This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/ff-7UUK3Nr75A4sqHWJNBL8K3Qc.roa File: ff-7UUK3Nr75A4sqHWJNBL8K3Qc.roa (raw, json) Hash identifier: XWnpB5O/LzDqWZHyZuA/VcqD8rKxfQyaQ/Qn1INNnM4= Subject key identifier: 7D:FF:BB:51:42:B7:36:BE:F9:03:8B:2A:1D:62:4D:04:BF:0A:DD:07 Certificate issuer: /CN=ffb2627672877d0f6de9bc4e7e186eedd1356110 Certificate serial: 019B79100003A7B25E488235E4729110B741 Authority key identifier: FF:B2:62:76:72:87:7D:0F:6D:E9:BC:4E:7E:18:6E:ED:D1:35:61:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/ff-7UUK3Nr75A4sqHWJNBL8K3Qc.roa Signing time: Thu 01 Jan 2026 10:17:30 +0000 ROA not before: Thu 01 Jan 2026 10:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50612 IP address blocks: 185.147.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.crl rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.mft rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:00:03:a7:b2:5e:48:82:35:e4:72:91:10:b7:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffb2627672877d0f6de9bc4e7e186eedd1356110 Validity Not Before: Jan 1 10:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7dffbb5142b736bef9038b2a1d624d04bf0add07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0a:d1:3a:dd:49:71:16:5b:ff:d8:12:90:3b: 0d:2f:4e:d4:56:7b:90:ab:71:ef:b1:e1:22:b3:85: f4:33:a2:97:bd:8b:b0:e1:af:70:40:d2:fd:78:c1: 8b:ee:9c:13:93:b3:e2:09:5c:ed:13:3c:ac:05:f4: 97:e7:1f:cf:4c:20:f1:f0:70:30:f9:14:51:39:92: cd:97:cc:5c:47:1b:cf:68:03:82:0d:53:e1:9e:fc: 83:cf:78:94:33:89:e2:c1:82:2c:54:a2:20:dc:d1: 4d:b5:c6:43:4e:dd:4e:87:9a:b0:b9:93:ad:3a:1f: ad:30:b8:3a:0e:0e:3b:06:ba:e5:50:57:05:40:f0: bd:f8:4f:c9:86:86:e3:c0:d0:2d:92:6a:0f:fa:05: 6a:2f:fc:bf:96:cc:c8:63:4c:20:58:73:9e:2b:c8: f6:91:55:9d:64:00:9a:66:88:84:ce:30:54:54:96: 62:66:86:10:6f:13:0b:5b:6e:1d:7b:93:88:f9:18: c0:7b:2e:3f:cb:69:39:0c:e7:97:77:97:23:af:62: 0e:64:5f:4b:f6:eb:a1:3b:19:ec:4c:48:17:d4:e9: a0:04:37:f3:21:e2:13:fe:ef:00:b0:25:ff:f8:35: a9:6f:3f:d3:0e:6e:da:ff:fd:4e:c1:25:2c:f6:f2: 73:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FF:BB:51:42:B7:36:BE:F9:03:8B:2A:1D:62:4D:04:BF:0A:DD:07 X509v3 Authority Key Identifier: keyid:FF:B2:62:76:72:87:7D:0F:6D:E9:BC:4E:7E:18:6E:ED:D1:35:61:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/ff-7UUK3Nr75A4sqHWJNBL8K3Qc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.147.126.0/24 Signature Algorithm: sha256WithRSAEncryption 83:e3:41:77:98:2d:38:7f:2f:8e:61:26:48:e9:68:de:ad:57: 