This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b9a4ac-b671-411b-ac47-19005cb98989/1/7w7oDCky3AV97MuZ6NwGQ3x9HGU.roa File: 7w7oDCky3AV97MuZ6NwGQ3x9HGU.roa (raw, json) Hash identifier: 7XBb43aHvOCSfipcR6qByLYTIyX5HDAp9+iD4nMHLV4= Subject key identifier: EF:0E:E8:0C:29:32:DC:05:7D:EC:CB:99:E8:DC:06:43:7C:7D:1C:65 Certificate issuer: /CN=2f407dea499d73d7ebd4e68825188687559cb1f9 Certificate serial: 019B7E37A16D05451D8C03D86E878194F254 Authority key identifier: 2F:40:7D:EA:49:9D:73:D7:EB:D4:E6:88:25:18:86:87:55:9C:B1:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L0B96kmdc9fr1OaIJRiGh1Wcsfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b9a4ac-b671-411b-ac47-19005cb98989/1/7w7oDCky3AV97MuZ6NwGQ3x9HGU.roa Signing time: Fri 02 Jan 2026 10:18:53 +0000 ROA not before: Fri 02 Jan 2026 10:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207143 IP address blocks: 194.56.188.0/24 maxlen: 24 194.56.189.0/24 maxlen: 24 194.56.190.0/24 maxlen: 24 194.56.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/b9a4ac-b671-411b-ac47-19005cb98989/1/L0B96kmdc9fr1OaIJRiGh1Wcsfk.crl rsync://rpki.ripe.net/repository/DEFAULT/df/b9a4ac-b671-411b-ac47-19005cb98989/1/L0B96kmdc9fr1OaIJRiGh1Wcsfk.mft rsync://rpki.ripe.net/repository/DEFAULT/L0B96kmdc9fr1OaIJRiGh1Wcsfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:a1:6d:05:45:1d:8c:03:d8:6e:87:81:94:f2:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f407dea499d73d7ebd4e68825188687559cb1f9 Validity Not Before: Jan 2 10:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef0ee80c2932dc057deccb99e8dc06437c7d1c65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8b:37:31:c7:b8:2d:00:d4:f5:28:56:73:83: 30:30:6e:a8:90:09:14:3f:b6:5d:e3:fe:4b:53:34: 53:e9:80:90:19:ef:1e:83:e7:64:3b:0f:ec:5c:55: 7e:e5:b7:bb:ea:f3:f5:0b:8f:51:28:8c:e4:64:1c: f0:c8:7e:1d:f3:b9:04:42:dd:07:ad:fc:b2:4e:ce: 09:37:58:f6:86:b3:0c:65:ca:43:3f:c7:00:ac:c9: 7d:a1:14:8e:fb:7a:45:1a:3f:a1:48:34:8f:a5:92: f2:44:af:c2:10:c0:fe:bd:e5:8f:dd:59:b8:8f:92: 21:ed:c6:70:ab:45:51:6f:c5:f2:58:a6:94:32:cf: f7:d1:af:7f:0d:52:8e:07:80:dd:bb:d4:75:9a:de: 52:17:0b:a4:50:29:e7:41:bb:9c:71:34:b1:4c:55: b7:a6:c6:1a:f4:f8:2f:ce:6f:a7:a5:aa:6e:fe:11: 0a:70:e1:db:ae:60:f0:5f:f1:69:a7:ce:11:1d:49: 96:66:67:06:1d:a5:66:49:6c:a1:f6:4d:6e:74:b6: e0:78:06:7f:88:4b:9f:ec:3b:b5:8c:e5:71:3c:ce: 9c:bd:03:98:af:99:c6:1f:13:3d:44:fa:14:31:e4: 88:57:5f:13:e0:22:32:eb:14:4b:07:eb:57:bd:e2: 3d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0E:E8:0C:29:32:DC:05:7D:EC:CB:99:E8:DC:06:43:7C:7D:1C:65 X509v3 Authority Key Identifier: