This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/s7RCJecrkvhO4O8n4hnHhMn63mI.roa File: s7RCJecrkvhO4O8n4hnHhMn63mI.roa (raw, json) Hash identifier: RMUboypqGxzOTuEkOaIhesKwecXYlREEbxutxlq+fCs= Subject key identifier: B3:B4:42:25:E7:2B:92:F8:4E:E0:EF:27:E2:19:C7:84:C9:FA:DE:62 Certificate issuer: /CN=391a0ecc2b9beaba9eb76d5519fe787b4033fc12 Certificate serial: 019B7AC8DB97B8B8A1E3E263A6BEC3781785 Authority key identifier: 39:1A:0E:CC:2B:9B:EA:BA:9E:B7:6D:55:19:FE:78:7B:40:33:FC:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/s7RCJecrkvhO4O8n4hnHhMn63mI.roa Signing time: Thu 01 Jan 2026 18:19:02 +0000 ROA not before: Thu 01 Jan 2026 18:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212221 IP address blocks: 89.45.200.0/21 maxlen: 21 89.45.200.0/23 maxlen: 23 89.45.202.0/23 maxlen: 23 89.45.203.0/24 maxlen: 24 89.45.204.0/23 maxlen: 23 89.45.206.0/23 maxlen: 23 91.132.4.0/23 maxlen: 23 91.132.6.0/24 maxlen: 24 91.132.7.0/24 maxlen: 24 212.102.106.0/24 maxlen: 24 2a09:b780::/48 maxlen: 48 2a09:b780:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/ORoOzCub6rqet21VGf54e0Az_BI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/ORoOzCub6rqet21VGf54e0Az_BI.mft rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:db:97:b8:b8:a1:e3:e2:63:a6:be:c3:78:17:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=391a0ecc2b9beaba9eb76d5519fe787b4033fc12 Validity Not Before: Jan 1 18:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3b44225e72b92f84ee0ef27e219c784c9fade62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:48:b7:42:38:38:5b:c4:79:ab:3a:d9:8c:10: 20:18:fe:a9:35:3e:2a:d0:8e:ac:fd:52:ef:b5:ee: da:01:f6:c5:c9:a9:96:02:1d:dc:7a:0e:9b:59:e7: 55:a0:60:e9:d6:69:05:4f:cd:f8:b5:53:59:62:b1: 7d:95:eb:5e:78:73:e6:66:38:8b:98:15:9e:42:bc: 7b:d3:e8:7c:8e:f6:10:c1:2d:ea:36:1f:63:68:7c: 75:45:1a:97:ce:cd:cf:2a:58:de:26:52:0a:ce:1c: 0b:5c:c5:c4:47:1d:33:99:4e:32:8c:ec:33:c6:45: c0:33:af:37:97:d4:f6:4d:1e:61:13:6a:a3:c4:b1: 93:07:65:10:db:71:36:7c:70:47:78:c1:da:86:d4: 74:3c:55:64:ea:12:f0:60:74:d0:ac:a6:54:86:5d: 48:18:81:95:3c:19:a0:3e:34:47:fd:15:f3:9f:b5: 01:a6:30:b0:26:c9:10:ce:e0:ee:8c:c5:3a:3e:57: a0:3a:71:af:4a:5a:95:86:34:24:f4:55:88:ab:9f: 53:bc:32:a3:5a:8b:2a:c5:46:b3:48:ea:32:39:78: aa:93:91:8d:75:1c:ef:3e:6e:ae:49:2f:56:85:21: 32:4e:85:43:86:f7:8c:19:51:5c:9e:8c:c8:26:27: 4b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B4:42:25:E7:2B:92:F8:4E:E0:EF:27:E2:19:C7:84:C9:FA:DE:62 X509v3 Authority Key Identifier: keyid:39:1A:0E:CC:2B:9B:EA:BA:9E:B7:6D:55:19:FE:78:7B:40:33:FC:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/s7RCJecrkvhO4O8n4hnHhMn63mI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/ORoOzCub6rqet21VGf54e0Az_BI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.45.200.0/21 