This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/40fe20-6ceb-45d6-aa11-ce59b0c54eea/1/7mM5Vy0FmcI57nVM2N0-AfSVBXc.roa File: 7mM5Vy0FmcI57nVM2N0-AfSVBXc.roa (raw, json) Hash identifier: wP1KvF9QYlB6hksxmuYINc357Erv5WH0zwJdvB/xu/M= Subject key identifier: EE:63:39:57:2D:05:99:C2:39:EE:75:4C:D8:DD:3E:01:F4:95:05:77 Certificate issuer: /CN=136c4831597fe16e9ee2882d7b5a0df8a76e4f7f Certificate serial: 019B76EAF06731098C0265CEBA851B49B81B Authority key identifier: 13:6C:48:31:59:7F:E1:6E:9E:E2:88:2D:7B:5A:0D:F8:A7:6E:4F:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2xIMVl_4W6e4ogte1oN-KduT38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/40fe20-6ceb-45d6-aa11-ce59b0c54eea/1/7mM5Vy0FmcI57nVM2N0-AfSVBXc.roa Signing time: Thu 01 Jan 2026 00:17:47 +0000 ROA not before: Thu 01 Jan 2026 00:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50270 IP address blocks: 109.233.0.0/21 maxlen: 24 2a02:2368::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/40fe20-6ceb-45d6-aa11-ce59b0c54eea/1/E2xIMVl_4W6e4ogte1oN-KduT38.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/40fe20-6ceb-45d6-aa11-ce59b0c54eea/1/E2xIMVl_4W6e4ogte1oN-KduT38.mft rsync://rpki.ripe.net/repository/DEFAULT/E2xIMVl_4W6e4ogte1oN-KduT38.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:f0:67:31:09:8c:02:65:ce:ba:85:1b:49:b8:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=136c4831597fe16e9ee2882d7b5a0df8a76e4f7f Validity Not Before: Jan 1 00:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee6339572d0599c239ee754cd8dd3e01f4950577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:65:0b:43:f9:64:5b:61:4c:97:bc:3a:e3:a4: cb:87:5a:34:f8:47:8b:8f:c4:13:dd:e0:69:8d:74: 6d:2a:8f:7f:62:66:4a:5d:be:1a:24:79:e6:ed:3e: f7:6a:68:58:a1:c7:6a:b9:67:e1:24:99:53:37:5a: dc:64:72:a1:f1:fa:ab:84:1f:be:a1:58:99:64:50: a7:b7:12:7e:0f:7c:6a:80:82:ae:eb:2a:2a:b3:85: 77:ed:b4:f9:57:6d:ff:f8:99:a9:20:b1:95:d9:da: b8:9b:de:3b:78:1c:4e:0d:43:99:66:db:81:a6:b7: ce:bb:33:90:2a:df:66:bf:c6:39:56:3b:52:de:e6: 38:58:c8:a7:9b:6f:48:bf:fa:c2:fd:24:c2:7a:eb: ed:46:45:f0:eb:a3:15:f1:36:4c:8c:9e:27:9d:b7: 4f:9f:f8:34:a2:58:7f:77:7f:26:da:d4:81:20:88: 49:60:3f:71:2f:c3:43:67:a7:e2:08:67:f5:c8:79: e6:8c:b5:6c:13:55:8d:63:1b:3f:a3:92:47:0f:6f: 9f:0d:90:02:6c:19:34:24:ec:34:f8:65:5b:0d:3a: 05:e2:c5:3d:3e:14:6d:7c:bc:e7:d1:de:6c:f0:73: 89:05:91:70:38:6e:3e:6a:06:c3:2e:f2:a4:fe:7a: 50:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:63:39:57:2D:05:99:C2:39:EE:75:4C:D8:DD:3E:01:F4:95:05:77 X509v3 Authority Key Identifier: keyid:13:6C:48:31:59:7F:E1:6E:9E:E2:88:2D:7B:5A:0D:F8:A7:6E:4F:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2xIMVl_4W6e4ogte1oN-KduT38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/40fe20-6ceb-45d6-aa11-ce59b0c54eea/1/7mM5Vy0FmcI57nVM2N0-AfSVBXc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/40fe20-6ceb-45d6-aa11-ce59b0c54eea/1/E2xIMVl_4W6e4ogte1oN-KduT38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.233.0.0/21 