This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/Le7cGt8gFm-3H1_D11mNwj1gXMA.roa File: Le7cGt8gFm-3H1_D11mNwj1gXMA.roa (raw, json) Hash identifier: NtLDjbklMV+RuIaTJkQFxSif/6pLvKFSJw+ywJEjef0= Subject key identifier: 2D:EE:DC:1A:DF:20:16:6F:B7:1F:5F:C3:D7:59:8D:C2:3D:60:5C:C0 Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Certificate serial: 019B79ECF7C9B29745CE0E91BB80B2087DED Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/Le7cGt8gFm-3H1_D11mNwj1gXMA.roa Signing time: Thu 01 Jan 2026 14:18:51 +0000 ROA not before: Thu 01 Jan 2026 14:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212563 IP address blocks: 91.132.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.mft rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f7:c9:b2:97:45:ce:0e:91:bb:80:b2:08:7d:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Validity Not Before: Jan 1 14:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2deedc1adf20166fb71f5fc3d7598dc23d605cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c4:07:8f:e6:aa:f3:b6:11:4f:a9:c4:8a:bd: 7e:ef:b3:00:9e:4a:68:f7:e8:c2:50:e7:44:72:bd: 52:96:af:e6:5b:18:f1:cf:f8:1c:10:34:85:ee:5d: bb:12:02:71:c8:b5:c7:63:9b:8a:16:2e:09:71:29: 98:62:12:bd:75:d3:78:a4:3e:e9:d9:d0:62:df:f2: c9:5a:32:da:63:b8:50:ab:14:11:52:a1:c4:29:d7: 34:c6:8a:5e:b5:77:20:5c:10:e1:10:e9:ab:c5:23: 26:34:d1:72:1d:ca:5a:90:b3:fb:21:72:45:cb:ad: 22:d2:5b:d5:0f:3d:78:e9:a8:a3:24:2a:b9:98:d9: d9:86:79:8f:54:6b:55:9c:55:4f:fa:e0:58:b1:fb: a0:aa:e3:ad:b3:69:f9:92:06:c2:ab:5e:19:26:7d: 05:b0:57:88:9f:dc:a2:99:68:98:19:96:70:26:54: e4:b4:96:3d:0a:d4:a1:fa:fd:d7:11:78:e9:90:70: 8e:dc:c8:3d:7a:89:73:08:c7:3f:3b:fd:33:88:cf: 27:0e:15:ba:aa:7e:c9:fb:41:f5:e6:0e:f0:99:33: a1:c3:62:31:4b:ad:f2:a3:fb:cb:60:3a:e4:fb:24: b7:93:6c:71:dc:d2:af:3f:8d:a7:97:63:d2:cf:2d: 2e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EE:DC:1A:DF:20:16:6F:B7:1F:5F:C3:D7:59:8D:C2:3D:60:5C:C0 X509v3 Authority Key Identifier: keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/Le7cGt8gFm-3H1_D11mNwj1gXMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.132.73.0/24 Signature Algorithm: sha256WithRSAEncryption 65:81:36:be:57:5b:d8:70:cf:1a:be:c0:37:43:bb:37:cd:15: b9:d9:95:1b:0d:42:f6:1d:91:59:15:38:ab:cf:f4:6d:98:ae: 08:39:53:36:4f:3b:11:31:af:6b:8b:56:67:2c:da:15:10:32: 4f:c0:66:c6:81:40:bc:91:5c:04:52:f6:ed:62:f9:57:6f:30: 7e:e5:a8:da:35:40:2e:a2:ce:ca:72:2c:59:ba:c4:64:18:39: 9f:09:1c:20:cc:24:af:53:be:52:be:be:80:1c:48:9d:bf:af: a8:46:43:12:81:b1:3c:79:cf:87:6f:3e:fb:9d:56:5c:3d:ae: e7:7c:45:61:fb:18:6f:41:b3:27:cc:e6:d5:ce:1b:ac:53:4a: bf:3c:fc:0c:dd:2b:3f:40:23:7b:2f:0a:4d:89:14:a7:18:9e: 3d:0e:72:aa:9b:79:dd:11:1c:7f:6b:69:8f:fa:53:28:33:af: 1c:79:b1:5e:4e:e7:b2:92:21:b9:5f:5c:8b:df:f7:20:f2:56: 16:1a:24:b2:8e:ed:97:f3:5c:bf:85:bb:98:5c:71:f6:b2:df: a1:4b:36:b4:bc:5a:45:01:66:f5:a0:72:6d:62:4c:d1:c6:9e: f8:1f:9d:bc:6a:bf:7b:e4:ca:1f:85:2c:9d:a1:7d:ee:3e:d4: 37:20:04:33 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57PfJspdFzg6Ru4CyCH3tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2IwNmJmNDEzMDBkYzRkMzBmM2QwZTE4MGM5Yjk1ZDJi Y2RkZmYwHhcNMjYwMTAxMTQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZGVlZGMxYWRmMjAxNjZmYjcxZjVmYzNkNzU5OGRjMjNkNjA1Y2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6sQHj+aq87YRT6nEir1+77MAnkpo 9+jCUOdEcr1Slq/mWxjxz/gcEDSF7l27EgJxyLXHY5uKFi4JcSmYYhK9ddN4pD7p 2dBi3/LJWjLaY7hQqxQRUqHEKdc0xopetXcgXBDhEOmrxSMmNNFyHcpakLP7IXJF y60i0lvVDz146aijJCq5mNnZhnmPVGtVnFVP+uBYsfugquOts2n5kgbCq14ZJn0F sFeIn9yimWiYGZZwJlTktJY9CtSh+v3XEXjpkHCO3Mg9eolzCMc/O/0ziM8nDhW6 qn7J+0H15g7wmTOhw2IxS63yo/vLYDrk+yS3k2xx3NKvP42nl2PSzy0uqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC3u3BrfIBZvtx9fw9dZjcI9YFzAMB8GA1UdIwQY MBaAFBx7Br9BMA3E0w89DhgMm5XSvN3/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAt MjRmZGRjNmQxNDdiLzEvTGU3Y0d0OGdGbS0zSDFfRDExbU53ajFnWE1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAtMjRmZGRjNmQxNDdi LzEvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW4RJMA0G CSqGSIb3DQEBCwUAA4IBAQBlgTa+V1vYcM8avsA3Q7s3zRW52ZUbDUL2HZFZFTir z/RtmK4IOVM2TzsRMa9ri1ZnLNoVEDJPwGbGgUC8kVwEUvbtYvlXbzB+5ajaNUAu os7KcixZusRkGDmfCRwgzCSvU75Svr6AHEidv6+oRkMSgbE8ec+Hbz77nVZcPa7n fEVh+xhvQbMnzObVzhusU0q/PPwM3Ss/QCN7LwpNiRSnGJ49DnKqm3ndERx/a2mP +lMoM68cebFeTueykiG5X1yL3/cg8lYWGiSyju2X81y/hbuYXHH2st+hSza0vFpF AWb1oHJtYkzRxp74H528ar975MofhSydoX3uPtQ3IAQz -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:02 2026 by rpki-client