This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/P7OFGXCIuiy34hkSHUMLMJ7IF9g.roa File: P7OFGXCIuiy34hkSHUMLMJ7IF9g.roa (raw, json) Hash identifier: V7Zx2KHScFSsYI93Yh9xQVZupBOKg8yMrPbW/W8v9Sg= Subject key identifier: 3F:B3:85:19:70:88:BA:2C:B7:E2:19:12:1D:43:0B:30:9E:C8:17:D8 Certificate issuer: /CN=fc9128a762ceeb6b59f5431568bc13fce41aba12 Certificate serial: 019B7C132C7023B637A113756EED443C1E87 Authority key identifier: FC:91:28:A7:62:CE:EB:6B:59:F5:43:15:68:BC:13:FC:E4:1A:BA:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/P7OFGXCIuiy34hkSHUMLMJ7IF9g.roa Signing time: Fri 02 Jan 2026 00:19:49 +0000 ROA not before: Fri 02 Jan 2026 00:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48763 IP address blocks: 193.8.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.mft rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 12:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:2c:70:23:b6:37:a1:13:75:6e:ed:44:3c:1e:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc9128a762ceeb6b59f5431568bc13fce41aba12 Validity Not Before: Jan 2 00:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3fb385197088ba2cb7e219121d430b309ec817d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b5:ce:90:3a:7a:70:4b:a9:43:6e:96:58:66: 98:98:61:22:ed:73:7a:68:1b:85:35:52:fc:fc:47: b8:48:64:8e:f4:ea:06:be:4d:77:e7:57:c2:35:be: f6:70:3f:bb:42:b9:db:5a:82:12:92:9d:81:8a:68: 88:93:cb:2c:8e:20:f9:f3:b5:c8:45:e8:44:e8:43: 84:f7:ba:46:e8:e8:79:0f:83:af:94:1b:06:05:17: d5:e1:7d:4b:c1:8a:3f:f3:08:35:d1:ca:31:6f:e1: 15:ce:69:95:c8:24:7a:e0:48:6d:66:5e:6e:1d:60: 58:f3:d7:f3:4d:47:6d:95:75:b0:84:ae:33:7d:f3: cc:ab:79:07:ed:d0:92:a8:1c:0c:d5:25:9f:56:59: 68:34:2b:2b:55:ed:29:d1:78:83:9b:31:77:69:50: 95:48:5d:b6:c9:25:59:7f:f2:b7:77:56:ed:bf:4c: 51:a1:15:30:95:59:72:d4:ac:07:03:c3:7d:02:24: 99:90:87:34:58:3a:b8:82:03:1e:d1:50:f7:a5:6e: 69:84:ef:ec:64:a2:a0:10:74:70:c7:37:71:4e:39: bc:55:dc:bc:6b:72:9b:03:31:a0:92:e9:e5:1a:cd: 01:3f:59:38:46:7a:77:98:c6:5e:45:70:49:f8:7f: 81:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B3:85:19:70:88:BA:2C:B7:E2:19:12:1D:43:0B:30:9E:C8:17:D8 X509v3 Authority Key Identifier: keyid:FC:91:28:A7:62:CE:EB:6B:59:F5:43:15:68:BC:13:FC:E4:1A:BA:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/P7OFGXCIuiy34hkSHUMLMJ7IF9g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.8.201.0/24 Signature Algorithm: sha256WithRSAEncryption 66:6a:ec:f3:3f:66:9c:0c:55:75:28:bd:b2:88:4a:ae:d1:ac: