This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ffQ9wRR3lmZ7SrnLaJ08cFzb4uw.roa File: ffQ9wRR3lmZ7SrnLaJ08cFzb4uw.roa (raw, json) Hash identifier: jojS/hwBp8bJCEys0uBEnShnLC0EMlO6n+Kx5AShBU4= Subject key identifier: 7D:F4:3D:C1:14:77:96:66:7B:4A:B9:CB:68:9D:3C:70:5C:DB:E2:EC Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055 Certificate serial: 019B77C75A8BBDD89168CFA317CC4B5AE7FB Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ffQ9wRR3lmZ7SrnLaJ08cFzb4uw.roa Signing time: Thu 01 Jan 2026 04:18:32 +0000 ROA not before: Thu 01 Jan 2026 04:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22516 IP address blocks: 89.187.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.mft rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:5a:8b:bd:d8:91:68:cf:a3:17:cc:4b:5a:e7:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055 Validity Not Before: Jan 1 04:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7df43dc1147796667b4ab9cb689d3c705cdbe2ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:1b:d0:47:d4:45:63:7c:28:0a:97:77:70: df:a7:90:ad:eb:f0:b1:77:e8:72:b5:a0:b3:88:18: a7:c2:ee:ee:af:fe:26:ba:ad:a5:89:2f:52:05:d7: 6a:a9:60:5c:ee:e2:e0:5c:5c:e4:0a:6c:4a:ca:6b: c7:09:0d:90:51:5a:ba:38:f8:c0:17:49:91:61:2a: 14:66:e4:81:d1:0b:f3:b0:67:b1:c2:40:08:d3:65: 74:0a:59:2b:d2:50:6f:cf:f9:7b:53:c2:55:63:37: 12:4c:67:5b:58:9a:4e:6d:89:4f:85:2d:7b:99:85: b6:9f:a6:83:cc:35:da:69:44:06:ce:fc:cc:63:af: 8f:ca:f9:69:f0:97:77:66:61:28:18:87:c9:e4:ce: 4e:5d:80:d0:40:1e:54:ea:3b:5c:b8:0c:66:c5:9c: 74:c1:29:55:e9:01:7f:ec:0e:22:0a:ce:fa:4a:a1: 81:e9:46:ce:31:0f:c8:68:9a:e2:80:54:56:b3:6f: bb:8f:01:7c:3c:c2:c3:27:ce:fb:59:cc:3a:fa:5a: 70:6b:2f:0c:25:2d:dd:37:3b:fe:2c:1a:51:fb:3c: 66:2c:49:0a:53:24:bb:42:a3:b1:78:3b:a7:5e:db: 66:18:69:c3:bb:5b:e9:15:00:09:9c:d5:46:07:c4: e1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F4:3D:C1:14:77:96:66:7B:4A:B9:CB:68:9D:3C:70:5C:DB:E2:EC X509v3 Authority Key Identifier: keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/ffQ9wRR3lmZ7SrnLaJ08cFzb4uw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.187.20.0/24 Signature Algorithm: sha256WithRSAEncryption dd:23:c1:36:9a:9f:bf:79:c6:ce:4a:bf:6d:63:3d:b3:ec:4e: a3:ff:63:7c:56:19:a2:82:0a:7c:58:7d:69:4b:42:0f:50:57: da:08:6b:c7:ba:45:9e:7e:8f:08:73:63:8a:6f:75:f9:e9:74: 33:9c:20:c5:5d:1e:37:1e:18:62:d4:65:b3:30:76:93:1e:b1: 96:10:09:b5:9c:a3:8d:b6:08:29:ac:81:45:f3:c2:8c:23:46: 63:cf:88:fb:16:2c:68:0f:ab:0f:56:b3:63:6a:a6:f3:be:2c: f8:d5:e3:ba:76:3f:16:3f:db:03:83:65:0d:4d:93:6c:ca:76: a5:36:25:a1:56:21:70:ad:1f:67:e2:1a:fc:db:13:69:8d:2e: 90:dd:31:1e:83:e0:0d:9f:90:e0:fb:ec:0b:6d:3a:39:e4:fd: 13:2d:2c:7a:e2:03:c3:e9:4d:86:e4:85:84:df:e5:ac:87:fc: f4:76:b5:4a:0e:f7:40:12:e5:6f:8b:95:3d:34:8c:d0:04:82: 56:6d:55:15:bc:b5:da:ae:59:31:fd:c7:31:03:d7:c1:31:73: 53:f9:37:1c:2c:8b:53:86:1a:60:17:14:a4:a0:ed:2f:f7:ac: cf:72:5c:d3:86:d7:72:12:f1:5b:e0:53:2b:97:97:89:12:d1: b9:16:12:32 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x1qLvdiRaM+jF8xLWuf7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MWVjN2NjZjBmYTc2MWVkOTliYzVhN2E5ZWMwZDBlZWIw YmYwNTUwHhcNMjYwMTAxMDQxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZGY0M2RjMTE0Nzc5NjY2N2I0YWI5Y2I2ODlkM2M3MDVjZGJlMmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYob0EfURWN8KAqXd3Dfp5Ct6/Cx d+hytaCziBinwu7ur/4muq2liS9SBddqqWBc7uLgXFzkCmxKymvHCQ2QUVq6OPjA F0mRYSoUZuSB0QvzsGexwkAI02V0Clkr0lBvz/l7U8JVYzcSTGdbWJpObYlPhS17 mYW2n6aDzDXaaUQGzvzMY6+Pyvlp8Jd3ZmEoGIfJ5M5OXYDQQB5U6jtcuAxmxZx0 wSlV6QF/7A4iCs76SqGB6UbOMQ/IaJrigFRWs2+7jwF8PMLDJ877Wcw6+lpway8M JS3dNzv+LBpR+zxmLEkKUyS7QqOxeDunXttmGGnDu1vpFQAJnNVGB8ThHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH30PcEUd5Zme0q5y2idPHBc2+LsMB8GA1UdIwQY MBaAFAkex8zw+nYe2ZvFp6nsDQ7rC/BVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1I3SHpQRDZkaDdabThXbnFld05EdXNMOEZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9lNjQ3OGEtN2I3My00NzU4LWFkZGQt NDVjZmM4NTdkZGRkLzEvZmZROXdSUjNsbVo3U3JuTGFKMDhjRnpiNHV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9lNjQ3OGEtN2I3My00NzU4LWFkZGQtNDVjZmM4NTdkZGRk LzEvQ1I3SHpQRDZkaDdabThXbnFld05EdXNMOEZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbsUMA0G CSqGSIb3DQEBCwUAA4IBAQDdI8E2mp+/ecbOSr9tYz2z7E6j/2N8Vhmiggp8WH1p S0IPUFfaCGvHukWefo8Ic2OKb3X56XQznCDFXR43Hhhi1GWzMHaTHrGWEAm1nKON tggprIFF88KMI0Zjz4j7FixoD6sPVrNjaqbzviz41eO6dj8WP9sDg2UNTZNsynal NiWhViFwrR9n4hr82xNpjS6Q3TEeg+ANn5Dg++wLbTo55P0TLSx64gPD6U2G5IWE 3+Wsh/z0drVKDvdAEuVvi5U9NIzQBIJWbVUVvLXarlkx/ccxA9fBMXNT+TccLItT hhpgFxSkoO0v96zPclzThtdyEvFb4FMrl5eJEtG5FhIy -----END CERTIFICATE-----Generated at Tue Jan 20 19:20:03 2026 by rpki-client