keyid:2F:40:7D:EA:49:9D:73:D7:EB:D4:E6:88:25:18:86:87:55:9C:B1:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L0B96kmdc9fr1OaIJRiGh1Wcsfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a4ac-b671-411b-ac47-19005cb98989/1/7w7oDCky3AV97MuZ6NwGQ3x9HGU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a4ac-b671-411b-ac47-19005cb98989/1/L0B96kmdc9fr1OaIJRiGh1Wcsfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.56.188.0/22 Signature Algorithm: sha256WithRSAEncryption a3:13:04:8b:d8:93:48:d8:b5:8c:60:19:12:4b:2e:d0:ec:d0: a5:28:c6:00:de:3c:39:43:b0:91:6c:fe:34:f8:5d:62:e9:18: 9e:57:5b:d7:0c:96:a5:9e:b0:b2:cc:b1:38:12:07:f7:e2:44: e2:72:6d:a5:5c:db:da:37:85:20:15:44:dd:b1:ff:dc:66:87: f2:53:5c:ee:e4:19:f6:d7:8c:18:55:a7:8c:74:62:81:24:b2: 11:51:ff:d4:de:76:ce:7e:b5:0d:be:41:df:43:0f:2c:72:23: e0:12:ea:1c:9e:6d:d9:51:4f:bc:58:dc:83:0f:a6:d9:92:4a: ef:82:e5:b6:ae:5f:1a:1d:08:12:00:72:7b:7e:2b:cc:05:37: 7f:34:b1:9b:e5:9f:0a:a0:8c:02:c8:be:b6:ef:0e:b7:0b:2e: 04:0b:ee:dc:8b:b9:2d:34:7b:4e:b0:ab:d1:ca:74:ce:be:a1: 67:a2:97:82:53:ae:75:82:c4:67:60:27:4b:e4:7a:02:47:22: b5:47:19:0b:3e:c8:cc:08:ec:94:58:d5:cc:36:12:63:36:a8: bc:a5:ed:69:8c:d0:79:24:2a:72:13:c8:1a:01:36:80:47:1e: 9e:f4:11:9d:e6:66:29:18:15:78:5e:9d:1e:33:51:b0:32:ba: c3:fb:58:ef -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N6FtBUUdjAPYboeBlPJUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmNDA3ZGVhNDk5ZDczZDdlYmQ0ZTY4ODI1MTg4Njg3NTU5 Y2IxZjkwHhcNMjYwMTAyMTAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjBlZTgwYzI5MzJkYzA1N2RlY2NiOTllOGRjMDY0MzdjN2QxYzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Is3Mce4LQDU9ShWc4MwMG6okAkU P7Zd4/5LUzRT6YCQGe8eg+dkOw/sXFV+5be76vP1C49RKIzkZBzwyH4d87kEQt0H rfyyTs4JN1j2hrMMZcpDP8cArMl9oRSO+3pFGj+hSDSPpZLyRK/CEMD+veWP3Vm4 j5Ih7cZwq0VRb8XyWKaUMs/30a9/DVKOB4Ddu9R1mt5SFwukUCnnQbuccTSxTFW3 psYa9Pgvzm+npapu/hEKcOHbrmDwX/Fpp84RHUmWZmcGHaVmSWyh9k1udLbgeAZ/ iEuf7Du1jOVxPM6cvQOYr5nGHxM9RPoUMeSIV18T4CIy6xRLB+tXveI9GwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFO8O6AwpMtwFfezLmejcBkN8fRxlMB8GA1UdIwQY MBaAFC9AfepJnXPX69TmiCUYhodVnLH5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDBCOTZrbWRjOWZyMU9hSUpSaUdoMVdjc2ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9iOWE0YWMtYjY3MS00MTFiLWFjNDct MTkwMDVjYjk4OTg5LzEvN3c3b0RDa3kzQVY5N011WjZOd0dRM3g5SEdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9iOWE0YWMtYjY3MS00MTFiLWFjNDctMTkwMDVjYjk4OTg5 LzEvTDBCOTZrbWRjOWZyMU9hSUpSaUdoMVdjc2ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwji8MA0G CSqGSIb3DQEBCwUAA4IBAQCjEwSL2JNI2LWMYBkSSy7Q7NClKMYA3jw5Q7CRbP40 +F1i6RieV1vXDJalnrCyzLE4Egf34kTicm2lXNvaN4UgFUTdsf/cZofyU1zu5Bn2 14wYVaeMdGKBJLIRUf/U3nbOfrUNvkHfQw8sciPgEuocnm3ZUU+8WNyDD6bZkkrv guW2rl8aHQgSAHJ7fivMBTd/NLGb5Z8KoIwCyL627w63Cy4EC+7ci7ktNHtOsKvR ynTOvqFnopeCU651gsRnYCdL5HoCRyK1RxkLPsjMCOyUWNXMNhJjNqi8pe1pjNB5 JCpyE8gaATaARx6e9BGd5mYpGBV4Xp0eM1GwMrrD+1jv -----END CERTIFICATE-----Generated at Mon Jan 26 06:56:12 2026 by rpki-client