This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/7sfVEaU8A8ihfr64sAxn8eAGmNo.roa File: 7sfVEaU8A8ihfr64sAxn8eAGmNo.roa (raw, json) Hash identifier: ACNKKz0yFm+J3hHzQjyY3vUiOtbR7xfJ0cZ7zXLDPak= Subject key identifier: EE:C7:D5:11:A5:3C:03:C8:A1:7E:BE:B8:B0:0C:67:F1:E0:06:98:DA Certificate issuer: /CN=f1b15e77af4edde11192c6fecd50b21cd379d421 Certificate serial: 019B7D5C721409C4B144626A34D47314454E Authority key identifier: F1:B1:5E:77:AF:4E:DD:E1:11:92:C6:FE:CD:50:B2:1C:D3:79:D4:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bFed69O3eERksb-zVCyHNN51CE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/7sfVEaU8A8ihfr64sAxn8eAGmNo.roa Signing time: Fri 02 Jan 2026 06:19:29 +0000 ROA not before: Fri 02 Jan 2026 06:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198335 IP address blocks: 109.163.200.0/21 maxlen: 24 155.2.160.0/20 maxlen: 20 155.2.160.0/22 maxlen: 22 155.2.164.0/22 maxlen: 22 155.2.168.0/22 maxlen: 22 155.2.172.0/22 maxlen: 22 176.241.248.0/21 maxlen: 24 185.194.184.0/22 maxlen: 22 185.194.186.0/24 maxlen: 24 185.194.187.0/24 maxlen: 24 2a00:5a40::/29 maxlen: 29 2a00:5a40::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/8bFed69O3eERksb-zVCyHNN51CE.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/8bFed69O3eERksb-zVCyHNN51CE.mft rsync://rpki.ripe.net/repository/DEFAULT/8bFed69O3eERksb-zVCyHNN51CE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 18:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:72:14:09:c4:b1:44:62:6a:34:d4:73:14:45:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1b15e77af4edde11192c6fecd50b21cd379d421 Validity Not Before: Jan 2 06:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eec7d511a53c03c8a17ebeb8b00c67f1e00698da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a7:76:b1:08:8a:cc:4a:a5:24:0f:03:72:ec: aa:b5:5a:cf:28:21:3a:8d:b6:f4:cd:9b:07:78:bb: bc:79:14:bc:b5:28:f0:27:00:0e:03:7a:92:fb:60: 88:2f:b8:62:b6:6d:ca:6c:a7:ce:12:4e:52:8f:05: f4:55:38:3e:3a:76:b9:cb:d6:ee:9a:b8:0d:62:cb: 3e:87:49:26:a5:94:cf:4d:1b:a6:c1:b3:b5:90:71: 47:e0:0a:0c:f7:81:bb:7b:05:4c:90:e7:07:62:79: 19:6a:2f:cf:da:37:69:65:73:1f:bf:eb:4b:4d:f6: 11:4a:db:3c:53:ca:51:21:fe:e8:a5:94:9e:e8:ad: 3f:e5:5a:c4:a6:77:bf:8f:45:d0:de:2a:f2:5f:02: 7b:42:8d:3f:ee:73:02:e2:59:ef:b0:77:a3:b5:9f: 5a:f3:3c:b5:e1:b8:51:13:de:04:e9:fb:52:4c:41: cb:42:5b:f0:9d:9d:a0:6c:15:01:b8:e3:a4:4c:af: dd:14:9a:ca:81:62:56:4f:9e:b4:cf:b9:13:d1:25: 6c:e7:3e:8f:20:70:67:b7:98:ac:6d:29:68:8c:5f: 7f:27:33:e1:dd:88:77:c6:84:3b:dc:a6:bd:95:4f: c2:c3:db:45:2f:e4:ac:cf:9a:c4:4b:78:75:29:68: 0d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C7:D5:11:A5:3C:03:C8:A1:7E:BE:B8:B0:0C:67:F1:E0:06:98:DA X509v3 Authority Key Identifier: