This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/sh7lRij4btWgilINNjxjlkKl0P0.roa File: sh7lRij4btWgilINNjxjlkKl0P0.roa (raw, json) Hash identifier: DrUCoLjlXFmOp/iLbTUoFaYKuTT3SJ8LZ6Elt9jXSVA= Subject key identifier: B2:1E:E5:46:28:F8:6E:D5:A0:8A:52:0D:36:3C:63:96:42:A5:D0:FD Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Certificate serial: 019B7AC845D0DB432C30BA2D74CC15287666 Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/sh7lRij4btWgilINNjxjlkKl0P0.roa Signing time: Thu 01 Jan 2026 18:18:23 +0000 ROA not before: Thu 01 Jan 2026 18:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 984 IP address blocks: 89.106.14.0/24 maxlen: 24 194.36.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:45:d0:db:43:2c:30:ba:2d:74:cc:15:28:76:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Validity Not Before: Jan 1 18:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b21ee54628f86ed5a08a520d363c639642a5d0fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:d3:a1:40:31:12:c8:36:65:9a:31:e2:a9: f4:cb:b4:83:aa:d1:b6:71:aa:53:d8:9e:ed:51:07: eb:91:6f:64:0a:eb:59:35:6d:0b:0c:3a:72:7d:d0: c9:c2:cd:7f:f2:6b:0d:8d:78:90:81:18:92:e0:fc: eb:89:07:65:5b:a6:b9:c7:e9:52:c0:cc:bc:40:e0: 19:44:28:5b:9a:57:17:f1:83:b9:95:38:79:5f:a7: c5:de:ee:8f:0e:d8:0b:c9:36:53:6a:11:a0:42:0b: cb:e2:28:6b:cb:65:12:c2:da:69:91:c3:45:da:66: 1b:38:2d:03:24:e5:99:69:df:19:88:32:ab:e1:ed: 46:5b:71:bf:49:87:b9:1f:be:c3:ac:56:27:0f:e9: d1:d0:8b:93:84:b0:39:96:91:55:c4:a2:fc:03:0a: 53:3a:71:84:9c:67:52:56:56:86:59:91:c6:47:8b: a2:48:3f:7d:10:94:29:2e:2c:97:bc:01:b6:35:38: 24:57:6a:90:bf:b2:3d:a1:70:75:5e:33:74:04:be: 0b:00:2e:1c:47:eb:02:39:23:2f:8c:7f:bb:a6:fe: 91:4f:4c:dd:db:00:57:3f:da:a9:1c:b3:34:15:7b: 02:45:53:ac:71:0a:06:1a:2b:f9:76:77:51:a6:f9: 03:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:1E:E5:46:28:F8:6E:D5:A0:8A:52:0D:36:3C:63:96:42:A5:D0:FD X509v3 Authority Key Identifier: keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/sh7lRij4btWgilINNjxjlkKl0P0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.106.14.0/24 194.36.33.0/24 Signature Algorithm: sha256WithRSAEncryption 41:c3:20:3c:c8:cf:49:0d:81:f1:8c:71:1d:0c:ad:65:ef:43: 17:66:1f:46:bd:d1:56:ab:06:10:3e:7e:1d:f8:d8:9a:aa:7b: f0:cf:8f:fb:b6:b4:13:33:59:3c:64:51:81:ce:27:ea:34:72: 17:4e:b5:ba:3b:14:8d:17:f5:6e:16:04:54:07:a6:d3:a1:c9: ee:4c:fe:56:87:9b:a5:55:aa:a6:fe:6d:09:1c:a0:91:3b:ca: 36:cb:8c:1b:64:59:9c:02:a3:10:9f:1c:bd:53:d3:3b:6f:1c: fb:39:2a:79:a2:5a:1d:f1:87:e1:85:f9:70:3c:57:79:66:2f: c4:b9:42:7e:eb:c8:1f:96:c7:d0:08:0a:9f:67:e7:d3:a1:a5: 7d:a2:7b:4b:18:47:b8:a9:7f:39:c6:0a:1c:14:ae:00:74:10: e3:eb:92:dc:9d:85:e1:a1:39:8f:bc:10:3e:db:8e:b4:61:bb: 56:e2:7d:0a:07:5a:dd:92:6d:1c:c6:5f:52:37:80:06:72:f0: 6c:45:ad:60:9e:21:46:95:c4:b7:cb:c8:ac:36:72:8e:28:0d: 4c:46:26:2a:01:4d:9b:b7:00:14:39:40:ea:1f:69:78:a8:e8: 97:d5:bb:b2:bb:a9:0c:9d:89:23:bc:b0:c4:c3:e0:39:0e:3b: 17:44:a1:e2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yEXQ20MsMLotdMwVKHZmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz MGNiNjMwHhcNMjYwMTAxMTgxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjFlZTU0NjI4Zjg2ZWQ1YTA4YTUyMGQzNjNjNjM5NjQyYTVkMGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxr7ToUAxEsg2ZZox4qn0y7SDqtG2 capT2J7tUQfrkW9kCutZNW0LDDpyfdDJws1/8msNjXiQgRiS4PzriQdlW6a5x+lS wMy8QOAZRChbmlcX8YO5lTh5X6fF3u6PDtgLyTZTahGgQgvL4ihry2USwtppkcNF 2mYbOC0DJOWZad8ZiDKr4e1GW3G/SYe5H77DrFYnD+nR0IuThLA5lpFVxKL8AwpT OnGEnGdSVlaGWZHGR4uiSD99EJQpLiyXvAG2NTgkV2qQv7I9oXB1XjN0BL4LAC4c R+sCOSMvjH+7pv6RT0zd2wBXP9qpHLM0FXsCRVOscQoGGiv5dndRpvkD1wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLIe5UYo+G7VoIpSDTY8Y5ZCpdD9MB8GA1UdIwQY MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt YjRiOGRiMjBiMWZiLzEvc2g3bFJpajRidFdnaWxJTk5qeGpsa0tsMFAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWWoOAwQA wiQhMA0GCSqGSIb3DQEBCwUAA4IBAQBBwyA8yM9JDYHxjHEdDK1l70MXZh9GvdFW qwYQPn4d+Niaqnvwz4/7trQTM1k8ZFGBzifqNHIXTrW6OxSNF/VuFgRUB6bTocnu TP5Wh5ulVaqm/m0JHKCRO8o2y4wbZFmcAqMQnxy9U9M7bxz7OSp5olod8Yfhhflw PFd5Zi/EuUJ+68gflsfQCAqfZ+fToaV9ontLGEe4qX85xgocFK4AdBDj65LcnYXh oTmPvBA+2460YbtW4n0KB1rdkm0cxl9SN4AGcvBsRa1gniFGlcS3y8isNnKOKA1M RiYqAU2btwAUOUDqH2l4qOiX1buyu6kMnYkjvLDEw+A5DjsXRKHi -----END CERTIFICATE-----Generated at Sun Jan 18 04:28:06 2026 by rpki-client