This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/foXCIiEaN7GBmZxMbKxhEhRVnRE.roa File: foXCIiEaN7GBmZxMbKxhEhRVnRE.roa (raw, json) Hash identifier: 8YVG3q4hLmdF9nGH/nnVC/JdrtaaDJiTAhQAyQmdQV0= Subject key identifier: 7E:85:C2:22:21:1A:37:B1:81:99:9C:4C:6C:AC:61:12:14:55:9D:11 Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1 Certificate serial: 019B7F15B6F8F217B839042E9F0268F0AADA Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/foXCIiEaN7GBmZxMbKxhEhRVnRE.roa Signing time: Fri 02 Jan 2026 14:21:28 +0000 ROA not before: Fri 02 Jan 2026 14:21:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25261 IP address blocks: 195.53.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.mft rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b6:f8:f2:17:b8:39:04:2e:9f:02:68:f0:aa:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1 Validity Not Before: Jan 2 14:21:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e85c222211a37b181999c4c6cac611214559d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ca:8c:90:34:8d:78:4a:4c:85:fa:74:90:11: c5:59:f7:bb:f5:68:98:bd:8f:6e:33:99:80:5e:f6: e6:93:ae:2a:c6:78:c4:05:d4:81:49:c9:18:4d:b9: 0e:45:26:8b:7c:54:18:22:12:63:8c:de:fe:ff:7f: 07:ac:e2:18:31:cf:cc:3d:bd:e2:c4:5d:ee:0c:83: 7d:29:0e:ae:30:3d:bd:30:9e:e8:d2:ab:29:8b:d3: 53:eb:d4:33:2f:0a:af:30:96:c9:a1:9d:16:0d:e0: 48:0a:fd:75:38:b3:6a:4f:f6:6e:c0:ca:43:7f:56: fb:48:73:84:64:77:e2:2b:9f:d4:b6:db:a7:93:65: f2:6a:0c:92:f5:6b:b8:c8:e1:9a:cd:68:bc:1d:7d: 6d:f0:6b:ab:e3:50:da:c5:5b:38:55:fd:58:f2:08: 4c:f6:17:28:a6:19:f8:5a:12:8c:d0:ca:ec:8e:7d: bc:bc:55:65:c6:55:f5:ce:3c:d7:fd:a1:bf:16:70: d6:60:b6:9b:47:09:82:56:52:c3:30:c1:43:e4:67: 55:cd:a9:18:54:c3:e9:1a:15:6d:84:25:02:bc:d6: e0:8c:de:61:02:f7:a2:25:76:6a:48:d1:a8:d6:b0: ab:85:df:d1:8a:e4:23:fe:48:ee:87:fe:b2:1e:11: c6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:85:C2:22:21:1A:37:B1:81:99:9C:4C:6C:AC:61:12:14:55:9D:11 X509v3 Authority Key Identifier: keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/foXCIiEaN7GBmZxMbKxhEhRVnRE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.53.213.0/24 Signature Algorithm: sha256WithRSAEncryption bf:51:3a:e9:f9:53:87:00:ea:6c:c1:38:2b:d4:c0:81:ae:2b: cc:55:ff:1a:53:e9:be:8f:ff:bc:49:7d:76:9c:9e:40:29:1a: 6c:5c:2e:59:8a:83:e3:d6:7f:3e:60:d0:0c:55:6f:41:de:c8: 6e:f9:2c:f5:8b:b2:30:88:b0:6f:cf:ba:a2:a5:4a:61:a2:d3: bd:2f:d7:98:ec:eb:96:2b:e4:7d:38:6e:7d:58:9b:8f:26:1f: 79:34:09:3b:d6:38:8a:fc:43:87:cb:63:b4:e0:5e:e3:79:6d: 7f:bc:3d:33:ac:3c:6a:73:7a:0d:87:cd:08:0c:15:4a:96:5e: 0d:a0:21:55:63:5e:f4:4f:7c:cc:ca:b3:4e:a0:c6:44:d5:f3: 1a:17:8d:1d:15:33:2f:61:41:c5:81:d6:13:11:9b:24:a9:f8: 3a:15:03:35:cc:2f:78:2e:b4:8e:2e:58:a6:0a:41:a6:d0:f1: 33:c3:64:73:68:22:fa:69:9e:fe:57:a6:65:19:6a:07:08:f0: 7b:bd:cc:71:b5:34:a1:08:6d:65:c2:77:71:50:c7:74:fd:c7: 38:89:fa:da:56:89:05:0e:3f:db:2e:d6:ae:0f:14:6a:68:7c: 42:4c:71:a4:1a:7c:a1:21:d2:1c:af:fa:c1:48:2a:c5:df:87: 93:95:7a:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Fbb48he4OQQunwJo8KraMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5 NjdkYTEwHhcNMjYwMTAyMTQyMTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTg1YzIyMjIxMWEzN2IxODE5OTljNGM2Y2FjNjExMjE0NTU5ZDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8qMkDSNeEpMhfp0kBHFWfe79WiY vY9uM5mAXvbmk64qxnjEBdSBSckYTbkORSaLfFQYIhJjjN7+/38HrOIYMc/MPb3i xF3uDIN9KQ6uMD29MJ7o0qspi9NT69QzLwqvMJbJoZ0WDeBICv11OLNqT/ZuwMpD f1b7SHOEZHfiK5/Uttunk2XyagyS9Wu4yOGazWi8HX1t8Gur41DaxVs4Vf1Y8ghM 9hcophn4WhKM0Mrsjn28vFVlxlX1zjzX/aG/FnDWYLabRwmCVlLDMMFD5GdVzakY VMPpGhVthCUCvNbgjN5hAveiJXZqSNGo1rCrhd/RiuQj/kjuh/6yHhHG2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH6FwiIhGjexgZmcTGysYRIUVZ0RMB8GA1UdIwQY MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt NGJhMmY4ZjFmODNiLzEvZm9YQ0lpRWFON0dCbVp4TWJLeGhFaFJWblJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwzXVMA0G CSqGSIb3DQEBCwUAA4IBAQC/UTrp+VOHAOpswTgr1MCBrivMVf8aU+m+j/+8SX12 nJ5AKRpsXC5ZioPj1n8+YNAMVW9B3shu+Sz1i7IwiLBvz7qipUphotO9L9eY7OuW K+R9OG59WJuPJh95NAk71jiK/EOHy2O04F7jeW1/vD0zrDxqc3oNh80IDBVKll4N oCFVY170T3zMyrNOoMZE1fMaF40dFTMvYUHFgdYTEZskqfg6FQM1zC94LrSOLlim CkGm0PEzw2RzaCL6aZ7+V6ZlGWoHCPB7vcxxtTShCG1lwndxUMd0/cc4ifraVokF Dj/bLtauDxRqaHxCTHGkGnyhIdIcr/rBSCrF34eTlXoS -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:05 2026 by rpki-client