This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/roqAbM7IFMtztGev_KtwvL7oqjk.roa File: roqAbM7IFMtztGev_KtwvL7oqjk.roa (raw, json) Hash identifier: ydWNX4Xyz0BhXsi9KhsO32ou0TfatpBXfKo/DL2J1qw= Subject key identifier: AE:8A:80:6C:CE:C8:14:CB:73:B4:67:AF:FC:AB:70:BC:BE:E8:AA:39 Certificate issuer: /CN=cb45b6e12516a0fd5ebabe7a7811082f3a746397 Certificate serial: 019B76EB076B9C6B088BF10A84775484D3D4 Authority key identifier: CB:45:B6:E1:25:16:A0:FD:5E:BA:BE:7A:78:11:08:2F:3A:74:63:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y0W24SUWoP1eur56eBEILzp0Y5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/roqAbM7IFMtztGev_KtwvL7oqjk.roa Signing time: Thu 01 Jan 2026 00:17:52 +0000 ROA not before: Thu 01 Jan 2026 00:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56933 IP address blocks: 31.131.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/y0W24SUWoP1eur56eBEILzp0Y5c.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/y0W24SUWoP1eur56eBEILzp0Y5c.mft rsync://rpki.ripe.net/repository/DEFAULT/y0W24SUWoP1eur56eBEILzp0Y5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:07:6b:9c:6b:08:8b:f1:0a:84:77:54:84:d3:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb45b6e12516a0fd5ebabe7a7811082f3a746397 Validity Not Before: Jan 1 00:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae8a806ccec814cb73b467affcab70bcbee8aa39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c2:f8:29:9c:a3:c0:f0:4c:91:17:73:ad:f1: 58:c3:f4:28:f9:10:08:de:5d:d2:ca:bd:4a:e4:e8: a1:c8:e6:af:7a:45:98:08:15:4e:7c:51:17:5e:f1: 2a:5a:29:ab:4c:92:71:90:c3:3d:46:09:fc:1a:51: 57:13:b7:98:18:02:63:65:5b:1d:c1:1e:a0:cc:47: 60:bd:cf:d7:d1:88:1e:ba:4c:99:44:93:b3:47:2e: 5f:87:25:5e:f8:7d:86:95:4f:6a:db:3d:1e:8b:81: 7f:e2:d5:eb:fc:22:75:b2:38:f2:5a:62:20:21:0d: c2:ad:65:96:21:46:8a:8d:f1:24:5f:b5:ed:01:ea: 72:50:1a:7a:54:c4:ab:ac:e3:aa:ef:32:78:a3:56: 93:1c:6c:be:23:eb:25:12:7c:c8:94:c6:38:06:3d: 6a:e6:b1:64:da:44:0a:9f:e1:00:fc:d7:d7:c2:c1: b4:da:01:b3:2b:dd:9e:c6:c6:0e:be:05:85:23:70: 25:94:32:24:2d:f3:87:23:09:00:a0:ba:33:26:0c: 21:6a:3f:7a:a2:d4:d2:f5:36:fa:5f:fc:81:28:89: 1e:72:b1:67:5d:9e:af:79:f7:91:08:b0:9e:a5:e4: ab:57:0d:02:66:9e:26:5e:a5:30:43:d7:a0:44:0a: 16:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8A:80:6C:CE:C8:14:CB:73:B4:67:AF:FC:AB:70:BC:BE:E8:AA:39 X509v3 Authority Key Identifier: keyid:CB:45:B6:E1:25:16:A0:FD:5E:BA:BE:7A:78:11:08:2F:3A:74:63:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y0W24SUWoP1eur56eBEILzp0Y5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/roqAbM7IFMtztGev_KtwvL7oqjk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f841d9-5505-4e3d-a2ff-f7c1899cd7fa/1/y0W24SUWoP1eur56eBEILzp0Y5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.131.224.0/20 