This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/w7i2bwt8IuX7uhkgM7L9p2j_aB8.roa File: w7i2bwt8IuX7uhkgM7L9p2j_aB8.roa (raw, json) Hash identifier: YPB9yo2HV0ef3PXW3ThNALc491eUz66QPQXwpw48Na0= Subject key identifier: C3:B8:B6:6F:0B:7C:22:E5:FB:BA:19:20:33:B2:FD:A7:68:FF:68:1F Certificate issuer: /CN=10543a5197eb2544447e9d36b3ebf14452c777eb Certificate serial: 019B797EE7C72C40CC8099E14AEE90ADFB43 Authority key identifier: 10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/w7i2bwt8IuX7uhkgM7L9p2j_aB8.roa Signing time: Thu 01 Jan 2026 12:18:38 +0000 ROA not before: Thu 01 Jan 2026 12:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24622 IP address blocks: 193.120.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/EFQ6UZfrJUREfp02s-vxRFLHd-s.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/EFQ6UZfrJUREfp02s-vxRFLHd-s.mft rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e7:c7:2c:40:cc:80:99:e1:4a:ee:90:ad:fb:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10543a5197eb2544447e9d36b3ebf14452c777eb Validity Not Before: Jan 1 12:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c3b8b66f0b7c22e5fbba192033b2fda768ff681f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:03:9e:7b:4a:7b:fe:ea:c1:2d:81:5a:c9:4f: de:7a:f8:c2:85:69:08:6d:f9:46:80:6f:73:73:fe: cd:8b:5d:ae:fb:46:88:f0:b5:2d:4c:fa:eb:f5:70: 9a:c0:af:8b:7c:5c:2c:f6:3c:31:4c:8a:16:6f:c1: 41:27:3f:e9:0a:f7:b5:1c:b8:b1:44:69:e0:91:1c: d3:73:a5:d1:e8:19:72:a2:37:89:c1:cd:ab:af:c5: cb:4f:43:a9:4c:fe:02:fb:43:ed:e6:de:44:e8:e1: ab:ea:fc:95:5e:69:34:ea:ca:a8:bc:34:7e:5a:ee: 97:16:f2:6a:8d:51:ad:3a:49:f7:cb:8a:ee:78:61: 1a:fd:6f:bb:24:aa:4a:bf:05:78:43:d2:2b:ba:e5: bf:e6:d6:3d:89:5a:ad:56:ec:36:96:d3:46:f1:66: f1:12:66:7f:64:6b:bc:18:c9:64:82:96:d5:d3:cf: 49:05:07:70:71:c4:68:72:39:5a:e3:03:41:0d:03: 8b:d1:a9:27:4f:2e:f6:1d:be:11:23:d3:03:9b:55: 46:18:27:43:29:0d:dd:fd:4e:4d:ef:e0:36:a0:7f: ba:ff:bf:7d:08:51:05:d3:37:97:bb:e1:9f:14:25: eb:5c:cc:3a:fe:78:7c:ca:b0:45:87:90:9b:d8:01: 9a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B8:B6:6F:0B:7C:22:E5:FB:BA:19:20:33:B2:FD:A7:68:FF:68:1F X509v3 Authority Key Identifier: keyid:10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/w7i2bwt8IuX7uhkgM7L9p2j_aB8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/EFQ6UZfrJUREfp02s-vxRFLHd-s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.120.161.0/24 Signature Algorithm: sha256WithRSAEncryption 53:b0:3c:9f:d4:b5:b3:aa:d6:38:9f:d6:e6:87:83:42:f0:0a: 