be76daed433c0cd4d801f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:7e:45:89:d4:52:d7:61:52:7f:b4:7e:af: 1a:be:ca:e0:ef:88:73:9f:c5:fe:7a:dd:4c:76:0d: 6e:48:c7:2b:38:a4:a6:51:45:6e:96:4e:df:c2:c3: dd:32:a1:88:40:a6:fc:2b:9f:45:fd:c9:d4:68:5e: 09:ba:e9:31:e5:77:6c:82:f1:86:b6:c5:d2:07:92: 2d:06:21:f0:f6:30:9c:38:55:16:6a:c2:ec:1c:37: 20:e2:e3:e0:94:92:cf:39:62:9d:82:11:92:fa:a2: 68:a1:48:bb:46:81:82:9d:05:56:11:12:11:72:df: fd:4b:04:65:33:0f:4f:2e:47:1a:00:b6:23:c0:c6: 19:74:ce:01:a6:f4:17:82:7d:64:b5:69:c2:bc:58: 37:43:4e:35:d5:c7:f9:36:0c:53:d8:6a:58:a8:b6: 77:c9:0c:65:67:eb:2e:bb:c3:b7:ad:43:09:01:3d: f7:89:e9:19:d5:2d:60:f0:fa:d9:42:f1:ad:bc:e3: 94:70:a3:f9:1f:07:9e:55:94:5d:08:4e:1a:5e:7b: 37:03:5e:f6:99:6f:18:e9:00:84:6c:a4:b3:0d:d3: 53:63:e6:cc:e1:12:d9:43:4a:19:b0:d9:ea:a0:1b: b2:4b:e1:a3:ec:ae:29:e7:84:30:81:6e:2a:bd:e9: a5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:57:19:63:9B:2C:9C:D3:8B:E7:6D:AE:D4:33:C0:CD:4D:80:1F:7A X509v3 Authority Key Identifier: keyid:50:35:20:5C:3D:01:71:3F:9D:8B:5B:00:E3:53:96:19:B2:33:52:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDUgXD0BcT-di1sA41OWGbIzUjI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/7FcZY5ssnNOL522u1DPAzU2AH3o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/97b9c1-c1de-41ac-a9cb-1602d6ad141a/1/UDUgXD0BcT-di1sA41OWGbIzUjI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.18.58.0/24 185.26.184.0/22 185.129.0.0/22 IPv6: 2a0f:7040::/32 Signature Algorithm: sha256WithRSAEncryption 52:63:f2:a5:74:e9:75:04:dc:99:ed:9f:9f:8e:77:05:ad:aa: b0:76:bf:14:43:8d:53:6f:c1:a3:66:d8:0a:21:b1:eb:8f:7f: d2:1d:c4:4a:ae:1f:a4:04:f9:16:19:75:98:2e:5b:06:cf:6e: 6b:13:bc:91:6e:cd:02:76:90:80:9b:1c:f6:8e:88:06:07:4c: bb:d7:74:8d:5d:16:9e:70:b8:05:dd:7c:4d:d4:cc:e7:fd:a0: 93:4a:51:85:70:48:d9:8a:ed:09:cb:24:29:ce:ba:50:96:c3: 56:e1:02:c3:83:c7:af:0a:eb:59:65:f4:69:1d:24:0b:64:1c: 84:9f:7d:29:c8:89:0a:36:6c:92:5c:80:8d:11:ac:7c:7e:84: 9a:ce:ee:ad:c1:c2:e7:f9:01:92:94:7a:2c:c6:28:9c:3a:04: b2:3d:43:c4:8d:e1:b1:96:50:d1:9e:bb:cd:6a:45:fe:73:a7: 44:75:49:2c:f1:c8:a4:2e:d8:a1:26:64:3a:61:3f:56:6f:0f: 1b:3f:0a:4a:3c:1b:32:6a:e6:82:03:b6:44:ae:fd:ef:fb:54: 34:a8:91:9c:ec:bb:e8:97:e2:f5:29:a5:99:ef:51:49:04:e7: 6d:d7:58:df:21:c3:14:31:d4:38:0d:99:11:91:ff:51:ff:64: 1e:59:b3:3e -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt3WRg+7VsXuePBxAVoIXtdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMzUyMDVjM2QwMTcxM2Y5ZDhiNWIwMGUzNTM5NjE5YjIz MzUyMzIwHhcNMjYwMTAxMDIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYzU3MTk2MzliMmM5Y2QzOGJlNzZkYWVkNDMzYzBjZDRkODAxZjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtU5+RYnUUtdhUn+0fq8avsrg74hz n8X+et1Mdg1uSMcrOKSmUUVulk7fwsPdMqGIQKb8K59F/cnUaF4Juukx5XdsgvGG tsXSB5ItBiHw9jCcOFUWasLsHDcg4uPglJLPOWKdghGS+qJooUi7RoGCnQVWERIR ct/9SwRlMw9PLkcaALYjwMYZdM4BpvQXgn1ktWnCvFg3Q0411cf5NgxT2GpYqLZ3 yQxlZ+suu8O3rUMJAT33iekZ1S1g8PrZQvGtvOOUcKP5HweeVZRdCE4aXns3A172 mW8Y6QCEbKSzDdNTY+bM4RLZQ0oZsNnqoBuyS+Gj7K4p54QwgW4qvemlPQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFOxXGWObLJzTi+dtrtQzwM1NgB96MB8GA1UdIwQY MBaAFFA1IFw9AXE/nYtbAONTlhmyM1IyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVURVZ1hEMEJjVC1kaTFzQTQxT1dHYkl6VWpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS85N2I5YzEtYzFkZS00MWFjLWE5Y2It MTYwMmQ2YWQxNDFhLzEvN0ZjWlk1c3NuTk9MNTIydTFEUEF6VTJBSDNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS85N2I5YzEtYzFkZS00MWFjLWE5Y2ItMTYwMmQ2YWQxNDFh LzEvVURVZ1hEMEJjVC1kaTFzQTQxT1dHYkl6VWpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAJRI6AwQC uRq4AwQCuYEAMA0EAgACMAcDBQAqD3BAMA0GCSqGSIb3DQEBCwUAA4IBAQBSY/Kl dOl1BNyZ7Z+fjncFraqwdr8UQ41Tb8GjZtgKIbHrj3/SHcRKrh+kBPkWGXWYLlsG z25rE7yRbs0CdpCAmxz2jogGB0y713SNXRaecLgF3XxN1Mzn/aCTSlGFcEjZiu0J yyQpzrpQlsNW4QLDg8evCutZZfRpHSQLZByEn30pyIkKNmySXICNEax8foSazu6t wcLn+QGSlHosxiicOgSyPUPEjeGxllDRnrvNakX+c6dEdUks8cikLtihJmQ6YT9W bw8bPwpKPBsyauaCA7ZErv3v+1Q0qJGc7Lvol+L1KaWZ71FJBOdt11jfIcMUMdQ4 DZkRkf9R/2QeWbM+ -----END CERTIFICATE-----Generated at Tue Feb 3 20:54:15 2026 by rpki-client