This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4a5c34-4df3-49c3-877b-1a8cd046da92/1/U7czUOTZqayV5F4Km_Oxj_WlDUo.roa File: U7czUOTZqayV5F4Km_Oxj_WlDUo.roa (raw, json) Hash identifier: WcGm9+GdN6IqYMN7rk3gbjv/CZUu9hkDi4qO4kHYeVw= Subject key identifier: 53:B7:33:50:E4:D9:A9:AC:95:E4:5E:0A:9B:F3:B1:8F:F5:A5:0D:4A Certificate issuer: /CN=aa35747db4170ed45756cc9a3a4e7689a0eb62c7 Certificate serial: 019B7F159E3E35D11C060D7BD82103F84567 Authority key identifier: AA:35:74:7D:B4:17:0E:D4:57:56:CC:9A:3A:4E:76:89:A0:EB:62:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qjV0fbQXDtRXVsyaOk52iaDrYsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4a5c34-4df3-49c3-877b-1a8cd046da92/1/U7czUOTZqayV5F4Km_Oxj_WlDUo.roa Signing time: Fri 02 Jan 2026 14:21:21 +0000 ROA not before: Fri 02 Jan 2026 14:21:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204016 IP address blocks: 217.18.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/4a5c34-4df3-49c3-877b-1a8cd046da92/1/qjV0fbQXDtRXVsyaOk52iaDrYsc.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/4a5c34-4df3-49c3-877b-1a8cd046da92/1/qjV0fbQXDtRXVsyaOk52iaDrYsc.mft rsync://rpki.ripe.net/repository/DEFAULT/qjV0fbQXDtRXVsyaOk52iaDrYsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:9e:3e:35:d1:1c:06:0d:7b:d8:21:03:f8:45:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa35747db4170ed45756cc9a3a4e7689a0eb62c7 Validity Not Before: Jan 2 14:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53b73350e4d9a9ac95e45e0a9bf3b18ff5a50d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:01:0f:19:4c:fe:05:dd:23:57:0c:f0:81: 4f:e6:1a:44:49:de:17:78:df:6a:f6:63:56:d3:44: e0:5d:86:b5:a9:ff:a8:30:c9:71:62:35:5a:91:78: b7:81:06:8b:4f:d4:09:88:26:d3:e3:bc:5e:23:f0: 33:fc:83:fd:a0:0d:ae:90:26:70:17:d6:bf:14:c9: 4e:a4:d3:f6:4f:35:af:9a:e4:1d:ab:59:ce:ca:46: 41:4e:81:17:02:89:da:4a:78:69:c8:bd:57:5b:85: 57:19:93:27:d7:21:a5:b0:56:24:55:df:ec:b7:5c: e4:df:5c:81:e6:7d:8d:34:03:0c:a6:b4:20:59:90: 57:d9:c3:6a:d9:28:99:ad:7e:5b:a6:6e:c1:9f:31: ee:b6:e3:01:bf:96:0f:e5:31:7c:b1:9f:e1:14:e5: 0b:cb:ac:e0:99:66:2b:e0:fe:aa:85:f4:81:77:fa: e1:ed:de:45:a6:e0:f6:7e:3a:93:6f:02:18:e2:f2: 5f:72:37:59:77:2c:bb:0c:27:1d:a6:93:f1:7c:df: 7b:39:2f:ea:2d:52:c4:1e:1c:da:92:71:92:ac:16: 54:6f:9a:62:5a:a7:be:8a:81:86:f9:6a:c3:2a:1a: 5d:ce:0a:2f:69:40:42:20:ab:d4:ac:18:29:c6:25: 59:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B7:33:50:E4:D9:A9:AC:95:E4:5E:0A:9B:F3:B1:8F:F5:A5:0D:4A X509v3 Authority Key Identifier: keyid:AA:35:74:7D:B4:17:0E:D4:57:56:CC:9A:3A:4E:76:89:A0:EB:62:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qjV0fbQXDtRXVsyaOk52iaDrYsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4a5c34-4df3-49c3-877b-1a8cd046da92/1/U7czUOTZqayV5F4Km_Oxj_WlDUo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4a5c34-4df3-49c3-877b-1a8cd046da92/1/qjV0fbQXDtRXVsyaOk52iaDrYsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.18.88.0/24 