This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/BAkXhcFL-ayuGtyDGquU8AuGub0.roa File: BAkXhcFL-ayuGtyDGquU8AuGub0.roa (raw, json) Hash identifier: wOdKatHwmd6Xvhry0fudAfFbKeYK4jBEL3fkkKbz56A= Subject key identifier: 04:09:17:85:C1:4B:F9:AC:AE:1A:DC:83:1A:AB:94:F0:0B:86:B9:BD Certificate issuer: /CN=c7f6ad83f25c2886a25857fb515d4559527c46f7 Certificate serial: 019B7F15AD897800BDAA72B581B55D0CD5B4 Authority key identifier: C7:F6:AD:83:F2:5C:28:86:A2:58:57:FB:51:5D:45:59:52:7C:46:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/BAkXhcFL-ayuGtyDGquU8AuGub0.roa Signing time: Fri 02 Jan 2026 14:21:25 +0000 ROA not before: Fri 02 Jan 2026 14:21:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59545 IP address blocks: 93.157.0.0/21 maxlen: 32 195.5.163.0/24 maxlen: 32 2001:67c:54::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.mft rsync://rpki.ripe.net/repository/DEFAULT/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ad:89:78:00:bd:aa:72:b5:81:b5:5d:0c:d5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7f6ad83f25c2886a25857fb515d4559527c46f7 Validity Not Before: Jan 2 14:21:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=04091785c14bf9acae1adc831aab94f00b86b9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:de:b8:cb:8a:eb:e6:fe:7b:36:62:d1:8f: 65:33:88:f2:1f:3d:10:04:ef:d4:3b:5e:7d:85:7f: e3:29:8f:bf:69:82:46:bf:96:28:53:46:60:a6:41: ef:be:5f:a1:77:7d:13:73:73:01:53:f2:65:29:c4: 57:c3:09:d2:b9:e8:26:fe:61:f0:f1:0e:ea:48:b4: 70:64:35:a1:5a:20:71:ee:34:92:19:21:57:4c:0c: 74:73:d2:63:81:a7:60:67:96:17:ee:53:cb:52:9c: c9:fd:46:67:99:1f:d1:d2:41:f3:e5:b3:4c:b8:6e: 5f:a2:ee:17:2e:7d:12:f4:35:23:36:4b:4a:03:8c: c7:f8:d4:3b:1d:57:9d:23:8f:c8:4f:b7:6a:a4:14: 98:5e:7e:ef:e6:66:8b:c7:02:23:0f:06:bd:17:80: c6:9c:60:29:ef:2e:4b:d7:aa:15:3a:cb:e7:a1:f1: 67:f1:a8:40:58:f7:ae:67:7c:40:27:8f:b9:b7:bf: 0e:ff:cf:3b:80:10:10:c8:db:25:cd:1f:38:41:94: 7f:0f:10:9d:82:2b:53:72:39:60:7d:7a:6a:46:20: 59:59:a2:64:5b:ba:9a:5d:80:df:7d:53:1c:4b:cb: 59:1a:a8:f4:fe:ce:68:1e:10:7d:8b:a4:65:14:9d: 2d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:09:17:85:C1:4B:F9:AC:AE:1A:DC:83:1A:AB:94:F0:0B:86:B9:BD X509v3 Authority Key Identifier: keyid:C7:F6:AD:83:F2:5C:28:86:A2:58:57:FB:51:5D:45:59:52:7C:46:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/BAkXhcFL-ayuGtyDGquU8AuGub0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/97e4e5-0247-46ba-83ca-3268ae9096dc/1/x_atg_JcKIaiWFf7UV1FWVJ8Rvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.157.0.0/21 195.5.163.0/24 IPv6: 2001:67c:54::/48 Signature