This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/fH7jpTfOw73ogmMvWrEFRq2Avio.roa File: fH7jpTfOw73ogmMvWrEFRq2Avio.roa (raw, json) Hash identifier: PFBzuOPj54GvMEMM5OOIFBp/nYApNQPXPXoK+zClv8U= Subject key identifier: 7C:7E:E3:A5:37:CE:C3:BD:E8:82:63:2F:5A:B1:05:46:AD:80:BE:2A Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06 Certificate serial: 019B76EB45B784691C1F1D8ECFB678F0F6B3 Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/fH7jpTfOw73ogmMvWrEFRq2Avio.roa Signing time: Thu 01 Jan 2026 00:18:08 +0000 ROA not before: Thu 01 Jan 2026 00:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211174 IP address blocks: 146.185.94.0/24 maxlen: 24 2a04:f340:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.mft rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:45:b7:84:69:1c:1f:1d:8e:cf:b6:78:f0:f6:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06 Validity Not Before: Jan 1 00:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c7ee3a537cec3bde882632f5ab10546ad80be2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:8b:c7:e8:cf:bc:4d:81:c6:58:7c:b3:30:9a: 40:cd:f8:0d:88:3f:d5:d6:61:78:07:d4:6c:30:b2: 0e:36:c3:ea:41:13:f6:f5:46:67:bc:5d:00:9f:d3: 4a:4c:e6:f3:f9:0c:3e:77:39:45:54:35:c2:59:2d: 12:cb:0c:1e:a4:f3:d9:00:8e:11:60:e0:37:c7:08: 5c:cd:45:fc:dc:36:48:9b:bf:f9:d5:33:03:60:19: f2:98:83:da:1b:8d:cf:4e:80:b5:91:45:2b:23:83: da:6b:28:8a:07:23:29:84:e9:58:88:5a:86:65:d4: 68:0e:4d:f1:fd:07:41:f1:bb:0a:14:c2:4a:78:13: f9:59:c9:1f:ea:fc:73:1f:0f:c3:9c:0e:7b:cf:c6: 18:12:59:a3:41:27:39:b7:34:38:7c:c0:88:2a:7e: e3:d4:cf:08:41:e5:17:9d:af:3b:c8:31:51:f0:fb: ed:82:b2:a3:eb:ac:dc:d6:29:ec:fb:bd:5d:84:f7: 25:43:4a:4e:24:57:f3:7c:12:4c:e9:77:80:9b:c3: ec:b3:69:df:cf:09:c2:71:f2:ee:12:37:aa:72:49: 48:cd:8d:de:d4:98:ad:1e:b8:94:2b:65:a0:d5:b6: e3:82:6d:bb:5d:99:ad:fc:4a:4c:72:dc:57:c1:17: 7c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7E:E3:A5:37:CE:C3:BD:E8:82:63:2F:5A:B1:05:46:AD:80:BE:2A X509v3 Authority Key Identifier: keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/fH7jpTfOw73ogmMvWrEFRq2Avio.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.185.94.0/24 IPv6: 2a04:f340:1000::/40 Signature Algorithm: sha256WithRSAEncryption 6f:4d:db:39:f0:57:87:ac:e3:de:cb:30:9e:ef:d8:41:12:eb: c3:99:3b:63:b4:74:1c:9f:f8:32:af:88:0b:dd:bb:c8:8a:53: cc:be:75:1e:47:31:eb:4b:71:63:07:cc:d5:18:a3:ac:06:66: b0:c8:c4:79:0a:85:da:88:fb:80:0d:f7:09:19:17:f0:12:5b: f9:60:f6:7c:e0:d2:45:d5:af:94:ac:ac:76:25:6a:ec:4a:63: 44:ea:17:fc:87:e4:75:f8:6d:ff:52:51:30:a4:bd:00:50:05: cc:44:36:3f:07:26:ed:a9:d6:ec:84:2e:16:fb:97:f6:95:9e: f2:de:1e:27:41:98:99:9c:77:e6:eb:b1:dd:0e:1d:82:1b:3a: 53:2c:a4:a0:51:74:84:c2:7d:2b:7b:28:7e:ac:8a:29:3a:59: 50:99:77:a8:eb:3e:aa:f7:1e:e0:8a:4e:f2:de:db:97:b6:a7: 08:a2:e4:d7:51:a7:7b:82:1b:e2:63:f6:5f:0e:53:ff:4a:fc: 31:97:61:05:72:48:e2:5f:db:42:71:7d:a3:4a:a4:b9:6d:0d: 26:c1:7e:4c:f5:59:ec:0e:34:47:39:59:d0:be:21:45:52:45: ff:a2:b1:58:3a:ca:d3:a6:d9:55:11:1d:0e:a5:34:da:49:1e: 87:9b:88:71 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt260W3hGkcHx2Oz7Z48PazMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3ZTBmN2JiYmU0MDMxYTI0ZWYxYjlkYjE5NmFhYjA2NDJl ODRhMDYwHhcNMjYwMTAxMDAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YzdlZTNhNTM3Y2VjM2JkZTg4MjYzMmY1YWIxMDU0NmFkODBiZTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+IvH6M+8TYHGWHyzMJpAzfgNiD/V 1mF4B9RsMLIONsPqQRP29UZnvF0An9NKTObz+Qw+dzlFVDXCWS0SywwepPPZAI4R YOA3xwhczUX83DZIm7/51TMDYBnymIPaG43PToC1kUUrI4PaayiKByMphOlYiFqG ZdRoDk3x/QdB8bsKFMJKeBP5Wckf6vxzHw/DnA57z8YYElmjQSc5tzQ4fMCIKn7j 1M8IQeUXna87yDFR8PvtgrKj66zc1ins+71dhPclQ0pOJFfzfBJM6XeAm8Pss2nf zwnCcfLuEjeqcklIzY3e1JitHriUK2Wg1bbjgm27XZmt/EpMctxXwRd8lQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFHx+46U3zsO96IJjL1qxBUatgL4qMB8GA1UdIwQY MBaAFCfg97u+QDGiTvG52xlqqwZC6EoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYt MzQ2YTNlYzE4NjhjLzEvZkg3anBUZk93NzNvZ21NdldyRUZScTJBdmlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84YWJhNzEtM2JhOC00YjhkLThlYjYtMzQ2YTNlYzE4Njhj LzEvSi1EM3U3NUFNYUpPOGJuYkdXcXJCa0xvU2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAkrleMA4E AgACMAgDBgAqBPNAEDANBgkqhkiG9w0BAQsFAAOCAQEAb03bOfBXh6zj3sswnu/Y QRLrw5k7Y7R0HJ/4Mq+IC927yIpTzL51Hkcx60txYwfM1RijrAZmsMjEeQqF2oj7 gA33CRkX8BJb+WD2fODSRdWvlKysdiVq7EpjROoX/Ifkdfht/1JRMKS9AFAFzEQ2 Pwcm7anW7IQuFvuX9pWe8t4eJ0GYmZx35uux3Q4dghs6UyykoFF0hMJ9K3sofqyK KTpZUJl3qOs+qvce4IpO8t7bl7anCKLk11Gne4Ib4mP2Xw5T/0r8MZdhBXJI4l/b QnF9o0qkuW0NJsF+TPVZ7A40RzlZ0L4hRVJF/6KxWDrK06bZVREdDqU02kkeh5uI cQ== -----END CERTIFICATE-----Generated at Mon Jan 26 19:39:06 2026 by rpki-client