This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/7lhE6bzZhG0C5CmBmaI7HzYPl8s.roa File: 7lhE6bzZhG0C5CmBmaI7HzYPl8s.roa (raw, json) Hash identifier: ToooYHL477UW9eXXr8dqX98p19Eo18MQyb6sYa2XGsM= Subject key identifier: EE:58:44:E9:BC:D9:84:6D:02:E4:29:81:99:A2:3B:1F:36:0F:97:CB Certificate issuer: /CN=836528e152b6dcba1571241ac55be5bce01118b7 Certificate serial: 019B7BA3D3653EB8EAE3BED3F1AA5F589220 Authority key identifier: 83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/7lhE6bzZhG0C5CmBmaI7HzYPl8s.roa Signing time: Thu 01 Jan 2026 22:18:12 +0000 ROA not before: Thu 01 Jan 2026 22:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29286 IP address blocks: 178.132.56.0/23 maxlen: 24 178.132.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/g2Uo4VK23LoVcSQaxVvlvOARGLc.crl rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/g2Uo4VK23LoVcSQaxVvlvOARGLc.mft rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:d3:65:3e:b8:ea:e3:be:d3:f1:aa:5f:58:92:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=836528e152b6dcba1571241ac55be5bce01118b7 Validity Not Before: Jan 1 22:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee5844e9bcd9846d02e4298199a23b1f360f97cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:55:77:fb:0b:57:9c:5f:61:cf:d0:12:ce:0d: d3:e1:ac:fe:f5:0d:41:ea:bc:33:4a:74:67:d9:b3: 01:11:b1:3c:7c:8e:ba:fd:96:12:cd:a8:91:fc:30: e4:27:18:a8:84:79:2b:13:2e:87:eb:c2:5f:93:a7: 91:1b:22:cd:01:5e:19:14:8e:3c:62:ac:c2:de:35: 32:f9:df:e5:68:a9:e6:4a:1a:b3:18:22:5b:d8:c8: 85:97:19:be:0c:30:62:ba:c5:e1:46:98:b3:d4:05: 5e:d2:5d:e5:37:f3:e0:32:ea:e4:f2:d9:27:30:f9: d6:e5:12:62:51:24:ad:65:bd:db:88:22:62:0f:37: aa:ab:4e:fe:a8:0d:c8:94:82:f3:ad:bf:2a:7f:e8: b3:f8:72:d3:41:ff:17:fc:40:7c:2c:13:e6:0f:2d: 74:0c:4b:54:ad:03:ea:e5:80:fb:7e:26:e8:cd:71: 3d:f1:12:94:d5:6e:bd:43:c2:9e:7e:72:da:56:ae: d9:af:d1:7d:5c:58:ee:d0:54:af:b2:c4:ee:a3:ae: 4b:b7:86:bc:41:65:86:bb:64:4a:a6:8e:2d:91:51: c8:6b:15:cc:a7:c8:8b:cc:a7:ec:b6:8e:1d:46:a6: 37:c9:c7:a7:96:00:17:d2:36:06:34:b9:d8:36:a9: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:58:44:E9:BC:D9:84:6D:02:E4:29:81:99:A2:3B:1F:36:0F:97:CB X509v3 Authority Key Identifier: keyid:83:65:28:E1:52:B6:DC:BA:15:71:24:1A:C5:5B:E5:BC:E0:11:18:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2Uo4VK23LoVcSQaxVvlvOARGLc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/7lhE6bzZhG0C5CmBmaI7HzYPl8s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c70f4-5f3a-4fd3-883c-eb9415ec548a/1/g2Uo4VK23LoVcSQaxVvlvOARGLc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.132.56.0-178.132.58.255 