This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/K7zaYiA4cUm1xenNoU5bzoYVcUA.roa File: K7zaYiA4cUm1xenNoU5bzoYVcUA.roa (raw, json) Hash identifier: loCWwpkjmfHoTvN0F0nQ8C+FbDYIJy/va2o4zLxPRX0= Subject key identifier: 2B:BC:DA:62:20:38:71:49:B5:C5:E9:CD:A1:4E:5B:CE:86:15:71:40 Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6 Certificate serial: 019B7834CD4C05A4FA5519C6293D9F3BCB73 Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/K7zaYiA4cUm1xenNoU5bzoYVcUA.roa Signing time: Thu 01 Jan 2026 06:18:04 +0000 ROA not before: Thu 01 Jan 2026 06:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199834 IP address blocks: 185.141.26.0/24 maxlen: 24 2001:37c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:cd:4c:05:a4:fa:55:19:c6:29:3d:9f:3b:cb:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6 Validity Not Before: Jan 1 06:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2bbcda6220387149b5c5e9cda14e5bce86157140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a9:2e:96:50:57:c1:2f:61:56:47:dd:20:a3: 77:cb:96:db:8a:cd:01:45:bc:5e:31:c9:43:1b:87: 6a:21:00:ba:e4:de:b4:42:d3:d6:af:e8:82:bb:cd: b2:90:ed:7d:b5:5a:1c:d7:a5:8f:7c:52:07:c6:dc: db:a6:18:1e:e4:0d:b3:c5:1b:b0:9f:aa:b2:8b:a9: b4:b2:6a:01:36:c0:41:0d:41:4d:e0:45:98:c9:aa: 45:e9:6d:b2:3a:43:e1:62:d7:32:0a:d8:6b:39:ed: 88:77:14:1b:bd:62:5f:bb:46:60:87:90:a4:f2:bb: 78:78:75:0e:53:fa:df:6f:d8:ea:bb:0d:11:a5:9f: cc:1b:bc:07:8f:66:a8:e7:0d:6d:ff:e8:e5:d4:1d: 0a:7d:30:7d:4a:7c:8b:84:41:20:11:6b:58:b6:92: f7:b7:83:46:f1:67:66:91:9c:8f:73:db:bc:1e:c8: 83:7d:e5:e4:2a:8a:09:78:ef:18:f3:71:d6:a2:b9: 38:96:66:cb:b2:df:b3:6c:22:85:4c:ee:57:65:a9: d9:58:99:09:35:f0:64:52:10:b5:15:d2:2b:f1:21: 9b:fe:2d:43:a2:26:e0:c7:b5:7d:33:af:d7:2e:cd: dd:35:90:14:47:48:8b:af:30:fe:fd:32:5e:04:9c: e4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:BC:DA:62:20:38:71:49:B5:C5:E9:CD:A1:4E:5B:CE:86:15:71:40 X509v3 Authority Key Identifier: keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/K7zaYiA4cUm1xenNoU5bzoYVcUA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.141.26.0/24 IPv6: 2001:37c0::/29 Signature Algorithm: sha256WithRSAEncryption 5e:41:bc:ee:c9:59:eb:d4:2b:fc:e9:a3:fa:c2:c7:3f:9a:a0: c0:4b:97:96:07:d9:b2:62:ca:e9:5c:46:59:fc:e0:bc:89:a8: 3f:73:71:84:e3:85:35:20:07:ea:fe:0c:61:f5:3f:74:d2:eb: 7a:6d:9f:07:41:28:3f:eb:b5:ca:aa:0c:84:fd:ac:57:07:11: 05:82:94:af:2b:9a:2f:17:1a:88:65:73:ff:04:25:75:69:53: bf:2a:55:0f:ce:c3:97:0c:e2:2c:3a:c6:7f:46:c2:55:bf:5f: 07:a0:59:21:9e:3c:d2:31:c7:c6:c3:b6:7f:1e:92:a2:19:09: 99:0f:79:fc:29:7b:57:9e:d0:ab:77:78:5c:92:46:a6:11:2d: d3:5e:01:93:e5:1b:0e:fa:df:dd:8a:09:6a:d9:ce:b7:0e:7e: 5a:d6:29:0d:31:51:54:52:56:cb:06:73:0c:c4:32:0c:f0:3e: 7d:78:fb:72:fb:49:ec:ed:0e:18:7a:bb:7b:32:88:96:ac:90: 52:6b:94:db:bd:cc:25:4a:16:ef:9a:2a:bd:6d:26:60:d5:c7: d7:14:a7:13:5e:2f:4b:8e:13:92:09:61:bc:cf:c6:f2:99:62: a9:47:ed:bb:c7:d7:f1:96:54:14:e7:e7:f0:cb:8e:93:2f:1a: 30:cf:af:83 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NM1MBaT6VRnGKT2fO8tzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNzAyMDJjMzEyZGQyYzdhNmZmYzMxN2FhODZlNGUyMDY5 MjQ5YTYwHhcNMjYwMTAxMDYxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYmJjZGE2MjIwMzg3MTQ5YjVjNWU5Y2RhMTRlNWJjZTg2MTU3MTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKkullBXwS9hVkfdIKN3y5bbis0B RbxeMclDG4dqIQC65N60QtPWr+iCu82ykO19tVoc16WPfFIHxtzbphge5A2zxRuw n6qyi6m0smoBNsBBDUFN4EWYyapF6W2yOkPhYtcyCthrOe2IdxQbvWJfu0Zgh5Ck 8rt4eHUOU/rfb9jquw0RpZ/MG7wHj2ao5w1t/+jl1B0KfTB9SnyLhEEgEWtYtpL3 t4NG8WdmkZyPc9u8HsiDfeXkKooJeO8Y83HWork4lmbLst+zbCKFTO5XZanZWJkJ NfBkUhC1FdIr8SGb/i1Doibgx7V9M6/XLs3dNZAUR0iLrzD+/TJeBJzkrQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCu82mIgOHFJtcXpzaFOW86GFXFAMB8GA1UdIwQY MBaAFApwICwxLdLHpv/DF6qG5OIGkkmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMt NjhjODQ5Mjc3ZDczLzEvSzd6YVlpQTRjVW0xeGVuTm9VNWJ6b1lWY1VBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMtNjhjODQ5Mjc3ZDcz LzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuY0aMA0E AgACMAcDBQMgATfAMA0GCSqGSIb3DQEBCwUAA4IBAQBeQbzuyVnr1Cv86aP6wsc/ mqDAS5eWB9myYsrpXEZZ/OC8iag/c3GE44U1IAfq/gxh9T900ut6bZ8HQSg/67XK qgyE/axXBxEFgpSvK5ovFxqIZXP/BCV1aVO/KlUPzsOXDOIsOsZ/RsJVv18HoFkh njzSMcfGw7Z/HpKiGQmZD3n8KXtXntCrd3hckkamES3TXgGT5RsO+t/diglq2c63 Dn5a1ikNMVFUUlbLBnMMxDIM8D59ePty+0ns7Q4Yert7MoiWrJBSa5TbvcwlShbv miq9bSZg1cfXFKcTXi9LjhOSCWG8z8bymWKpR+27x9fxllQU5+fwy46TLxowz6+D -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:32 2026 by rpki-client