This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa File: 7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa (raw, json) Hash identifier: Rn+5opWUGoRW49OpMrdlbpM9u9h2SBCx0mFY1z5Li4g= Subject key identifier: EC:08:F2:ED:3F:C8:5D:AB:79:10:79:D7:E6:33:9D:0A:5D:C1:5D:2B Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa Certificate serial: 019B7D5CA75CB5862F94337486095295C5BF Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa Signing time: Fri 02 Jan 2026 06:19:42 +0000 ROA not before: Fri 02 Jan 2026 06:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1930 IP address blocks: 192.132.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.mft rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:a7:5c:b5:86:2f:94:33:74:86:09:52:95:c5:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa Validity Not Before: Jan 2 06:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ec08f2ed3fc85dab791079d7e6339d0a5dc15d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1b:b5:fb:40:9e:0d:bd:79:52:05:90:8f:3f: 97:8a:03:01:d5:fa:1a:8a:e5:ef:8b:55:61:ac:94: 15:d4:1f:44:da:66:c1:d2:ef:49:99:da:b0:4f:5e: f3:1a:9b:cc:b2:43:71:6a:09:87:9f:06:4f:3c:60: f6:42:64:9a:27:90:ea:f6:b5:53:0d:87:8b:bb:f0: 42:11:40:77:48:76:88:98:bb:c1:fa:34:36:70:6b: 84:6b:0c:3e:b6:06:6d:a9:31:3d:69:a7:d4:5a:e7: db:89:75:b3:17:2e:6f:94:a1:99:8b:64:21:7b:3c: 7f:e0:43:b0:31:27:ad:13:e9:c7:8d:95:99:a6:1e: a9:16:fd:1a:48:d3:dd:8f:95:9e:02:03:37:20:4d: 43:06:2e:29:58:9a:71:d4:b7:37:e5:8d:4a:4b:ba: 91:7a:f8:ae:62:14:24:bf:f2:ea:10:32:bc:f2:2f: 1a:81:16:1d:5c:e6:76:6d:51:9a:6e:8f:34:69:da: 87:2e:f7:99:ac:db:ae:6f:f2:ac:17:41:92:60:4e: de:45:0c:eb:2f:a6:f2:f7:c7:6d:66:3f:2d:16:65: 06:bc:dc:04:ff:c9:17:3a:e0:03:3c:65:94:5e:fb: 29:8e:4c:ce:e1:a7:68:e6:9f:b9:50:4f:c5:78:91: e9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:08:F2:ED:3F:C8:5D:AB:79:10:79:D7:E6:33:9D:0A:5D:C1:5D:2B X509v3 Authority Key Identifier: keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/7Ajy7T_IXat5EHnX5jOdCl3BXSs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.132.55.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b5:5e:a2:87:5e:31:7e:75:c3:2b:51:f9:47:a4:31:a2:cc: 8d:be:52:1f:8d:d4:fa:0b:83:79:eb:25:e4:03:d1:4d:c7:c4: 1e:6c:20:9b:af:97:a1:08:33:60:df:1c:b3:48:4d:91:62:15: 1f:b1:2d:aa:c0:68:66:78:2c:a5:87:4f:e0:d9:51:c8:eb:fc: 86:1d:8d:d5:59:09:8a:0e:49:5b:3f:42:c3:98:d8:ca:8c:39: 41:65:14:a4:81:e7:9c:93:75:c8:df:d3:10:9c:0f:b0:ee:23: 15:15:71:23:ab:8f:c5:9d:04:3d:7b:f2:85:64:30:ee:2d:00: 40:00:dd:8d:6e:c8:eb:a7:e6:96:d5:04:b7:86:67:43:cd:31: 77:81:d3:81:d3:b8:89:9b:e9:64:65:05:7a:69:5d:24:71:24: 56:f1:28:91:24:4d:79:37:89:a1:a6:73:12:37:2a:b2:35:12: 89:10:ca:a7:4e:9a:1a:97:fd:0c:da:2c:4a:a6:8d:c1:86:ca: 3f:50:18:dd:d8:3c:d0:1e:eb:2c:1b:1a:f1:bc:1a:9b:c2:01: ca:d0:14:92:e8:45:c0:58:b6:e4:cf:c3:e8:f0:08:1c:c6:0d: 6e:6f:39:9a:d4:c6:20:13:e9:89:aa:44:f7:a3:bb:18:30:0a: f0:fb:bb:1c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XKdctYYvlDN0hglSlcW/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMjA3NTU5NjU0NTA5M2MwNmE2ZmNmOGZhYjU3YjE5MmU3 NzkwYWEwHhcNMjYwMTAyMDYxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYzA4ZjJlZDNmYzg1ZGFiNzkxMDc5ZDdlNjMzOWQwYTVkYzE1ZDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhu1+0CeDb15UgWQjz+XigMB1foa iuXvi1VhrJQV1B9E2mbB0u9JmdqwT17zGpvMskNxagmHnwZPPGD2QmSaJ5Dq9rVT DYeLu/BCEUB3SHaImLvB+jQ2cGuEaww+tgZtqTE9aafUWufbiXWzFy5vlKGZi2Qh ezx/4EOwMSetE+nHjZWZph6pFv0aSNPdj5WeAgM3IE1DBi4pWJpx1Lc35Y1KS7qR eviuYhQkv/LqEDK88i8agRYdXOZ2bVGabo80adqHLveZrNuub/KsF0GSYE7eRQzr L6by98dtZj8tFmUGvNwE/8kXOuADPGWUXvspjkzO4ado5p+5UE/FeJHpGwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOwI8u0/yF2reRB51+YznQpdwV0rMB8GA1UdIwQY MBaAFEMgdVllRQk8Bqb8+Pq1exkud5CqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUt OTI3OThkYWNhZjc1LzEvN0FqeTdUX0lYYXQ1RUhuWDVqT2RDbDNCWFNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9iZGEyNDUtNTc2Yi00OTQwLWE5ZjUtOTI3OThkYWNhZjc1 LzEvUXlCMVdXVkZDVHdHcHZ6NC1yVjdHUzUza0tvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwIQ3MA0G CSqGSIb3DQEBCwUAA4IBAQAntV6ih14xfnXDK1H5R6QxosyNvlIfjdT6C4N56yXk A9FNx8QebCCbr5ehCDNg3xyzSE2RYhUfsS2qwGhmeCylh0/g2VHI6/yGHY3VWQmK DklbP0LDmNjKjDlBZRSkgeeck3XI39MQnA+w7iMVFXEjq4/FnQQ9e/KFZDDuLQBA AN2Nbsjrp+aW1QS3hmdDzTF3gdOB07iJm+lkZQV6aV0kcSRW8SiRJE15N4mhpnMS NyqyNRKJEMqnTpoal/0M2ixKpo3Bhso/UBjd2DzQHussGxrxvBqbwgHK0BSS6EXA WLbkz8Po8Agcxg1ubzma1MYgE+mJqkT3o7sYMArw+7sc -----END CERTIFICATE-----Generated at Mon Jan 26 22:32:39 2026 by rpki-client