This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/F7bFWfa8raW6YPzNQdPQYhccFpw.roa File: F7bFWfa8raW6YPzNQdPQYhccFpw.roa (raw, json) Hash identifier: XVhjnbPUE5xdXqpegewxKMJvfafoKnZU90EE9D+PlOg= Subject key identifier: 17:B6:C5:59:F6:BC:AD:A5:BA:60:FC:CD:41:D3:D0:62:17:1C:16:9C Certificate issuer: /CN=c7221e402998abc1f035475e158b74e8c76920c0 Certificate serial: 019B7BA4B56F8E67A18AF063DA3F9F267197 Authority key identifier: C7:22:1E:40:29:98:AB:C1:F0:35:47:5E:15:8B:74:E8:C7:69:20:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyIeQCmYq8HwNUdeFYt06MdpIMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/F7bFWfa8raW6YPzNQdPQYhccFpw.roa Signing time: Thu 01 Jan 2026 22:19:10 +0000 ROA not before: Thu 01 Jan 2026 22:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205935 IP address blocks: 185.201.132.0/24 maxlen: 24 185.201.134.0/24 maxlen: 24 185.201.135.0/24 maxlen: 24 2a0a:c440::/32 maxlen: 32 2a0a:c441::/32 maxlen: 32 2a0a:c442::/32 maxlen: 32 2a0a:c443::/32 maxlen: 32 2a0a:c444::/32 maxlen: 32 2a0a:c445::/32 maxlen: 32 2a0a:c446::/32 maxlen: 32 2a0a:c447::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/xyIeQCmYq8HwNUdeFYt06MdpIMA.crl rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/xyIeQCmYq8HwNUdeFYt06MdpIMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xyIeQCmYq8HwNUdeFYt06MdpIMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:b5:6f:8e:67:a1:8a:f0:63:da:3f:9f:26:71:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c7221e402998abc1f035475e158b74e8c76920c0 Validity Not Before: Jan 1 22:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=17b6c559f6bcada5ba60fccd41d3d062171c169c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f4:1f:58:4e:ed:16:84:6a:96:df:e6:55:61: 99:6d:02:31:72:8e:9b:2b:3a:cf:d0:70:16:d6:82: 6c:c1:61:73:49:97:f2:3a:39:83:ed:3e:cb:e1:d9: d3:66:c4:89:d9:c0:59:e2:6e:dc:eb:e2:e1:38:74: ee:10:74:8c:e9:64:41:17:a0:22:ca:fe:54:92:82: 5f:c4:17:6c:5e:fc:f5:37:90:a1:97:b1:2d:42:59: a9:6b:df:3c:42:63:1c:3b:f0:6d:65:26:f8:46:45: 8f:15:f8:a8:4b:9d:18:41:c3:53:8d:98:dd:db:c2: 25:a5:f5:ce:f3:47:98:80:f2:6f:2f:bc:b4:fa:cf: 05:0a:01:2c:c1:9d:8f:6f:0d:51:5a:c9:29:34:c9: 4e:85:f4:1a:66:b9:fc:79:1c:8a:26:3d:5b:ae:e9: c3:0d:dc:b6:88:e6:e8:c9:37:cd:dc:11:76:ec:df: 12:11:ae:cd:6a:db:a1:74:a9:0d:a4:29:be:42:e6: aa:fd:54:de:67:aa:49:f4:d1:29:7d:e1:60:eb:b7: b4:b4:72:d4:8e:29:98:36:e9:29:31:e0:24:c3:8e: 61:9f:f5:29:dd:4a:d3:70:65:af:08:88:8c:25:f3: 61:2b:3c:97:37:39:4c:eb:10:a5:bb:27:5d:74:f6: 39:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B6:C5:59:F6:BC:AD:A5:BA:60:FC:CD:41:D3:D0:62:17:1C:16:9C X509v3 Authority Key Identifier: