This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/7jYS9gDVEX9tzUHFmvI04TaA1ho.roa File: 7jYS9gDVEX9tzUHFmvI04TaA1ho.roa (raw, json) Hash identifier: C2ax0Rr6kCcrNWLHMlCQV2VOflPoN/onpTnbRqEbck4= Subject key identifier: EE:36:12:F6:00:D5:11:7F:6D:CD:41:C5:9A:F2:34:E1:36:80:D6:1A Certificate issuer: /CN=454f9d2dbed974538405a79f6ec7e86c4aedd3d1 Certificate serial: 019B7DCABAE3BA0A683D27020A0BA894BC0E Authority key identifier: 45:4F:9D:2D:BE:D9:74:53:84:05:A7:9F:6E:C7:E8:6C:4A:ED:D3:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/7jYS9gDVEX9tzUHFmvI04TaA1ho.roa Signing time: Fri 02 Jan 2026 08:19:56 +0000 ROA not before: Fri 02 Jan 2026 08:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62240 IP address blocks: 185.68.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/RU-dLb7ZdFOEBaefbsfobErt09E.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/RU-dLb7ZdFOEBaefbsfobErt09E.mft rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:ba:e3:ba:0a:68:3d:27:02:0a:0b:a8:94:bc:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=454f9d2dbed974538405a79f6ec7e86c4aedd3d1 Validity Not Before: Jan 2 08:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee3612f600d5117f6dcd41c59af234e13680d61a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a9:3a:2c:0b:38:98:b3:11:03:50:37:54:04: d3:5e:7e:0a:69:a8:91:46:b0:f6:e7:5f:63:bb:8f: f0:e7:94:7d:1d:83:cc:3b:4f:28:a5:e2:ee:fc:b2: 28:f8:16:fb:10:56:ee:56:38:ad:7b:6e:fe:00:0f: 36:03:1c:90:43:42:92:e2:f2:df:85:28:89:3d:ed: cf:b1:93:1d:6e:c5:83:5c:20:55:ed:64:c8:9a:4f: 12:29:2e:e2:36:3d:f0:93:f3:a8:4c:3e:0f:92:d2: c5:2e:7d:72:80:a6:fa:71:08:6f:c1:57:59:36:f8: 9e:28:e5:ee:41:f2:f7:81:2a:80:d1:47:cf:5b:a5: 8e:47:90:ee:35:e7:01:41:a6:7c:9e:1e:42:cc:d6: 7a:30:6d:04:4e:c9:f8:77:2a:f8:41:3b:ae:cc:a0: 71:08:58:c7:e6:1f:3d:a3:09:2e:4c:e3:36:7c:5f: 2b:e0:48:01:57:05:76:df:6a:c9:41:11:d7:33:6c: 7e:50:19:d5:19:7b:72:3a:03:c7:6a:62:73:1f:0f: e6:d1:e1:18:2d:83:b2:e7:48:ee:96:a3:a2:59:dd: 5d:01:c6:97:3a:b7:5a:4c:2e:35:a0:9e:6e:af:bd: b0:72:e0:3f:30:47:37:40:22:6e:a1:b3:9e:15:57: 2c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:36:12:F6:00:D5:11:7F:6D:CD:41:C5:9A:F2:34:E1:36:80:D6:1A X509v3 Authority Key Identifier: keyid:45:4F:9D:2D:BE:D9:74:53:84:05:A7:9F:6E:C7:E8:6C:4A:ED:D3:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RU-dLb7ZdFOEBaefbsfobErt09E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/7jYS9gDVEX9tzUHFmvI04TaA1ho.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3bb1a5-941e-4a61-943e-faae4baebeff/1/RU-dLb7ZdFOEBaefbsfobErt09E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.68.80.