This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/p7oktwuWf2ZnQv93Pk1B9hLYA2o.roa File: p7oktwuWf2ZnQv93Pk1B9hLYA2o.roa (raw, json) Hash identifier: 8Di9Zx97zUml2Xx/xl4Z8AoANVcOHhK9WnodPtqWDfQ= Subject key identifier: A7:BA:24:B7:0B:96:7F:66:67:42:FF:77:3E:4D:41:F6:12:D8:03:6A Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F846C4F24A9354F7F3809CCA6A6D396 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/p7oktwuWf2ZnQv93Pk1B9hLYA2o.roa Signing time: Fri 02 Jan 2026 16:22:23 +0000 ROA not before: Fri 02 Jan 2026 16:22:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51722 IP address blocks: 217.60.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:6c:4f:24:a9:35:4f:7f:38:09:cc:a6:a6:d3:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7ba24b70b967f666742ff773e4d41f612d8036a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:7a:38:a5:98:f6:68:0e:f2:5a:a0:a9:1a: b7:28:d5:7d:8d:ea:34:f4:a4:20:71:27:d3:3a:60: 8e:e8:bb:2e:2b:d8:96:30:c1:50:48:e7:90:1a:66: f1:1c:b4:f3:93:3c:c6:8b:37:20:8d:2b:0e:49:4a: 6e:a1:15:5f:2d:5d:eb:9a:6d:ec:07:0c:a1:64:5b: a5:75:43:58:f0:c0:68:03:54:c9:2e:d0:1f:8d:ce: a8:f6:0b:ad:fc:ee:0a:dd:41:c7:b2:be:7d:03:8f: b0:96:7c:23:0e:2c:08:bf:7d:03:bc:8e:a1:b9:3d: 2d:16:d0:b3:9a:ff:1d:4f:0f:61:57:6c:8c:0a:6b: c1:a3:a2:b1:30:d8:cf:b8:4f:2f:2e:dc:ea:c1:2d: f0:f1:8d:2a:14:76:61:d4:06:c3:e6:49:f9:4e:2f: de:13:ed:f2:18:46:8f:6e:e5:a6:c3:80:93:b2:d7: bd:ca:7a:6b:33:97:a5:a9:9d:f1:e5:12:32:e9:04: 90:3d:ab:a6:e9:34:72:23:74:9b:a2:2f:96:ed:42: 78:a4:cd:3a:69:6e:63:cb:41:26:4c:eb:f1:31:1e: 0c:a2:06:92:43:3a:6a:6c:0a:55:0b:20:21:f8:20: 81:e2:56:16:e6:70:24:88:da:74:51:85:c1:71:62: 19:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:BA:24:B7:0B:96:7F:66:67:42:FF:77:3E:4D:41:F6:12:D8:03:6A X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/p7oktwuWf2ZnQv93Pk1B9hLYA2o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.60.200.0/21 Signature Algorithm: sha256WithRSAEncryption 47:19:56:a8:c6:9f:76:e3:1a:99:da:b6:c6:9f:11:a3:bb:16: 0f:36:23:27:bb:15:68:70:14:1b:34:e5:74:35:94:d5:c7:81: f6:9c:a0:53:da:79:9c:cb:40:cf:1f:f1:ae:27:93:0e:f8:37: 69:dc:a1:80:9d:32:04:06:85:76:c1:64:cc:c0:08:93:7d:69: 69:4e:55:c3:61:99:93:c6:d2:7b:ba:a5:1b:84:d2:2c:e7:5c: 86:3a:3a:59:9e:6a:34:79:8a:37:4c:e1:bc:07:ed:8d:d2:a6: f8:f4:c8:73:b4:3e:8c:ad:e3:35:77:16:db:c3:fe:87:95:0b: f8:ee:42:96:1b:8e:ba:8b:0f:b8:dc:59:18:80:92:cb:73:77: 17:ac:61:40:79:2a:1d:f1:d0:b2:4d:0a:04:4e:24:fe:b9:63: 2a:c6:65:05:18:18:be:f3:29:22:e1:65:5f:0c:1a:96:63:77: 92:ca:6d:3f:3b:ae:42:02:6f:4c:8b:dc:71:f8:50:43:e0:45: 57:40:6d:3c:8c:7b:6e:dd:dc:ff:c6:cb:be:db:fd:70:c0:4b: 48:ec:35:23:8c:9e:ec:0d:6a:39:7b:25:7b:17:18:03:e4:31: c9:f3:47:b5:ea:8b:54:ad:b7:15:05:ec:1c:7a:61:22:fb:b9: bd:b0:f7:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hGxPJKk1T384CcymptOWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2JhMjRiNzBiOTY3ZjY2Njc0MmZmNzczZTRkNDFmNjEyZDgwMzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7R6OKWY9mgO8lqgqRq3KNV9jeo0 9KQgcSfTOmCO6LsuK9iWMMFQSOeQGmbxHLTzkzzGizcgjSsOSUpuoRVfLV3rmm3s BwyhZFuldUNY8MBoA1TJLtAfjc6o9gut/O4K3UHHsr59A4+wlnwjDiwIv30DvI6h uT0tFtCzmv8dTw9hV2yMCmvBo6KxMNjPuE8vLtzqwS3w8Y0qFHZh1AbD5kn5Ti/e E+3yGEaPbuWmw4CTste9ynprM5elqZ3x5RIy6QSQPaum6TRyI3Sboi+W7UJ4pM06 aW5jy0EmTOvxMR4MogaSQzpqbApVCyAh+CCB4lYW5nAkiNp0UYXBcWIZqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKe6JLcLln9mZ0L/dz5NQfYS2ANqMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvcDdva3R3dVdmMlpuUXY5M1BrMUI5aExZQTJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2TzIMA0G CSqGSIb3DQEBCwUAA4IBAQBHGVaoxp924xqZ2rbGnxGjuxYPNiMnuxVocBQbNOV0 NZTVx4H2nKBT2nmcy0DPH/GuJ5MO+Ddp3KGAnTIEBoV2wWTMwAiTfWlpTlXDYZmT xtJ7uqUbhNIs51yGOjpZnmo0eYo3TOG8B+2N0qb49MhztD6MreM1dxbbw/6HlQv4 7kKWG466iw+43FkYgJLLc3cXrGFAeSod8dCyTQoETiT+uWMqxmUFGBi+8yki4WVf DBqWY3eSym0/O65CAm9Mi9xx+FBD4EVXQG08jHtu3dz/xsu+2/1wwEtI7DUjjJ7s DWo5eyV7FxgD5DHJ80e16otUrbcVBewcemEi+7m9sPeF -----END CERTIFICATE-----Generated at Mon Jan 5 14:36:33 2026 by rpki-client