This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/Q07uYNo6WZ5fsocR0rUERKQkp9Q.roa File: Q07uYNo6WZ5fsocR0rUERKQkp9Q.roa (raw, json) Hash identifier: WuPVmH3EnlkoiK5Ixd9yIxPWo985u/qy+3SPakKuHJQ= Subject key identifier: 43:4E:EE:60:DA:3A:59:9E:5F:B2:87:11:D2:B5:04:44:A4:24:A7:D4 Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Certificate serial: 019B791007D9866262F4F27A36FF1BAA5BFD Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/Q07uYNo6WZ5fsocR0rUERKQkp9Q.roa Signing time: Thu 01 Jan 2026 10:17:32 +0000 ROA not before: Thu 01 Jan 2026 10:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211028 IP address blocks: 94.125.98.0/23 maxlen: 24 185.78.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.mft rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:07:d9:86:62:62:f4:f2:7a:36:ff:1b:aa:5b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e Validity Not Before: Jan 1 10:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=434eee60da3a599e5fb28711d2b50444a424a7d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2f:6b:ad:c1:ef:80:ad:0d:03:21:6f:76:f2: 25:57:0f:fb:3b:83:d1:60:e1:73:9b:8a:d7:9f:c7: da:2f:2d:65:f5:bf:d9:12:e1:37:ba:01:42:48:df: 21:4d:bc:66:ca:ea:7e:a8:2a:1f:37:9e:d7:9d:be: 62:9f:ec:89:cd:c5:61:14:ea:1e:cc:a9:76:0d:59: cc:b0:7e:94:83:df:ce:df:95:dc:e7:02:92:d2:59: 25:b8:e4:be:d2:9f:5d:a4:96:18:8e:8a:c6:1e:61: cb:9f:4d:2c:e3:3c:90:71:36:3b:f6:1a:75:c5:98: 61:0d:ba:47:2b:0d:c9:f1:94:ab:a6:b9:f6:ab:5f: 45:b3:ec:74:50:45:aa:3d:90:62:45:91:f8:23:96: 6e:08:19:71:f7:53:36:b6:d1:b0:3d:6e:b7:64:55: 04:da:da:77:f3:23:b6:2c:03:a4:26:65:f1:a5:ee: e4:ca:0a:38:9c:8b:d7:e9:51:05:7d:0e:a4:45:84: 40:2e:41:7a:3a:91:02:90:85:b7:7d:8f:f8:4f:90: 71:ef:09:19:dc:94:90:cd:07:d8:92:6c:3b:6b:4a: aa:d6:f3:08:aa:a2:fa:9d:9e:25:a4:8c:ed:0e:91: d6:5f:cc:13:ba:70:21:d5:ff:12:3d:52:d5:44:b4: 1f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4E:EE:60:DA:3A:59:9E:5F:B2:87:11:D2:B5:04:44:A4:24:A7:D4 X509v3 Authority Key Identifier: keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/Q07uYNo6WZ5fsocR0rUERKQkp9Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.125.98.0/23 185.78.232.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:08:bd:96:12:0a:61:88:32:c6:54:96:7e:a4:a9:e2:3e:71: 0b:5f:e5:d8:a5:10:ef:38:ef:5a:df:3a:01:34:af:b1:4d:19: ed:22:8c:4a:09:22:3a:03:41:3e:07:da:43:ba:a8:20:c0:d1: 12:e4:90:b6:26:9a:9c:df:3e:58:61:47:de:c7:8d:e7:43:b8: e5:27:40:e9:eb:8d:7f:97:1c:90:c3:1f:aa:e0:08:a8:1d:26: 05:53:ec:5e:4e:cb:81:8d:6c:45:94:11:44:e0:25:42:f0:dd: 94:4b:62:ae:cc:6c:45:b4:ca:db:11:ba:62:37:30:38:af:6b: 25:81:f2:3a:0b:cf:ae:5f:ba:b5:1f:55:aa:be:6c:94:cf:21: 0b:23:bd:17:c1:b3:46:5d:e3:88:2f:a9:63:7a:22:37:cd:ba: 37:66:d3:da:bc:21:ad:8e:e4:a0:47:56:8b:45:39:f0:49:eb: 85:03:b7:14:c8:99:b6:5b:06:71:d5:15:d0:a1:a0:d1:25:70: 4d:bf:7d:2a:c3:13:93:d8:49:d0:61:50:93:5c:64:ac:09:ea: 39:c2:26:cc:c5:e3:bb:fe:c3:b9:a1:cb:0a:df:10:ae:4f:f4: 2e:f8:db:af:da:7e:f2:fd:1d:59:f1:cd:a0:b7:f8:74:90:86: fb:c5:1a:c6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EAfZhmJi9PJ6Nv8bqlv9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh ODBlOWUwHhcNMjYwMTAxMTAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MzRlZWU2MGRhM2E1OTllNWZiMjg3MTFkMmI1MDQ0NGE0MjRhN2Q0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAly9rrcHvgK0NAyFvdvIlVw/7O4PR YOFzm4rXn8faLy1l9b/ZEuE3ugFCSN8hTbxmyup+qCofN57Xnb5in+yJzcVhFOoe zKl2DVnMsH6Ug9/O35Xc5wKS0lkluOS+0p9dpJYYjorGHmHLn00s4zyQcTY79hp1 xZhhDbpHKw3J8ZSrprn2q19Fs+x0UEWqPZBiRZH4I5ZuCBlx91M2ttGwPW63ZFUE 2tp38yO2LAOkJmXxpe7kygo4nIvX6VEFfQ6kRYRALkF6OpECkIW3fY/4T5Bx7wkZ 3JSQzQfYkmw7a0qq1vMIqqL6nZ4lpIztDpHWX8wTunAh1f8SPVLVRLQftQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFENO7mDaOlmeX7KHEdK1BESkJKfUMB8GA1UdIwQY MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt OWU3MWRjMjRhNjgzLzEvUTA3dVlObzZXWjVmc29jUjByVUVSS1FrcDlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBXn1iAwQB uU7oMA0GCSqGSIb3DQEBCwUAA4IBAQAdCL2WEgphiDLGVJZ+pKniPnELX+XYpRDv OO9a3zoBNK+xTRntIoxKCSI6A0E+B9pDuqggwNES5JC2Jpqc3z5YYUfex43nQ7jl J0Dp641/lxyQwx+q4AioHSYFU+xeTsuBjWxFlBFE4CVC8N2US2KuzGxFtMrbEbpi NzA4r2slgfI6C8+uX7q1H1WqvmyUzyELI70XwbNGXeOIL6ljeiI3zbo3ZtPavCGt juSgR1aLRTnwSeuFA7cUyJm2WwZx1RXQoaDRJXBNv30qwxOT2EnQYVCTXGSsCeo5 wibMxeO7/sO5ocsK3xCuT/Qu+Nuv2n7y/R1Z8c2gt/h0kIb7xRrG -----END CERTIFICATE-----Generated at Sun Jan 25 13:34:41 2026 by rpki-client