This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/G7AK1h00iyVT1uTbDF2P8QrMwzE.roa File: G7AK1h00iyVT1uTbDF2P8QrMwzE.roa (raw, json) Hash identifier: NVoiRc1DBaOpJJBAaEIvGPwDHpVBjadBdk8bm2mQzXk= Subject key identifier: 1B:B0:0A:D6:1D:34:8B:25:53:D6:E4:DB:0C:5D:8F:F1:0A:CC:C3:31 Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Certificate serial: 019B7F14BF74444DB4BF77065D034AD1E182 Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/G7AK1h00iyVT1uTbDF2P8QrMwzE.roa Signing time: Fri 02 Jan 2026 14:20:24 +0000 ROA not before: Fri 02 Jan 2026 14:20:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204890 IP address blocks: 77.67.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.mft rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:bf:74:44:4d:b4:bf:77:06:5d:03:4a:d1:e1:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171 Validity Not Before: Jan 2 14:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1bb00ad61d348b2553d6e4db0c5d8ff10accc331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:78:ee:ba:52:c2:57:54:c9:fe:e2:6a:28:97: 16:d8:3f:d3:45:f9:ae:c8:31:75:14:3f:28:a6:dd: e9:eb:59:39:40:f4:18:e6:d5:57:e1:9d:dc:8e:70: 82:d4:df:77:6a:a4:16:c6:62:ec:c3:c2:bb:fc:98: f0:de:7b:aa:29:d5:81:94:a5:2d:63:db:83:9c:a3: 19:62:fb:7f:6c:d5:7d:c1:29:0d:d1:b9:0a:12:de: 6f:96:b6:fe:1b:c0:99:06:af:cf:c6:eb:8f:62:83: 58:15:b4:ca:1a:e4:12:86:98:c4:19:ee:c0:1b:96: b1:99:76:8a:db:70:43:b9:8c:5e:7b:41:b0:c3:5a: e1:5f:bd:e8:52:49:e5:8d:42:89:72:28:52:39:f0: 4c:2f:36:91:d7:92:e9:3f:10:55:9c:f3:1f:e7:5e: 27:f2:83:f8:53:eb:10:fc:ae:62:2b:a4:25:00:4c: e1:cc:f6:0a:30:b0:33:33:18:31:99:d7:13:67:0c: 44:0a:2f:d8:3f:99:30:11:27:c9:c4:33:de:57:fd: 2d:d1:40:03:d4:e7:c8:ec:53:0c:5b:ed:37:cf:f5: 61:d6:f1:f2:81:02:e6:63:4a:61:b8:93:6a:b4:56: 4a:71:77:88:e0:4b:e5:e4:26:ce:54:cb:99:31:0c: 93:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B0:0A:D6:1D:34:8B:25:53:D6:E4:DB:0C:5D:8F:F1:0A:CC:C3:31 X509v3 Authority Key Identifier: keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/G7AK1h00iyVT1uTbDF2P8QrMwzE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.67.36.0/24 Signature Algorithm: sha256WithRSAEncryption 20:69:23:1f:a1:fc:ad:58:b7:8e:4b:e3:29:04:6f:ec:dd:61: de:6e:46:09:61:2c:61:cb:b1:00:de:b4:68:38:eb:b6:78:dd: c6:53:ec:bf:1e:21:b9:b6:88:00:57:6b:b4:c8:53:b3:5a:35: 8c:78:a2:81:21:6f:09:c9:81:a9:0f:a8:6d:5d:62:9d:6e:bc: ef:40:a4:ba:81:f2:cc:eb:ba:18:a1:39:91:43:10:03:c3:e9: eb:5a:69:6e:14:15:3f:7c:b1:e1:b0:39:58:3a:ac:06:b5:e7: 0b:30:a1:91:77:21:c5:4f:84:10:40:41:e9:2d:74:ba:e8:d2: aa:95:25:a9:75:19:85:76:8d:0a:93:46:21:a5:ce:18:c4:e0: 17:b5:8f:6a:cb:2c:81:85:c3:9e:f1:6c:04:63:e8:0d:96:80: b2:30:b9:28:1a:8a:ba:e8:fd:fa:83:95:03:7c:90:2f:2b:c8: 4e:00:d8:df:f5:08:7c:19:ff:d7:8a:cd:cc:8e:6b:8d:77:59: 59:f9:9f:a4:83:9a:29:52:ec:ca:2d:55:aa:eb:14:10:5c:57: ff:c9:91:ee:00:13:0e:ef:7d:df:11:be:ff:9c:c8:fd:40:58: 31:d1:4b:5f:22:f5:ce:42:10:db:96:6a:4a:11:1b:5b:6a:ab: 80:a5:74:57 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FL90RE20v3cGXQNK0eGCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3OWRiZmRmNGMyMGJkYWU4ZDYxMTg1NjZlY2U3NjQ0NGU0 NmQxNzEwHhcNMjYwMTAyMTQyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYmIwMGFkNjFkMzQ4YjI1NTNkNmU0ZGIwYzVkOGZmMTBhY2NjMzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3juulLCV1TJ/uJqKJcW2D/TRfmu yDF1FD8opt3p61k5QPQY5tVX4Z3cjnCC1N93aqQWxmLsw8K7/Jjw3nuqKdWBlKUt Y9uDnKMZYvt/bNV9wSkN0bkKEt5vlrb+G8CZBq/PxuuPYoNYFbTKGuQShpjEGe7A G5axmXaK23BDuYxee0Gww1rhX73oUknljUKJcihSOfBMLzaR15LpPxBVnPMf514n 8oP4U+sQ/K5iK6QlAEzhzPYKMLAzMxgxmdcTZwxECi/YP5kwESfJxDPeV/0t0UAD 1OfI7FMMW+03z/Vh1vHygQLmY0phuJNqtFZKcXeI4Evl5CbOVMuZMQyTpwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBuwCtYdNIslU9bk2wxdj/EKzMMxMB8GA1UdIwQY MBaAFCedv99MIL2ujWEYVm7OdkRORtFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEt MGNmMTA5M2Q0NTQ4LzEvRzdBSzFoMDBpeVZUMXVUYkRGMlA4UXJNd3pFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85ZDU0YTUtMDEzNS00YjE4LTk2MWEtMGNmMTA5M2Q0NTQ4 LzEvSjUyXzMwd2d2YTZOWVJoV2JzNTJSRTVHMFhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUMkMA0G CSqGSIb3DQEBCwUAA4IBAQAgaSMfofytWLeOS+MpBG/s3WHebkYJYSxhy7EA3rRo OOu2eN3GU+y/HiG5togAV2u0yFOzWjWMeKKBIW8JyYGpD6htXWKdbrzvQKS6gfLM 67oYoTmRQxADw+nrWmluFBU/fLHhsDlYOqwGtecLMKGRdyHFT4QQQEHpLXS66NKq lSWpdRmFdo0Kk0Yhpc4YxOAXtY9qyyyBhcOe8WwEY+gNloCyMLkoGoq66P36g5UD fJAvK8hOANjf9Qh8Gf/Xis3MjmuNd1lZ+Z+kg5opUuzKLVWq6xQQXFf/yZHuABMO 733fEb7/nMj9QFgx0UtfIvXOQhDblmpKERtbaquApXRX -----END CERTIFICATE-----Generated at Sun Jan 25 13:43:33 2026 by rpki-client