This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/7AZcdK-2iSMlF0mV6xbUMSO3Xnw.roa File: 7AZcdK-2iSMlF0mV6xbUMSO3Xnw.roa (raw, json) Hash identifier: G5rGJtONXIdV22l8uGfiFrqq42pAnIm3ZbpijKWWsuw= Subject key identifier: EC:06:5C:74:AF:B6:89:23:25:17:49:95:EB:16:D4:31:23:B7:5E:7C Certificate issuer: /CN=41fc55ee2488fb9401c4b668abac54110ebb8092 Certificate serial: 019B7D5C0E2CD94A918E763406F5C3456102 Authority key identifier: 41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/7AZcdK-2iSMlF0mV6xbUMSO3Xnw.roa Signing time: Fri 02 Jan 2026 06:19:03 +0000 ROA not before: Fri 02 Jan 2026 06:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198949 IP address blocks: 91.227.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.mft rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 12:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:0e:2c:d9:4a:91:8e:76:34:06:f5:c3:45:61:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41fc55ee2488fb9401c4b668abac54110ebb8092 Validity Not Before: Jan 2 06:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ec065c74afb6892325174995eb16d43123b75e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b8:71:0f:b9:ed:bd:21:bb:d2:aa:26:c3:a6: 55:23:24:c0:18:e8:2d:59:cc:b8:4e:41:c2:aa:e0: 33:f8:da:74:1e:cf:2d:2c:9a:a3:26:a6:c1:f9:e3: 43:66:1e:3d:67:98:4f:32:40:bb:f3:cd:d1:a7:ce: b7:bd:df:06:56:65:57:f1:5d:96:03:83:ac:e9:e1: d1:a5:95:78:dd:81:a5:65:74:56:26:8c:4d:4e:ae: 56:27:d6:77:6b:69:43:5f:2f:e7:8b:21:39:b4:42: 8b:11:fe:ce:67:7d:97:11:9a:10:50:94:67:dd:cc: c3:2e:33:39:c4:83:ac:bc:b8:65:a8:86:0f:41:73: 69:31:58:ca:ec:5c:bf:b9:40:b5:d0:a2:fa:cc:a1: f1:03:e5:69:33:47:e1:68:3a:15:73:f9:29:bf:bd: 69:f1:16:ed:d5:ed:82:fe:f7:7d:6a:9c:ab:35:ee: f0:77:f4:07:2f:6f:b0:a9:d8:5c:12:eb:2c:ce:1a: 43:12:f0:cf:1c:13:95:bf:4f:4c:ad:13:9d:5c:b1: de:2e:e0:33:46:29:46:01:09:d1:d3:6f:a4:d8:3b: b6:54:48:69:50:f8:4d:a1:f1:85:91:c8:0d:bd:50: a2:14:5d:4f:f1:b8:ff:1a:45:c5:e4:e1:68:df:f0: f5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:06:5C:74:AF:B6:89:23:25:17:49:95:EB:16:D4:31:23:B7:5E:7C X509v3 Authority Key Identifier: keyid:41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/7AZcdK-2iSMlF0mV6xbUMSO3Xnw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.187.0/24 Signature Algorithm: sha256WithRSAEncryption 10:18:05:d1:89:c4:65:5f:28:bd:9b:0c:cf:ac:7d:f9:be:fb: 17:a9:0f:4b:3d:5a:34:0a:86:6f:cf:31:07:53:1c:14:68:83: 