This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/af4407-f98e-4994-9f9e-f6b6c04916a1/1/fWE5Pn1GMrv6VgGwD7OgdDzsgQA.roa File: fWE5Pn1GMrv6VgGwD7OgdDzsgQA.roa (raw, json) Hash identifier: +xJkUcHJIVs0JLz+BAjbFgLWtRzM+wkJAxcAk5CBYUE= Subject key identifier: 7D:61:39:3E:7D:46:32:BB:FA:56:01:B0:0F:B3:A0:74:3C:EC:81:00 Certificate issuer: /CN=a13042d137fbb03beba6421f33a8525b52a88f7a Certificate serial: 019B797E91AF9E9EC9EC07CAA7954078E2A0 Authority key identifier: A1:30:42:D1:37:FB:B0:3B:EB:A6:42:1F:33:A8:52:5B:52:A8:8F:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTBC0Tf7sDvrpkIfM6hSW1Koj3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/af4407-f98e-4994-9f9e-f6b6c04916a1/1/fWE5Pn1GMrv6VgGwD7OgdDzsgQA.roa Signing time: Thu 01 Jan 2026 12:18:16 +0000 ROA not before: Thu 01 Jan 2026 12:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198249 IP address blocks: 91.199.98.0/24 maxlen: 24 91.234.160.0/24 maxlen: 24 185.17.68.0/22 maxlen: 24 185.169.84.0/22 maxlen: 24 185.221.40.0/22 maxlen: 24 185.221.40.0/24 maxlen: 24 185.221.41.0/24 maxlen: 24 185.221.42.0/24 maxlen: 24 185.221.43.0/24 maxlen: 24 195.234.43.0/24 maxlen: 24 2001:67c:690::/48 maxlen: 48 2a04:500::/29 maxlen: 29 2a09:f00::/29 maxlen: 29 2a09:f00:a::/48 maxlen: 48 2a09:f00:b::/48 maxlen: 48 2a09:f00:c::/48 maxlen: 48 2a09:f00:ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/af4407-f98e-4994-9f9e-f6b6c04916a1/1/oTBC0Tf7sDvrpkIfM6hSW1Koj3o.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/af4407-f98e-4994-9f9e-f6b6c04916a1/1/oTBC0Tf7sDvrpkIfM6hSW1Koj3o.mft rsync://rpki.ripe.net/repository/DEFAULT/oTBC0Tf7sDvrpkIfM6hSW1Koj3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:91:af:9e:9e:c9:ec:07:ca:a7:95:40:78:e2:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a13042d137fbb03beba6421f33a8525b52a88f7a Validity Not Before: Jan 1 12:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d61393e7d4632bbfa5601b00fb3a0743cec8100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:94:56:bc:4e:f7:2f:a2:56:ce:90:c9:6c:5d: b7:d9:f9:b0:a8:0c:2a:98:8c:7e:23:d0:fd:9c:f9: a4:1c:0c:e9:2f:81:4b:3d:7c:0d:9f:0c:31:97:de: 7d:5c:00:28:31:4c:99:7d:f0:18:99:a6:06:4c:b8: 8a:16:2a:91:10:52:fb:46:4f:b1:45:c3:29:e0:9d: 0f:37:08:05:ba:bf:77:a7:70:51:85:65:64:d3:7a: 10:43:e6:c5:43:c4:e0:0f:fc:bd:58:94:fe:e5:a1: 19:f7:84:55:87:6d:65:71:66:09:a2:0e:81:4e:fa: fd:42:88:2a:74:30:f5:88:db:26:53:c0:5f:c6:b6: 97:f2:4e:69:0b:af:69:15:82:66:77:2c:dd:42:e7: 70:7b:f3:d4:8c:46:ae:ae:e1:8b:99:67:8f:98:b8: 74:7a:45:d7:cd:a5:c2:12:af:2d:fc:d1:91:84:b5: 19:4f:9d:84:1b:73:d1:4c:65:9f:14:0a:d4:4f:93: ea:b1:6d:66:e4:e7:a0:9c:81:98:6e:0a:62:6b:19: 28:2b:f3:bf:8d:53:8a:32:4a:3f:12:0a:8e:12:f2: 8c:bc:00:d6:10:3a:b3:52:13:ef:c6:bc:e7:93:dd: 49:20:be:be:a1:31:70:7b:78:97:f0:bc:7b:9a:ac: da:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:61:39:3E:7D:46:32:BB:FA:56:01:B0:0F:B3:A0:74:3C:EC:81:00 X509v3 Authority Key Identifier: