This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/_7jylL9q9B68bc5gOBCT4NAKAwE.roa File: _7jylL9q9B68bc5gOBCT4NAKAwE.roa (raw, json) Hash identifier: udwwApN1RRRAB/0kSZzWjgDibuhxWbwtgPuXqFkvmuE= Subject key identifier: FF:B8:F2:94:BF:6A:F4:1E:BC:6D:CE:60:38:10:93:E0:D0:0A:03:01 Certificate issuer: /CN=0d9302d546e068c2fd7677d9d5200add36c8bcd5 Certificate serial: 019B7F15A86C14D9EE9BA48AE506B6D49CAF Authority key identifier: 0D:93:02:D5:46:E0:68:C2:FD:76:77:D9:D5:20:0A:DD:36:C8:BC:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZMC1UbgaML9dnfZ1SAK3TbIvNU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/_7jylL9q9B68bc5gOBCT4NAKAwE.roa Signing time: Fri 02 Jan 2026 14:21:24 +0000 ROA not before: Fri 02 Jan 2026 14:21:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200739 IP address blocks: 185.97.227.0/24 maxlen: 24 2a06:8c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/DZMC1UbgaML9dnfZ1SAK3TbIvNU.crl rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/DZMC1UbgaML9dnfZ1SAK3TbIvNU.mft rsync://rpki.ripe.net/repository/DEFAULT/DZMC1UbgaML9dnfZ1SAK3TbIvNU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:a8:6c:14:d9:ee:9b:a4:8a:e5:06:b6:d4:9c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d9302d546e068c2fd7677d9d5200add36c8bcd5 Validity Not Before: Jan 2 14:21:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ffb8f294bf6af41ebc6dce60381093e0d00a0301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:66:4e:a3:be:c2:16:f4:2e:31:51:42:0b: c5:8d:b5:f2:14:d2:6e:40:29:4d:d8:50:d7:b2:8d: 7a:2a:47:b9:cf:6c:d4:b7:1c:92:89:ce:d2:13:b7: 1e:99:38:9b:ca:cb:df:08:88:0e:21:62:9c:9f:0b: be:d6:6a:9a:51:c2:fa:dd:29:cd:2e:6e:e6:5c:72: 73:34:be:92:96:b4:6a:8b:d5:9e:1f:cb:cb:99:97: a9:34:a3:15:52:f4:bc:70:c9:10:d7:14:12:90:b2: 10:63:cb:eb:8e:84:c4:e8:66:dd:7d:44:a8:af:2e: fc:69:f3:c8:ed:3c:77:f1:df:e1:f9:51:69:ec:64: 96:3d:e1:00:0d:dc:f8:b6:b6:bb:0a:47:ff:63:8d: b1:be:1c:42:82:04:46:b8:6f:16:4e:39:0d:b2:c2: 2e:de:3a:bd:75:01:27:dd:ae:63:32:69:84:18:9e: 08:ef:25:30:90:19:e9:c7:10:2e:a3:a5:95:b7:42: 65:98:37:41:89:a9:c0:0e:c1:f1:be:fd:cb:45:96: bb:75:37:82:67:c2:45:6d:63:27:15:40:2e:61:e7: 47:c4:0f:db:4f:e2:6d:98:39:e2:55:23:e9:08:45: 9b:c3:1b:c5:32:fb:ec:75:c6:8b:25:22:95:85:b9: 32:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B8:F2:94:BF:6A:F4:1E:BC:6D:CE:60:38:10:93:E0:D0:0A:03:01 X509v3 Authority Key Identifier: keyid:0D:93:02:D5:46:E0:68:C2:FD:76:77:D9:D5:20:0A:DD:36:C8:BC:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZMC1UbgaML9dnfZ1SAK3TbIvNU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/_7jylL9q9B68bc5gOBCT4NAKAwE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/010161-b840-4497-afbe-4bef43d3fb17/1/DZMC1UbgaML9dnfZ1SAK3TbIvNU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.97.227.0/24 