This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/FO7eDX1kgKUQXxq5NB3K0Lk3jdQ.roa File: FO7eDX1kgKUQXxq5NB3K0Lk3jdQ.roa (raw, json) Hash identifier: /5jFyUcx4ShQzgU8nxQDe9bLoCU8e1mxysNcs4hYIIs= Subject key identifier: 14:EE:DE:0D:7D:64:80:A5:10:5F:1A:B9:34:1D:CA:D0:B9:37:8D:D4 Certificate issuer: /CN=617252ebbb33484adcec7405adea4de08a0afb04 Certificate serial: 019B78A2A09E9C4E1F3EA4EE74B6FC67857D Authority key identifier: 61:72:52:EB:BB:33:48:4A:DC:EC:74:05:AD:EA:4D:E0:8A:0A:FB:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YXJS67szSErc7HQFrepN4IoK-wQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/FO7eDX1kgKUQXxq5NB3K0Lk3jdQ.roa Signing time: Thu 01 Jan 2026 08:18:02 +0000 ROA not before: Thu 01 Jan 2026 08:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41608 IP address blocks: 88.151.32.0/22 maxlen: 24 185.213.172.0/23 maxlen: 23 185.213.172.0/24 maxlen: 24 185.213.174.0/24 maxlen: 24 185.213.175.0/24 maxlen: 24 195.170.165.0/24 maxlen: 24 195.170.167.0/24 maxlen: 24 195.170.172.0/24 maxlen: 24 2a0b:8bc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/YXJS67szSErc7HQFrepN4IoK-wQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/YXJS67szSErc7HQFrepN4IoK-wQ.mft rsync://rpki.ripe.net/repository/DEFAULT/YXJS67szSErc7HQFrepN4IoK-wQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:a0:9e:9c:4e:1f:3e:a4:ee:74:b6:fc:67:85:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=617252ebbb33484adcec7405adea4de08a0afb04 Validity Not Before: Jan 1 08:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=14eede0d7d6480a5105f1ab9341dcad0b9378dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0c:9d:9b:34:8d:a3:cd:51:85:b5:3e:0b:5b: 07:f1:35:44:ba:d1:e2:cd:73:6e:8f:07:23:71:0e: 80:ae:f5:7a:d6:9f:c2:90:7c:83:7d:b3:87:27:37: 9b:22:c5:3f:29:fc:e6:e0:84:67:4c:c2:2a:78:50: ff:7c:55:37:93:00:c4:0d:ff:a0:b4:78:e7:65:9b: 97:ec:61:eb:4c:4c:ac:dd:7d:68:a7:8a:90:18:87: 87:17:2c:cd:f2:01:d7:a6:6a:99:5d:9c:3c:d6:9b: 9c:9c:35:92:e2:3c:b2:64:62:cc:6e:af:1f:64:46: 41:88:9b:44:06:3a:2e:98:b9:d6:5c:89:56:d7:d9: 22:a2:80:d8:c2:71:ac:65:2a:80:cc:cc:e8:e6:91: 28:91:96:71:2d:47:4d:6c:cf:59:c1:71:66:4b:87: 11:b5:38:9d:d1:ca:67:82:08:79:9c:e5:7e:8f:f6: 12:dc:db:a4:ed:95:e3:d7:01:b1:94:7d:1e:08:18: a7:7b:75:30:b0:e5:13:8d:96:1d:90:77:a5:71:94: 16:da:93:b0:06:12:d8:84:c3:79:b7:93:a5:e6:a1: 5e:3b:07:9e:d5:4d:34:9a:41:a2:45:ff:7a:4e:80: 23:7d:ec:97:dc:e4:2a:31:c5:73:22:79:64:fe:03: 68:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:EE:DE:0D:7D:64:80:A5:10:5F:1A:B9:34:1D:CA:D0:B9:37:8D:D4 X509v3 Authority Key Identifier: keyid:61:72:52:EB:BB:33:48:4A:DC:EC:74:05:AD:EA:4D:E0:8A:0A:FB:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YXJS67szSErc7HQFrepN4IoK-wQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/FO7eDX1kgKUQXxq5NB3K0Lk3jdQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/37a93b-87b5-4995-9e8c-6635debc395c/1/YXJS67szSErc7HQFrepN4IoK-wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.151.32.0/22 