This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/7ytwb7Womq08ykvieFP3In40-Rw.roa File: 7ytwb7Womq08ykvieFP3In40-Rw.roa (raw, json) Hash identifier: osTlvrBih0cPXahWkQhNIUbUc1RlCh2qx/FZaxLigMw= Subject key identifier: EF:2B:70:6F:B5:A8:9A:AD:3C:CA:4B:E2:78:53:F7:22:7E:34:F9:1C Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Certificate serial: 019B7D5D1707480DF1507283B3F09EA69B14 Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/7ytwb7Womq08ykvieFP3In40-Rw.roa Signing time: Fri 02 Jan 2026 06:20:11 +0000 ROA not before: Fri 02 Jan 2026 06:20:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24690 IP address blocks: 91.120.58.0/24 maxlen: 24 194.88.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:17:07:48:0d:f1:50:72:83:b3:f0:9e:a6:9b:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Validity Not Before: Jan 2 06:20:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef2b706fb5a89aad3cca4be27853f7227e34f91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:26:f1:89:24:41:fd:77:bd:7e:14:0b:0e:54: 23:9a:36:a3:c3:d6:f0:3b:ee:a9:92:dd:18:68:8d: 5a:53:ed:95:56:77:69:29:ee:c7:6e:c1:cd:94:6e: 50:d1:a7:b1:84:9e:49:4e:bb:8f:a0:42:fe:be:dc: dd:23:ad:99:39:30:2a:62:89:05:7a:19:e4:1e:63: 3a:84:15:9b:70:a7:87:f8:bc:e9:68:29:03:f8:61: 06:66:85:3f:8d:a1:ca:44:67:39:7c:d3:a0:6a:20: 87:0d:fe:77:8d:50:de:c8:4a:d7:3e:ae:ff:65:04: 26:94:f1:90:03:8e:50:9d:6e:81:a6:ff:a8:d4:33: 32:d9:4a:01:06:e4:b5:9a:66:be:e5:20:2f:f0:65: 3e:aa:38:dc:04:cf:67:3f:12:aa:7a:8d:e0:be:ae: e7:ce:c3:5c:1c:b6:bd:46:cc:c7:0b:16:e2:06:54: 70:92:ae:e6:9c:a6:b6:07:c1:bb:8e:56:16:6e:47: 49:fd:82:d0:40:f7:d3:a3:70:de:ec:43:f1:3e:13: b1:46:5b:fc:90:76:ec:31:d2:ed:e3:af:c5:f4:89: 85:41:98:99:a5:fb:2f:3c:28:fd:85:67:0a:24:58: c4:f4:80:80:ae:f9:75:6f:ba:e5:62:7a:b3:e5:2a: 78:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:2B:70:6F:B5:A8:9A:AD:3C:CA:4B:E2:78:53:F7:22:7E:34:F9:1C X509v3 Authority Key Identifier: keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/7ytwb7Womq08ykvieFP3In40-Rw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.120.58.0/24 194.88.40.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:f9:23:48:d2:2f:fd:8f:f8:df:3a:9b:37:54:90:c2:e3:cb: 9d:4e:a8:db:92:4e:a8:80:57:0f:47:dc:bd:49:77:1e:c6:2e: f4:0d:f7:75:06:12:9d:81:55:7f:1c:96:6e:c8:96:70:5b:57: e2:5c:bc:43:33:e3:0e:d3:6c:5c:ea:b4:84:45:06:35:ee:d0: fb:8a:d3:c0:9a:20:2a:81:18:da:ca:55:f1:00:d6:76:92:ea: 9d:d1:28:a3:aa:cb:ea:2f:4c:0a:1a:07:b5:23:63:cf:b0:70: a1:f0:15:e8:f1:a2:97:07:3f:23:3c:f1:cc:8d:37:d5:25:3d: 32:5d:11:e1:75:1b:c6:f8:c7:04:37:9c:4c:69:d3:ff:16:10: c8:ca:8f:98:08:53:83:3c:2f:0c:78:cb:29:c4:ea:6e:72:68: 29:40:e3:b2:e7:9f:cf:91:85:b6:80:54:a1:31:53:70:2c:64: d3:25:72:40:8d:fb:fd:20:80:86:ba:c4:53:57:65:04:84:6f: 23:02:f6:86:50:fa:ca:3a:36:44:68:ba:51:66:d2:78:99:15: a6:33:00:fd:88:05:de:5c:55:2c:04:cc:d4:08:1d:d0:69:88: e3:75:1f:3c:c9:e5:58:85:ae:1d:3a:63:cb:25:c0:44:f2:66: e6:7d:39:8a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XRcHSA3xUHKDs/CeppsUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4 YWFlN2IwHhcNMjYwMTAyMDYyMDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjJiNzA2ZmI1YTg5YWFkM2NjYTRiZTI3ODUzZjcyMjdlMzRmOTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCbxiSRB/Xe9fhQLDlQjmjajw9bw O+6pkt0YaI1aU+2VVndpKe7HbsHNlG5Q0aexhJ5JTruPoEL+vtzdI62ZOTAqYokF ehnkHmM6hBWbcKeH+LzpaCkD+GEGZoU/jaHKRGc5fNOgaiCHDf53jVDeyErXPq7/ ZQQmlPGQA45QnW6Bpv+o1DMy2UoBBuS1mma+5SAv8GU+qjjcBM9nPxKqeo3gvq7n zsNcHLa9RszHCxbiBlRwkq7mnKa2B8G7jlYWbkdJ/YLQQPfTo3De7EPxPhOxRlv8 kHbsMdLt46/F9ImFQZiZpfsvPCj9hWcKJFjE9ICArvl1b7rlYnqz5Sp4kwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFO8rcG+1qJqtPMpL4nhT9yJ+NPkcMB8GA1UdIwQY MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt MjkyYWU0NmU2MzAyLzEvN3l0d2I3V29tcTA4eWt2aWVGUDNJbjQwLVJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW3g6AwQA wlgoMA0GCSqGSIb3DQEBCwUAA4IBAQA8+SNI0i/9j/jfOps3VJDC48udTqjbkk6o gFcPR9y9SXcexi70Dfd1BhKdgVV/HJZuyJZwW1fiXLxDM+MO02xc6rSERQY17tD7 itPAmiAqgRjaylXxANZ2kuqd0SijqsvqL0wKGge1I2PPsHCh8BXo8aKXBz8jPPHM jTfVJT0yXRHhdRvG+McEN5xMadP/FhDIyo+YCFODPC8MeMspxOpucmgpQOOy55/P kYW2gFShMVNwLGTTJXJAjfv9IICGusRTV2UEhG8jAvaGUPrKOjZEaLpRZtJ4mRWm MwD9iAXeXFUsBMzUCB3QaYjjdR88yeVYha4dOmPLJcBE8mbmfTmK -----END CERTIFICATE-----Generated at Sun Jan 25 18:21:00 2026 by rpki-client