Algorithm: sha256WithRSAEncryption b4:fc:16:f6:b5:f6:62:04:d0:bf:d8:7b:61:ac:3a:3a:f5:cf: f1:a4:6d:65:b2:7a:2d:dc:5d:48:34:ab:31:97:d4:88:2e:d4: 84:11:a9:d9:6a:07:d5:83:86:7e:b4:7e:13:f7:39:d4:8c:a1: 37:14:41:d2:15:75:97:c3:6d:f2:1f:2e:de:78:7d:98:49:17: 7a:a6:2c:50:43:94:a7:b7:e5:19:d8:79:88:95:18:5e:44:a1: 8f:92:6d:48:bb:00:b4:db:5d:ec:86:55:96:ae:5d:d9:35:ef: 3c:fe:36:3a:7d:65:11:56:f0:25:f4:2d:a4:2b:7b:ff:c5:96: 2d:4e:53:bf:3e:42:00:a1:71:4e:aa:25:67:54:8e:3b:5a:3f: aa:5b:ec:76:43:9b:4c:e7:c7:d7:96:a8:bc:46:55:a0:77:19: 89:07:c0:d0:8d:fd:ef:b0:24:34:1b:b0:5d:ac:0a:82:ee:81: 93:b7:55:d7:7b:f6:27:7a:5f:a4:61:b5:c2:b5:c5:03:bc:b6: 61:2e:6d:3b:6f:5d:1e:d6:c1:56:4d:7b:68:87:bd:d6:9b:ad: 07:8b:43:f1:86:8a:73:42:b0:be:f3:1e:60:bb:a9:2e:ee:34: b1:cb:06:0d:b6:de:f0:70:ad:ae:61:10:02:e0:b9:09:36:d0: a1:f6:b9:a2 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt/Fa2JeAC9qnK1gbVdDNW0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3ZjZhZDgzZjI1YzI4ODZhMjU4NTdmYjUxNWQ0NTU5NTI3 YzQ2ZjcwHhcNMjYwMTAyMTQyMTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNDA5MTc4NWMxNGJmOWFjYWUxYWRjODMxYWFiOTRmMDBiODZiOWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+DeuMuK6+b+ezZi0Y9lM4jyHz0Q BO/UO159hX/jKY+/aYJGv5YoU0ZgpkHvvl+hd30Tc3MBU/JlKcRXwwnSuegm/mHw 8Q7qSLRwZDWhWiBx7jSSGSFXTAx0c9JjgadgZ5YX7lPLUpzJ/UZnmR/R0kHz5bNM uG5fou4XLn0S9DUjNktKA4zH+NQ7HVedI4/IT7dqpBSYXn7v5maLxwIjDwa9F4DG nGAp7y5L16oVOsvnofFn8ahAWPeuZ3xAJ4+5t78O/887gBAQyNslzR84QZR/DxCd gitTcjlgfXpqRiBZWaJkW7qaXYDffVMcS8tZGqj0/s5oHhB9i6RlFJ0tGwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFAQJF4XBS/msrhrcgxqrlPALhrm9MB8GA1UdIwQY MBaAFMf2rYPyXCiGolhX+1FdRVlSfEb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveF9hdGdfSmNLSWFpV0ZmN1VWMUZXVko4UnZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi85N2U0ZTUtMDI0Ny00NmJhLTgzY2Et MzI2OGFlOTA5NmRjLzEvQkFrWGhjRkwtYXl1R3R5REdxdVU4QXVHdWIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi85N2U0ZTUtMDI0Ny00NmJhLTgzY2EtMzI2OGFlOTA5NmRj LzEveF9hdGdfSmNLSWFpV0ZmN1VWMUZXVko4UnZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQDXZ0AAwQA wwWjMA8EAgACMAkDBwAgAQZ8AFQwDQYJKoZIhvcNAQELBQADggEBALT8Fva19mIE 0L/Ye2GsOjr1z/GkbWWyei3cXUg0qzGX1Igu1IQRqdlqB9WDhn60fhP3OdSMoTcU QdIVdZfDbfIfLt54fZhJF3qmLFBDlKe35RnYeYiVGF5EoY+SbUi7ALTbXeyGVZau Xdk17zz+Njp9ZRFW8CX0LaQre//Fli1OU78+QgChcU6qJWdUjjtaP6pb7HZDm0zn x9eWqLxGVaB3GYkHwNCN/e+wJDQbsF2sCoLugZO3Vdd79id6X6RhtcK1xQO8tmEu bTtvXR7WwVZNe2iHvdabrQeLQ/GGinNCsL7zHmC7qS7uNLHLBg223vBwra5hEALg uQk20KH2uaI= -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:46 2026 by rpki-client