6f:57:96:0a:e5:71:30:ac:c7:7a:8d:df:43:33:f1:5c:c2:d9: dc:d5:dd:a3:e6:ab:4d:4b:83:58:f4:32:2a:05:f0:4a:03:aa: b8:cc:d4:04:35:ff:0f:eb:21:ba:40:46:16:f9:ee:df:67:82: 4f:1a:65:98:d3:8d:95:13:a7:6a:1d:4d:82:5d:c6:d1:fd:a3: 63:77:a9:5e:0d:d9:d4:34:b6:9f:d5:1e:6c:b1:1f:1b:1e:43: b2:4a:b0:db:4e:8d:0a:d3:79:d4:83:6f:e5:55:ec:e9:9a:38: 87:d3:22:65:10:01:db:58:87:37:8f:73:57:43:9d:0a:ff:1a: 8a:0e:84:f2:52:e3:c2:09:65:5b:44:04:9d:0f:ed:33:4d:67: 27:29:d0:a6:2a:31:95:9a:85:d7:db:6e:e3:f1:03:86:ae:ba: 7a:66:40:30:34:d1:93:fe:84:c1:58:3c:cd:c6:69:37:b5:0a: af:a9:33:e5:71:bd:b3:14:62:f4:48:9a:6b:09:3b:6a:f7:b9: d2:da:2c:fb:11:f5:34:fc:39:75:b8:4e:e7:c9:de:a6:f6:b0: 6a:5e:a5:fd:c9:fc:81:6a:c0:05:70:b4:41:50:a1:65:41:fb: ec:19:56:34 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fufHLEDMgJnhSu6QrftDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNTQzYTUxOTdlYjI1NDQ0NDdlOWQzNmIzZWJmMTQ0NTJj Nzc3ZWIwHhcNMjYwMTAxMTIxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjM2I4YjY2ZjBiN2MyMmU1ZmJiYTE5MjAzM2IyZmRhNzY4ZmY2ODFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wOee0p7/urBLYFayU/eevjChWkI bflGgG9zc/7Ni12u+0aI8LUtTPrr9XCawK+LfFws9jwxTIoWb8FBJz/pCve1HLix RGngkRzTc6XR6BlyojeJwc2rr8XLT0OpTP4C+0Pt5t5E6OGr6vyVXmk06sqovDR+ Wu6XFvJqjVGtOkn3y4rueGEa/W+7JKpKvwV4Q9IruuW/5tY9iVqtVuw2ltNG8Wbx EmZ/ZGu8GMlkgpbV089JBQdwccRocjla4wNBDQOL0aknTy72Hb4RI9MDm1VGGCdD KQ3d/U5N7+A2oH+6/799CFEF0zeXu+GfFCXrXMw6/nh8yrBFh5Cb2AGavwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMO4tm8LfCLl+7oZIDOy/ado/2gfMB8GA1UdIwQY MBaAFBBUOlGX6yVERH6dNrPr8URSx3frMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUZRNlVaZnJKVVJFZnAwMnMtdnhSRkxIZC1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8xYmU3YmMtYjY0Mi00YTBkLThlNmIt ZjdlMGM1ZTI3MDJlLzEvdzdpMmJ3dDhJdVg3dWhrZ003TDlwMmpfYUI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8xYmU3YmMtYjY0Mi00YTBkLThlNmItZjdlMGM1ZTI3MDJl LzEvRUZRNlVaZnJKVVJFZnAwMnMtdnhSRkxIZC1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwXihMA0G CSqGSIb3DQEBCwUAA4IBAQBTsDyf1LWzqtY4n9bmh4NC8ApvV5YK5XEwrMd6jd9D M/Fcwtnc1d2j5qtNS4NY9DIqBfBKA6q4zNQENf8P6yG6QEYW+e7fZ4JPGmWY042V E6dqHU2CXcbR/aNjd6leDdnUNLaf1R5ssR8bHkOySrDbTo0K03nUg2/lVezpmjiH 0yJlEAHbWIc3j3NXQ50K/xqKDoTyUuPCCWVbRASdD+0zTWcnKdCmKjGVmoXX227j 8QOGrrp6ZkAwNNGT/oTBWDzNxmk3tQqvqTPlcb2zFGL0SJprCTtq97nS2iz7EfU0 /Dl1uE7nyd6m9rBqXqX9yfyBasAFcLRBUKFlQfvsGVY0 -----END CERTIFICATE-----Generated at Sun Jan 25 15:07:16 2026 by rpki-client