This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/7iVN6MvgvWFH2VMDUaYHHrh57Ws.roa File: 7iVN6MvgvWFH2VMDUaYHHrh57Ws.roa (raw, json) Hash identifier: lOjguk2uO0P4rLTiMGAOV+m+X9A07/o4xdhyPVGdr2g= Subject key identifier: EE:25:4D:E8:CB:E0:BD:61:47:D9:53:03:51:A6:07:1E:B8:79:ED:6B Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA5614901F2AF14A2F5551A80F6E865 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/7iVN6MvgvWFH2VMDUaYHHrh57Ws.roa Signing time: Thu 01 Jan 2026 22:19:54 +0000 ROA not before: Thu 01 Jan 2026 22:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211588 IP address blocks: 45.83.205.0/24 maxlen: 24 2a07:e345::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:61:49:01:f2:af:14:a2:f5:55:1a:80:f6:e8:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee254de8cbe0bd6147d9530351a6071eb879ed6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ce:a7:42:9b:d6:7e:f4:a1:d2:1d:34:00:42: 2b:fe:ea:e3:4f:5d:d4:d8:c4:29:71:31:d8:1a:44: ab:00:fb:18:34:90:d3:49:13:e2:91:2a:70:a2:8c: b9:72:d9:6d:04:3b:fc:9d:de:40:2b:34:0b:3a:46: 48:48:c1:5d:e5:92:6c:ad:19:e2:94:5d:b4:dc:3e: 1b:c8:77:2a:09:58:10:f3:b7:42:f5:d9:83:1f:9e: 10:84:1a:e4:2e:dd:3d:bb:de:53:77:83:40:8d:d5: 7b:29:dc:98:15:e6:71:77:6e:54:4d:65:dd:55:7e: 90:0f:38:9c:3a:d2:b4:cf:1b:35:3f:88:94:f6:c3: 8e:85:1b:1d:31:0c:bd:56:d9:98:59:bf:95:bb:6c: 30:94:0a:b9:8a:6a:65:7c:70:e7:68:c4:d1:6d:ef: e1:f6:b5:6e:58:cf:bf:0c:06:87:ef:a4:6b:c6:f7: 6f:5f:b1:e5:d6:ed:26:55:b9:0f:d4:4e:c9:6e:86: 82:c9:7d:45:58:ab:5f:73:bb:5b:18:9f:ee:20:00: c4:49:77:28:c9:29:15:fc:9d:11:cd:e0:6e:b1:7e: 37:47:04:9a:b5:fd:22:d9:ac:14:84:e5:42:05:31: 60:ef:30:a3:a9:f0:6e:4d:e5:51:da:e3:38:bb:db: 7f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:25:4D:E8:CB:E0:BD:61:47:D9:53:03:51:A6:07:1E:B8:79:ED:6B X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/7iVN6MvgvWFH2VMDUaYHHrh57Ws.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.83.205.0/24 IPv6: 2a07:e345::/32 Signature Algorithm: sha256WithRSAEncryption 54:d3:79:ef:7d:1e:34:5a:ec:4a:9e:72:88:9a:54:5b:a4:42: a8:83:e0:08:c0:dd:4e:f4:c4:91:d0:0b:14:f5:1c:fc:fa:95: 59:16:d8:fe:39:68:7e:8f:90:82:c0:28:85:17:09:c5:63:d2: df:32:da:b8:5c:b0:05:84:7e:11:08:00:c2:45:02:0c:b1:09: 16:52:85:d9:04:cf:dd:9b:35:d0:b6:e5:95:c2:c3:d6:95:ff: ac:c4:81:6d:1f:7c:55:3a:e4:10:75:96:97:ad:cc:9c:9c:c4: f4:b8:94:65:e5:fd:d4:45:ca:0b:88:47:f1:81:f4:30:7c:82: dd:b5:91:63:54:6b:a9:3d:e3:6b:e0:cf:be:1e:7a:3c:b9:57: 6a:02:97:4c:25:55:9a:27:ae:d9:ab:e7:fa:ed:8e:4a:04:7c: cc:e1:9a:73:5d:20:52:81:c6:58:96:d8:e3:cb:81:08:0c:62: cb:fd:09:ff:c6:42:c3:d4:61:fb:1e:30:82:a2:c7:7c:76:1a: 30:70:7a:8b:72:46:10:23:96:94:6f:a5:84:5e:d7:69:6c:98: 00:db:dc:71:83:e6:56:b7:a8:f4:83:9e:51:05:61:19:00:b3: 2f:ec:f4:4e:27:22:ed:3f:7e:1b:62:46:5e:dc:5a:ad:21:cf: 62:70:1e:ef -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pWFJAfKvFKL1VRqA9uhlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTI1NGRlOGNiZTBiZDYxNDdkOTUzMDM1MWE2MDcxZWI4NzllZDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApc6nQpvWfvSh0h00AEIr/urjT13U 2MQpcTHYGkSrAPsYNJDTSRPikSpwooy5ctltBDv8nd5AKzQLOkZISMFd5ZJsrRni lF203D4byHcqCVgQ87dC9dmDH54QhBrkLt09u95Td4NAjdV7KdyYFeZxd25UTWXd VX6QDzicOtK0zxs1P4iU9sOOhRsdMQy9VtmYWb+Vu2wwlAq5implfHDnaMTRbe/h 9rVuWM+/DAaH76RrxvdvX7Hl1u0mVbkP1E7JboaCyX1FWKtfc7tbGJ/uIADESXco ySkV/J0RzeBusX43RwSatf0i2awUhOVCBTFg7zCjqfBuTeVR2uM4u9t/WwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFO4lTejL4L1hR9lTA1GmBx64ee1rMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvN2lWTjZNdmd2V0ZIMlZNRFVhWUhIcmg1N1dzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVPNMA0E AgACMAcDBQAqB+NFMA0GCSqGSIb3DQEBCwUAA4IBAQBU03nvfR40WuxKnnKImlRb pEKog+AIwN1O9MSR0AsU9Rz8+pVZFtj+OWh+j5CCwCiFFwnFY9LfMtq4XLAFhH4R CADCRQIMsQkWUoXZBM/dmzXQtuWVwsPWlf+sxIFtH3xVOuQQdZaXrcycnMT0uJRl 5f3URcoLiEfxgfQwfILdtZFjVGupPeNr4M++Hno8uVdqApdMJVWaJ67Zq+f67Y5K BHzM4ZpzXSBSgcZYltjjy4EIDGLL/Qn/xkLD1GH7HjCCosd8dhowcHqLckYQI5aU b6WEXtdpbJgA29xxg+ZWt6j0g55RBWEZALMv7PROJyLtP34bYkZe3FqtIc9icB7v -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:56 2026 by rpki-client