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:ee:5a:0e:a6:f9:5c:99:71:3a:e6:f8:2a:e4:5b:82:9b:d3: 78:fb:7e:de:4b:e6:f7:e6:7f:72:bb:cf:b7:c7:2e:1c:9a:9e: 72:77:6e:61:b6:ba:4e:cc:bf:b8:66:a4:d0:43:d2:b9:a6:d9: 4c:09:47:6f:59:a4:52:bb:db:c0:93:9e:cb:5d:d4:7d:cf:e0: f1:07:b8:bb:9e:d2:0a:e0:81:58:09:bd:80:c2:68:3a:4d:bb: b3:8c:6f:97:d6:5e:08:ef:d3:02:54:60:e2:1e:0d:10:65:39: 71:08:54:01:ec:9b:8f:6d:6d:34:da:bf:26:5d:80:fa:51:45: 62:ad:be:68:c5:a3:53:93:1f:0e:1e:be:23:71:99:af:1a:8c: e9:9e:93:b7:95:17:16:bb:dd:14:e4:73:63:5a:1b:f7:16:43: ac:a2:cf:59:f5:ba:61:fa:d4:45:ee:e8:95:80:ef:49:68:13: 91:a3:6b:26:c4:32:e5:3a:75:24:bc:cf:8f:e6:f6:1a:ec:5a: c1:e5:30:44:f2:b8:c7:43:f2:71:3d:f9:5c:d7:e9:c0:02:b8: e9:db:32:6b:96:67:ac:76:dc:cb:3c:c9:b0:b7:20:38:46:8e: 91:39:29:68:82:07:fd:78:19:0d:24:15:cb:5a:60:23:80:9b: ec:bf:7e:82 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yrrjugpoPScCCguolLwOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1NGY5ZDJkYmVkOTc0NTM4NDA1YTc5ZjZlYzdlODZjNGFl ZGQzZDEwHhcNMjYwMTAyMDgxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTM2MTJmNjAwZDUxMTdmNmRjZDQxYzU5YWYyMzRlMTM2ODBkNjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKk6LAs4mLMRA1A3VATTXn4KaaiR RrD2519ju4/w55R9HYPMO08opeLu/LIo+Bb7EFbuVjite27+AA82AxyQQ0KS4vLf hSiJPe3PsZMdbsWDXCBV7WTImk8SKS7iNj3wk/OoTD4PktLFLn1ygKb6cQhvwVdZ NvieKOXuQfL3gSqA0UfPW6WOR5DuNecBQaZ8nh5CzNZ6MG0ETsn4dyr4QTuuzKBx CFjH5h89owkuTOM2fF8r4EgBVwV232rJQRHXM2x+UBnVGXtyOgPHamJzHw/m0eEY LYOy50julqOiWd1dAcaXOrdaTC41oJ5ur72wcuA/MEc3QCJuobOeFVcsWQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFO42EvYA1RF/bc1BxZryNOE2gNYaMB8GA1UdIwQY MBaAFEVPnS2+2XRThAWnn27H6GxK7dPRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlUtZExiN1pkRk9FQmFlZmJzZm9iRXJ0MDlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8zYmIxYTUtOTQxZS00YTYxLTk0M2Ut ZmFhZTRiYWViZWZmLzEvN2pZUzlnRFZFWDl0elVIRm12STA0VGFBMWhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8zYmIxYTUtOTQxZS00YTYxLTk0M2UtZmFhZTRiYWViZWZm LzEvUlUtZExiN1pkRk9FQmFlZmJzZm9iRXJ0MDlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuURQMA0G CSqGSIb3DQEBCwUAA4IBAQCd7loOpvlcmXE65vgq5FuCm9N4+37eS+b35n9yu8+3 xy4cmp5yd25htrpOzL+4ZqTQQ9K5ptlMCUdvWaRSu9vAk57LXdR9z+DxB7i7ntIK 4IFYCb2Awmg6TbuzjG+X1l4I79MCVGDiHg0QZTlxCFQB7JuPbW002r8mXYD6UUVi rb5oxaNTkx8OHr4jcZmvGozpnpO3lRcWu90U5HNjWhv3FkOsos9Z9bph+tRF7uiV gO9JaBORo2smxDLlOnUkvM+P5vYa7FrB5TBE8rjHQ/JxPflc1+nAArjp2zJrlmes dtzLPMmwtyA4Ro6ROSloggf9eBkNJBXLWmAjgJvsv36C -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:07 2026 by rpki-client