This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/bZ7lVe52f2GXmi7XWYMeLJ4V86s.roa File: bZ7lVe52f2GXmi7XWYMeLJ4V86s.roa (raw, json) Hash identifier: bZcb4IcZpKmYddgjqqBxvAN6lqh2zAQBjMMCJZa90kQ= Subject key identifier: 6D:9E:E5:55:EE:76:7F:61:97:9A:2E:D7:59:83:1E:2C:9E:15:F3:AB Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f Certificate serial: 019B77C6CB66EF2B34E8A94D217546948538 Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/bZ7lVe52f2GXmi7XWYMeLJ4V86s.roa Signing time: Thu 01 Jan 2026 04:17:55 +0000 ROA not before: Thu 01 Jan 2026 04:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202492 IP address blocks: 5.10.240.0/22 maxlen: 22 5.10.252.0/22 maxlen: 22 37.128.200.0/22 maxlen: 22 46.23.104.0/22 maxlen: 22 85.158.146.0/24 maxlen: 24 85.158.147.0/24 maxlen: 24 85.158.148.0/22 maxlen: 22 109.205.210.0/24 maxlen: 24 164.215.100.0/24 maxlen: 24 185.81.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.mft rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:cb:66:ef:2b:34:e8:a9:4d:21:75:46:94:85:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f Validity Not Before: Jan 1 04:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d9ee555ee767f61979a2ed759831e2c9e15f3ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7b:02:74:9e:3e:1d:80:af:94:0b:d4:0d:33: 08:0b:88:65:e8:fb:b9:36:3c:7b:36:0b:0a:ca:91: a5:2d:00:25:17:c2:01:b0:3f:91:4e:b1:ca:d9:b7: 44:a5:ea:71:5e:df:f4:6a:61:25:a4:61:41:b0:e9: 1f:d2:a8:d6:05:f3:40:a5:b0:cd:f5:e6:cf:14:75: 36:e1:97:b7:0d:c8:73:7c:19:1b:2d:ed:9d:a1:06: 4a:de:8a:55:cd:94:de:8f:b9:27:02:0f:67:8e:85: 65:aa:21:62:18:83:ff:8e:e9:ae:b6:34:16:1d:b6: b0:cd:c4:7b:2a:78:ff:71:2a:c9:4d:3e:0b:98:33: e3:69:02:86:c3:ba:5f:b3:94:aa:9d:a4:c0:47:87: 5b:9b:1d:8e:33:1f:c3:e9:b1:25:3e:e3:96:2f:9c: 73:a3:2b:1a:c0:43:59:07:a0:e7:55:79:34:7d:b7: d5:2d:d7:b7:aa:d5:4a:a1:54:29:a4:76:94:5a:ed: 08:78:ca:86:d8:e9:11:b9:da:8e:5a:a6:71:5e:4f: 0e:90:e8:7f:a3:c3:07:c0:fa:ed:a7:e6:4e:31:68: 77:4e:c1:23:31:7f:97:06:bb:86:1b:71:28:b0:3e: aa:76:29:d7:e4:11:25:c7:d6:c4:60:f7:39:02:5e: a6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:9E:E5:55:EE:76:7F:61:97:9A:2E:D7:59:83:1E:2C:9E:15:F3:AB X509v3 Authority Key Identifier: keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/bZ7lVe52f2GXmi7XWYMeLJ4V86s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.240.0/22 5.10.252.0/22 37.128.200.0/22 46.23.104.0/22 85.158.146.0-85.158.151.255 109.205.210.0/24 164.215.100.0/24 185.81.218.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:93:47:69:d0:4e:c3:15:69:f9:68:a4:e6:76:88:cc:28:87: e1:48:0c:39:81:c8:2b:05:26:15:9a:f5:86:77:ac:a8:5b:28: 43:4e:dc:83:99:6b:98:5d:aa:16:dc:55:30:08:04:cd:65:d0: bb:62:1a:83:b0:7a:28:e1:a7:da:a6:da:5b:b7:dd:dd:f7:63: e8:f8:c2:01:b7:fc:4e:a9:cc:be:b3:ae:a2:4c:cd:8d:27:02: cd:27:d3:93:e8:eb:22:ad:a1:8a:ce:17:ad:a4:e2:9b:0e:f0: a2:fb:1a:05:5b:3e:09:52:16:dd:48:10:73:70:cc:87:92:cc: d2:97:b5:e6:ec:d0:13:f6:e3:bb:9f:69:6e:86:41:11:6f:14: 42:7f:d1:a6:f1:13:a0:40:6f:26:96:3a:a5:ce:f9:9c:58:66: ec:55:94:bd:7e:f7:2e:71:ee:7c:cd:2f:22:3b:08:3f:a2:23: f4:50:27:65:5d:c6:10:cf:44:72:2d:24:da:eb:2e:c9:f0:e8: 10:58:7d:37:41:82:c0:6d:e9:c6:08:42:8e:14:21:49:fe:d3: c4:e4:ae:69:42:38:85:d8:83:b3:46:48:c3:79:ef:d3:2a:3d: 19:ce:ce:16:89:a2:b5:63:67:a7:2c:dc:08:66:47:48:c3:7e: 52:29:6b:04 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt3xstm7ys06KlNIXVGlIU4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1 MWM3N2YwHhcNMjYwMTAxMDQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDllZTU1NWVlNzY3ZjYxOTc5YTJlZDc1OTgzMWUyYzllMTVmM2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3sCdJ4+HYCvlAvUDTMIC4hl6Pu5 Njx7NgsKypGlLQAlF8IBsD+RTrHK2bdEpepxXt/0amElpGFBsOkf0qjWBfNApbDN 9ebPFHU24Ze3DchzfBkbLe2doQZK3opVzZTej7knAg9njoVlqiFiGIP/jumutjQW HbawzcR7Knj/cSrJTT4LmDPjaQKGw7pfs5SqnaTAR4dbmx2OMx/D6bElPuOWL5xz oysawENZB6DnVXk0fbfVLde3qtVKoVQppHaUWu0IeMqG2OkRudqOWqZxXk8OkOh/ o8MHwPrtp+ZOMWh3TsEjMX+XBruGG3EosD6qdinX5BElx9bEYPc5Al6mywIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFG2e5VXudn9hl5ou11mDHiyeFfOrMB8GA1UdIwQY MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt MmNmODA2YjJkMGYyLzEvYlo3bFZlNTJmMkdYbWk3WFdZTWVMSjRWODZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQCBQrwAwQC BQr8AwQCJYDIAwQCLhdoMAwDBAFVnpIDBANVnpADBABtzdIDBACk12QDBAC5Udow DQYJKoZIhvcNAQELBQADggEBAC+TR2nQTsMVaflopOZ2iMwoh+FIDDmByCsFJhWa 9YZ3rKhbKENO3IOZa5hdqhbcVTAIBM1l0LtiGoOweijhp9qm2lu33d33Y+j4wgG3 /E6pzL6zrqJMzY0nAs0n05Po6yKtoYrOF62k4psO8KL7GgVbPglSFt1IEHNwzIeS zNKXtebs0BP247ufaW6GQRFvFEJ/0abxE6BAbyaWOqXO+ZxYZuxVlL1+9y5x7nzN LyI7CD+iI/RQJ2VdxhDPRHItJNrrLsnw6BBYfTdBgsBt6cYIQo4UIUn+08TkrmlC OIXYg7NGSMN579MqPRnOzhaJorVjZ6cs3AhmR0jDflIpawQ= -----END CERTIFICATE-----Generated at Wed Jan 21 12:18:00 2026 by rpki-client