ec:6f:bd:09:19:4a:fc:34:c4:7f:49:59:b3:90:43:00:69:96: 55:f9:ed:ee:b1:de:00:d2:40:d1:00:92:74:d0:01:11:88:16: a0:10:25:11:99:63:ca:4f:7d:3c:ff:9d:57:fc:ca:38:1f:87: b3:db:39:b8:b2:dd:0b:6a:7b:15:aa:5d:bd:05:d7:47:6e:3d: 3e:77:a9:cc:0a:52:b8:df:3a:b1:b6:e1:56:65:73:08:68:af: e0:9c:0d:5d:d2:ac:ca:3c:53:e9:7e:8d:cf:95:32:d1:c8:35: aa:09:fc:92:18:a3:a0:ed:bb:2e:fa:28:a7:fa:da:db:52:1a: 16:a6:a6:18:6e:c9:69:f1:a4:06:4e:44:8e:6d:a7:d0:e1:f3: de:01:88:62:c5:b4:b6:da:48:ad:e4:e6:df:dd:cc:2a:e0:3e: 47:56:1c:03:4a:5a:73:be:99:fa:48:97:ab:06:89:45:d3:30: f0:11:55:dc:eb:f2:8b:7a:7a:d8:e2:c3:49:74:54:69:61:6e: df:2e:6c:6c:c9:29:73:77:b5:5e:fd:16:59:f1:7d:8e:8f:4c: ab:69:6a:11:d6:53:fe:bc:1d:4d:62:ce:8f:2a:65:bb:29:c0: 5d:0f:f6:97 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EyxwI7Y3oRN1bu1EPB6HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjOTEyOGE3NjJjZWViNmI1OWY1NDMxNTY4YmMxM2ZjZTQx YWJhMTIwHhcNMjYwMTAyMDAxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZmIzODUxOTcwODhiYTJjYjdlMjE5MTIxZDQzMGIzMDllYzgxN2Q4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbXOkDp6cEupQ26WWGaYmGEi7XN6 aBuFNVL8/Ee4SGSO9OoGvk1351fCNb72cD+7QrnbWoISkp2BimiIk8ssjiD587XI RehE6EOE97pG6Oh5D4OvlBsGBRfV4X1LwYo/8wg10coxb+EVzmmVyCR64EhtZl5u HWBY89fzTUdtlXWwhK4zffPMq3kH7dCSqBwM1SWfVlloNCsrVe0p0XiDmzF3aVCV SF22ySVZf/K3d1btv0xRoRUwlVly1KwHA8N9AiSZkIc0WDq4ggMe0VD3pW5phO/s ZKKgEHRwxzdxTjm8Vdy8a3KbAzGgkunlGs0BP1k4Rnp3mMZeRXBJ+H+BiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD+zhRlwiLost+IZEh1DCzCeyBfYMB8GA1UdIwQY MBaAFPyRKKdizutrWfVDFWi8E/zkGroSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0pFb3AyTE82MnRaOVVNVmFMd1RfT1FhdWhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yMWU2OGMtMWM0Yy00NTU5LTllMzAt MTM1ZDcwOWI1OWUwLzEvUDdPRkdYQ0l1aXkzNGhrU0hVTUxNSjdJRjlnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8yMWU2OGMtMWM0Yy00NTU5LTllMzAtMTM1ZDcwOWI1OWUw LzEvX0pFb3AyTE82MnRaOVVNVmFMd1RfT1FhdWhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQjJMA0G CSqGSIb3DQEBCwUAA4IBAQBmauzzP2acDFV1KL2yiEqu0azsb70JGUr8NMR/SVmz kEMAaZZV+e3usd4A0kDRAJJ00AERiBagECURmWPKT308/51X/Mo4H4ez2zm4st0L ansVql29BddHbj0+d6nMClK43zqxtuFWZXMIaK/gnA1d0qzKPFPpfo3PlTLRyDWq CfySGKOg7bsu+iin+trbUhoWpqYYbslp8aQGTkSObafQ4fPeAYhixbS22kit5Obf 3cwq4D5HVhwDSlpzvpn6SJerBolF0zDwEVXc6/KLenrY4sNJdFRpYW7fLmxsySlz d7Ve/RZZ8X2Oj0yraWoR1lP+vB1NYs6PKmW7KcBdD/aX -----END CERTIFICATE-----Generated at Wed Jan 21 17:15:39 2026 by rpki-client