keyid:C7:22:1E:40:29:98:AB:C1:F0:35:47:5E:15:8B:74:E8:C7:69:20:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyIeQCmYq8HwNUdeFYt06MdpIMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/F7bFWfa8raW6YPzNQdPQYhccFpw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/xyIeQCmYq8HwNUdeFYt06MdpIMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.201.132.0/24 185.201.134.0/23 IPv6: 2a0a:c440::/29 Signature Algorithm: sha256WithRSAEncryption 74:10:90:0b:d5:20:18:2b:1f:20:77:5c:27:c9:6e:d9:31:68: bc:0e:75:86:e2:ec:fa:a7:72:31:be:be:8e:97:93:1d:3f:06: ac:e1:42:a7:d5:85:bf:c1:5b:ee:b9:31:46:10:b4:b5:08:ad: 4a:6d:b8:ce:d6:ff:29:64:83:f6:3f:f5:1c:3e:88:81:a6:13: 60:19:b1:92:be:18:06:66:c2:84:0b:17:b8:59:4b:cb:9a:d1: 7c:ec:85:c3:a9:08:78:a0:ce:be:45:b4:ba:b8:56:ac:92:bf: b0:55:4b:94:8d:12:6e:cb:98:1b:4d:0d:e9:1e:cf:10:96:18: 0c:98:a1:e9:a7:50:8c:df:11:82:ed:fb:c8:83:82:a9:bc:63: 53:25:31:f1:76:9c:79:ba:c4:ce:08:ac:49:9f:b3:15:fa:66: 1c:8e:5d:b4:a1:81:55:c5:36:5d:73:7b:20:8c:08:ae:43:88: 7c:34:44:72:17:bb:dd:2c:32:c5:60:87:ab:cb:de:e8:97:e7: ea:fc:65:1f:45:f1:58:10:56:15:86:6f:b1:98:26:9e:df:ca: 2d:29:fc:3b:36:03:07:96:ca:52:ba:17:f1:96:02:b9:20:f3: 7d:08:bf:72:60:37:ec:5c:d3:c0:ae:78:50:bd:3b:64:59:09: f5:8b:a7:be -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7pLVvjmehivBj2j+fJnGXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3MjIxZTQwMjk5OGFiYzFmMDM1NDc1ZTE1OGI3NGU4Yzc2 OTIwYzAwHhcNMjYwMTAxMjIxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxN2I2YzU1OWY2YmNhZGE1YmE2MGZjY2Q0MWQzZDA2MjE3MWMxNjljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/QfWE7tFoRqlt/mVWGZbQIxco6b KzrP0HAW1oJswWFzSZfyOjmD7T7L4dnTZsSJ2cBZ4m7c6+LhOHTuEHSM6WRBF6Ai yv5UkoJfxBdsXvz1N5Chl7EtQlmpa988QmMcO/BtZSb4RkWPFfioS50YQcNTjZjd 28IlpfXO80eYgPJvL7y0+s8FCgEswZ2Pbw1RWskpNMlOhfQaZrn8eRyKJj1brunD Ddy2iOboyTfN3BF27N8SEa7NatuhdKkNpCm+Quaq/VTeZ6pJ9NEpfeFg67e0tHLU jimYNukpMeAkw45hn/Up3UrTcGWvCIiMJfNhKzyXNzlM6xCluydddPY5HwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFBe2xVn2vK2lumD8zUHT0GIXHBacMB8GA1UdIwQY MBaAFMciHkApmKvB8DVHXhWLdOjHaSDAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHlJZVFDbVlxOEh3TlVkZUZZdDA2TWRwSU1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9lOWNhN2EtNDExYy00M2E4LTk1MmYt Y2M1NDA2MDhjNDFkLzEvRjdiRldmYThyYVc2WVB6TlFkUFFZaGNjRnB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC9lOWNhN2EtNDExYy00M2E4LTk1MmYtY2M1NDA2MDhjNDFk LzEveHlJZVFDbVlxOEh3TlVkZUZZdDA2TWRwSU1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAucmEAwQB ucmGMA0EAgACMAcDBQMqCsRAMA0GCSqGSIb3DQEBCwUAA4IBAQB0EJAL1SAYKx8g d1wnyW7ZMWi8DnWG4uz6p3Ixvr6Ol5MdPwas4UKn1YW/wVvuuTFGELS1CK1KbbjO 1v8pZIP2P/UcPoiBphNgGbGSvhgGZsKECxe4WUvLmtF87IXDqQh4oM6+RbS6uFas kr+wVUuUjRJuy5gbTQ3pHs8QlhgMmKHpp1CM3xGC7fvIg4KpvGNTJTHxdpx5usTO CKxJn7MV+mYcjl20oYFVxTZdc3sgjAiuQ4h8NERyF7vdLDLFYIery97ol+fq/GUf RfFYEFYVhm+xmCae38otKfw7NgMHlspSuhfxlgK5IPN9CL9yYDfsXNPArnhQvTtk WQn1i6e+ -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:08 2026 by rpki-client