This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6a8607-a33a-44af-b2c0-1341de8abe51/1/7Lr6p7DxKnwsqNm2CLB6OM0-G9k.roa File: 7Lr6p7DxKnwsqNm2CLB6OM0-G9k.roa (raw, json) Hash identifier: MVl7TrZfOYT29YZfSTEksTVjTVaYtldybqMvFAfAqSw= Subject key identifier: EC:BA:FA:A7:B0:F1:2A:7C:2C:A8:D9:B6:08:B0:7A:38:CD:3E:1B:D9 Certificate issuer: /CN=6559cf34d4cfc59640862d1e4b79d48d9e4d8e7b Certificate serial: 019B7BA4F4A9FA0DDCA98717EA2F1864E3C4 Authority key identifier: 65:59:CF:34:D4:CF:C5:96:40:86:2D:1E:4B:79:D4:8D:9E:4D:8E:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVnPNNTPxZZAhi0eS3nUjZ5Njns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6a8607-a33a-44af-b2c0-1341de8abe51/1/7Lr6p7DxKnwsqNm2CLB6OM0-G9k.roa Signing time: Thu 01 Jan 2026 22:19:26 +0000 ROA not before: Thu 01 Jan 2026 22:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3170 IP address blocks: 91.238.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6a8607-a33a-44af-b2c0-1341de8abe51/1/ZVnPNNTPxZZAhi0eS3nUjZ5Njns.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/6a8607-a33a-44af-b2c0-1341de8abe51/1/ZVnPNNTPxZZAhi0eS3nUjZ5Njns.mft rsync://rpki.ripe.net/repository/DEFAULT/ZVnPNNTPxZZAhi0eS3nUjZ5Njns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:f4:a9:fa:0d:dc:a9:87:17:ea:2f:18:64:e3:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6559cf34d4cfc59640862d1e4b79d48d9e4d8e7b Validity Not Before: Jan 1 22:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ecbafaa7b0f12a7c2ca8d9b608b07a38cd3e1bd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9e:e2:0f:d5:56:1e:bb:af:29:11:2f:e8:87: 4e:8b:79:af:d9:9a:86:10:13:4d:47:92:4a:63:b4: ba:91:fe:9c:9b:55:a9:b4:78:c7:17:e3:fa:11:b4: 8d:ae:0a:88:1c:f0:56:dd:c7:23:e6:82:6c:01:c3: 84:a9:86:c8:00:58:a5:d0:8e:ed:88:a8:ed:0a:d8: 95:46:bb:74:56:57:e9:30:0f:88:88:cc:3a:f9:5c: 07:18:da:a7:fe:b0:ef:65:05:01:bc:82:0a:cd:bd: 76:81:05:71:d9:50:e3:19:03:1c:80:4e:89:a1:84: 8e:d2:9b:5f:41:8e:f8:21:60:81:4a:d7:cf:a6:f6: e3:4c:2e:f4:66:46:df:67:7b:84:0d:2f:1a:32:83: 93:e3:09:a1:89:94:9c:12:b0:09:ff:23:90:fe:89: e1:d6:8f:3c:4f:d3:8a:00:d6:f6:68:5e:4b:4e:7f: d0:f4:d9:b4:02:08:ee:8b:85:23:58:7b:4e:03:a7: 41:3f:c1:26:51:4d:09:7d:b3:23:a2:ce:93:e9:ea: 04:1c:2f:6d:1a:dd:37:89:b5:c4:77:86:32:51:0b: 27:bf:4d:09:ad:51:5a:d1:6c:c1:f3:58:e4:06:86: 66:56:14:a1:96:7e:e6:04:ff:e8:d3:e8:e6:92:1c: 57:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BA:FA:A7:B0:F1:2A:7C:2C:A8:D9:B6:08:B0:7A:38:CD:3E:1B:D9 X509v3 Authority Key Identifier: keyid:65:59:CF:34:D4:CF:C5:96:40:86:2D:1E:4B:79:D4:8D:9E:4D:8E:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVnPNNTPxZZAhi0eS3nUjZ5Njns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6a8607-a33a-44af-b2c0-1341de8abe51/1/7Lr6p7DxKnwsqNm2CLB6OM0-G9k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6a8607-a33a-44af-b2c0-1341de8abe51/1/ZVnPNNTPxZZAhi0eS3nUjZ5Njns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.238.195.0/24 