This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/d99fac-35dc-4f2c-8f95-f195223d03b3/1/7oxbulzY2boNaAxovnlWeEdnhvk.roa File: 7oxbulzY2boNaAxovnlWeEdnhvk.roa (raw, json) Hash identifier: uX0ykLCKBF2SBolWYgvfJLXxPgVn9j68zHuR3GSzDLo= Subject key identifier: EE:8C:5B:BA:5C:D8:D9:BA:0D:68:0C:68:BE:79:56:78:47:67:86:F9 Certificate issuer: /CN=7c29c2f5723f29ec5e0e793e73ab55b8a1c86ba9 Certificate serial: 019B7835123454FAFBB1CF69399BD2272627 Authority key identifier: 7C:29:C2:F5:72:3F:29:EC:5E:0E:79:3E:73:AB:55:B8:A1:C8:6B:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fCnC9XI_KexeDnk-c6tVuKHIa6k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/d99fac-35dc-4f2c-8f95-f195223d03b3/1/7oxbulzY2boNaAxovnlWeEdnhvk.roa Signing time: Thu 01 Jan 2026 06:18:22 +0000 ROA not before: Thu 01 Jan 2026 06:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48610 IP address blocks: 176.97.194.0/24 maxlen: 24 2a13:8e40::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/d99fac-35dc-4f2c-8f95-f195223d03b3/1/fCnC9XI_KexeDnk-c6tVuKHIa6k.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/d99fac-35dc-4f2c-8f95-f195223d03b3/1/fCnC9XI_KexeDnk-c6tVuKHIa6k.mft rsync://rpki.ripe.net/repository/DEFAULT/fCnC9XI_KexeDnk-c6tVuKHIa6k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:12:34:54:fa:fb:b1:cf:69:39:9b:d2:27:26:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c29c2f5723f29ec5e0e793e73ab55b8a1c86ba9 Validity Not Before: Jan 1 06:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee8c5bba5cd8d9ba0d680c68be795678476786f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:21:ff:f7:c9:80:7a:da:97:22:9d:e1:77:96: 81:cf:0d:4e:66:10:49:6d:37:6d:bf:60:73:96:56: 49:9e:d8:67:21:f9:57:41:08:fa:5a:9d:ba:c7:0a: 90:3d:e0:e0:75:0a:52:c5:e9:b6:f0:1f:32:7d:66: 65:49:c7:98:0e:26:f8:40:9b:0a:e1:68:12:ce:68: a2:f8:c1:80:3a:2b:ec:a2:ff:e7:7f:48:84:b5:8f: b3:c8:70:a0:49:a5:9d:5a:05:70:bb:ce:74:6a:5b: 77:50:33:10:7e:8c:ef:ff:d0:4e:61:f8:14:ff:98: e4:c6:cd:ba:8a:83:cf:97:19:07:16:09:d4:0e:80: 11:99:19:de:68:36:b7:a2:27:73:5a:ec:63:5d:f9: d6:28:cb:5f:00:1f:b3:a9:18:bf:f8:df:32:e6:b6: 2a:08:c8:23:51:dc:10:c2:2a:f9:23:b3:45:a0:f2: 7f:33:8a:15:9d:db:98:53:69:3a:42:f3:db:99:14: 99:0d:77:9d:09:e1:29:83:7a:d4:47:68:b1:c0:85: 5d:34:81:b8:7d:ed:c5:6d:60:7e:d4:5a:28:9f:83: 48:97:c2:63:13:dc:90:85:9f:ff:81:b5:f0:bb:45: 53:24:04:ef:18:36:58:7f:10:53:88:45:64:db:67: dd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:8C:5B:BA:5C:D8:D9:BA:0D:68:0C:68:BE:79:56:78:47:67:86:F9 X509v3 Authority Key Identifier: keyid:7C:29:C2:F5:72:3F:29:EC:5E:0E:79:3E:73:AB:55:B8:A1:C8:6B:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fCnC9XI_KexeDnk-c6tVuKHIa6k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d99fac-35dc-4f2c-8f95-f195223d03b3/1/7oxbulzY2boNaAxovnlWeEdnhvk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/d99fac-35dc-4f2c-8f95-f195223d03b3/1/fCnC9XI_KexeDnk-c6tVuKHIa6k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.97.194.0/24 