This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/8aa02d-94c8-4678-92ac-17fb4ffb9fad/1/7n5MeX8-tWAT68wvCvYynwAR_eg.roa File: 7n5MeX8-tWAT68wvCvYynwAR_eg.roa (raw, json) Hash identifier: Q+ItMbkc6eOs9U+JVZ4F5MRsQK89hH4JQq7jlKNjvQo= Subject key identifier: EE:7E:4C:79:7F:3E:B5:60:13:EB:CC:2F:0A:F6:32:9F:00:11:FD:E8 Certificate issuer: /CN=b1bc850d17ca6d3c7b4d00e501e2d356f08a585e Certificate serial: 019B7C12CE42106174E886C22D4D68013034 Authority key identifier: B1:BC:85:0D:17:CA:6D:3C:7B:4D:00:E5:01:E2:D3:56:F0:8A:58:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbyFDRfKbTx7TQDlAeLTVvCKWF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/8aa02d-94c8-4678-92ac-17fb4ffb9fad/1/7n5MeX8-tWAT68wvCvYynwAR_eg.roa Signing time: Fri 02 Jan 2026 00:19:25 +0000 ROA not before: Fri 02 Jan 2026 00:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 91.228.72.0/24 maxlen: 24 91.228.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/8aa02d-94c8-4678-92ac-17fb4ffb9fad/1/sbyFDRfKbTx7TQDlAeLTVvCKWF4.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/8aa02d-94c8-4678-92ac-17fb4ffb9fad/1/sbyFDRfKbTx7TQDlAeLTVvCKWF4.mft rsync://rpki.ripe.net/repository/DEFAULT/sbyFDRfKbTx7TQDlAeLTVvCKWF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:ce:42:10:61:74:e8:86:c2:2d:4d:68:01:30:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1bc850d17ca6d3c7b4d00e501e2d356f08a585e Validity Not Before: Jan 2 00:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee7e4c797f3eb56013ebcc2f0af6329f0011fde8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:0a:91:72:52:4d:59:fc:59:84:a0:e7:e6:90: 3c:38:0f:2a:68:63:e3:c9:20:72:75:3a:1c:3f:e6: b8:0c:dc:4f:6d:b2:54:94:03:86:fd:1b:eb:d8:75: ad:2f:4a:be:0a:67:62:29:9e:cc:df:a6:6e:5e:56: b1:e6:80:82:b0:32:ea:60:a9:99:f2:67:a0:f9:54: 8b:52:55:c8:24:0f:21:a1:fb:c4:9d:e8:a1:40:30: 9b:ec:19:32:3c:a6:79:df:50:21:97:e6:25:c2:9d: b2:09:54:cd:b8:5f:2c:41:22:41:a5:dc:00:a9:73: 53:5f:6b:3e:74:01:43:3e:5f:90:6f:84:2b:99:c5: 2d:c9:f3:ef:d5:0a:e7:10:94:1f:08:7e:33:76:0c: a0:0c:ea:f8:86:13:79:2c:ad:8b:2d:77:82:22:b5: 06:17:ef:dc:f7:fc:9e:c1:6b:b3:1e:08:29:12:f1: 1a:10:ca:09:24:97:a5:77:1e:a9:d9:8d:b1:4a:fb: 2e:c6:ad:2e:62:bd:aa:70:06:02:f6:6e:24:e4:0f: 03:f9:18:e0:5e:f8:38:ce:74:50:bd:fa:81:88:b8: 8d:dc:62:1b:25:f3:b5:7e:71:89:21:af:dd:d0:46: 97:8c:3e:5d:ce:3d:f2:dc:3d:71:aa:3b:21:53:4f: 2f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7E:4C:79:7F:3E:B5:60:13:EB:CC:2F:0A:F6:32:9F:00:11:FD:E8 X509v3 Authority Key Identifier: keyid:B1:BC:85:0D:17:CA:6D:3C:7B:4D:00:E5:01:E2:D3:56:F0:8A:58:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbyFDRfKbTx7TQDlAeLTVvCKWF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/8aa02d-94c8-4678-92ac-17fb4ffb9fad/1/7n5MeX8-tWAT68wvCvYynwAR_eg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/8aa02d-94c8-4678-92ac-17fb4ffb9fad/1/sbyFDRfKbTx7TQDlAeLTVvCKWF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.72.0/24 