This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/7NjBGXkoqrpJtik6hyWam_91fPM.roa File: 7NjBGXkoqrpJtik6hyWam_91fPM.roa (raw, json) Hash identifier: Cd/yxor3wZg6xcWw81ojOZAbyI0L65eF/W7E8e19B7M= Subject key identifier: EC:D8:C1:19:79:28:AA:BA:49:B6:29:3A:87:25:9A:9B:FF:75:7C:F3 Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Certificate serial: 019B79EC580D2642D4603543B869C7ED6609 Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/7NjBGXkoqrpJtik6hyWam_91fPM.roa Signing time: Thu 01 Jan 2026 14:18:10 +0000 ROA not before: Thu 01 Jan 2026 14:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203428 IP address blocks: 81.8.150.0/24 maxlen: 24 81.8.151.0/24 maxlen: 24 81.8.152.0/24 maxlen: 24 81.8.153.0/24 maxlen: 24 81.8.154.0/24 maxlen: 24 81.8.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:58:0d:26:42:d4:60:35:43:b8:69:c7:ed:66:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff Validity Not Before: Jan 1 14:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ecd8c1197928aaba49b6293a87259a9bff757cf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e3:cc:b3:a5:ad:ef:60:ad:f6:d1:a3:ee:0d: 5a:93:06:4f:98:34:f4:4c:4c:05:5e:62:6a:a0:e4: fa:2a:8d:1b:53:ed:63:2a:67:92:82:e5:80:b5:34: cb:4b:14:f7:c9:04:0d:be:9f:13:2d:64:c7:42:a0: d5:da:9b:c4:ad:0d:09:26:5d:39:e0:5b:55:78:02: b6:98:44:72:86:ea:97:51:ec:a4:ee:d3:5e:65:63: b6:72:55:ee:0f:73:37:72:32:fa:20:7a:f6:d3:a1: 26:fe:a4:6f:21:4c:21:32:c5:28:b6:bd:31:ee:ca: b4:80:2a:75:de:4c:93:e7:b5:29:7a:c2:cd:f5:9b: 17:ae:2a:6c:e5:cd:e3:75:cc:d3:74:6d:cb:67:ea: 1b:2e:60:5c:aa:69:ca:b3:ba:42:d9:0b:43:a1:3c: bb:62:59:3e:c0:b3:ac:33:12:85:59:33:97:ec:48: 66:ab:c0:41:4c:a4:f7:1d:75:07:59:23:38:b8:41: 23:33:65:76:42:78:4e:47:4f:c4:77:a9:a1:12:4a: 1d:46:97:cd:f4:4d:f5:9e:8d:85:c8:b9:e2:f9:ae: 43:09:ad:aa:f4:fe:ec:cd:0c:df:18:1b:79:4f:d3: f6:e4:25:d0:d6:b8:6a:81:04:08:5d:f2:e2:e5:97: 52:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D8:C1:19:79:28:AA:BA:49:B6:29:3A:87:25:9A:9B:FF:75:7C:F3 X509v3 Authority Key Identifier: keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/7NjBGXkoqrpJtik6hyWam_91fPM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.8.150.0-81.8.155.255 Signature Algorithm: sha256WithRSAEncryption 85:d7:42:7e:de:6f:f6:82:47:84:44:07:55:46:2a:16:fe:19: 70:cf:51:99:ed:5b:20:c7:a5:15:4a:00:42:4c:26:ec:94:3f: 0b:a9:36:d0:6c:d5:6c:9e:68:86:7d:db:1c:3f:e5:85:eb:c4: 44:f1:5e:45:03:7b:dd:a3:5e:cc:0b:d8:73:9c:66:90:09:95: e2:cb:f4:04:d1:62:6a:5e:c0:50:28:8b:39:7c:e9:c6:d1:25: 41:d9:03:64:b9:f2:44:0d:b6:de:23:ee:13:e8:d5:9d:02:d5: a9:01:6a:7a:2d:06:31:b7:c3:ed:78:29:33:65:0f:f3:e5:19: e3:8f:94:5b:b6:43:3d:4e:d9:a0:8b:b9:b9:f4:f4:f6:8b:47: b6:54:37:6b:57:8c:a6:85:4f:40:d8:76:c1:e0:8c:4b:2b:18: 65:cf:4a:3f:2b:a4:37:e8:e4:b2:ad:b2:db:ca:e2:d5:a5:a0: 62:47:fb:68:c0:fd:04:ad:34:5e:87:69:cf:a8:9c:6d:13:96: c2:86:c0:97:be:73:01:ac:7a:93:80:32:53:25:eb:25:5c:12: d5:e9:90:c1:fe:a6:f7:4c:3d:79:bf:23:51:af:fc:19:c3:74: a5:03:58:87:21:83:2a:9e:f0:45:ae:96:73:ce:c0:1e:de:af: 9d:7d:cb:38 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt57FgNJkLUYDVDuGnH7WYJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMGIzM2NkZGI3OTliN2JjZjVkM2RjZTAwNGZkYmE4YzNl ODY0ZmYwHhcNMjYwMTAxMTQxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2Q4YzExOTc5MjhhYWJhNDliNjI5M2E4NzI1OWE5YmZmNzU3Y2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOPMs6Wt72Ct9tGj7g1akwZPmDT0 TEwFXmJqoOT6Ko0bU+1jKmeSguWAtTTLSxT3yQQNvp8TLWTHQqDV2pvErQ0JJl05 4FtVeAK2mERyhuqXUeyk7tNeZWO2clXuD3M3cjL6IHr206Em/qRvIUwhMsUotr0x 7sq0gCp13kyT57UpesLN9ZsXrips5c3jdczTdG3LZ+obLmBcqmnKs7pC2QtDoTy7 Ylk+wLOsMxKFWTOX7Ehmq8BBTKT3HXUHWSM4uEEjM2V2QnhOR0/Ed6mhEkodRpfN 9E31no2FyLni+a5DCa2q9P7szQzfGBt5T9P25CXQ1rhqgQQIXfLi5ZdS1wIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFOzYwRl5KKq6SbYpOoclmpv/dXzzMB8GA1UdIwQY MBaAFNoLM83beZt7z109zgBP26jD6GT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQt NzczM2JkODg4ZTI4LzEvN05qQkdYa29xcnBKdGlrNmh5V2FtXzkxZlBNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wMzJkOGItNDg4MS00NmZhLWI2NzQtNzczM2JkODg4ZTI4 LzEvMmdzenpkdDVtM3ZQWFQzT0FFX2JxTVBvWlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAFRCJYD BAJRCJgwDQYJKoZIhvcNAQELBQADggEBAIXXQn7eb/aCR4REB1VGKhb+GXDPUZnt WyDHpRVKAEJMJuyUPwupNtBs1WyeaIZ92xw/5YXrxETxXkUDe92jXswL2HOcZpAJ leLL9ATRYmpewFAoizl86cbRJUHZA2S58kQNtt4j7hPo1Z0C1akBanotBjG3w+14 KTNlD/PlGeOPlFu2Qz1O2aCLubn09PaLR7ZUN2tXjKaFT0DYdsHgjEsrGGXPSj8r pDfo5LKtstvK4tWloGJH+2jA/QStNF6Hac+onG0TlsKGwJe+cwGsepOAMlMl6yVc EtXpkMH+pvdMPXm/I1Gv/BnDdKUDWIchgyqe8EWulnPOwB7er519yzg= -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:31 2026 by rpki-client