90:cd:2f:3a:61:ae:5b:80:68:e7:ed:57:c0:7b:00:10:b5:28: 3e:db:79:12:ea:2e:81:6e:d8:58:ea:ff:e5:47:ce:56:ae:80: 4c:a0:c6:c5:5d:0d:41:42:6e:05:f0:d7:65:d5:57:70:73:d6: f3:43:0e:43:34:7b:95:e5:fd:3c:13:c3:b4:d3:96:57:b9:e4: d6:f1:ca:20:07:7e:e4:10:66:87:9d:b8:59:b6:a7:a7:2b:75: 51:2d:c9:68:b4:30:db:9b:c3:41:ed:d7:14:6e:e2:3f:34:54: de:6d:ef:fc:2b:24:58:ff:50:b8:d3:7b:78:0d:84:78:37:0c: 67:32:be:3d:ac:a7:65:63:d1:7e:b9:e3:24:e7:c1:a6:65:a3: 46:e5:ae:c6:99:c5:9c:dc:fc:4d:ae:85:c3:98:29:58:15:55: 32:1d:36:8b:52:13:38:ad:ba:05:da:3b:f4:43:63:56:58:02: 4b:17:98:0c:a2:35:2c:a7:25:68:ad:fb:51:e8:3c:98:df:11: 1e:27:99:55:6c:34:58:ce:97:06:02:38:1d:2a:87:a1:06:59: 62:dd:17:f2:57:10:d8:59:0c:d8:50:c6:e2:c3:78:b7:8a:e5: 4f:57:f1:a4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EAADp7JeSII15HKRELdBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmYjI2Mjc2NzI4NzdkMGY2ZGU5YmM0ZTdlMTg2ZWVkZDEz NTYxMTAwHhcNMjYwMTAxMTAxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZGZmYmI1MTQyYjczNmJlZjkwMzhiMmExZDYyNGQwNGJmMGFkZDA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxArROt1JcRZb/9gSkDsNL07UVnuQ q3HvseEis4X0M6KXvYuw4a9wQNL9eMGL7pwTk7PiCVztEzysBfSX5x/PTCDx8HAw +RRROZLNl8xcRxvPaAOCDVPhnvyDz3iUM4niwYIsVKIg3NFNtcZDTt1Oh5qwuZOt Oh+tMLg6Dg47BrrlUFcFQPC9+E/JhobjwNAtkmoP+gVqL/y/lszIY0wgWHOeK8j2 kVWdZACaZoiEzjBUVJZiZoYQbxMLW24de5OI+RjAey4/y2k5DOeXd5cjr2IOZF9L 9uuhOxnsTEgX1OmgBDfzIeIT/u8AsCX/+DWpbz/TDm7a//1OwSUs9vJzvwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH3/u1FCtza++QOLKh1iTQS/Ct0HMB8GA1UdIwQY MBaAFP+yYnZyh30Pbem8Tn4Ybu3RNWEQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzdKaWRuS0hmUTl0NmJ4T2ZoaHU3ZEUxWVJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8yMmM1MTAtMzQ4MC00Y2UxLThkZDgt MTk3NDY5NDc1NThkLzEvZmYtN1VVSzNOcjc1QTRzcUhXSk5CTDhLM1FjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8yMmM1MTAtMzQ4MC00Y2UxLThkZDgtMTk3NDY5NDc1NThk LzEvXzdKaWRuS0hmUTl0NmJ4T2ZoaHU3ZEUxWVJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZN+MA0G CSqGSIb3DQEBCwUAA4IBAQCD40F3mC04fy+OYSZI6WjerVeQzS86Ya5bgGjn7VfA ewAQtSg+23kS6i6BbthY6v/lR85WroBMoMbFXQ1BQm4F8Ndl1Vdwc9bzQw5DNHuV 5f08E8O005ZXueTW8cogB37kEGaHnbhZtqenK3VRLclotDDbm8NB7dcUbuI/NFTe be/8KyRY/1C403t4DYR4NwxnMr49rKdlY9F+ueMk58GmZaNG5a7GmcWc3PxNroXD mClYFVUyHTaLUhM4rboF2jv0Q2NWWAJLF5gMojUspyVorftR6DyY3xEeJ5lVbDRY zpcGAjgdKoehBlli3RfyVxDYWQzYUMbiw3i3iuVPV/Gk -----END CERTIFICATE-----Generated at Mon Jan 26 10:54:29 2026 by rpki-client