IPv6: 2a13:8e40::/36 Signature Algorithm: sha256WithRSAEncryption 5e:16:52:e3:7c:cc:79:00:ca:58:32:51:38:b6:79:7c:d1:55: 9e:bd:be:8e:22:cf:01:63:6e:08:10:2d:a3:6a:79:a2:b0:80: ab:5b:99:60:67:e0:11:4a:41:d1:49:07:bb:e8:93:34:6b:17: 5f:bc:02:6d:9e:dc:fe:db:be:05:e3:56:a0:d5:f6:ae:d2:65: 23:05:c7:5f:fa:38:4c:62:67:cc:27:f9:35:1d:27:c7:1c:4b: 4c:97:35:8a:50:ca:dc:bf:13:30:54:1d:3c:3f:f2:bf:d1:15: fd:b5:bb:6d:68:b2:1a:87:fb:8e:72:91:e5:f6:92:c7:ef:70: 00:d9:c1:d9:47:08:2b:91:91:ee:8f:5c:aa:8b:ca:65:e9:79: e2:d8:22:b4:a3:15:cf:d1:e1:81:19:18:dc:67:77:61:32:ae: 53:13:9e:f1:b2:25:26:09:83:3c:83:16:43:41:b1:90:f0:da: 89:eb:e0:c2:cf:6e:2f:e7:3d:cd:35:38:41:7e:14:ff:c4:e3: 90:83:cf:d8:00:6d:f3:27:73:e9:d4:71:3a:82:ee:fe:e6:87: c3:dc:38:7e:96:8a:d2:9b:d9:b1:7e:58:9a:28:ea:de:50:f6: 58:5d:40:b2:87:42:20:bf:f3:b5:32:f1:59:e1:c7:39:ef:be: b1:b8:c0:c0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NRI0VPr7sc9pOZvSJyYnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjMjljMmY1NzIzZjI5ZWM1ZTBlNzkzZTczYWI1NWI4YTFj ODZiYTkwHhcNMjYwMTAxMDYxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZThjNWJiYTVjZDhkOWJhMGQ2ODBjNjhiZTc5NTY3ODQ3Njc4NmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCH/98mAetqXIp3hd5aBzw1OZhBJ bTdtv2BzllZJnthnIflXQQj6Wp26xwqQPeDgdQpSxem28B8yfWZlSceYDib4QJsK 4WgSzmii+MGAOivsov/nf0iEtY+zyHCgSaWdWgVwu850alt3UDMQfozv/9BOYfgU /5jkxs26ioPPlxkHFgnUDoARmRneaDa3oidzWuxjXfnWKMtfAB+zqRi/+N8y5rYq CMgjUdwQwir5I7NFoPJ/M4oVnduYU2k6QvPbmRSZDXedCeEpg3rUR2ixwIVdNIG4 fe3FbWB+1Foon4NIl8JjE9yQhZ//gbXwu0VTJATvGDZYfxBTiEVk22fdoQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFO6MW7pc2Nm6DWgMaL55VnhHZ4b5MB8GA1UdIwQY MBaAFHwpwvVyPynsXg55PnOrVbihyGupMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkNuQzlYSV9LZXhlRG5rLWM2dFZ1S0hJYTZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9kOTlmYWMtMzVkYy00ZjJjLThmOTUt ZjE5NTIyM2QwM2IzLzEvN294YnVselkyYm9OYUF4b3ZubFdlRWRuaHZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9kOTlmYWMtMzVkYy00ZjJjLThmOTUtZjE5NTIyM2QwM2Iz LzEvZkNuQzlYSV9LZXhlRG5rLWM2dFZ1S0hJYTZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAsGHCMA4E AgACMAgDBgQqE45AADANBgkqhkiG9w0BAQsFAAOCAQEAXhZS43zMeQDKWDJROLZ5 fNFVnr2+jiLPAWNuCBAto2p5orCAq1uZYGfgEUpB0UkHu+iTNGsXX7wCbZ7c/tu+ BeNWoNX2rtJlIwXHX/o4TGJnzCf5NR0nxxxLTJc1ilDK3L8TMFQdPD/yv9EV/bW7 bWiyGof7jnKR5faSx+9wANnB2UcIK5GR7o9cqovKZel54tgitKMVz9HhgRkY3Gd3 YTKuUxOe8bIlJgmDPIMWQ0GxkPDaievgws9uL+c9zTU4QX4U/8TjkIPP2ABt8ydz 6dRxOoLu/uaHw9w4fpaK0pvZsX5Ymijq3lD2WF1AsodCIL/ztTLxWeHHOe++sbjA wA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:42:32 2026 by rpki-client