Signature Algorithm: sha256WithRSAEncryption 13:21:ed:e1:6e:53:b7:80:f3:0e:a6:cf:2d:8f:25:11:1c:0d: 2d:10:4f:85:b7:18:43:6c:02:6d:64:30:56:bd:f3:ce:7c:9c: af:3e:5d:dd:52:a5:ed:3c:ce:53:79:fb:f8:5d:8b:b0:7d:c0: 4e:e4:98:da:6b:26:bd:3c:80:9a:e5:82:cd:3b:00:80:91:fd: ac:90:4a:4a:8b:97:43:d1:96:f5:f3:ec:81:d1:c0:ce:67:45: 18:47:9b:e8:30:84:d6:8d:c9:9f:e1:24:a3:d5:99:c4:23:23: 7c:cb:b5:e3:73:70:49:c8:7a:b9:5b:a8:60:2a:8f:7c:c3:9b: ff:fb:a2:2b:f4:1b:ef:f5:d6:96:67:7d:ee:79:ec:42:c9:43: 1b:da:71:59:95:38:d5:3d:56:8f:03:d0:b0:04:0d:f3:35:79: 6c:85:28:4a:4d:a1:4c:3b:68:7a:66:cb:f3:0b:ac:36:27:3a: a3:45:cc:3c:ce:b4:af:80:54:bd:fe:bd:9d:a0:21:d2:74:8e: 83:65:45:65:27:f7:c1:11:72:c9:7a:99:2e:42:87:06:4b:12: 53:e7:5c:f2:9c:48:7d:1e:df:bb:46:90:77:93:ef:55:8c:22: 8a:15:0b:5d:cc:d9:3b:c4:2b:91:a2:9a:86:de:76:56:25:4e: 92:d0:a8:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FZ4+NdEcBg172CED+EVnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhMzU3NDdkYjQxNzBlZDQ1NzU2Y2M5YTNhNGU3Njg5YTBl YjYyYzcwHhcNMjYwMTAyMTQyMTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1M2I3MzM1MGU0ZDlhOWFjOTVlNDVlMGE5YmYzYjE4ZmY1YTUwZDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWABDxlM/gXdI1cM8IFP5hpESd4X eN9q9mNW00TgXYa1qf+oMMlxYjVakXi3gQaLT9QJiCbT47xeI/Az/IP9oA2ukCZw F9a/FMlOpNP2TzWvmuQdq1nOykZBToEXAonaSnhpyL1XW4VXGZMn1yGlsFYkVd/s t1zk31yB5n2NNAMMprQgWZBX2cNq2SiZrX5bpm7BnzHutuMBv5YP5TF8sZ/hFOUL y6zgmWYr4P6qhfSBd/rh7d5FpuD2fjqTbwIY4vJfcjdZdyy7DCcdppPxfN97OS/q LVLEHhzaknGSrBZUb5piWqe+ioGG+WrDKhpdzgovaUBCIKvUrBgpxiVZvQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFO3M1Dk2amsleReCpvzsY/1pQ1KMB8GA1UdIwQY MBaAFKo1dH20Fw7UV1bMmjpOdomg62LHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWpWMGZiUVhEdFJYVnN5YU9rNTJpYURyWXNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi80YTVjMzQtNGRmMy00OWMzLTg3N2It MWE4Y2QwNDZkYTkyLzEvVTdjelVPVFpxYXlWNUY0S21fT3hqX1dsRFVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi80YTVjMzQtNGRmMy00OWMzLTg3N2ItMWE4Y2QwNDZkYTky LzEvcWpWMGZiUVhEdFJYVnN5YU9rNTJpYURyWXNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2RJYMA0G CSqGSIb3DQEBCwUAA4IBAQATIe3hblO3gPMOps8tjyURHA0tEE+FtxhDbAJtZDBW vfPOfJyvPl3dUqXtPM5Tefv4XYuwfcBO5Jjaaya9PICa5YLNOwCAkf2skEpKi5dD 0Zb18+yB0cDOZ0UYR5voMITWjcmf4SSj1ZnEIyN8y7Xjc3BJyHq5W6hgKo98w5v/ +6Ir9Bvv9daWZ33ueexCyUMb2nFZlTjVPVaPA9CwBA3zNXlshShKTaFMO2h6Zsvz C6w2JzqjRcw8zrSvgFS9/r2doCHSdI6DZUVlJ/fBEXLJepkuQocGSxJT51zynEh9 Ht+7RpB3k+9VjCKKFQtdzNk7xCuRopqG3nZWJU6S0Kgf -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:57 2026 by rpki-client