This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/7H6l8W7mloQmdCFME5bjkjpVqlI.roa File: 7H6l8W7mloQmdCFME5bjkjpVqlI.roa (raw, json) Hash identifier: T59Tl9zcDPQTjILJPoiX/wQPlxPSK4JPOrKNgwU40yY= Subject key identifier: EC:7E:A5:F1:6E:E6:96:84:26:74:21:4C:13:96:E3:92:3A:55:AA:52 Certificate issuer: /CN=bbf4e1fdb424a9120223b3a75c6ccc31b6f6224a Certificate serial: 019B79ED3FBD08B3A1C1AF35AB21A6EDFCF3 Authority key identifier: BB:F4:E1:FD:B4:24:A9:12:02:23:B3:A7:5C:6C:CC:31:B6:F6:22:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/7H6l8W7mloQmdCFME5bjkjpVqlI.roa Signing time: Thu 01 Jan 2026 14:19:10 +0000 ROA not before: Thu 01 Jan 2026 14:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24961 IP address blocks: 193.176.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.crl rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.mft rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:3f:bd:08:b3:a1:c1:af:35:ab:21:a6:ed:fc:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbf4e1fdb424a9120223b3a75c6ccc31b6f6224a Validity Not Before: Jan 1 14:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ec7ea5f16ee696842674214c1396e3923a55aa52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:72:27:a6:a3:25:8f:d4:09:71:49:19:1a:6b: 60:88:d2:b3:a0:3f:7b:de:ea:64:3a:53:2d:c5:57: cf:d8:45:1d:68:5a:c9:ff:7d:fa:fc:c5:44:b2:62: 96:27:95:7f:b4:d8:82:15:97:58:2f:27:f0:5e:50: 3f:50:4a:4b:77:63:de:b1:46:eb:c3:90:e4:59:d3: c1:c8:43:94:5e:ec:d4:83:e4:03:a5:ec:9f:fb:4c: 97:dc:00:6c:51:b2:1e:1a:8e:5a:39:52:8b:7b:a4: 31:74:82:3f:b7:ea:22:da:b6:be:ca:06:57:73:27: d1:54:85:85:fe:c4:b0:ad:26:99:98:a5:32:e4:c2: 06:53:56:89:0c:4c:bf:93:38:14:1b:80:d8:08:30: 9a:53:09:57:2e:41:dc:86:25:99:fe:29:1d:f3:ef: 20:bc:9e:e4:1d:55:d1:82:14:23:7f:36:d0:ce:52: 7b:7c:56:17:40:9d:bc:22:09:62:2d:03:01:4b:a1: fa:51:e2:8b:34:e1:8e:88:97:91:17:c5:80:78:50: cc:07:34:de:1d:0b:63:09:b6:bc:3c:23:52:2d:94: e6:d4:15:2b:0d:9e:35:16:6e:55:7d:aa:7c:aa:4c: 36:ba:e2:6a:7d:41:0a:4c:43:3c:42:51:a3:fb:32: b2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7E:A5:F1:6E:E6:96:84:26:74:21:4C:13:96:E3:92:3A:55:AA:52 X509v3 Authority Key Identifier: keyid:BB:F4:E1:FD:B4:24:A9:12:02:23:B3:A7:5C:6C:CC:31:B6:F6:22:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/7H6l8W7mloQmdCFME5bjkjpVqlI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.176.1.0/24 Signature Algorithm: sha256WithRSAEncryption 99:6d:89:a3:19:64:ab:1e:b2:38:6a:70:4b:54:7c:80:50:4e: 