This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/i7BTNifeQAg_X7HpbjiYFKcEkzQ.roa File: i7BTNifeQAg_X7HpbjiYFKcEkzQ.roa (raw, json) Hash identifier: xDc1crGo8ZscrYDHZvMZeulUo2dvGLGk7mMLTBY4vu4= Subject key identifier: 8B:B0:53:36:27:DE:40:08:3F:5F:B1:E9:6E:38:98:14:A7:04:93:34 Certificate issuer: /CN=70e5b30272e43053208978dbe44bfee10a5d007e Certificate serial: 019B7F14BD9D14DE1F7EC9DD20B1E2B5FFA2 Authority key identifier: 70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/i7BTNifeQAg_X7HpbjiYFKcEkzQ.roa Signing time: Fri 02 Jan 2026 14:20:24 +0000 ROA not before: Fri 02 Jan 2026 14:20:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51395 IP address blocks: 79.132.141.0/24 maxlen: 24 199.68.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.mft rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:bd:9d:14:de:1f:7e:c9:dd:20:b1:e2:b5:ff:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70e5b30272e43053208978dbe44bfee10a5d007e Validity Not Before: Jan 2 14:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8bb0533627de40083f5fb1e96e389814a7049334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a0:b1:6d:c9:d0:ca:f3:78:eb:94:8f:54:c5: 74:23:6b:ba:ae:40:c3:18:c9:6c:b8:e6:07:1d:45: dd:d5:9e:7a:1d:27:2c:82:f3:5a:a1:90:07:a7:f4: 37:14:46:04:b7:69:80:2b:9a:7f:d4:e0:f6:40:03: d2:7b:fe:da:98:3c:34:af:f7:44:38:df:64:fb:d7: 7a:e2:b6:5d:f3:09:fd:75:83:40:44:a0:96:64:d4: 7f:f0:7d:a5:1b:97:7f:fe:ea:10:ba:4f:2c:3d:90: 0f:ec:0e:44:d1:9b:2a:20:cb:ca:39:1e:92:0b:83: b4:c9:72:b1:80:1f:77:b9:fa:81:32:d4:9e:37:6c: 57:fe:5e:9d:69:b2:c4:90:28:75:fd:ee:d1:a8:c3: f2:fc:fa:27:2a:bb:72:c8:85:9c:0d:d0:ce:a0:21: f8:b8:ad:0a:69:26:ca:1d:7a:59:e3:1d:7b:c0:e8: 93:4c:5c:c8:8b:dd:f4:43:94:60:5a:62:8d:d0:aa: 5c:90:07:fc:95:2d:75:ec:75:e3:13:0b:88:02:ba: 01:f1:d8:0a:ff:df:09:7b:06:8e:2e:85:16:60:a7: 5d:1a:8c:e9:c2:ec:8f:d4:c3:28:6d:84:6c:53:26: af:80:c6:0c:eb:da:da:97:2e:0b:43:26:8d:74:ae: 05:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B0:53:36:27:DE:40:08:3F:5F:B1:E9:6E:38:98:14:A7:04:93:34 X509v3 Authority Key Identifier: keyid:70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/i7BTNifeQAg_X7HpbjiYFKcEkzQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.132.141.0/24 199.68.196.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:31:da:a2:4d:ad:4c:32:20:83:23:e3:b5:d2:61:8a:d1:bb: 0f:90:18:2a:7c:fe:01:3f:55:4e:bc:04:ef:64:e7:91:26:34: c9:64:58:5f:14:b5:01:7e:f1:c7:7a:7b:3b:92:28:22:8e:e0: f7:4c:07:64:7e:67:1f:77:66:21:13:61:ad:26:8a:b1:d1:80: 3c:4a:d6:c0:8a:7b:bf:11:51:49:d3:ac:5f:1c:e1:51:bd:9e: 45:5d:32:11:05:d7:88:45:34:7f:18:7c:76:3e:5a:e0:33:cc: e6:d0:29:79:bf:2c:22:6e:e7:67:37:27:cc:7e:b1:0d:3d:98: 7a:06:71:e2:e5:eb:9c:d6:c2:49:56:0d:18:d1:96:51:75:69: 57:a6:8a:7f:dc:02:d3:ec:f8:0c:26:c0:19:39:82:43:f9:f9: 77:b7:14:74:0c:ea:8a:cc:77:01:fa:c6:1d:14:59:ca:49:23: 3e:e8:cb:12:3f:cd:70:42:3f:1c:fe:53:3e:cc:10:6a:8a:f8: 52:8a:05:f1:e1:09:77:5e:a0:cf:2c:3d:0f:52:77:eb:73:4c: 9e:38:8c:a4:e6:c7:e3:35:fe:b3:6f:da:56:b8:0b:8d:c2:ff: fb:c2:7a:0d:fc:2c:c7:03:55:82:47:79:f7:de:7c:0c:d5:13: b5:cf:51:77 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FL2dFN4ffsndILHitf+iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZTViMzAyNzJlNDMwNTMyMDg5NzhkYmU0NGJmZWUxMGE1 ZDAwN2UwHhcNMjYwMTAyMTQyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YmIwNTMzNjI3ZGU0MDA4M2Y1ZmIxZTk2ZTM4OTgxNGE3MDQ5MzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqCxbcnQyvN465SPVMV0I2u6rkDD GMlsuOYHHUXd1Z56HScsgvNaoZAHp/Q3FEYEt2mAK5p/1OD2QAPSe/7amDw0r/dE ON9k+9d64rZd8wn9dYNARKCWZNR/8H2lG5d//uoQuk8sPZAP7A5E0ZsqIMvKOR6S C4O0yXKxgB93ufqBMtSeN2xX/l6dabLEkCh1/e7RqMPy/PonKrtyyIWcDdDOoCH4 uK0KaSbKHXpZ4x17wOiTTFzIi930Q5RgWmKN0KpckAf8lS117HXjEwuIAroB8dgK /98JewaOLoUWYKddGozpwuyP1MMobYRsUyavgMYM69raly4LQyaNdK4FSwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIuwUzYn3kAIP1+x6W44mBSnBJM0MB8GA1UdIwQY MBaAFHDlswJy5DBTIIl42+RL/uEKXQB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEt MWZiYzY0MWI1MGIxLzEvaTdCVE5pZmVRQWdfWDdIcGJqaVlGS2NFa3pRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8yMmYxZDUtZjI2OS00ZjRmLWJmOGEtMWZiYzY0MWI1MGIx LzEvY09XekFuTGtNRk1naVhqYjVFdi00UXBkQUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAT4SNAwQA x0TEMA0GCSqGSIb3DQEBCwUAA4IBAQAeMdqiTa1MMiCDI+O10mGK0bsPkBgqfP4B P1VOvATvZOeRJjTJZFhfFLUBfvHHens7kigijuD3TAdkfmcfd2YhE2GtJoqx0YA8 StbAinu/EVFJ06xfHOFRvZ5FXTIRBdeIRTR/GHx2PlrgM8zm0Cl5vywibudnNyfM frENPZh6BnHi5euc1sJJVg0Y0ZZRdWlXpop/3ALT7PgMJsAZOYJD+fl3txR0DOqK zHcB+sYdFFnKSSM+6MsSP81wQj8c/lM+zBBqivhSigXx4Ql3XqDPLD0PUnfrc0ye OIyk5sfjNf6zb9pWuAuNwv/7wnoN/CzHA1WCR3n33nwM1RO1z1F3 -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:59 2026 by rpki-client