91.132.4.0/22 212.102.106.0/24 IPv6: 2a09:b780::/47 Signature Algorithm: sha256WithRSAEncryption 42:43:a3:5e:be:bd:88:f9:30:34:7d:c0:79:48:f8:c9:c0:0d: 07:b8:46:c1:66:a1:5b:6b:7a:b0:cb:2e:43:54:1c:95:c6:10: 19:d8:0e:ad:5e:6d:3e:42:a5:fe:fa:a8:75:01:4e:1b:0a:49: aa:74:cb:0e:0f:66:62:71:6c:2b:bb:f8:32:ff:43:2b:ee:e2: 93:8c:51:29:51:44:85:5e:8c:3a:f9:84:01:f5:a5:02:11:41: 54:48:90:da:e5:09:b3:03:14:8a:31:7c:2e:51:68:1b:8c:1f: dc:3c:06:a6:bb:2f:9f:cf:6c:58:d0:0e:32:ec:31:87:69:ff: 1f:0f:07:c2:14:7e:ec:4d:44:5d:2e:96:19:ca:e0:30:9b:54: 82:50:27:fd:90:5d:3c:ec:28:96:69:47:b5:48:43:50:e5:e4: 37:26:bb:6f:d3:b0:a4:49:c8:6d:d0:61:53:72:35:68:fe:d7: 2b:b5:f4:26:31:61:2d:94:61:1c:cf:f2:2e:9f:db:cb:42:f6: dc:dc:93:bd:63:65:1d:55:ad:9f:a2:ad:49:81:13:de:b7:c0: 58:3d:7b:3b:ef:d8:22:f4:86:86:bf:a8:47:7d:e3:f0:9f:d9: 0b:ee:97:7c:64:19:26:04:35:94:af:da:c6:34:48:0c:dd:e0: 45:96:68:5e -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISAZt6yNuXuLih4+Jjpr7DeBeFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MWEwZWNjMmI5YmVhYmE5ZWI3NmQ1NTE5ZmU3ODdiNDAz M2ZjMTIwHhcNMjYwMTAxMTgxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiM2I0NDIyNWU3MmI5MmY4NGVlMGVmMjdlMjE5Yzc4NGM5ZmFkZTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEi3Qjg4W8R5qzrZjBAgGP6pNT4q 0I6s/VLvte7aAfbFyamWAh3ceg6bWedVoGDp1mkFT834tVNZYrF9leteeHPmZjiL mBWeQrx70+h8jvYQwS3qNh9jaHx1RRqXzs3PKljeJlIKzhwLXMXERx0zmU4yjOwz xkXAM683l9T2TR5hE2qjxLGTB2UQ23E2fHBHeMHahtR0PFVk6hLwYHTQrKZUhl1I GIGVPBmgPjRH/RXzn7UBpjCwJskQzuDujMU6PlegOnGvSlqVhjQk9FWIq59TvDKj WosqxUazSOoyOXiqk5GNdRzvPm6uSS9WhSEyToVDhveMGVFcnozIJidLxQIDAQAB o4ICJjCCAiIwHQYDVR0OBBYEFLO0QiXnK5L4TuDvJ+IZx4TJ+t5iMB8GA1UdIwQY MBaAFDkaDswrm+q6nrdtVRn+eHtAM/wSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1JvT3pDdWI2cnFldDIxVkdmNTRlMEF6X0JJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9jMjdjZDEtNTcwYi00N2QxLWIyNTYt MTgxNDIyM2Q5MmNlLzEvczdSQ0plY3JrdmhPNE84bjRobkhoTW42M21JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9jMjdjZDEtNTcwYi00N2QxLWIyNTYtMTgxNDIyM2Q5MmNl LzEvT1JvT3pDdWI2cnFldDIxVkdmNTRlMEF6X0JJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQDWS3IAwQC W4QEAwQA1GZqMA8EAgACMAkDBwEqCbeAAAAwDQYJKoZIhvcNAQELBQADggEBAEJD o16+vYj5MDR9wHlI+MnADQe4RsFmoVtrerDLLkNUHJXGEBnYDq1ebT5Cpf76qHUB ThsKSap0yw4PZmJxbCu7+DL/Qyvu4pOMUSlRRIVejDr5hAH1pQIRQVRIkNrlCbMD FIoxfC5RaBuMH9w8Bqa7L5/PbFjQDjLsMYdp/x8PB8IUfuxNRF0ulhnK4DCbVIJQ J/2QXTzsKJZpR7VIQ1Dl5Dcmu2/TsKRJyG3QYVNyNWj+1yu19CYxYS2UYRzP8i6f 28tC9tzck71jZR1VrZ+irUmBE963wFg9ezvv2CL0hoa/qEd94/Cf2Qvul3xkGSYE NZSv2sY0SAzd4EWWaF4= -----END CERTIFICATE-----Generated at Mon Jan 26 06:03:17 2026 by rpki-client