This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/m7gY7tgEZEhnmCq-HkAcQ1-8HbE.roa File: m7gY7tgEZEhnmCq-HkAcQ1-8HbE.roa (raw, json) Hash identifier: xODHFAEs2OHYrHZKfEYMuN4r2rdZ9JfZ6XFxFdIMEYo= Subject key identifier: 9B:B8:18:EE:D8:04:64:48:67:98:2A:BE:1E:40:1C:43:5F:BC:1D:B1 Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5 Certificate serial: 019B76EB58251D318015E1151A4DC6AE6775 Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/m7gY7tgEZEhnmCq-HkAcQ1-8HbE.roa Signing time: Thu 01 Jan 2026 00:18:13 +0000 ROA not before: Thu 01 Jan 2026 00:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204650 IP address blocks: 2.188.239.0/24 maxlen: 24 2.189.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.mft rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:58:25:1d:31:80:15:e1:15:1a:4d:c6:ae:67:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5 Validity Not Before: Jan 1 00:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9bb818eed804644867982abe1e401c435fbc1db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2b:54:d4:19:5d:df:a0:1e:eb:d0:61:53:2a: 1f:ee:0b:01:41:e6:7a:f4:3d:43:5d:20:90:95:26: 65:68:77:79:ea:ab:16:77:16:fd:f0:80:32:39:5d: 39:45:97:03:6a:83:ff:08:21:ab:31:89:c3:51:6e: f2:4c:94:8b:90:b2:1a:cc:60:f8:a2:16:50:ab:00: 84:b9:5e:40:34:b4:19:60:74:d6:15:9f:dd:b7:f3: 0a:99:36:dc:ae:4d:34:7f:6b:65:05:00:8c:1d:fa: 74:5e:50:b7:91:99:d9:d1:4c:87:76:06:5f:40:ed: 03:36:79:e4:1d:5b:82:f7:b3:50:ad:14:73:93:87: 24:cb:aa:a7:3c:1c:6f:7a:2a:c6:bb:88:68:43:a3: 1f:1c:18:dc:da:c5:cb:6d:60:70:bd:ca:56:e4:9e: f5:86:15:db:66:84:6a:13:e5:7a:ea:c4:6d:ab:ad: c8:e4:6d:7f:36:13:78:48:46:56:fc:77:87:81:0e: 40:5d:7f:c7:82:73:85:44:ee:38:f1:ed:b4:2e:91: 41:cf:4b:62:93:86:e3:80:a6:2a:c7:53:c2:34:2a: 2d:51:87:66:6c:d7:b0:74:73:cc:cd:c1:9d:d9:8a: bb:8c:a4:5c:92:e2:fe:b3:13:63:2d:c8:90:6b:1b: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B8:18:EE:D8:04:64:48:67:98:2A:BE:1E:40:1C:43:5F:BC:1D:B1 X509v3 Authority Key Identifier: keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/m7gY7tgEZEhnmCq-HkAcQ1-8HbE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.188.239.0/24 2.189.96.0/19 Signature Algorithm: sha256WithRSAEncryption 55:1f:26:08:d9:21:a0:23:30:76:a1:4c:35:7b:09:06:a0:a9: df:d4:16:ae:3f:b7:0c:c6:f8:f7:51:c0:61:85:19:d7:0b:e0: 60:89:be:d2:94:8a:c8:10:f8:56:0f:72:1b:35:b4:3f:15:f6: f9:ff:fa:4c:21:8e:28:7d:86:62:50:6c:6d:9e:e2:78:bf:29: 9a:4d:61:40:64:2c:a0:d0:7f:50:94:39:5e:3f:4a:e7:42:a6: ca:29:f3:dd:f3:c9:84:41:6e:83:5c:4a:44:f5:07:7f:e8:9c: 86:77:fc:7b:ec:15:81:d4:f8:be:f7:82:ef:71:11:a5:2c:d4: 01:b5:39:e3:e4:3f:1e:63:ad:34:47:6d:5b:e9:40:ac:e5:70: 07:0e:6a:25:46:54:be:88:f6:92:a2:65:b7:26:da:a2:0d:87: 6b:db:1a:e5:71:6b:46:a4:53:35:a6:b2:5b:0b:39:12:b4:ca: 76:f8:90:38:d0:a0:b3:5c:75:d1:63:1a:3c:ed:a9:17:41:24: 05:dc:ac:66:5f:e2:78:ba:8f:35:63:a4:e6:2e:e3:9f:0d:b2: 81:5d:14:63:1f:7b:44:1b:7b:43:02:6b:14:d9:ae:83:d4:c2: 93:ab:df:26:0b:f7:ab:42:b7:5c:48:a5:bb:65:0e:d4:4f:68: e1:95:d9:e9 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt261glHTGAFeEVGk3Grmd1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YTM5ZTQ3OTRjMzQ2MTJlN2YyMjU2OWIxYTZhODE3MTAy NjBhZTUwHhcNMjYwMTAxMDAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YmI4MThlZWQ4MDQ2NDQ4Njc5ODJhYmUxZTQwMWM0MzVmYmMxZGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvStU1Bld36Ae69BhUyof7gsBQeZ6 9D1DXSCQlSZlaHd56qsWdxb98IAyOV05RZcDaoP/CCGrMYnDUW7yTJSLkLIazGD4 ohZQqwCEuV5ANLQZYHTWFZ/dt/MKmTbcrk00f2tlBQCMHfp0XlC3kZnZ0UyHdgZf QO0DNnnkHVuC97NQrRRzk4cky6qnPBxveirGu4hoQ6MfHBjc2sXLbWBwvcpW5J71 hhXbZoRqE+V66sRtq63I5G1/NhN4SEZW/HeHgQ5AXX/HgnOFRO448e20LpFBz0ti k4bjgKYqx1PCNCotUYdmbNewdHPMzcGd2Yq7jKRckuL+sxNjLciQaxsVrQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJu4GO7YBGRIZ5gqvh5AHENfvB2xMB8GA1UdIwQY MBaAFCejnkeUw0YS5/IlabGmqBcQJgrlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMt Zjc0ZDk1MTg1NzZjLzEvbTdnWTd0Z0VaRWhubUNxLUhrQWNRMS04SGJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMtZjc0ZDk1MTg1NzZj LzEvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAArzvAwQF Ar1gMA0GCSqGSIb3DQEBCwUAA4IBAQBVHyYI2SGgIzB2oUw1ewkGoKnf1BauP7cM xvj3UcBhhRnXC+Bgib7SlIrIEPhWD3IbNbQ/Ffb5//pMIY4ofYZiUGxtnuJ4vyma TWFAZCyg0H9QlDleP0rnQqbKKfPd88mEQW6DXEpE9Qd/6JyGd/x77BWB1Pi+94Lv cRGlLNQBtTnj5D8eY600R21b6UCs5XAHDmolRlS+iPaSomW3JtqiDYdr2xrlcWtG pFM1prJbCzkStMp2+JA40KCzXHXRYxo87akXQSQF3KxmX+J4uo81Y6TmLuOfDbKB XRRjH3tEG3tDAmsU2a6D1MKTq98mC/erQrdcSKW7ZQ7UT2jhldnp -----END CERTIFICATE-----Generated at Sun Jan 25 20:30:30 2026 by rpki-client