This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/7ufFK9wMYQIlfPF5mBmnlqE81ZE.roa File: 7ufFK9wMYQIlfPF5mBmnlqE81ZE.roa (raw, json) Hash identifier: byv9bKYSFyW281U6XJiGXV1al8HvRRvhSL2jHGqxWtU= Subject key identifier: EE:E7:C5:2B:DC:0C:61:02:25:7C:F1:79:98:19:A7:96:A1:3C:D5:91 Certificate issuer: /CN=b443914a48e5dae5a756b1e3b8fbe437ee0d8b0c Certificate serial: 019B77C69F3F5400F1EEE0D7E51921543554 Authority key identifier: B4:43:91:4A:48:E5:DA:E5:A7:56:B1:E3:B8:FB:E4:37:EE:0D:8B:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEORSkjl2uWnVrHjuPvkN-4Niww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/7ufFK9wMYQIlfPF5mBmnlqE81ZE.roa Signing time: Thu 01 Jan 2026 04:17:43 +0000 ROA not before: Thu 01 Jan 2026 04:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199670 IP address blocks: 194.0.6.0/24 maxlen: 24 194.0.37.0/24 maxlen: 24 194.0.43.0/24 maxlen: 24 194.0.44.0/24 maxlen: 24 2001:678:9::/48 maxlen: 48 2001:678:64::/48 maxlen: 48 2001:678:68::/48 maxlen: 48 2001:678:6c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/tEORSkjl2uWnVrHjuPvkN-4Niww.crl rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/tEORSkjl2uWnVrHjuPvkN-4Niww.mft rsync://rpki.ripe.net/repository/DEFAULT/tEORSkjl2uWnVrHjuPvkN-4Niww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:9f:3f:54:00:f1:ee:e0:d7:e5:19:21:54:35:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b443914a48e5dae5a756b1e3b8fbe437ee0d8b0c Validity Not Before: Jan 1 04:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eee7c52bdc0c6102257cf1799819a796a13cd591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3d:bd:96:61:c2:01:74:32:cb:86:98:5a:83: de:9a:8f:5c:f8:fe:4c:84:af:2e:f6:ca:08:b2:21: 59:e4:bc:d9:5c:00:56:16:80:89:ac:37:6e:22:a0: 0f:4f:f0:33:d2:2f:a5:34:ed:8c:5f:4a:a6:6b:85: 63:83:80:f1:ac:51:c4:29:42:a1:3d:6e:5b:1c:6e: d5:8c:3b:f8:2b:28:d9:3b:f7:ab:44:cf:bc:96:ef: 6a:8a:84:b2:ec:c0:1c:1b:47:fd:a2:fd:2d:32:27: ad:44:86:9f:f7:8c:73:da:fd:7b:66:21:a0:3d:65: 06:ec:c6:1c:16:3c:f6:c6:96:0a:5a:24:e5:9a:1c: 9f:0d:14:91:3a:90:9a:59:32:41:8f:ea:ef:31:71: b4:e2:81:60:81:d3:6c:1e:2a:87:f9:3f:3d:0a:b3: 24:b4:ba:95:4c:14:8f:65:bb:6d:d4:71:07:e9:be: 8f:80:9b:84:53:da:9a:fc:df:71:08:4d:41:62:35: f9:49:1a:76:fb:17:91:fe:d5:50:b4:ab:f6:7c:68: 5f:88:9f:de:50:d8:37:bb:f5:79:80:af:08:4f:70: bc:c1:aa:80:74:66:de:10:79:f4:ef:47:86:6f:f9: 59:85:f1:68:17:f0:a0:fb:33:4f:87:3b:65:fe:ef: 95:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E7:C5:2B:DC:0C:61:02:25:7C:F1:79:98:19:A7:96:A1:3C:D5:91 X509v3 Authority Key Identifier: keyid:B4:43:91:4A:48:E5:DA:E5:A7:56:B1:E3:B8:FB:E4:37:EE:0D:8B:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEORSkjl2uWnVrHjuPvkN-4Niww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/7ufFK9wMYQIlfPF5mBmnlqE81ZE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/tEORSkjl2uWnVrHjuPvkN-4Niww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.6.0/24 