This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/A4aZNyFUAIZJopfz-GIkyGjKN2M.roa File: A4aZNyFUAIZJopfz-GIkyGjKN2M.roa (raw, json) Hash identifier: ad3JTqwnxx8yfvZ/j/RxHuXrpvq+9MpZ3e3SLMkwsWk= Subject key identifier: 03:86:99:37:21:54:00:86:49:A2:97:F3:F8:62:24:C8:68:CA:37:63 Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Certificate serial: 019B791006910864BA39F77C7340977485EE Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/A4aZNyFUAIZJopfz-GIkyGjKN2M.roa Signing time: Thu 01 Jan 2026 10:17:31 +0000 ROA not before: Thu 01 Jan 2026 10:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210073 IP address blocks: 195.7.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.mft rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:06:91:08:64:ba:39:f7:7c:73:40:97:74:85:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Validity Not Before: Jan 1 10:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=038699372154008649a297f3f86224c868ca3763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9f:a5:86:9c:64:f2:dd:b3:40:70:30:fb:68: 51:27:ae:69:61:10:a6:54:22:74:7d:53:fd:fd:aa: b5:b0:96:ec:d1:82:c6:09:db:5b:a7:81:b0:a6:1f: f6:53:ac:dc:9f:5b:41:f7:d4:1b:c6:82:c9:9e:99: 2e:45:05:fa:13:32:31:ee:93:50:74:b6:a1:83:19: ef:9c:5e:53:29:0d:c6:83:9e:56:78:fa:b1:1a:6e: c1:4a:e0:32:94:63:1d:44:5e:96:03:68:d1:95:48: 21:d5:6d:45:f9:de:83:b2:5d:b5:30:4d:63:ea:69: 69:c5:e7:8e:6d:7f:13:5b:8d:fa:b8:72:0d:bc:7d: 70:5a:5b:4a:ac:33:3d:df:f3:ed:06:79:e6:fe:a8: 55:ee:62:67:77:69:e8:f9:c4:3b:66:d5:ba:24:86: 7f:2d:e7:0f:1a:af:76:49:90:08:e4:f5:ee:f4:0b: dc:a6:b6:4a:c6:0c:80:e4:00:13:7c:20:30:cc:8d: a7:fa:56:f1:ed:07:7a:84:b2:f0:39:22:3b:81:25: 2a:0c:da:ae:20:d3:15:0c:0e:4a:07:20:b3:de:53: 0b:85:26:3c:db:f3:a6:61:c0:89:59:8f:eb:06:93: 7d:5e:cb:e3:ea:58:8d:dc:27:d1:f1:ba:35:73:87: 6d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:86:99:37:21:54:00:86:49:A2:97:F3:F8:62:24:C8:68:CA:37:63 X509v3 Authority Key Identifier: keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/A4aZNyFUAIZJopfz-GIkyGjKN2M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.7.14.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:20:9a:59:3b:51:93:22:9f:54:ee:7f:9f:aa:15:dc:32:d2: 6e:58:ba:44:4a:10:67:db:04:be:07:2e:df:19:90:b0:95:83: 3a:bd:65:a3:07:23:8a:3b:75:9e:37:1f:5f:e0:11:c7:66:8d: a5:e1:85:70:82:86:ae:6f:ef:dc:a4:0a:56:80:94:8b:84:cc: 6c:c6:e6:c0:72:5a:64:7f:ea:40:22:20:3b:a3:5f:27:31:c7: ae:37:68:4f:1b:36:bd:05:8a:1d:ca:37:af:86:00:11:e3:2c: cb:f9:d7:5e:6d:8c:3e:a7:05:b2:eb:6f:42:7b:e4:51:13:22: 33:d9:88:fe:40:de:98:34:49:02:a4:fa:a2:f2:f3:27:76:03: 33:68:29:24:cc:fe:51:c6:6f:c1:51:be:21:8c:45:b7:d2:48: 93:9a:4a:84:1f:d3:62:65:c7:7e:e6:12:22:9c:9c:75:70:cc: f5:5c:75:46:51:af:2f:5e:9f:48:e3:cc:ca:d0:50:e1:28:47: 29:25:e3:35:77:11:8a:16:12:3f:93:96:5e:8b:72:0d:27:48: 64:f0:70:e2:fb:5a:f1:4a:da:d4:d7:eb:fe:c8:b0:f6:e6:17: 84:13:10:99:3a:8d:84:2e:b4:14:bf:fa:d6:2c:cf:dc:c6:d6: 6d:68:69:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EAaRCGS6Ofd8c0CXdIXuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh ODBlOWUwHhcNMjYwMTAxMTAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzg2OTkzNzIxNTQwMDg2NDlhMjk3ZjNmODYyMjRjODY4Y2EzNzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ+lhpxk8t2zQHAw+2hRJ65pYRCm VCJ0fVP9/aq1sJbs0YLGCdtbp4Gwph/2U6zcn1tB99QbxoLJnpkuRQX6EzIx7pNQ dLahgxnvnF5TKQ3Gg55WePqxGm7BSuAylGMdRF6WA2jRlUgh1W1F+d6Dsl21ME1j 6mlpxeeObX8TW436uHINvH1wWltKrDM93/PtBnnm/qhV7mJnd2no+cQ7ZtW6JIZ/ LecPGq92SZAI5PXu9AvcprZKxgyA5AATfCAwzI2n+lbx7Qd6hLLwOSI7gSUqDNqu INMVDA5KByCz3lMLhSY82/OmYcCJWY/rBpN9Xsvj6liN3CfR8bo1c4dtWwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAOGmTchVACGSaKX8/hiJMhoyjdjMB8GA1UdIwQY MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt OWU3MWRjMjRhNjgzLzEvQTRhWk55RlVBSVpKb3Bmei1HSWt5R2pLTjJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwcOMA0G CSqGSIb3DQEBCwUAA4IBAQB9IJpZO1GTIp9U7n+fqhXcMtJuWLpEShBn2wS+By7f GZCwlYM6vWWjByOKO3WeNx9f4BHHZo2l4YVwgoaub+/cpApWgJSLhMxsxubAclpk f+pAIiA7o18nMceuN2hPGza9BYodyjevhgAR4yzL+ddebYw+pwWy629Ce+RREyIz 2Yj+QN6YNEkCpPqi8vMndgMzaCkkzP5Rxm/BUb4hjEW30kiTmkqEH9NiZcd+5hIi nJx1cMz1XHVGUa8vXp9I48zK0FDhKEcpJeM1dxGKFhI/k5Zei3INJ0hk8HDi+1rx StrU1+v+yLD25heEExCZOo2ELrQUv/rWLM/cxtZtaGkz -----END CERTIFICATE-----Generated at Sun Jan 25 15:06:05 2026 by rpki-client