2e:07:5c:05:43:df:4e:97:b5:2c:92:3a:1a:fb:9f:b2:d0:e1: 9f:07:e6:2a:07:2c:5e:a6:d1:57:bc:94:06:89:42:83:45:80: 9f:a9:8b:d3:6d:c2:1e:07:3d:d7:67:37:19:78:03:53:ff:39: e1:c6:fc:0c:06:c1:8b:aa:11:63:33:ae:e6:38:78:2c:c4:30: fb:0c:4d:f1:74:5f:5a:32:41:21:65:82:1a:77:ef:7c:9f:4e: 45:88:2b:e7:fc:54:07:ee:e4:47:18:e9:f8:24:22:8b:f8:39: a4:2c:6c:f6:91:83:fe:f4:70:fe:73:9e:9f:a5:54:d3:e7:86: 07:dc:26:9b:9d:80:6b:7d:da:1d:5f:f3:a6:9a:da:53:92:d5: f0:0a:08:a7:a5:37:69:83:28:fb:55:4a:ff:a8:76:74:37:85: e8:e9:e4:b1:94:24:6b:c6:9c:95:1c:ba:be:0d:36:ab:d6:42: bc:29:42:18:33:ea:06:72:9b:03:1e:70:1b:89:3b:42:b6:f2: ce:61:43:65:4f:13:4f:24:bf:bd:bb:f5:b6:c9:4a:e9:12:b8: 19:0e:59:30 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XA4s2UqRjnY0BvXDRWECMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZmM1NWVlMjQ4OGZiOTQwMWM0YjY2OGFiYWM1NDExMGVi YjgwOTIwHhcNMjYwMTAyMDYxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYzA2NWM3NGFmYjY4OTIzMjUxNzQ5OTVlYjE2ZDQzMTIzYjc1ZTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA47hxD7ntvSG70qomw6ZVIyTAGOgt Wcy4TkHCquAz+Np0Hs8tLJqjJqbB+eNDZh49Z5hPMkC7883Rp863vd8GVmVX8V2W A4Os6eHRpZV43YGlZXRWJoxNTq5WJ9Z3a2lDXy/niyE5tEKLEf7OZ32XEZoQUJRn 3czDLjM5xIOsvLhlqIYPQXNpMVjK7Fy/uUC10KL6zKHxA+VpM0fhaDoVc/kpv71p 8Rbt1e2C/vd9apyrNe7wd/QHL2+wqdhcEusszhpDEvDPHBOVv09MrROdXLHeLuAz RilGAQnR02+k2Du2VEhpUPhNofGFkcgNvVCiFF1P8bj/GkXF5OFo3/D1kwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOwGXHSvtokjJRdJlesW1DEjt158MB8GA1UdIwQY MBaAFEH8Ve4kiPuUAcS2aKusVBEOu4CSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWZ4VjdpU0ktNVFCeExab3E2eFVFUTY3Z0pJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hYTM2NjEtZGViMy00NWE0LTg2OTMt Mzg4MWE4YjgyN2FjLzEvN0FaY2RLLTJpU01sRjBtVjZ4YlVNU08zWG53LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hYTM2NjEtZGViMy00NWE0LTg2OTMtMzg4MWE4YjgyN2Fj LzEvUWZ4VjdpU0ktNVFCeExab3E2eFVFUTY3Z0pJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+O7MA0G CSqGSIb3DQEBCwUAA4IBAQAQGAXRicRlXyi9mwzPrH35vvsXqQ9LPVo0CoZvzzEH UxwUaIMuB1wFQ99Ol7Uskjoa+5+y0OGfB+YqByxeptFXvJQGiUKDRYCfqYvTbcIe Bz3XZzcZeANT/znhxvwMBsGLqhFjM67mOHgsxDD7DE3xdF9aMkEhZYIad+98n05F iCvn/FQH7uRHGOn4JCKL+DmkLGz2kYP+9HD+c56fpVTT54YH3CabnYBrfdodX/Om mtpTktXwCginpTdpgyj7VUr/qHZ0N4Xo6eSxlCRrxpyVHLq+DTar1kK8KUIYM+oG cpsDHnAbiTtCtvLOYUNlTxNPJL+9u/W2yUrpErgZDlkw -----END CERTIFICATE-----Generated at Wed Jan 7 22:29:27 2026 by rpki-client