Signature Algorithm: sha256WithRSAEncryption 8b:c0:ea:c6:e8:c2:8b:58:14:e7:fb:98:77:16:66:5b:5d:6a: 69:f9:7e:dc:61:a3:57:c7:3b:2c:5a:64:64:ef:e8:ae:81:53: ed:35:a3:ff:4d:79:a7:a1:15:12:a2:85:c7:e4:7f:48:ef:26: b3:61:7c:de:18:ab:95:95:a2:27:d3:0d:ee:5e:9d:0b:12:f4: fc:bc:74:ea:c2:59:ae:42:85:ba:b1:c1:ea:02:db:67:0b:38: 77:79:36:2a:05:df:c9:d8:56:17:d1:aa:fd:e6:8f:ac:dd:15: f3:98:b7:5b:49:25:70:b1:d7:c8:41:3d:03:13:2c:27:48:c6: b7:34:2d:f6:b8:db:ed:6f:9b:51:84:e3:61:8e:42:a7:ba:07: e6:4f:11:71:ad:bb:a1:5c:f3:47:e3:b6:f3:84:6f:25:83:99: df:ad:80:fd:74:12:34:a2:ae:27:0c:2f:b0:42:2a:9f:8d:b1: 3a:ec:b1:92:93:cf:61:87:1a:f6:c8:af:42:38:90:03:72:1b: 5d:db:5b:dc:f8:33:27:8f:c4:e9:8f:11:02:27:b1:f4:ce:ff: ec:e3:7c:ab:40:21:a9:53:0b:04:0e:8f:b3:ff:52:ea:f4:2a: 11:aa:25:fd:76:0c:d3:fb:20:10:2e:2f:37:63:c5:b1:6c:81: bc:3d:15:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26wdrnGsIi/EKhHdUhNPUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNDViNmUxMjUxNmEwZmQ1ZWJhYmU3YTc4MTEwODJmM2E3 NDYzOTcwHhcNMjYwMTAxMDAxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZThhODA2Y2NlYzgxNGNiNzNiNDY3YWZmY2FiNzBiY2JlZThhYTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8L4KZyjwPBMkRdzrfFYw/Qo+RAI 3l3Syr1K5OihyOavekWYCBVOfFEXXvEqWimrTJJxkMM9Rgn8GlFXE7eYGAJjZVsd wR6gzEdgvc/X0YgeukyZRJOzRy5fhyVe+H2GlU9q2z0ei4F/4tXr/CJ1sjjyWmIg IQ3CrWWWIUaKjfEkX7XtAepyUBp6VMSrrOOq7zJ4o1aTHGy+I+slEnzIlMY4Bj1q 5rFk2kQKn+EA/NfXwsG02gGzK92exsYOvgWFI3AllDIkLfOHIwkAoLozJgwhaj96 otTS9Tb6X/yBKIkecrFnXZ6vefeRCLCepeSrVw0CZp4mXqUwQ9egRAoWpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK6KgGzOyBTLc7Rnr/yrcLy+6Ko5MB8GA1UdIwQY MBaAFMtFtuElFqD9Xrq+engRCC86dGOXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTBXMjRTVVdvUDFldXI1NmVCRUlMenAwWTVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mODQxZDktNTUwNS00ZTNkLWEyZmYt ZjdjMTg5OWNkN2ZhLzEvcm9xQWJNN0lGTXR6dEdldl9LdHd2TDdvcWprLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9mODQxZDktNTUwNS00ZTNkLWEyZmYtZjdjMTg5OWNkN2Zh LzEveTBXMjRTVVdvUDFldXI1NmVCRUlMenAwWTVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEH4PgMA0G CSqGSIb3DQEBCwUAA4IBAQCLwOrG6MKLWBTn+5h3FmZbXWpp+X7cYaNXxzssWmRk 7+iugVPtNaP/TXmnoRUSooXH5H9I7yazYXzeGKuVlaIn0w3uXp0LEvT8vHTqwlmu QoW6scHqAttnCzh3eTYqBd/J2FYX0ar95o+s3RXzmLdbSSVwsdfIQT0DEywnSMa3 NC32uNvtb5tRhONhjkKnugfmTxFxrbuhXPNH47bzhG8lg5nfrYD9dBI0oq4nDC+w QiqfjbE67LGSk89hhxr2yK9COJADchtd21vc+DMnj8TpjxECJ7H0zv/s43yrQCGp UwsEDo+z/1Lq9CoRqiX9dgzT+yAQLi83Y8WxbIG8PRVs -----END CERTIFICATE-----Generated at Tue Feb 10 02:29:34 2026 by rpki-client