This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/42a193-b30b-403f-befe-3245450d3742/1/7nDTBpJtA6TLPMoPs4MSzkiJ0QU.roa File: 7nDTBpJtA6TLPMoPs4MSzkiJ0QU.roa (raw, json) Hash identifier: PkhpqveqXdmcBclNcQ/UeHObmG1C5glRWKTIYCRgTRk= Subject key identifier: EE:70:D3:06:92:6D:03:A4:CB:3C:CA:0F:B3:83:12:CE:48:89:D1:05 Certificate issuer: /CN=e52acfcbd79f232c5d72a550bc4c66f11107a0e2 Certificate serial: 019B7CED2007DB859E22BDA95429CEF16E9E Authority key identifier: E5:2A:CF:CB:D7:9F:23:2C:5D:72:A5:50:BC:4C:66:F1:11:07:A0:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SrPy9efIyxdcqVQvExm8REHoOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/42a193-b30b-403f-befe-3245450d3742/1/7nDTBpJtA6TLPMoPs4MSzkiJ0QU.roa Signing time: Fri 02 Jan 2026 04:17:53 +0000 ROA not before: Fri 02 Jan 2026 04:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206866 IP address blocks: 157.97.88.0/24 maxlen: 24 157.97.89.0/24 maxlen: 24 157.97.90.0/24 maxlen: 24 157.97.91.0/24 maxlen: 24 157.97.92.0/24 maxlen: 24 157.97.93.0/24 maxlen: 24 157.97.94.0/24 maxlen: 24 157.97.95.0/24 maxlen: 24 176.98.216.0/23 maxlen: 23 176.98.218.0/23 maxlen: 23 185.56.180.0/24 maxlen: 24 185.56.181.0/24 maxlen: 24 185.56.182.0/23 maxlen: 24 2a02:52e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/42a193-b30b-403f-befe-3245450d3742/1/5SrPy9efIyxdcqVQvExm8REHoOI.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/42a193-b30b-403f-befe-3245450d3742/1/5SrPy9efIyxdcqVQvExm8REHoOI.mft rsync://rpki.ripe.net/repository/DEFAULT/5SrPy9efIyxdcqVQvExm8REHoOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:20:07:db:85:9e:22:bd:a9:54:29:ce:f1:6e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e52acfcbd79f232c5d72a550bc4c66f11107a0e2 Validity Not Before: Jan 2 04:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee70d306926d03a4cb3cca0fb38312ce4889d105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b0:11:93:1f:b8:64:77:89:ba:e1:38:e4:b7: dc:64:4a:35:10:4b:f6:21:8a:fa:8a:92:e2:7d:bb: e5:88:c4:f9:a2:46:9d:3b:ca:57:94:2b:b8:b8:b4: ca:4d:c8:f6:db:71:bb:89:b5:be:af:c8:16:d4:65: 27:03:69:4e:f9:ff:c6:85:60:6b:f0:7e:6a:e5:d0: f7:c9:d3:5c:8d:0a:3c:56:07:55:c0:9f:02:fb:78: af:d7:52:b9:e2:30:0a:ae:2d:2c:63:15:7f:c0:83: 59:40:65:b5:fc:08:5b:8c:77:85:fa:68:06:4c:ea: ba:14:e7:c8:62:20:bd:a1:a7:03:44:1f:09:90:a8: ae:a3:dc:a3:ce:c7:16:0e:31:e4:a3:7c:fb:ae:3f: 08:41:b1:da:c9:54:5f:87:28:ac:77:01:74:12:ad: f3:ef:ad:4e:0e:7f:cc:81:b3:01:1c:a3:74:ec:fc: e9:b6:62:53:7d:f3:d3:5b:ad:7b:03:9a:14:5e:c5: 7d:dc:41:5b:e8:eb:b4:3f:7a:3c:54:f3:7e:83:6b: 9d:9c:62:c7:a3:c4:45:15:0c:b7:43:a2:08:f2:6c: bd:63:23:4e:41:06:ef:02:8f:2a:aa:ea:ac:03:8e: 5f:c4:02:ca:4e:f3:43:08:38:6a:e1:da:7b:fc:4a: c2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:70:D3:06:92:6D:03:A4:CB:3C:CA:0F:B3:83:12:CE:48:89:D1:05 X509v3 Authority Key Identifier: