This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/n7VSYaUgna6BrvfvQJiTcoRPzQk.roa File: n7VSYaUgna6BrvfvQJiTcoRPzQk.roa (raw, json) Hash identifier: M0u1q9q0trXFDUH6vNkVVYgYyDRJLjrO4qxwE6RvEOA= Subject key identifier: 9F:B5:52:61:A5:20:9D:AE:81:AE:F7:EF:40:98:93:72:84:4F:CD:09 Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48 Certificate serial: 019B7B35EE2911B4DE48D36F873A733F328C Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/n7VSYaUgna6BrvfvQJiTcoRPzQk.roa Signing time: Thu 01 Jan 2026 20:18:10 +0000 ROA not before: Thu 01 Jan 2026 20:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205225 IP address blocks: 185.117.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ee:29:11:b4:de:48:d3:6f:87:3a:73:3f:32:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48 Validity Not Before: Jan 1 20:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9fb55261a5209dae81aef7ef40989372844fcd09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ff:e7:0e:78:bd:ff:f0:44:ca:55:e1:77:d3: 53:de:25:6d:d2:35:e0:cb:1b:95:24:a0:66:97:f9: 25:ce:3f:c3:31:5c:f4:cb:e5:ec:34:a4:0b:6d:c9: f8:ba:a9:e7:03:b6:06:49:64:13:a4:01:84:33:f4: a6:d0:47:e0:7b:23:8c:a6:fe:b5:58:22:a3:18:c1: 92:28:a0:72:13:ad:c3:4f:4a:bf:3e:d7:20:72:c5: 75:4d:ba:54:f5:98:1e:e4:bb:1c:e6:76:c7:ea:3c: e2:85:88:25:6e:43:f5:38:5b:3c:77:2b:51:30:c1: af:57:12:78:98:8e:be:27:07:ce:15:b5:ec:db:47: 3b:3b:98:d9:27:d4:d0:49:9d:0d:81:2e:94:2e:88: c7:25:c2:ab:f0:78:57:2d:a3:06:11:77:9e:a4:44: 54:a0:5f:74:58:b2:b4:eb:e6:9a:80:82:0d:e2:54: b6:73:12:08:6e:9f:f4:18:bf:e0:e0:5b:0b:9a:0a: cf:05:05:e3:ea:b9:14:5e:62:b7:3e:fb:d9:49:c7: 09:03:32:69:79:ea:ef:3a:ac:cb:ba:7f:8f:33:51: 82:2e:b0:2c:34:dd:7e:6f:36:15:76:74:0f:ea:13: e2:3c:ad:2f:a7:55:a4:2e:fb:8a:4f:1a:1e:1f:c2: 3e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B5:52:61:A5:20:9D:AE:81:AE:F7:EF:40:98:93:72:84:4F:CD:09 X509v3 Authority Key Identifier: keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/n7VSYaUgna6BrvfvQJiTcoRPzQk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.117.63.0/24 Signature Algorithm: sha256WithRSAEncryption 44:e2:09:5b:62:f4:8a:b7:df:ea:e6:6a:cf:0e:e8:59:9d:89: da:7a:86:10:81:74:b2:15:15:11:21:f9:a5:10:91:4c:5c:dc: dd:10:bb:e7:e3:a5:17:0e:8d:e5:a2:bf:3d:37:ff:4d:ed:d7: df:6d:dc:24:14:d9:8c:9b:96:03:6c:48:89:fa:df:9d:f8:5b: 35:b6:3e:6e:7a:86:9a:ce:5c:fa:42:de:1e:48:16:05:09:1f: ec:da:29:5f:34:9d:e4:ff:74:d8:2c:8d:01:86:43:6d:f2:19: 24:3e:04:c8:76:69:c4:2f:20:b6:41:25:83:99:ee:70:ca:db: 1a:18:44:8a:f1:06:50:6d:1e:45:03:03:2a:02:e1:03:4c:de: 8e:36:62:94:c0:45:48:66:78:5f:23:fa:6d:f5:39:9c:0d:3f: 4d:1f:59:43:08:f3:13:9c:ec:a7:d6:5c:15:e8:0a:97:56:22: bd:43:37:40:88:9b:ee:50:62:3a:fa:94:a5:0b:ea:7c:8b:a0: a2:bc:04:0e:11:7e:c6:3b:13:f9:c8:81:41:08:2f:7e:b3:16: e1:de:a7:2a:9b:6d:e9:e7:e6:87:4d:4d:ca:74:8c:02:3a:d0: c9:7f:7d:5e:18:62:53:e1:98:96:52:54:30:87:6c:29:27:e7: 43:98:96:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Ne4pEbTeSNNvhzpzPzKMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiOGZlMjQ2NTg0MzAzMWI3NzhiYjhkOGI3YmQzNWEwOTRm Y2NmNDgwHhcNMjYwMTAxMjAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZmI1NTI2MWE1MjA5ZGFlODFhZWY3ZWY0MDk4OTM3Mjg0NGZjZDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuv/nDni9//BEylXhd9NT3iVt0jXg yxuVJKBml/klzj/DMVz0y+XsNKQLbcn4uqnnA7YGSWQTpAGEM/Sm0EfgeyOMpv61 WCKjGMGSKKByE63DT0q/PtcgcsV1TbpU9Zge5Lsc5nbH6jzihYglbkP1OFs8dytR MMGvVxJ4mI6+JwfOFbXs20c7O5jZJ9TQSZ0NgS6ULojHJcKr8HhXLaMGEXeepERU oF90WLK06+aagIIN4lS2cxIIbp/0GL/g4FsLmgrPBQXj6rkUXmK3PvvZSccJAzJp eervOqzLun+PM1GCLrAsNN1+bzYVdnQP6hPiPK0vp1WkLvuKTxoeH8I+xwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ+1UmGlIJ2uga7370CYk3KET80JMB8GA1UdIwQY MBaAFDuP4kZYQwMbd4u42Le9NaCU/M9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2Mt N2MzNTAwNmUwN2ExLzEvbjdWU1lhVWduYTZCcnZmdlFKaVRjb1JQelFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9lZjIwY2YtNGMzOS00NzA3LTg1N2MtN2MzNTAwNmUwN2Ex LzEvTzRfaVJsaERBeHQzaTdqWXQ3MDFvSlQ4ejBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXU/MA0G CSqGSIb3DQEBCwUAA4IBAQBE4glbYvSKt9/q5mrPDuhZnYnaeoYQgXSyFRURIfml EJFMXNzdELvn46UXDo3lor89N/9N7dffbdwkFNmMm5YDbEiJ+t+d+Fs1tj5ueoaa zlz6Qt4eSBYFCR/s2ilfNJ3k/3TYLI0BhkNt8hkkPgTIdmnELyC2QSWDme5wytsa GESK8QZQbR5FAwMqAuEDTN6ONmKUwEVIZnhfI/pt9TmcDT9NH1lDCPMTnOyn1lwV 6AqXViK9QzdAiJvuUGI6+pSlC+p8i6CivAQOEX7GOxP5yIFBCC9+sxbh3qcqm23p 5+aHTU3KdIwCOtDJf31eGGJT4ZiWUlQwh2wpJ+dDmJbM -----END CERTIFICATE-----Generated at Mon Jan 26 00:15:50 2026 by rpki-client