This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fE7VrvmJpiL2u4wOldp3axo6Nmc.roa File: fE7VrvmJpiL2u4wOldp3axo6Nmc.roa (raw, json) Hash identifier: pGAhsrwHEm0/hc7XWKpbkjSzBed6zCZbUN1UUc9MuDk= Subject key identifier: 7C:4E:D5:AE:F9:89:A6:22:F6:BB:8C:0E:95:DA:77:6B:1A:3A:36:67 Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685 Certificate serial: 019B7E3905F61917EC0E42A663E3243F1199 Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fE7VrvmJpiL2u4wOldp3axo6Nmc.roa Signing time: Fri 02 Jan 2026 10:20:24 +0000 ROA not before: Fri 02 Jan 2026 10:20:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29147 IP address blocks: 82.137.156.0/24 maxlen: 24 2001:b08:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.mft rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:05:f6:19:17:ec:0e:42:a6:63:e3:24:3f:11:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685 Validity Not Before: Jan 2 10:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c4ed5aef989a622f6bb8c0e95da776b1a3a3667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:be:1a:44:47:61:30:3d:6e:7f:e1:e1:c8:a1: 5c:9e:cd:0c:e0:8d:c6:1d:d8:b0:b0:36:f4:82:71: 8f:d2:fb:92:23:d5:90:94:bf:c1:7b:ea:2c:cd:0d: e1:32:c0:40:0e:83:6b:21:7f:01:95:46:bf:f6:8a: 43:b4:c1:9a:49:3a:8e:f4:03:c4:78:32:5b:47:cd: bd:50:ef:6f:8d:f5:4d:36:4e:82:71:12:3a:98:12: 84:4b:75:29:7b:c4:0c:e1:2a:4e:74:95:88:fd:3e: f4:35:33:41:3a:21:52:bd:f3:17:63:25:53:38:40: 71:fc:4d:db:47:14:9c:e9:be:12:34:18:f7:60:d2: 24:12:bc:94:bb:62:41:bb:60:50:64:c9:f6:5e:e9: 50:9f:a5:1f:07:4d:7a:d9:64:75:9a:44:e2:cd:47: 0b:31:e1:51:b4:52:81:08:c4:42:bb:d8:ee:95:d7: 2e:cb:b1:88:b2:fe:b4:67:db:f3:48:92:4d:48:73: 4f:b6:7f:90:76:e1:ce:18:29:82:40:5c:31:d5:3c: 6b:f4:15:ea:f7:fb:c6:d9:62:6a:1d:0c:54:1f:9f: 21:e3:3d:77:ac:b8:c2:59:32:3f:9d:2a:7f:ce:aa: c3:36:e3:0b:0a:b2:a0:25:75:dc:cd:11:a4:b2:b8: 43:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4E:D5:AE:F9:89:A6:22:F6:BB:8C:0E:95:DA:77:6B:1A:3A:36:67 X509v3 Authority Key Identifier: keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/fE7VrvmJpiL2u4wOldp3axo6Nmc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.137.156.0/24 IPv6: 2001:b08:a::/48 Signature Algorithm: sha256WithRSAEncryption 64:ac:ef:63:ba:92:ed:a4:f3:85:fb:ca:62:86:1d:ec:bb:23: 30:e3:d0:71:d2:3a:91:30:45:ae:48:aa:22:21:ef:1d:65:e0: c8:2f:8c:9e:54:90:78:f9:40:2a:34:ac:0d:82:16:40:68:7a: 91:2d:93:1c:f3:a0:fa:4e:3d:ea:97:2b:12:65:af:28:ec:42: 92:63:07:82:79:93:f1:89:71:51:ff:db:ee:19:59:15:9c:37: 41:e1:1a:76:a2:91:f5:40:a1:63:16:ea:e0:ed:ce:c1:75:40: de:d8:7b:f3:e5:f1:3e:37:b2:8c:1f:be:4e:ea:ae:58:10:ac: 2b:d5:65:d0:ab:c8:b9:23:9a:c3:f9:3f:7f:94:28:ed:5d:cf: 3b:94:39:98:6b:61:95:09:cd:6a:d1:dd:9d:a4:35:1a:97:62: ae:eb:3d:b8:52:2e:05:fc:bf:a6:f3:13:e2:3e:50:b3:14:7d: cf:f5:e0:78:bf:bd:41:c7:0a:47:6e:fc:32:f7:a0:7c:6e:d8: 3a:d6:c0:4f:8d:c5:74:56:75:ea:03:da:2d:f0:30:72:c9:e7: fe:d3:4a:8e:d7:1e:ec:24:3c:ff:e7:03:d7:f5:9e:e3:3e:b1: 6a:8b:f7:fd:a1:5a:4d:58:f0:a0:e3:bd:fd:c5:6a:fb:ed:39: 59:36:81:fa -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+OQX2GRfsDkKmY+MkPxGZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl MmM2ODUwHhcNMjYwMTAyMTAyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YzRlZDVhZWY5ODlhNjIyZjZiYjhjMGU5NWRhNzc2YjFhM2EzNjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL4aREdhMD1uf+HhyKFcns0M4I3G HdiwsDb0gnGP0vuSI9WQlL/Be+oszQ3hMsBADoNrIX8BlUa/9opDtMGaSTqO9APE eDJbR829UO9vjfVNNk6CcRI6mBKES3Upe8QM4SpOdJWI/T70NTNBOiFSvfMXYyVT OEBx/E3bRxSc6b4SNBj3YNIkEryUu2JBu2BQZMn2XulQn6UfB0162WR1mkTizUcL MeFRtFKBCMRCu9juldcuy7GIsv60Z9vzSJJNSHNPtn+QduHOGCmCQFwx1Txr9BXq 9/vG2WJqHQxUH58h4z13rLjCWTI/nSp/zqrDNuMLCrKgJXXczRGksrhD1wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHxO1a75iaYi9ruMDpXad2saOjZnMB8GA1UdIwQY MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt NDBkOTViZDMzZmNiLzEvZkU3VnJ2bUpwaUwydTR3T2xkcDNheG82Tm1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAUomcMA8E AgACMAkDBwAgAQsIAAowDQYJKoZIhvcNAQELBQADggEBAGSs72O6ku2k84X7ymKG Hey7IzDj0HHSOpEwRa5IqiIh7x1l4MgvjJ5UkHj5QCo0rA2CFkBoepEtkxzzoPpO PeqXKxJlryjsQpJjB4J5k/GJcVH/2+4ZWRWcN0HhGnaikfVAoWMW6uDtzsF1QN7Y e/Pl8T43sowfvk7qrlgQrCvVZdCryLkjmsP5P3+UKO1dzzuUOZhrYZUJzWrR3Z2k NRqXYq7rPbhSLgX8v6bzE+I+ULMUfc/14Hi/vUHHCkdu/DL3oHxu2DrWwE+NxXRW deoD2i3wMHLJ5/7TSo7XHuwkPP/nA9f1nuM+sWqL9/2hWk1Y8KDjvf3FavvtOVk2 gfo= -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:14 2026 by rpki-client