Signature Algorithm: sha256WithRSAEncryption 80:36:b0:fd:d5:e1:e7:04:8e:81:80:f9:fa:0a:79:e4:29:69: af:32:4b:12:d2:9e:3f:c2:28:60:e1:77:38:1c:2b:61:7d:37: a8:43:db:ac:4a:b3:04:0b:0d:81:17:92:07:a6:69:8f:97:f5: 79:c1:22:11:ef:25:a1:ff:b7:cb:08:6d:71:77:49:db:ed:ff: 3f:dc:06:a5:da:ce:61:d7:80:e2:15:db:35:eb:21:74:6c:e2: 96:10:45:a3:39:12:af:6e:7d:9b:1f:6c:df:be:1b:11:a9:a1: c8:0e:03:ff:ce:88:91:09:41:b0:ab:15:39:87:75:63:f8:ed: 30:16:b8:c3:00:91:87:3f:be:5c:a5:43:d8:93:d6:31:8d:b2: 90:1d:50:60:5f:fe:a3:91:38:4a:97:3f:6a:69:55:26:a7:b7: 99:fd:5e:48:4f:e7:31:b4:ad:3d:89:d6:4f:af:a9:67:aa:46: 11:2d:93:0f:2d:30:8f:f1:4a:95:90:f4:db:c4:f2:47:69:3b: 47:75:0a:7c:28:b0:ab:b8:39:04:cc:21:24:bf:de:bf:3f:37: 9f:16:f4:e6:53:5a:4f:d1:d9:4b:b9:27:20:4c:55:31:b8:39: b6:3a:66:a3:36:5a:6e:62:2f:f4:80:b7:5f:a5:1d:77:de:f6: f7:5c:d4:57 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt7o9NlPrjq477T8apfWJIgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNjUyOGUxNTJiNmRjYmExNTcxMjQxYWM1NWJlNWJjZTAx MTE4YjcwHhcNMjYwMTAxMjIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTU4NDRlOWJjZDk4NDZkMDJlNDI5ODE5OWEyM2IxZjM2MGY5N2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlV3+wtXnF9hz9ASzg3T4az+9Q1B 6rwzSnRn2bMBEbE8fI66/ZYSzaiR/DDkJxiohHkrEy6H68Jfk6eRGyLNAV4ZFI48 YqzC3jUy+d/laKnmShqzGCJb2MiFlxm+DDBiusXhRpiz1AVe0l3lN/PgMurk8tkn MPnW5RJiUSStZb3biCJiDzeqq07+qA3IlILzrb8qf+iz+HLTQf8X/EB8LBPmDy10 DEtUrQPq5YD7fibozXE98RKU1W69Q8KefnLaVq7Zr9F9XFju0FSvssTuo65Lt4a8 QWWGu2RKpo4tkVHIaxXMp8iLzKfsto4dRqY3ycenlgAX0jYGNLnYNqkmoQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFO5YROm82YRtAuQpgZmiOx82D5fLMB8GA1UdIwQY MBaAFINlKOFStty6FXEkGsVb5bzgERi3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzJVbzRWSzIzTG9WY1NRYXhWdmx2T0FSR0xjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC83YzcwZjQtNWYzYS00ZmQzLTg4M2Mt ZWI5NDE1ZWM1NDhhLzEvN2xoRTZielpoRzBDNUNtQm1hSTdIellQbDhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC83YzcwZjQtNWYzYS00ZmQzLTg4M2MtZWI5NDE1ZWM1NDhh LzEvZzJVbzRWSzIzTG9WY1NRYXhWdmx2T0FSR0xjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAOyhDgD BACyhDowDQYJKoZIhvcNAQELBQADggEBAIA2sP3V4ecEjoGA+foKeeQpaa8ySxLS nj/CKGDhdzgcK2F9N6hD26xKswQLDYEXkgemaY+X9XnBIhHvJaH/t8sIbXF3Sdvt /z/cBqXazmHXgOIV2zXrIXRs4pYQRaM5Eq9ufZsfbN++GxGpocgOA//OiJEJQbCr FTmHdWP47TAWuMMAkYc/vlylQ9iT1jGNspAdUGBf/qOROEqXP2ppVSant5n9XkhP 5zG0rT2J1k+vqWeqRhEtkw8tMI/xSpWQ9NvE8kdpO0d1CnwosKu4OQTMISS/3r8/ N58W9OZTWk/R2Uu5JyBMVTG4ObY6ZqM2Wm5iL/SAt1+lHXfe9vdc1Fc= -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:19 2026 by rpki-client