keyid:F1:B1:5E:77:AF:4E:DD:E1:11:92:C6:FE:CD:50:B2:1C:D3:79:D4:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bFed69O3eERksb-zVCyHNN51CE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/7sfVEaU8A8ihfr64sAxn8eAGmNo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/500fa9-6fb8-4768-80de-1340cc5b3d57/1/8bFed69O3eERksb-zVCyHNN51CE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.163.200.0/21 155.2.160.0/20 176.241.248.0/21 185.194.184.0/22 IPv6: 2a00:5a40::/29 Signature Algorithm: sha256WithRSAEncryption 8f:8e:96:a4:18:a1:74:fa:be:5a:45:3a:a4:68:56:80:fc:df: 3a:e9:02:d2:b4:e0:3f:c5:8e:d2:59:50:77:ab:78:04:9b:df: 26:c1:78:0e:58:77:b9:13:d1:fe:3d:9d:6d:d3:9f:ba:08:16: 37:b5:33:d2:9e:4b:75:95:d9:12:af:a1:af:30:54:2e:0d:12: b5:ea:4c:7b:4f:4a:4e:a0:96:0f:83:ef:b7:6f:e4:f0:7d:7e: d8:df:2c:e7:93:fc:a5:67:65:98:b9:78:53:b0:a8:69:fb:c0: b7:5b:89:3c:fd:2c:29:70:8f:93:49:28:e9:e5:f6:f7:3e:2a: 0f:91:37:75:5b:db:6a:c8:58:ff:91:f8:ea:6e:e9:c4:31:e5: c6:fb:87:94:88:ef:20:3b:cd:9d:f3:6b:59:59:23:c9:34:f4: 77:7f:ba:b9:2b:da:ed:cb:f3:3b:00:12:58:f0:b9:00:c2:19: b6:d3:38:a6:61:87:dd:ec:f0:a8:83:3d:c8:5f:24:7d:1f:9d: e5:e4:69:6b:3d:1c:c9:21:97:8e:f8:23:c3:0e:23:0a:77:e4: b8:5f:3d:40:1c:25:16:fb:85:ed:c7:3b:fc:48:71:6b:79:72: c8:cb:91:16:09:98:87:ea:f0:87:42:1c:c8:b5:b8:12:d6:3e: ef:8a:7c:e1 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt9XHIUCcSxRGJqNNRzFEVOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxYjE1ZTc3YWY0ZWRkZTExMTkyYzZmZWNkNTBiMjFjZDM3 OWQ0MjEwHhcNMjYwMTAyMDYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZWM3ZDUxMWE1M2MwM2M4YTE3ZWJlYjhiMDBjNjdmMWUwMDY5OGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKd2sQiKzEqlJA8DcuyqtVrPKCE6 jbb0zZsHeLu8eRS8tSjwJwAOA3qS+2CIL7hitm3KbKfOEk5SjwX0VTg+Ona5y9bu mrgNYss+h0kmpZTPTRumwbO1kHFH4AoM94G7ewVMkOcHYnkZai/P2jdpZXMfv+tL TfYRSts8U8pRIf7opZSe6K0/5VrEpne/j0XQ3iryXwJ7Qo0/7nMC4lnvsHejtZ9a 8zy14bhRE94E6ftSTEHLQlvwnZ2gbBUBuOOkTK/dFJrKgWJWT560z7kT0SVs5z6P IHBnt5isbSlojF9/JzPh3Yh3xoQ73Ka9lU/Cw9tFL+Ssz5rES3h1KWgNVwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFO7H1RGlPAPIoX6+uLAMZ/HgBpjaMB8GA1UdIwQY MBaAFPGxXnevTt3hEZLG/s1QshzTedQhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGJGZWQ2OU8zZUVSa3NiLXpWQ3lITk41MUNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy81MDBmYTktNmZiOC00NzY4LTgwZGUt MTM0MGNjNWIzZDU3LzEvN3NmVkVhVThBOGloZnI2NHNBeG44ZUFHbU5vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy81MDBmYTktNmZiOC00NzY4LTgwZGUtMTM0MGNjNWIzZDU3 LzEvOGJGZWQ2OU8zZUVSa3NiLXpWQ3lITk41MUNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDbaPIAwQE mwKgAwQDsPH4AwQCucK4MA0EAgACMAcDBQMqAFpAMA0GCSqGSIb3DQEBCwUAA4IB AQCPjpakGKF0+r5aRTqkaFaA/N866QLStOA/xY7SWVB3q3gEm98mwXgOWHe5E9H+ PZ1t05+6CBY3tTPSnkt1ldkSr6GvMFQuDRK16kx7T0pOoJYPg++3b+TwfX7Y3yzn k/ylZ2WYuXhTsKhp+8C3W4k8/SwpcI+TSSjp5fb3PioPkTd1W9tqyFj/kfjqbunE MeXG+4eUiO8gO82d82tZWSPJNPR3f7q5K9rty/M7ABJY8LkAwhm20zimYYfd7PCo gz3IXyR9H53l5GlrPRzJIZeO+CPDDiMKd+S4Xz1AHCUW+4Xtxzv8SHFreXLIy5EW CZiH6vCHQhzItbgS1j7vinzh -----END CERTIFICATE-----Generated at Sun Jan 25 03:58:20 2026 by rpki-client