This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/7Yt7YHW5_hNd1-7nBpalAtt61w8.roa File: 7Yt7YHW5_hNd1-7nBpalAtt61w8.roa (raw, json) Hash identifier: Sw5wITefxDXkzEsytQjW7irD74Qb8SCqP1PXR/rp+n4= Subject key identifier: ED:8B:7B:60:75:B9:FE:13:5D:D7:EE:E7:06:96:A5:02:DB:7A:D7:0F Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5 Certificate serial: 019B7F158BA9845CB11C3944E8E29EA47CF2 Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/7Yt7YHW5_hNd1-7nBpalAtt61w8.roa Signing time: Fri 02 Jan 2026 14:21:17 +0000 ROA not before: Fri 02 Jan 2026 14:21:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 31.14.65.0/24 maxlen: 24 86.104.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.mft rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 23:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:8b:a9:84:5c:b1:1c:39:44:e8:e2:9e:a4:7c:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5 Validity Not Before: Jan 2 14:21:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ed8b7b6075b9fe135dd7eee70696a502db7ad70f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:35:9a:9e:fc:00:bd:c4:d8:c3:8a:a5:9f:2b: b5:d7:3d:bf:65:8e:b4:b0:53:82:e3:b5:3a:be:ae: ba:e4:77:31:04:80:a4:65:15:46:b9:b9:18:8c:f5: 13:65:20:7c:c8:ca:58:79:bd:36:06:3a:81:76:1c: bb:13:78:1d:e3:fb:e3:fe:7f:aa:29:09:83:29:b6: c8:c5:d4:64:4f:28:04:6e:3c:74:b6:22:7a:1d:74: b7:df:ce:2b:f5:bc:87:9b:3c:9c:ad:d9:08:ba:51: 02:00:95:15:b1:fa:62:9f:98:b6:b5:be:87:f3:95: 42:4d:8d:1f:2d:c1:da:8e:f5:5d:98:7c:b1:8e:f0: 7f:fc:56:13:81:b0:7e:43:2e:62:52:b1:31:e9:4a: f9:1f:2e:20:ff:5d:a1:4d:3b:00:b3:4e:ce:68:db: 63:0a:5a:9d:c7:d1:a4:94:b1:2f:cf:e7:7e:ec:ec: 4d:12:0b:f1:bf:e0:59:be:8f:b7:b9:8a:2a:41:be: 88:ac:e3:8b:af:25:9d:30:c9:08:9d:f0:97:ae:07: c3:46:39:f0:dc:78:4e:8c:9a:9c:a9:15:b0:64:45: c4:37:74:27:76:5c:f0:61:68:b4:d4:5b:67:a5:00: ab:31:05:19:59:14:47:7a:db:de:66:eb:54:86:41: 8b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8B:7B:60:75:B9:FE:13:5D:D7:EE:E7:06:96:A5:02:DB:7A:D7:0F X509v3 Authority Key Identifier: keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/7Yt7YHW5_hNd1-7nBpalAtt61w8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.14.65.0/24 86.104.212.0/24 Signature Algorithm: sha256WithRSAEncryption 67:87:0d:a3:81:7c:45:4c:4f:32:3f:bb:2b:37:93:fe:e1:e4: cf:ba:b3:02:eb:b7:c4:19:20:57:bb:ff:66:e7:56:25:01:cc: e0:c4:47:46:da:ea:41:68:aa:2a:1e:6c:b4:09:15:d2:c7:94: 03:44:c0:f3:d7:8d:34:16:f4:9c:c4:b2:cd:da:04:3a:22:81: fc:08:56:59:02:72:80:34:be:aa:16:00:cb:66:47:32:1f:9a: b3:58:0a:c5:25:02:33:b2:92:ce:6d:68:c2:74:9e:07:cd:50: 4e:a0:e7:9b:76:39:2b:61:6c:7d:65:5c:15:96:d4:49:cb:48: aa:a1:b2:81:8f:d4:4b:ef:75:b3:56:27:21:03:e9:d1:e7:02: 6c:12:04:2c:b1:28:6f:2d:97:84:51:4a:81:23:5e:53:a9:fa: 0e:bb:92:db:c2:b4:19:1e:52:cc:6a:a9:76:78:6d:cc:fc:42: 2e:b2:d7:6d:7f:6e:85:ff:ef:a9:c2:4b:48:c5:95:75:76:b3: d2:d2:c1:53:c1:c1:13:d8:3f:60:9c:6a:04:3c:18:c1:0e:ff: 83:96:79:35:01:35:e9:78:13:4a:d8:8a:cc:18:c8:6c:02:4f: 02:10:ce:ac:f8:d1:b0:2d:4d:3c:50:f4:66:75:9b:25:04:cb: 5a:6e:9e:52 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FYuphFyxHDlE6OKepHzyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZjgyNGQzMmRmMWE1MTEzZDgyMTAxMzQ1ZDc4NWEzOGFk ZGJkZTUwHhcNMjYwMTAyMTQyMTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZDhiN2I2MDc1YjlmZTEzNWRkN2VlZTcwNjk2YTUwMmRiN2FkNzBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1TWanvwAvcTYw4qlnyu11z2/ZY60 sFOC47U6vq665HcxBICkZRVGubkYjPUTZSB8yMpYeb02BjqBdhy7E3gd4/vj/n+q KQmDKbbIxdRkTygEbjx0tiJ6HXS3384r9byHmzycrdkIulECAJUVsfpin5i2tb6H 85VCTY0fLcHajvVdmHyxjvB//FYTgbB+Qy5iUrEx6Ur5Hy4g/12hTTsAs07OaNtj Clqdx9GklLEvz+d+7OxNEgvxv+BZvo+3uYoqQb6IrOOLryWdMMkInfCXrgfDRjnw 3HhOjJqcqRWwZEXEN3QndlzwYWi01FtnpQCrMQUZWRRHetveZutUhkGLswIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFO2Le2B1uf4TXdfu5waWpQLbetcPMB8GA1UdIwQY MBaAFIT4JNMt8aURPYIQE0XXhaOK3b3lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFBnazB5M3hwUkU5Z2hBVFJkZUZvNHJkdmVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85ZDY1YmItYWI0Zi00M2FhLWJiYTgt NDM3Mzk0OTM4YzUyLzEvN1l0N1lIVzVfaE5kMS03bkJwYWxBdHQ2MXc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85ZDY1YmItYWI0Zi00M2FhLWJiYTgtNDM3Mzk0OTM4YzUy LzEvaFBnazB5M3hwUkU5Z2hBVFJkZUZvNHJkdmVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHw5BAwQA VmjUMA0GCSqGSIb3DQEBCwUAA4IBAQBnhw2jgXxFTE8yP7srN5P+4eTPurMC67fE GSBXu/9m51YlAczgxEdG2upBaKoqHmy0CRXSx5QDRMDz1400FvScxLLN2gQ6IoH8 CFZZAnKANL6qFgDLZkcyH5qzWArFJQIzspLObWjCdJ4HzVBOoOebdjkrYWx9ZVwV ltRJy0iqobKBj9RL73WzVichA+nR5wJsEgQssShvLZeEUUqBI15TqfoOu5LbwrQZ HlLMaql2eG3M/EIustdtf26F/++pwktIxZV1drPS0sFTwcET2D9gnGoEPBjBDv+D lnk1ATXpeBNK2IrMGMhsAk8CEM6s+NGwLU08UPRmdZslBMtabp5S -----END CERTIFICATE-----Generated at Sun Jan 18 08:54:56 2026 by rpki-client