This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/R7Shli1Sk-vvoqmunlKlNYu3RJw.roa File: R7Shli1Sk-vvoqmunlKlNYu3RJw.roa (raw, json) Hash identifier: FlrV+HHAmrgrD+AjToc6uBZMzyAfo9jwPZAKic0j0FY= Subject key identifier: 47:B4:A1:96:2D:52:93:EB:EF:A2:A9:AE:9E:52:A5:35:8B:B7:44:9C Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88 Certificate serial: 019B7DCABB691AA4190A28F457C699AF8483 Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/R7Shli1Sk-vvoqmunlKlNYu3RJw.roa Signing time: Fri 02 Jan 2026 08:19:56 +0000 ROA not before: Fri 02 Jan 2026 08:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41620 IP address blocks: 194.225.224.0/20 maxlen: 24 2001:14e8:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.mft rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:bb:69:1a:a4:19:0a:28:f4:57:c6:99:af:84:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88 Validity Not Before: Jan 2 08:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47b4a1962d5293ebefa2a9ae9e52a5358bb7449c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5b:5a:4c:f5:e4:09:bd:3c:f0:e3:c1:fe:e9: f9:fc:f5:0e:4d:54:a3:f6:9b:b9:03:07:51:ef:7a: 2d:12:e6:99:ac:29:00:30:05:25:80:73:63:53:93: 44:6a:81:6f:8d:d9:97:54:ce:99:f8:bc:e1:76:8b: ea:ae:35:25:6b:e5:58:21:1a:26:ad:d5:03:1c:20: 57:66:dd:5c:d6:23:15:58:8a:ef:e2:8f:38:a6:65: 01:bd:31:cb:9a:68:4c:8e:58:41:a1:b3:58:18:fd: 87:30:38:f1:9d:ca:70:ea:c5:4a:44:be:64:05:f4: e9:1d:04:55:c1:f0:21:98:09:79:55:62:5a:b4:a3: 4b:1d:85:9a:a3:aa:ae:14:18:37:75:41:a4:4f:cb: bb:bf:37:b1:14:80:e2:5a:d5:c7:2b:51:0f:0d:98: 1f:39:d4:df:d1:ce:4e:83:90:39:97:8d:73:98:1a: e7:71:2d:e4:30:c1:cc:d0:43:2e:63:4a:0a:54:e3: b6:32:e2:10:de:57:e5:e6:c2:b1:49:47:93:61:cd: 1c:e6:6d:9a:36:19:86:ac:97:05:28:63:1f:86:f0: 83:53:84:4f:4b:28:19:fa:ab:47:10:65:3b:4c:36: 3c:42:0c:88:32:dc:53:b1:c9:72:8e:e0:18:60:6d: 91:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B4:A1:96:2D:52:93:EB:EF:A2:A9:AE:9E:52:A5:35:8B:B7:44:9C X509v3 Authority Key Identifier: keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/R7Shli1Sk-vvoqmunlKlNYu3RJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.225.224.0/20 IPv6: 2001:14e8:4::/48 Signature Algorithm: sha256WithRSAEncryption 88:ad:51:ef:ac:64:ff:25:a4:0e:f5:e3:c8:19:57:ea:0e:2f: 86:fd:a9:52:f2:df:7d:22:cb:ed:01:f1:b4:d3:bc:c7:12:a9: cf:a5:eb:f0:54:a7:e3:7b:38:d0:6a:89:a8:17:2e:39:b7:44: 4b:62:d5:d7:02:4d:8e:62:ef:ff:5d:8b:2c:a6:36:92:e9:fb: 09:5b:57:76:f1:39:b8:ac:8a:aa:80:63:a9:c5:db:6d:81:40: 90:7c:df:7f:9a:85:f8:b1:02:06:af:6e:cf:09:59:b3:8d:32: 8c:c6:bb:f3:fd:8a:62:e6:19:d7:1f:79:22:bd:00:3d:75:96: 52:de:22:a2:7d:08:87:d1:d8:83:8c:b0:df:75:1e:b1:be:b4: 91:18:ff:9b:8c:d9:ce:38:3a:83:2a:98:59:32:e5:69:7a:95: 67:ea:0e:d1:39:2f:33:d2:25:4e:26:a7:82:36:f1:c8:97:6a: 56:d3:32:f6:d7:ab:a5:ca:1a:a2:e9:ec:16:09:4e:4c:16:b3: bb:ba:5e:5d:76:99:2b:66:47:84:84:c8:8a:8b:ea:5f:eb:60: 77:5a:b9:8a:a3:60:1a:15:cc:95:7c:8c:6d:b7:41:21:01:a0: 97:68:63:ad:b1:2b:b9:0c:b1:15:40:40:22:7b:cb:a8:22:b7: e4:03:8e:5b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9yrtpGqQZCij0V8aZr4SDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4M2Q3NjA1MTAxN2QwYWZhOTE1ZmNmYjc5MGEwMGY0NjY3 YjBhODgwHhcNMjYwMTAyMDgxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0N2I0YTE5NjJkNTI5M2ViZWZhMmE5YWU5ZTUyYTUzNThiYjc0NDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1taTPXkCb088OPB/un5/PUOTVSj 9pu5AwdR73otEuaZrCkAMAUlgHNjU5NEaoFvjdmXVM6Z+LzhdovqrjUla+VYIRom rdUDHCBXZt1c1iMVWIrv4o84pmUBvTHLmmhMjlhBobNYGP2HMDjxncpw6sVKRL5k BfTpHQRVwfAhmAl5VWJatKNLHYWao6quFBg3dUGkT8u7vzexFIDiWtXHK1EPDZgf OdTf0c5Og5A5l41zmBrncS3kMMHM0EMuY0oKVOO2MuIQ3lfl5sKxSUeTYc0c5m2a NhmGrJcFKGMfhvCDU4RPSygZ+qtHEGU7TDY8QgyIMtxTsclyjuAYYG2RRQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFEe0oZYtUpPr76Kprp5SpTWLt0ScMB8GA1UdIwQY MBaAFFg9dgUQF9CvqRX8+3kKAPRmewqIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0QxMkJSQVgwSy1wRmZ6N2VRb0E5R1o3Q29nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC80ZjFiMjctMzI2YS00Njc5LWE2NGIt ZGE2MTUzODg1ZjNiLzEvUjdTaGxpMVNrLXZ2b3FtdW5sS2xOWXUzUkp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC80ZjFiMjctMzI2YS00Njc5LWE2NGItZGE2MTUzODg1ZjNi LzEvV0QxMkJSQVgwSy1wRmZ6N2VRb0E5R1o3Q29nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQEwuHgMA8E AgACMAkDBwAgARToAAQwDQYJKoZIhvcNAQELBQADggEBAIitUe+sZP8lpA7148gZ V+oOL4b9qVLy330iy+0B8bTTvMcSqc+l6/BUp+N7ONBqiagXLjm3REti1dcCTY5i 7/9diyymNpLp+wlbV3bxObisiqqAY6nF222BQJB833+ahfixAgavbs8JWbONMozG u/P9imLmGdcfeSK9AD11llLeIqJ9CIfR2IOMsN91HrG+tJEY/5uM2c44OoMqmFky 5Wl6lWfqDtE5LzPSJU4mp4I28ciXalbTMvbXq6XKGqLp7BYJTkwWs7u6Xl12mStm R4SEyIqL6l/rYHdauYqjYBoVzJV8jG23QSEBoJdoY62xK7kMsRVAQCJ7y6git+QD jls= -----END CERTIFICATE-----Generated at Mon Jan 26 01:43:53 2026 by rpki-client