185.213.172.0/22 195.170.165.0/24 195.170.167.0/24 195.170.172.0/24 IPv6: 2a0b:8bc0::/29 Signature Algorithm: sha256WithRSAEncryption 2b:10:60:01:8e:2e:0e:cd:2c:53:ae:7e:b6:44:94:9b:07:af: c3:7b:39:2d:16:d8:40:a7:d7:0f:79:92:13:ee:c2:4c:ed:fb: 39:96:42:b8:0c:89:3e:00:5c:36:23:4c:d4:2e:01:07:f9:34: cc:c8:4b:00:b0:a8:1e:1d:88:f8:bf:b2:3d:fb:1b:4a:f7:e0: 46:a8:f9:0a:b9:63:0c:0d:ba:31:38:66:16:40:d8:dd:33:1a: 98:0b:60:af:77:44:d3:74:67:08:c1:16:a6:36:d3:dc:6b:13: 4a:f2:22:f9:b3:39:33:0f:ac:53:36:66:61:0c:ef:3a:8d:86: 71:41:ce:b8:e2:13:21:94:b0:4f:73:a0:03:0a:2a:49:cb:d1: b9:c7:9a:52:60:19:05:94:3b:a5:73:21:12:1c:4a:c2:fd:8c: e0:9d:06:9e:3c:4d:8b:57:e5:4f:67:79:a8:bc:70:ed:f8:16: 49:6a:42:ae:61:62:8b:14:66:2f:e6:24:bb:3f:db:f1:8f:cc: 6e:6b:66:da:da:08:c5:6a:a9:66:1e:c9:d9:9a:d3:ac:db:fa: 08:6f:7f:b8:cd:da:4f:5f:0f:06:d8:bf:55:d5:c7:8f:12:d3: 00:53:09:ec:64:a4:01:fe:62:65:90:b4:71:98:ef:04:f3:c3: ea:3e:e4:b1 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt4oqCenE4fPqTudLb8Z4V9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxNzI1MmViYmIzMzQ4NGFkY2VjNzQwNWFkZWE0ZGUwOGEw YWZiMDQwHhcNMjYwMTAxMDgxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNGVlZGUwZDdkNjQ4MGE1MTA1ZjFhYjkzNDFkY2FkMGI5Mzc4ZGQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgydmzSNo81RhbU+C1sH8TVEutHi zXNujwcjcQ6ArvV61p/CkHyDfbOHJzebIsU/Kfzm4IRnTMIqeFD/fFU3kwDEDf+g tHjnZZuX7GHrTEys3X1op4qQGIeHFyzN8gHXpmqZXZw81pucnDWS4jyyZGLMbq8f ZEZBiJtEBjoumLnWXIlW19kiooDYwnGsZSqAzMzo5pEokZZxLUdNbM9ZwXFmS4cR tTid0cpnggh5nOV+j/YS3Nuk7ZXj1wGxlH0eCBine3UwsOUTjZYdkHelcZQW2pOw BhLYhMN5t5Ol5qFeOwee1U00mkGiRf96ToAjfeyX3OQqMcVzInlk/gNo1wIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFBTu3g19ZIClEF8auTQdytC5N43UMB8GA1UdIwQY MBaAFGFyUuu7M0hK3Ox0Ba3qTeCKCvsEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVhKUzY3c3pTRXJjN0hRRnJlcE40SW9LLXdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8zN2E5M2ItODdiNS00OTk1LTllOGMt NjYzNWRlYmMzOTVjLzEvRk83ZURYMWtnS1VRWHhxNU5CM0swTGszamRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy8zN2E5M2ItODdiNS00OTk1LTllOGMtNjYzNWRlYmMzOTVj LzEvWVhKUzY3c3pTRXJjN0hRRnJlcE40SW9LLXdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCWJcgAwQC udWsAwQAw6qlAwQAw6qnAwQAw6qsMA0EAgACMAcDBQMqC4vAMA0GCSqGSIb3DQEB CwUAA4IBAQArEGABji4OzSxTrn62RJSbB6/DezktFthAp9cPeZIT7sJM7fs5lkK4 DIk+AFw2I0zULgEH+TTMyEsAsKgeHYj4v7I9+xtK9+BGqPkKuWMMDboxOGYWQNjd MxqYC2Cvd0TTdGcIwRamNtPcaxNK8iL5szkzD6xTNmZhDO86jYZxQc644hMhlLBP c6ADCipJy9G5x5pSYBkFlDulcyESHErC/YzgnQaePE2LV+VPZ3movHDt+BZJakKu YWKLFGYv5iS7P9vxj8xua2ba2gjFaqlmHsnZmtOs2/oIb3+4zdpPXw8G2L9V1ceP EtMAUwnsZKQB/mJlkLRxmO8E88PqPuSx -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:37 2026 by rpki-client