This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/J7pOiHdYKd2j4ChTilTVhn454DE.roa File: J7pOiHdYKd2j4ChTilTVhn454DE.roa (raw, json) Hash identifier: hcNJP1cRdMhyS1Muhx9YTYmFbSp39gRRkj1KauS78s0= Subject key identifier: 27:BA:4E:88:77:58:29:DD:A3:E0:28:53:8A:54:D5:86:7E:39:E0:31 Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b Certificate serial: 019B7D5CA11596586AF22D3AEF654E6299DE Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/J7pOiHdYKd2j4ChTilTVhn454DE.roa Signing time: Fri 02 Jan 2026 06:19:41 +0000 ROA not before: Fri 02 Jan 2026 06:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24951 IP address blocks: 194.11.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:a1:15:96:58:6a:f2:2d:3a:ef:65:4e:62:99:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b Validity Not Before: Jan 2 06:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=27ba4e88775829dda3e028538a54d5867e39e031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:db:0f:f1:b3:15:15:b7:cd:86:57:2a:cf: 41:ca:56:4b:29:4d:95:7f:69:13:43:02:42:dd:2f: 78:21:5b:6d:fb:15:7e:2e:31:05:ec:c2:13:03:be: 22:7e:87:29:3a:b0:4e:49:32:88:4b:79:19:3d:1a: 20:05:f2:85:77:16:21:b2:1c:d1:a1:2a:bd:38:8e: 2f:39:40:1e:7e:9b:76:e1:e0:23:ec:30:8f:03:81: 15:02:6b:14:3c:b1:c8:e8:50:38:a5:2c:5d:21:8d: e7:da:4a:b5:b6:5b:72:9e:04:a0:0b:44:04:a2:51: 15:3a:83:9f:6d:36:07:4e:e6:d9:93:d5:98:98:e3: 83:80:2e:c3:07:2b:1e:b3:3a:31:6f:e6:21:f8:76: aa:0b:51:c2:01:9e:44:22:f8:1a:b9:9a:38:f9:f3: ff:8f:5c:94:df:d0:61:d2:ca:e4:a6:27:96:61:c8: 91:e0:52:cc:98:37:61:d4:5f:89:27:6d:1e:29:53: 7e:76:2d:f1:fa:61:32:b3:65:d1:6c:e5:23:c3:12: 64:c7:63:f9:b6:9a:30:ba:b8:c4:5d:02:09:fa:fa: c2:55:d9:13:ec:f7:fc:bd:e1:41:f5:20:e4:9c:bf: d6:e6:db:e8:94:de:8e:9b:3d:1a:f2:42:72:52:5a: 05:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:BA:4E:88:77:58:29:DD:A3:E0:28:53:8A:54:D5:86:7E:39:E0:31 X509v3 Authority Key Identifier: keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/J7pOiHdYKd2j4ChTilTVhn454DE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.11.232.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:36:ec:3a:d3:6c:b9:ed:a8:d4:5e:d7:e6:a6:53:8e:6b:10: bf:c3:ca:ed:3c:e1:8e:ae:c0:95:24:6c:02:af:fd:a6:8f:b6: a1:9c:da:5b:da:15:8a:4c:64:47:c9:ed:45:2f:5e:39:90:2a: f7:c3:69:9c:00:bf:41:fc:3c:6a:5e:14:6b:8a:ce:15:48:be: 8e:2b:7d:00:b2:85:d7:ff:9c:3a:f3:07:6a:d0:c2:a1:0e:36: bb:bb:76:08:40:22:26:c6:55:48:18:51:a3:df:0b:71:ba:4b: 41:dd:c4:03:16:2d:97:80:92:84:a4:aa:78:10:85:59:1d:8c: 9f:65:e7:5d:b5:1d:c9:6d:95:d4:9e:51:1d:b6:a4:43:d8:6c: 6f:8a:4c:39:7f:47:ba:dc:39:4c:c0:30:c0:fc:b0:88:73:11: 1a:6d:ab:ee:54:89:a2:aa:95:5c:42:09:67:22:39:63:2e:c4: a2:61:8e:5b:ff:ec:6f:1f:97:45:6d:c5:7a:75:5d:ec:cf:5c: d1:d5:38:07:52:d3:79:9f:0e:01:ff:bf:30:d3:1b:3f:84:ac: 7a:56:f3:66:51:b4:ff:e7:85:a3:63:8f:55:bb:e1:dd:a9:ff: a8:8f:2c:3f:09:ff:a1:63:a4:ae:19:6e:99:13:9a:ab:a1:72: 5f:6d:d4:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XKEVllhq8i0672VOYpneMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5 NDdjMmIwHhcNMjYwMTAyMDYxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyN2JhNGU4ODc3NTgyOWRkYTNlMDI4NTM4YTU0ZDU4NjdlMzllMDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpHbD/GzFRW3zYZXKs9BylZLKU2V f2kTQwJC3S94IVtt+xV+LjEF7MITA74ifocpOrBOSTKIS3kZPRogBfKFdxYhshzR oSq9OI4vOUAefpt24eAj7DCPA4EVAmsUPLHI6FA4pSxdIY3n2kq1tltyngSgC0QE olEVOoOfbTYHTubZk9WYmOODgC7DByseszoxb+Yh+HaqC1HCAZ5EIvgauZo4+fP/ j1yU39Bh0srkpieWYciR4FLMmDdh1F+JJ20eKVN+di3x+mEys2XRbOUjwxJkx2P5 tpowurjEXQIJ+vrCVdkT7Pf8veFB9SDknL/W5tvolN6Omz0a8kJyUloF6wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCe6Toh3WCndo+AoU4pU1YZ+OeAxMB8GA1UdIwQY MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt ODJiYjBiYjExZTNlLzEvSjdwT2lIZFlLZDJqNENoVGlsVFZobjQ1NERFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwgvoMA0G CSqGSIb3DQEBCwUAA4IBAQAaNuw602y57ajUXtfmplOOaxC/w8rtPOGOrsCVJGwC r/2mj7ahnNpb2hWKTGRHye1FL145kCr3w2mcAL9B/DxqXhRris4VSL6OK30AsoXX /5w68wdq0MKhDja7u3YIQCImxlVIGFGj3wtxuktB3cQDFi2XgJKEpKp4EIVZHYyf ZeddtR3JbZXUnlEdtqRD2Gxvikw5f0e63DlMwDDA/LCIcxEabavuVImiqpVcQgln IjljLsSiYY5b/+xvH5dFbcV6dV3sz1zR1TgHUtN5nw4B/78w0xs/hKx6VvNmUbT/ 54WjY49Vu+Hdqf+ojyw/Cf+hY6SuGW6ZE5qroXJfbdSL -----END CERTIFICATE-----Generated at Mon Feb 9 22:57:51 2026 by rpki-client