91.228.74.0/24 Signature Algorithm: sha256WithRSAEncryption 71:70:5c:9e:cb:76:a3:2f:2c:70:53:07:63:5c:b6:be:ff:a9: 51:17:14:86:a3:dc:1f:e5:45:b7:ca:31:5a:de:d2:63:01:fe: 5d:09:74:cc:06:87:59:94:f2:9c:05:47:3a:1e:b6:b8:21:e4: fb:20:18:16:63:7d:cb:16:0e:50:cd:b1:03:e4:19:78:42:96: 84:b7:01:ea:21:c6:2d:ad:18:a8:f4:bd:d0:39:74:00:7c:8d: 73:fa:38:e7:93:45:a4:d3:f7:8e:17:91:55:e1:44:5d:56:62: be:ba:25:1e:f3:1b:a0:54:2a:e9:f6:b5:9c:67:4b:10:04:12: 87:cd:5e:d6:1d:af:f7:05:78:15:6f:4b:af:fb:21:68:8d:c3: 98:ae:dd:ac:d9:e0:c9:21:be:15:5e:5a:33:dd:b2:e5:b9:11: 6e:aa:07:31:06:71:c5:a8:65:79:f4:c0:4e:79:ad:10:92:56: 0e:b7:38:1e:e6:99:ca:12:b8:f2:31:b4:74:09:f6:21:af:5b: 97:44:e8:73:1b:1c:38:ae:d7:ab:8d:96:63:d4:2d:fa:f4:c5: 14:8b:10:32:4c:01:a7:bc:69:e6:ff:43:58:46:a2:e0:6f:76: c8:43:81:9f:66:bc:58:e8:63:89:da:57:82:67:53:8b:ad:b8: 57:4d:e9:4d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Es5CEGF06IbCLU1oATA0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxYmM4NTBkMTdjYTZkM2M3YjRkMDBlNTAxZTJkMzU2ZjA4 YTU4NWUwHhcNMjYwMTAyMDAxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTdlNGM3OTdmM2ViNTYwMTNlYmNjMmYwYWY2MzI5ZjAwMTFmZGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgqRclJNWfxZhKDn5pA8OA8qaGPj ySBydTocP+a4DNxPbbJUlAOG/Rvr2HWtL0q+CmdiKZ7M36ZuXlax5oCCsDLqYKmZ 8meg+VSLUlXIJA8hofvEneihQDCb7BkyPKZ531Ahl+Ylwp2yCVTNuF8sQSJBpdwA qXNTX2s+dAFDPl+Qb4QrmcUtyfPv1QrnEJQfCH4zdgygDOr4hhN5LK2LLXeCIrUG F+/c9/yewWuzHggpEvEaEMoJJJeldx6p2Y2xSvsuxq0uYr2qcAYC9m4k5A8D+Rjg Xvg4znRQvfqBiLiN3GIbJfO1fnGJIa/d0EaXjD5dzj3y3D1xqjshU08vpQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFO5+THl/PrVgE+vMLwr2Mp8AEf3oMB8GA1UdIwQY MBaAFLG8hQ0Xym08e00A5QHi01bwilheMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2J5RkRSZktiVHg3VFFEbEFlTFRWdkNLV0Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC84YWEwMmQtOTRjOC00Njc4LTkyYWMt MTdmYjRmZmI5ZmFkLzEvN241TWVYOC10V0FUNjh3dkN2WXlud0FSX2VnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC84YWEwMmQtOTRjOC00Njc4LTkyYWMtMTdmYjRmZmI5ZmFk LzEvc2J5RkRSZktiVHg3VFFEbEFlTFRWdkNLV0Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+RIAwQA W+RKMA0GCSqGSIb3DQEBCwUAA4IBAQBxcFyey3ajLyxwUwdjXLa+/6lRFxSGo9wf 5UW3yjFa3tJjAf5dCXTMBodZlPKcBUc6Hra4IeT7IBgWY33LFg5QzbED5Bl4QpaE twHqIcYtrRio9L3QOXQAfI1z+jjnk0Wk0/eOF5FV4URdVmK+uiUe8xugVCrp9rWc Z0sQBBKHzV7WHa/3BXgVb0uv+yFojcOYrt2s2eDJIb4VXloz3bLluRFuqgcxBnHF qGV59MBOea0QklYOtzge5pnKErjyMbR0CfYhr1uXROhzGxw4rterjZZj1C369MUU ixAyTAGnvGnm/0NYRqLgb3bIQ4GfZrxY6GOJ2leCZ1OLrbhXTelN -----END CERTIFICATE-----Generated at Fri Jan 2 11:03:57 2026 by rpki-client