keyid:E5:2A:CF:CB:D7:9F:23:2C:5D:72:A5:50:BC:4C:66:F1:11:07:A0:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SrPy9efIyxdcqVQvExm8REHoOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/42a193-b30b-403f-befe-3245450d3742/1/7nDTBpJtA6TLPMoPs4MSzkiJ0QU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/42a193-b30b-403f-befe-3245450d3742/1/5SrPy9efIyxdcqVQvExm8REHoOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.97.88.0/21 176.98.216.0/22 185.56.180.0/22 IPv6: 2a02:52e0::/32 Signature Algorithm: sha256WithRSAEncryption b9:75:b0:e1:ed:9b:7f:c7:0e:b4:58:ee:12:93:a4:01:5e:69: b4:d6:34:c6:8a:b7:67:62:b2:20:95:78:a1:2b:e9:4b:7e:60: 62:70:3c:eb:a1:e6:08:e3:1c:a3:e4:8b:06:e2:ba:55:0d:6a: 93:5f:f4:17:d4:14:32:4b:5c:5c:e1:8f:b2:02:cf:90:57:c5: ee:d5:91:7b:37:3c:72:26:f5:b4:d5:56:38:e7:26:74:fc:d4: 7f:4e:30:64:4d:76:cc:d7:86:5f:c5:8c:92:1f:6e:8d:a2:ad: e2:bd:fc:3e:5b:f7:35:da:4e:ea:b9:db:df:20:71:e7:95:08: d2:87:1b:ae:e7:2a:ff:b3:ef:da:12:b4:d0:ca:d0:af:14:b4: 33:27:bb:10:d4:49:e3:3f:69:e0:8b:68:3a:6c:38:64:69:0b: 02:2e:88:97:06:57:e1:cb:00:ea:c0:50:49:a1:e1:4a:8c:34: 79:ca:00:51:d5:cb:11:3f:c0:22:21:03:88:cd:18:e8:c4:42: 75:1a:c7:a8:bf:09:5b:ba:d8:23:a8:0b:16:d1:8c:ab:7d:90: b7:86:cd:97:9e:75:a9:af:2f:71:49:cd:72:ed:7b:51:69:f6: 00:c8:91:1c:ec:2a:94:32:e4:a2:99:02:bb:84:e1:3e:eb:1b: 40:c5:f3:84 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt87SAH24WeIr2pVCnO8W6eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1MmFjZmNiZDc5ZjIzMmM1ZDcyYTU1MGJjNGM2NmYxMTEw N2EwZTIwHhcNMjYwMTAyMDQxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTcwZDMwNjkyNmQwM2E0Y2IzY2NhMGZiMzgzMTJjZTQ4ODlkMTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLARkx+4ZHeJuuE45LfcZEo1EEv2 IYr6ipLifbvliMT5okadO8pXlCu4uLTKTcj223G7ibW+r8gW1GUnA2lO+f/GhWBr 8H5q5dD3ydNcjQo8VgdVwJ8C+3iv11K54jAKri0sYxV/wINZQGW1/AhbjHeF+mgG TOq6FOfIYiC9oacDRB8JkKiuo9yjzscWDjHko3z7rj8IQbHayVRfhyisdwF0Eq3z 761ODn/MgbMBHKN07PzptmJTffPTW617A5oUXsV93EFb6Ou0P3o8VPN+g2udnGLH o8RFFQy3Q6II8my9YyNOQQbvAo8qquqsA45fxALKTvNDCDhq4dp7/ErCfQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFO5w0waSbQOkyzzKD7ODEs5IidEFMB8GA1UdIwQY MBaAFOUqz8vXnyMsXXKlULxMZvERB6DiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVNyUHk5ZWZJeXhkY3FWUXZFeG04UkVIb09JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80MmExOTMtYjMwYi00MDNmLWJlZmUt MzI0NTQ1MGQzNzQyLzEvN25EVEJwSnRBNlRMUE1vUHM0TVN6a2lKMFFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80MmExOTMtYjMwYi00MDNmLWJlZmUtMzI0NTQ1MGQzNzQy LzEvNVNyUHk5ZWZJeXhkY3FWUXZFeG04UkVIb09JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQDnWFYAwQC sGLYAwQCuTi0MA0EAgACMAcDBQAqAlLgMA0GCSqGSIb3DQEBCwUAA4IBAQC5dbDh 7Zt/xw60WO4Sk6QBXmm01jTGirdnYrIglXihK+lLfmBicDzroeYI4xyj5IsG4rpV DWqTX/QX1BQyS1xc4Y+yAs+QV8Xu1ZF7NzxyJvW01VY45yZ0/NR/TjBkTXbM14Zf xYySH26Noq3ivfw+W/c12k7qudvfIHHnlQjShxuu5yr/s+/aErTQytCvFLQzJ7sQ 1EnjP2ngi2g6bDhkaQsCLoiXBlfhywDqwFBJoeFKjDR5ygBR1csRP8AiIQOIzRjo xEJ1GseovwlbutgjqAsW0YyrfZC3hs2XnnWpry9xSc1y7XtRafYAyJEc7CqUMuSi mQK7hOE+6xtAxfOE -----END CERTIFICATE-----Generated at Sun Jan 25 22:16:05 2026 by rpki-client