194.0.37.0/24 194.0.43.0-194.0.44.255 IPv6: 2001:678:9::/48 2001:678:64::/48 2001:678:68::/48 2001:678:6c::/48 Signature Algorithm: sha256WithRSAEncryption 76:8e:55:71:39:ce:1c:72:6b:9a:24:e1:e8:2e:2e:ac:27:6d: 7a:f5:ed:10:46:29:86:ff:88:05:de:16:97:d5:32:a7:51:39: 34:ee:47:34:ec:61:86:fc:49:5f:d1:1f:b7:97:40:3c:2e:c6: a5:73:c8:99:64:f9:15:e6:33:70:07:b2:0f:6c:76:92:2f:e6: 8e:3d:8b:d1:c0:c8:1c:b4:ce:9b:5f:09:8e:74:1e:b3:2a:fd: de:c8:e9:f0:28:94:88:ff:22:1e:ba:96:0b:5d:c4:fd:c2:54: f3:6b:25:75:23:f1:fb:f7:e6:d9:c5:19:aa:b6:f3:b4:4a:7d: ec:32:ab:4b:83:26:5d:86:da:de:ef:70:60:5f:73:f1:70:2c: a8:f9:c8:aa:95:1e:29:89:3a:e1:28:35:59:e3:42:52:9c:75: 32:d7:82:0d:d2:0d:15:82:26:d5:28:13:d9:80:03:ec:bb:28: a1:c8:16:cc:ef:3b:7a:57:b4:4c:6b:e2:c8:60:80:7c:29:bf: f3:4f:0e:e7:2d:fe:02:a2:77:5c:bf:0f:49:69:ef:e8:b2:c3: eb:82:0f:be:8c:ac:86:29:13:fc:c7:a1:bf:99:f9:1d:7a:5a: 7f:a0:65:43:d3:34:17:4a:05:83:bd:33:b8:15:e3:5c:ef:aa: 8d:3e:35:97 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgISAZt3xp8/VADx7uDX5RkhVDVUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NDM5MTRhNDhlNWRhZTVhNzU2YjFlM2I4ZmJlNDM3ZWUw ZDhiMGMwHhcNMjYwMTAxMDQxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZWU3YzUyYmRjMGM2MTAyMjU3Y2YxNzk5ODE5YTc5NmExM2NkNTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoT29lmHCAXQyy4aYWoPemo9c+P5M hK8u9soIsiFZ5LzZXABWFoCJrDduIqAPT/Az0i+lNO2MX0qma4Vjg4DxrFHEKUKh PW5bHG7VjDv4KyjZO/erRM+8lu9qioSy7MAcG0f9ov0tMietRIaf94xz2v17ZiGg PWUG7MYcFjz2xpYKWiTlmhyfDRSROpCaWTJBj+rvMXG04oFggdNsHiqH+T89CrMk tLqVTBSPZbtt1HEH6b6PgJuEU9qa/N9xCE1BYjX5SRp2+xeR/tVQtKv2fGhfiJ/e UNg3u/V5gK8IT3C8waqAdGbeEHn070eGb/lZhfFoF/Cg+zNPhztl/u+VrwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFO7nxSvcDGECJXzxeZgZp5ahPNWRMB8GA1UdIwQY MBaAFLRDkUpI5drlp1ax47j75DfuDYsMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEVPUlNramwydVduVnJIanVQdmtOLTROaXd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC82OTIwZDItYTdhNi00MWE1LTk2ZTAt MzE0ZWY3NDZkOGE2LzEvN3VmRks5d01ZUUlsZlBGNW1CbW5scUU4MVpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC82OTIwZDItYTdhNi00MWE1LTk2ZTAtMzE0ZWY3NDZkOGE2 LzEvdEVPUlNramwydVduVnJIanVQdmtOLTROaXd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF8GCCsGAQUFBwEHAQH/BFAwTjAgBAIAATAaAwQAwgAGAwQA wgAlMAwDBADCACsDBADCACwwKgQCAAIwJAMHACABBngACQMHACABBngAZAMHACAB BngAaAMHACABBngAbDANBgkqhkiG9w0BAQsFAAOCAQEAdo5VcTnOHHJrmiTh6C4u rCdtevXtEEYphv+IBd4Wl9Uyp1E5NO5HNOxhhvxJX9Eft5dAPC7GpXPImWT5FeYz cAeyD2x2ki/mjj2L0cDIHLTOm18JjnQesyr93sjp8CiUiP8iHrqWC13E/cJU82sl dSPx+/fm2cUZqrbztEp97DKrS4MmXYba3u9wYF9z8XAsqPnIqpUeKYk64Sg1WeNC Upx1MteCDdINFYIm1SgT2YAD7LsoocgWzO87ele0TGviyGCAfCm/808O5y3+AqJ3 XL8PSWnv6LLD64IPvoyshikT/Mehv5n5HXpaf6BlQ9M0F0oFg70zuBXjXO+qjT41 lw== -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:32 2026 by rpki-client