IPv6: 2a06:8c0::/29 Signature Algorithm: sha256WithRSAEncryption 1b:5e:61:ee:e0:51:3c:be:89:d0:8a:03:71:bd:05:2b:95:ac: 08:30:80:d0:d2:51:ec:3d:74:14:bd:74:4f:c0:7f:da:08:a9: de:9e:27:62:42:5c:44:05:96:b5:91:1d:41:95:ad:a4:f6:b3: 50:e0:5c:60:6d:e6:f2:58:88:a1:91:50:0b:0d:ed:d5:a6:c1: 66:0e:1f:06:9e:1a:d0:c4:17:ba:86:45:27:e3:fa:5c:39:63: 4b:f2:1c:2a:dd:1b:07:97:ba:ef:4a:48:f9:66:93:a2:ec:29: 69:46:59:56:e9:67:a7:0f:ea:74:50:60:31:d8:a6:15:e2:1f: 14:3c:e6:6a:42:2f:b6:d7:34:12:43:ad:cb:93:87:b9:2c:42: c6:9c:37:83:45:6f:0a:1f:41:ef:5f:f3:fe:da:26:ad:1f:6e: 2a:10:1b:c1:2e:9a:4a:83:70:c6:7f:53:50:b3:df:96:50:21: de:69:54:be:cd:b0:57:f7:3f:85:bf:b7:c6:7d:44:b8:eb:12: 38:1c:b0:91:cb:d1:77:76:34:44:1f:8a:1f:d4:99:78:21:e9: 89:b3:da:a4:aa:da:4e:14:a8:90:ff:17:69:60:92:d5:dd:9e: 79:d5:23:a2:62:33:28:b0:6f:20:84:2f:b7:7f:78:54:b0:12: 77:82:e0:6d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FahsFNnum6SK5Qa21JyvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkOTMwMmQ1NDZlMDY4YzJmZDc2NzdkOWQ1MjAwYWRkMzZj OGJjZDUwHhcNMjYwMTAyMTQyMTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZmI4ZjI5NGJmNmFmNDFlYmM2ZGNlNjAzODEwOTNlMGQwMGEwMzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq29mTqO+whb0LjFRQgvFjbXyFNJu QClN2FDXso16Kke5z2zUtxySic7SE7cemTibysvfCIgOIWKcnwu+1mqaUcL63SnN Lm7mXHJzNL6SlrRqi9WeH8vLmZepNKMVUvS8cMkQ1xQSkLIQY8vrjoTE6GbdfUSo ry78afPI7Tx38d/h+VFp7GSWPeEADdz4tra7Ckf/Y42xvhxCggRGuG8WTjkNssIu 3jq9dQEn3a5jMmmEGJ4I7yUwkBnpxxAuo6WVt0JlmDdBianADsHxvv3LRZa7dTeC Z8JFbWMnFUAuYedHxA/bT+JtmDniVSPpCEWbwxvFMvvsdcaLJSKVhbkyawIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFP+48pS/avQevG3OYDgQk+DQCgMBMB8GA1UdIwQY MBaAFA2TAtVG4GjC/XZ32dUgCt02yLzVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFpNQzFVYmdhTUw5ZG5mWjFTQUszVGJJdk5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8wMTAxNjEtYjg0MC00NDk3LWFmYmUt NGJlZjQzZDNmYjE3LzEvXzdqeWxMOXE5QjY4YmM1Z09CQ1Q0TkFLQXdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8wMTAxNjEtYjg0MC00NDk3LWFmYmUtNGJlZjQzZDNmYjE3 LzEvRFpNQzFVYmdhTUw5ZG5mWjFTQUszVGJJdk5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuWHjMA0E AgACMAcDBQMqBgjAMA0GCSqGSIb3DQEBCwUAA4IBAQAbXmHu4FE8vonQigNxvQUr lawIMIDQ0lHsPXQUvXRPwH/aCKnenidiQlxEBZa1kR1Bla2k9rNQ4FxgbebyWIih kVALDe3VpsFmDh8GnhrQxBe6hkUn4/pcOWNL8hwq3RsHl7rvSkj5ZpOi7ClpRllW 6WenD+p0UGAx2KYV4h8UPOZqQi+21zQSQ63Lk4e5LELGnDeDRW8KH0HvX/P+2iat H24qEBvBLppKg3DGf1NQs9+WUCHeaVS+zbBX9z+Fv7fGfUS46xI4HLCRy9F3djRE H4of1Jl4IemJs9qkqtpOFKiQ/xdpYJLV3Z551SOiYjMosG8ghC+3f3hUsBJ3guBt -----END CERTIFICATE-----Generated at Sun Jan 25 10:26:46 2026 by rpki-client