keyid:A1:30:42:D1:37:FB:B0:3B:EB:A6:42:1F:33:A8:52:5B:52:A8:8F:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTBC0Tf7sDvrpkIfM6hSW1Koj3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/af4407-f98e-4994-9f9e-f6b6c04916a1/1/fWE5Pn1GMrv6VgGwD7OgdDzsgQA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/af4407-f98e-4994-9f9e-f6b6c04916a1/1/oTBC0Tf7sDvrpkIfM6hSW1Koj3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.98.0/24 91.234.160.0/24 185.17.68.0/22 185.169.84.0/22 185.221.40.0/22 195.234.43.0/24 IPv6: 2001:67c:690::/48 2a04:500::/29 2a09:f00::/29 Signature Algorithm: sha256WithRSAEncryption 6e:cf:1f:59:f3:f0:b5:f5:47:b0:8e:ce:73:d7:0c:26:1a:18: f5:70:58:07:a7:08:01:9b:fa:51:8b:ab:2e:de:f5:fe:df:b1: 9a:c9:a4:68:8f:97:da:7b:d6:fb:51:3e:ea:aa:eb:fc:24:5c: 10:ab:d0:52:37:08:ae:13:b0:52:a0:cf:7e:fe:06:fc:66:e2: c0:4f:ed:ff:66:6c:44:78:e1:0a:bc:e4:c7:ba:36:8a:38:0c: b4:8f:d8:17:4d:ff:9b:0b:ce:b3:83:11:87:a8:e9:03:4d:fc: 18:a9:e4:e1:49:4d:55:dd:21:6d:05:8d:86:6b:e8:3e:dc:fb: 55:87:31:4f:4d:9a:55:16:1f:fb:73:73:43:4f:9c:c3:f8:cb: fd:2c:5b:96:12:d7:8d:9e:be:f6:63:93:20:ba:f4:b8:4d:49: 4c:2c:7e:82:20:8c:32:5b:5d:7a:fd:64:fc:8f:7c:20:9e:90: ca:26:bc:28:66:44:b8:db:e7:cd:95:12:e3:f7:39:f8:83:0b: 39:b4:a2:80:83:37:5c:3c:62:9a:b5:8e:98:41:bd:5d:a5:e1: 3e:84:17:b6:c1:1a:fb:1c:f2:a1:0a:a4:a9:19:23:38:39:f6: 0a:d8:31:15:36:b1:a3:47:71:3a:33:5b:87:4c:8a:af:bc:96: 2b:8a:3b:33 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgISAZt5fpGvnp7J7AfKp5VAeOKgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMzA0MmQxMzdmYmIwM2JlYmE2NDIxZjMzYTg1MjViNTJh ODhmN2EwHhcNMjYwMTAxMTIxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDYxMzkzZTdkNDYzMmJiZmE1NjAxYjAwZmIzYTA3NDNjZWM4MTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJRWvE73L6JWzpDJbF232fmwqAwq mIx+I9D9nPmkHAzpL4FLPXwNnwwxl959XAAoMUyZffAYmaYGTLiKFiqREFL7Rk+x RcMp4J0PNwgFur93p3BRhWVk03oQQ+bFQ8TgD/y9WJT+5aEZ94RVh21lcWYJog6B Tvr9QogqdDD1iNsmU8BfxraX8k5pC69pFYJmdyzdQudwe/PUjEauruGLmWePmLh0 ekXXzaXCEq8t/NGRhLUZT52EG3PRTGWfFArUT5PqsW1m5OegnIGYbgpiaxkoK/O/ jVOKMko/EgqOEvKMvADWEDqzUhPvxrznk91JIL6+oTFwe3iX8Lx7mqza8QIDAQAB o4ICRjCCAkIwHQYDVR0OBBYEFH1hOT59RjK7+lYBsA+zoHQ87IEAMB8GA1UdIwQY MBaAFKEwQtE3+7A766ZCHzOoUltSqI96MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1RCQzBUZjdzRHZycGtJZk02aFNXMUtvajNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9hZjQ0MDctZjk4ZS00OTk0LTlmOWUt ZjZiNmMwNDkxNmExLzEvZldFNVBuMUdNcnY2VmdHd0Q3T2dkRHpzZ1FBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9hZjQ0MDctZjk4ZS00OTk0LTlmOWUtZjZiNmMwNDkxNmEx LzEvb1RCQzBUZjdzRHZycGtJZk02aFNXMUtvajNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFwGCCsGAQUFBwEHAQH/BE0wSzAqBAIAATAkAwQAW8diAwQA W+qgAwQCuRFEAwQCualUAwQCud0oAwQAw+orMB0EAgACMBcDBwAgAQZ8BpADBQMq BAUAAwUDKgkPADANBgkqhkiG9w0BAQsFAAOCAQEAbs8fWfPwtfVHsI7Oc9cMJhoY 9XBYB6cIAZv6UYurLt71/t+xmsmkaI+X2nvW+1E+6qrr/CRcEKvQUjcIrhOwUqDP fv4G/GbiwE/t/2ZsRHjhCrzkx7o2ijgMtI/YF03/mwvOs4MRh6jpA038GKnk4UlN Vd0hbQWNhmvoPtz7VYcxT02aVRYf+3NzQ0+cw/jL/SxblhLXjZ6+9mOTILr0uE1J TCx+giCMMltdev1k/I98IJ6Qyia8KGZEuNvnzZUS4/c5+IMLObSigIM3XDximrWO mEG9XaXhPoQXtsEa+xzyoQqkqRkjODn2CtgxFTaxo0dxOjNbh0yKr7yWK4o7Mw== -----END CERTIFICATE-----Generated at Mon Feb 2 08:10:28 2026 by rpki-client