6a:72:f7:c8:9f:76:b8:c8:bb:6c:f9:1a:36:6a:9c:27:67:69: 99:78:26:02:fa:d1:65:5d:75:8c:35:d4:be:14:b9:85:4d:51: 43:bc:cb:99:a2:77:77:09:51:54:91:f7:ba:f0:f4:b3:e5:f4: 8b:dd:e7:2c:5b:46:2e:8a:92:fc:b6:b5:4b:47:ed:f7:b3:34: 7e:1c:71:b5:db:ed:ff:4e:5b:4a:a3:fd:26:bd:f1:3c:01:12: 5e:89:14:cc:8c:58:23:20:7b:61:7b:97:b8:ef:a8:9a:a3:03: f7:cf:08:1a:ff:7a:7b:6f:de:7e:90:67:62:64:17:25:7b:f7: 75:a1:ad:55:8f:f4:62:9d:69:83:9e:2d:67:64:76:7c:cd:0a: 5f:c1:c0:b0:03:b0:4c:ce:e2:e6:c8:38:56:b9:f4:ee:ad:5b: 88:53:2a:e5:0b:6d:66:67:98:af:89:b5:42:e2:b4:28:78:2b: c3:d1:44:25:e9:2d:61:33:cd:6a:c6:30:05:e9:0d:47:cb:21: 68:39:d8:d9:ac:84:59:fb:e6:50:71:34:b9:01:61:d3:b4:18: 7d:b7:fb:59:c8:61:81:dc:8e:a8:35:03:d4:e4:86:67:9c:f7: c0:13:f1:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57T+9CLOhwa81qyGm7fzzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZjRlMWZkYjQyNGE5MTIwMjIzYjNhNzVjNmNjYzMxYjZm NjIyNGEwHhcNMjYwMTAxMTQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYzdlYTVmMTZlZTY5Njg0MjY3NDIxNGMxMzk2ZTM5MjNhNTVhYTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnInpqMlj9QJcUkZGmtgiNKzoD97 3upkOlMtxVfP2EUdaFrJ/336/MVEsmKWJ5V/tNiCFZdYLyfwXlA/UEpLd2PesUbr w5DkWdPByEOUXuzUg+QDpeyf+0yX3ABsUbIeGo5aOVKLe6QxdII/t+oi2ra+ygZX cyfRVIWF/sSwrSaZmKUy5MIGU1aJDEy/kzgUG4DYCDCaUwlXLkHchiWZ/ikd8+8g vJ7kHVXRghQjfzbQzlJ7fFYXQJ28IgliLQMBS6H6UeKLNOGOiJeRF8WAeFDMBzTe HQtjCba8PCNSLZTm1BUrDZ41Fm5Vfap8qkw2uuJqfUEKTEM8QlGj+zKyoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOx+pfFu5paEJnQhTBOW45I6VapSMB8GA1UdIwQY MBaAFLv04f20JKkSAiOzp1xszDG29iJKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdV9UaF9iUWtxUklDSTdPblhHek1NYmIySWtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xMWNkMTAtM2VmNy00MTA1LTgyNDgt YmE1MTMyM2RiNGU1LzEvN0g2bDhXN21sb1FtZENGTUU1YmpranBWcWxJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xMWNkMTAtM2VmNy00MTA1LTgyNDgtYmE1MTMyM2RiNGU1 LzEvdV9UaF9iUWtxUklDSTdPblhHek1NYmIySWtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbABMA0G CSqGSIb3DQEBCwUAA4IBAQCZbYmjGWSrHrI4anBLVHyAUE5qcvfIn3a4yLts+Ro2 apwnZ2mZeCYC+tFlXXWMNdS+FLmFTVFDvMuZond3CVFUkfe68PSz5fSL3ecsW0Yu ipL8trVLR+33szR+HHG12+3/TltKo/0mvfE8ARJeiRTMjFgjIHthe5e476iaowP3 zwga/3p7b95+kGdiZBcle/d1oa1Vj/RinWmDni1nZHZ8zQpfwcCwA7BMzuLmyDhW ufTurVuIUyrlC21mZ5ivibVC4rQoeCvD0UQl6S1hM81qxjAF6Q1HyyFoOdjZrIRZ ++ZQcTS5AWHTtBh9t/tZyGGB3I6oNQPU5IZnnPfAE/F7 -----END CERTIFICATE-----Generated at Wed Jan 21 09:20:57 2026 by rpki-client