Signature Algorithm: sha256WithRSAEncryption 45:6b:f2:1d:26:8e:74:23:5f:6b:93:1a:9d:b1:b8:16:c2:d0: 73:2f:4d:c6:30:85:cd:9b:98:b1:63:93:b3:3d:03:6f:31:2e: bf:0b:0b:3d:f4:a9:f0:a6:ff:62:fb:3f:79:bc:ca:42:5a:50: 59:b4:72:a6:41:51:3b:6e:c3:72:3e:4d:1e:8f:94:90:bd:84: 42:35:e9:07:13:2b:ca:80:25:b3:00:e2:76:b8:f5:2d:54:df: 67:4c:b2:80:4e:e3:bc:56:68:2c:7f:a8:b0:a9:ff:95:98:8c: c3:81:cd:3c:62:bc:b4:d2:53:1f:13:da:df:b3:8a:58:52:06: 08:ec:36:bf:23:4f:47:f0:de:69:ba:03:3d:54:6e:6c:84:51: ed:c7:79:7a:d0:2d:d9:f9:b9:34:dd:0a:0b:f7:09:8d:94:30: cf:98:d8:54:9b:17:f7:86:f0:9c:3f:06:c6:90:e8:86:69:c8: c7:2f:db:ff:a8:14:f0:61:90:24:1f:c0:32:e7:39:af:a0:ef: 68:37:75:2f:fa:4f:98:48:df:8b:c2:fa:a5:4b:7b:a8:b3:12: 22:00:57:a4:32:3d:cc:06:06:bd:d1:81:26:c1:7a:55:fa:60: b4:e7:e8:8f:8b:e9:d2:58:8d:d9:c8:6b:fb:94:29:6a:aa:4f: d4:6f:8c:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pPSp+g3cqYcX6i8YZOPEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1NTljZjM0ZDRjZmM1OTY0MDg2MmQxZTRiNzlkNDhkOWU0 ZDhlN2IwHhcNMjYwMTAxMjIxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2JhZmFhN2IwZjEyYTdjMmNhOGQ5YjYwOGIwN2EzOGNkM2UxYmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwp7iD9VWHruvKREv6IdOi3mv2ZqG EBNNR5JKY7S6kf6cm1WptHjHF+P6EbSNrgqIHPBW3ccj5oJsAcOEqYbIAFil0I7t iKjtCtiVRrt0VlfpMA+IiMw6+VwHGNqn/rDvZQUBvIIKzb12gQVx2VDjGQMcgE6J oYSO0ptfQY74IWCBStfPpvbjTC70ZkbfZ3uEDS8aMoOT4wmhiZScErAJ/yOQ/onh 1o88T9OKANb2aF5LTn/Q9Nm0Agjui4UjWHtOA6dBP8EmUU0JfbMjos6T6eoEHC9t Gt03ibXEd4YyUQsnv00JrVFa0WzB81jkBoZmVhShln7mBP/o0+jmkhxXOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOy6+qew8Sp8LKjZtgiwejjNPhvZMB8GA1UdIwQY MBaAFGVZzzTUz8WWQIYtHkt51I2eTY57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlZuUE5OVFB4WlpBaGkwZVMzblVqWjVOam5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS82YTg2MDctYTMzYS00NGFmLWIyYzAt MTM0MWRlOGFiZTUxLzEvN0xyNnA3RHhLbndzcU5tMkNMQjZPTTAtRzlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS82YTg2MDctYTMzYS00NGFmLWIyYzAtMTM0MWRlOGFiZTUx LzEvWlZuUE5OVFB4WlpBaGkwZVMzblVqWjVOam5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+7DMA0G CSqGSIb3DQEBCwUAA4IBAQBFa/IdJo50I19rkxqdsbgWwtBzL03GMIXNm5ixY5Oz PQNvMS6/Cws99Knwpv9i+z95vMpCWlBZtHKmQVE7bsNyPk0ej5SQvYRCNekHEyvK gCWzAOJ2uPUtVN9nTLKATuO8Vmgsf6iwqf+VmIzDgc08Yry00lMfE9rfs4pYUgYI 7Da/I09H8N5pugM9VG5shFHtx3l60C3Z+bk03QoL9wmNlDDPmNhUmxf3hvCcPwbG kOiGacjHL9v/qBTwYZAkH8Ay5zmvoO9oN3Uv+k+YSN+LwvqlS3uosxIiAFekMj3M Bga90YEmwXpV+mC05+iPi+nSWI3ZyGv7lClqqk/Ub4xD -----END CERTIFICATE-----Generated at Sun Jan 25 13:01:47 2026 by rpki-client