IPv6: 2a02:2368::/32 Signature Algorithm: sha256WithRSAEncryption 2c:c8:c7:e2:46:ed:26:d1:d8:d4:24:33:b2:a6:73:1f:0d:e5: 28:64:52:8b:5d:dc:ec:49:77:02:ec:a5:a4:e7:13:1e:f6:08: 79:90:ee:ea:49:4c:71:4a:2b:4a:2f:2f:7d:f0:5a:c6:6e:20: 67:b5:14:d4:25:1c:7a:d9:f3:ac:18:07:c7:7b:60:56:6b:44: 32:3f:e1:bc:35:21:74:94:bc:1e:0b:d2:45:71:26:3e:2b:1b: 64:f3:da:75:41:3f:45:3a:e8:39:12:4d:b4:44:37:21:df:25: e6:26:3e:37:aa:1b:b2:4a:93:d6:78:b3:57:ee:c5:05:c0:15: 13:20:2b:bf:5e:83:3d:df:7b:4c:e5:a4:c9:cb:0c:c4:7b:3d: 76:ce:bd:f2:81:2c:4c:05:72:3c:6d:fd:a2:66:db:84:0c:bd: e4:65:5d:fa:16:6d:fb:64:5f:76:ab:a2:0d:e6:5a:3c:42:d9: 0d:5c:52:01:a1:1a:3f:ae:19:a3:82:c8:59:5e:d0:64:1d:7f: 17:4e:b8:d3:d9:56:6d:1c:47:e1:89:4f:62:8a:5b:5b:00:49: 8c:ba:f0:c9:7e:90:77:70:cc:e3:a9:66:24:59:2c:a2:fb:84: ec:eb:7e:2e:58:e1:1d:9c:01:9b:26:5e:65:98:78:4a:9d:d1: e9:56:42:26 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt26vBnMQmMAmXOuoUbSbgbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzNmM0ODMxNTk3ZmUxNmU5ZWUyODgyZDdiNWEwZGY4YTc2 ZTRmN2YwHhcNMjYwMTAxMDAxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTYzMzk1NzJkMDU5OWMyMzllZTc1NGNkOGRkM2UwMWY0OTUwNTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA42ULQ/lkW2FMl7w646TLh1o0+EeL j8QT3eBpjXRtKo9/YmZKXb4aJHnm7T73amhYocdquWfhJJlTN1rcZHKh8fqrhB++ oViZZFCntxJ+D3xqgIKu6yoqs4V37bT5V23/+JmpILGV2dq4m947eBxODUOZZtuB prfOuzOQKt9mv8Y5VjtS3uY4WMinm29Iv/rC/STCeuvtRkXw66MV8TZMjJ4nnbdP n/g0olh/d38m2tSBIIhJYD9xL8NDZ6fiCGf1yHnmjLVsE1WNYxs/o5JHD2+fDZAC bBk0JOw0+GVbDToF4sU9PhRtfLzn0d5s8HOJBZFwOG4+agbDLvKk/npQTwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFO5jOVctBZnCOe51TNjdPgH0lQV3MB8GA1UdIwQY MBaAFBNsSDFZf+FunuKILXtaDfinbk9/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRTJ4SU1WbF80VzZlNG9ndGUxb04tS2R1VDM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS80MGZlMjAtNmNlYi00NWQ2LWFhMTEt Y2U1OWIwYzU0ZWVhLzEvN21NNVZ5MEZtY0k1N25WTTJOMC1BZlNWQlhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS80MGZlMjAtNmNlYi00NWQ2LWFhMTEtY2U1OWIwYzU0ZWVh LzEvRTJ4SU1WbF80VzZlNG9ndGUxb04tS2R1VDM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDbekAMA0E AgACMAcDBQAqAiNoMA0GCSqGSIb3DQEBCwUAA4IBAQAsyMfiRu0m0djUJDOypnMf DeUoZFKLXdzsSXcC7KWk5xMe9gh5kO7qSUxxSitKLy998FrGbiBntRTUJRx62fOs GAfHe2BWa0QyP+G8NSF0lLweC9JFcSY+Kxtk89p1QT9FOug5Ek20RDch3yXmJj43 qhuySpPWeLNX7sUFwBUTICu/XoM933tM5aTJywzEez12zr3ygSxMBXI8bf2iZtuE DL3kZV36Fm37ZF92q6IN5lo8QtkNXFIBoRo/rhmjgshZXtBkHX8XTrjT2VZtHEfh iU9iiltbAEmMuvDJfpB3cMzjqWYkWSyi+4Ts634uWOEdnAGbJl5lmHhKndHpVkIm -----END CERTIFICATE-----Generated at Tue Jan 27 03:59:04 2026 by rpki-client