This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/c7IXsqmxdhAG_jJYtud9EP72qOw.roa File: c7IXsqmxdhAG_jJYtud9EP72qOw.roa (raw, json) Hash identifier: Mym9yT5oPGpT2N2HtTmvnEaPNnpQ4t08pH6QuUqEjls= Subject key identifier: 73:B2:17:B2:A9:B1:76:10:06:FE:32:58:B6:E7:7D:10:FE:F6:A8:EC Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Certificate serial: 019B7B36AEC8E787F90B0A2BE0FD55BB579F Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/c7IXsqmxdhAG_jJYtud9EP72qOw.roa Signing time: Thu 01 Jan 2026 20:18:59 +0000 ROA not before: Thu 01 Jan 2026 20:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45029 IP address blocks: 193.232.132.0/24 maxlen: 24 195.209.18.0/24 maxlen: 24 2001:67c:1210::/48 maxlen: 48 2001:6d0:6d0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.mft rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ae:c8:e7:87:f9:0b:0a:2b:e0:fd:55:bb:57:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Validity Not Before: Jan 1 20:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73b217b2a9b1761006fe3258b6e77d10fef6a8ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:64:85:2f:b1:df:7f:b9:7a:05:9d:8d:aa: a8:47:6c:60:6d:3b:84:ca:6c:09:5a:62:f4:a1:14: ac:83:b6:97:29:3d:14:10:ac:15:80:f2:92:41:a0: 0a:dd:67:56:54:4e:d0:f7:0f:95:6a:75:58:fb:e8: e1:08:bb:72:f4:da:1c:1c:f3:72:12:38:6c:23:b5: a2:14:9d:16:a3:a4:01:89:93:71:42:ba:c2:26:50: 37:03:5e:60:8b:95:93:15:b6:de:9f:c3:0a:b3:4f: c4:63:b3:49:87:65:f4:ba:5b:0d:b2:88:7a:07:8d: dd:68:2f:4c:e8:a2:53:77:4c:00:78:7b:54:68:45: 59:54:75:5d:46:a8:0d:28:1c:4b:46:4c:ee:6d:60: 3a:5b:ae:f1:1d:72:8e:d7:8d:02:94:65:44:e9:98: 36:eb:1c:88:05:2f:c8:bd:84:3b:a1:e1:1d:7d:b2: 84:34:f9:04:42:f0:18:e3:6c:79:f1:a2:2d:c7:26: ae:ce:77:8f:c6:7a:66:73:1f:ed:43:14:d3:31:a0: ec:fe:fa:23:42:56:f8:34:72:c9:7a:8d:41:4e:62: ce:23:16:39:7c:67:6d:fe:bd:58:dc:f4:c0:93:f1: 25:41:df:14:b7:69:45:5c:b7:d9:00:49:0f:67:55: 9c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B2:17:B2:A9:B1:76:10:06:FE:32:58:B6:E7:7D:10:FE:F6:A8:EC X509v3 Authority Key Identifier: keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/c7IXsqmxdhAG_jJYtud9EP72qOw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.232.132.0/24 195.209.18.0/24 IPv6: 2001:67c:1210::/48 2001:6d0:6d0b::/48 Signature Algorithm: sha256WithRSAEncryption a9:9f:60:45:b9:c9:c1:3c:ac:30:fd:fa:27:37:15:cb:69:e2: 6c:c7:7a:8c:f8:ea:71:1c:d2:84:4e:32:4b:f7:06:eb:5b:da: d6:95:f4:0a:84:12:14:f5:e0:d4:37:27:7c:cb:3b:a2:9e:ee: bc:2f:6d:29:ef:82:42:d4:cd:bb:87:63:8f:96:38:cd:73:51: a0:27:0d:f6:df:66:3a:53:c9:d6:36:60:48:86:73:b8:8f:0c: 7f:09:61:59:59:72:89:cf:0a:33:50:7d:6a:45:3d:8e:03:1f: bc:7e:70:68:ff:53:af:11:31:59:98:f3:71:49:31:19:ce:b0: 51:e8:2d:5c:f4:7b:b5:79:2e:1d:42:fd:02:84:d8:36:d1:bd: 97:8e:c0:50:d1:74:af:ae:b7:70:2c:6a:9e:7c:ef:77:1f:6f: 8e:2c:ef:48:f9:53:08:33:1c:ad:6f:a0:c8:20:a6:3f:f4:b8: 53:f1:f4:cd:7c:a6:c8:72:28:48:5b:fa:e9:a2:8c:04:15:2b: d4:dc:ee:ad:ba:d7:19:3b:48:b6:90:f7:1b:24:1a:c3:c0:df: d6:df:7f:7a:0b:91:38:36:73:05:12:8c:8b:7c:1f:75:ff:c0: b3:ac:03:0d:30:12:a9:1c:d2:27:b3:67:44:fc:d1:17:a2:27: 2a:5c:ed:2f -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt7Nq7I54f5Cwor4P1Vu1efMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2 OTdhMDMwHhcNMjYwMTAxMjAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3M2IyMTdiMmE5YjE3NjEwMDZmZTMyNThiNmU3N2QxMGZlZjZhOGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAya5khS+x33+5egWdjaqoR2xgbTuE ymwJWmL0oRSsg7aXKT0UEKwVgPKSQaAK3WdWVE7Q9w+VanVY++jhCLty9NocHPNy EjhsI7WiFJ0Wo6QBiZNxQrrCJlA3A15gi5WTFbben8MKs0/EY7NJh2X0ulsNsoh6 B43daC9M6KJTd0wAeHtUaEVZVHVdRqgNKBxLRkzubWA6W67xHXKO140ClGVE6Zg2 6xyIBS/IvYQ7oeEdfbKENPkEQvAY42x58aItxyauznePxnpmcx/tQxTTMaDs/voj Qlb4NHLJeo1BTmLOIxY5fGdt/r1Y3PTAk/ElQd8Ut2lFXLfZAEkPZ1WcWwIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFHOyF7KpsXYQBv4yWLbnfRD+9qjsMB8GA1UdIwQY MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt Njg4ZDMzM2VkOWQ1LzEvYzdJWHNxbXhkaEFHX2pKWXR1ZDlFUDcycU93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1 LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQAweiEAwQA w9ESMBgEAgACMBIDBwAgAQZ8EhADBwAgAQbQbQswDQYJKoZIhvcNAQELBQADggEB AKmfYEW5ycE8rDD9+ic3Fctp4mzHeoz46nEc0oROMkv3Butb2taV9AqEEhT14NQ3 J3zLO6Ke7rwvbSnvgkLUzbuHY4+WOM1zUaAnDfbfZjpTydY2YEiGc7iPDH8JYVlZ conPCjNQfWpFPY4DH7x+cGj/U68RMVmY83FJMRnOsFHoLVz0e7V5Lh1C/QKE2DbR vZeOwFDRdK+ut3Asap5873cfb44s70j5UwgzHK1voMggpj/0uFPx9M18pshyKEhb +umijAQVK9Tc7q261xk7SLaQ9xskGsPA39bff3oLkTg2cwUSjIt8H3X/wLOsAw0w Eqkc0iezZ0T80ReiJypc7S8= -----END CERTIFICATE-----Generated at Sun Jan 25 19:20:29 2026 by rpki-client