This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/7KuWJBo9EkXJvaHhQEOW9ycaK_I.roa File: 7KuWJBo9EkXJvaHhQEOW9ycaK_I.roa (raw, json) Hash identifier: UiGaMWGSSCU/HAZ7GHDvtMdy2TyJGvHOCHWhEmd6728= Subject key identifier: EC:AB:96:24:1A:3D:12:45:C9:BD:A1:E1:40:43:96:F7:27:1A:2B:F2 Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B35CA01685ADBABCA8703DB4959D074CC Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/7KuWJBo9EkXJvaHhQEOW9ycaK_I.roa Signing time: Fri 19 Dec 2025 08:46:29 +0000 ROA not before: Fri 19 Dec 2025 08:46:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215018 IP address blocks: 81.172.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 08:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:ca:01:68:5a:db:ab:ca:87:03:db:49:59:d0:74:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Dec 19 08:46:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ecab96241a3d1245c9bda1e1404396f7271a2bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cc:86:d0:82:71:02:20:da:b7:83:c1:5e:5d: c9:56:2d:09:b9:56:58:ea:46:a4:aa:a6:f3:01:49: a0:42:35:ab:88:29:fe:ef:26:b8:73:2f:bc:53:f3: bc:9b:2f:66:e9:30:c3:c6:87:a8:3a:a4:be:bf:2e: 1e:c2:06:36:9e:20:f9:81:94:e6:53:bd:e3:76:21: b3:b0:f0:43:05:b3:7f:ea:eb:58:89:8b:ca:20:cf: 39:47:8a:df:8d:77:e4:3a:83:81:d1:d2:2f:ff:a4: 2b:ad:15:0a:6a:c1:90:8a:3c:b5:c9:2e:b4:aa:50: 01:26:53:c4:9b:fc:5e:ca:b7:6a:a9:e7:55:c5:bb: 9f:1f:c4:f3:99:79:13:54:6e:dc:63:b6:f6:4d:55: a4:d0:79:29:c6:e5:54:5e:0c:b4:4f:36:7e:6d:86: 89:62:c0:2c:6c:e5:1a:8f:e8:e1:de:ba:36:8f:d1: b0:b5:32:43:78:5a:2d:90:a2:16:8e:b8:3b:1c:8d: f7:84:40:2c:8e:fe:2c:6c:8c:bf:80:70:86:dc:d9: 3a:39:70:62:a9:2f:a2:37:6b:05:64:53:c2:46:7c: 1d:fd:fa:aa:5f:65:ba:a5:e2:76:bc:28:83:50:ba: 20:96:13:90:1a:ab:d3:dc:ca:9d:59:64:e0:c0:2d: 53:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AB:96:24:1A:3D:12:45:C9:BD:A1:E1:40:43:96:F7:27:1A:2B:F2 X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/7KuWJBo9EkXJvaHhQEOW9ycaK_I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.172.102.0/24 Signature Algorithm: sha256WithRSAEncryption 24:f0:56:98:8f:ec:11:a4:da:f0:76:79:8f:92:46:2a:ca:75: e8:bb:3f:68:53:7a:cc:22:96:ee:08:1d:62:7d:ec:92:fd:37: d7:6f:cb:5a:cd:0b:a4:6c:0f:1d:ea:1f:3f:57:64:cc:bc:2c: 03:43:33:7f:16:ef:9e:66:38:78:63:1b:7f:e0:a2:99:80:1a: 3f:14:46:15:43:90:80:84:50:7e:ea:05:51:6a:30:c3:ae:6f: 33:f1:6a:ba:96:e5:b3:48:4e:2b:40:44:d2:e3:ad:c0:26:02: 9c:17:ca:06:18:ad:ed:59:a0:8b:20:da:18:6f:4d:f6:2a:af: 4d:ad:53:f2:b4:8d:f5:f1:0c:35:db:5c:34:8b:f3:7d:cf:5f: 04:49:ba:4f:07:84:96:09:9e:c2:bf:7d:8c:02:af:75:25:45: 58:5e:28:e8:ec:92:4e:80:58:86:c7:43:fc:4f:1f:da:12:c9: a3:cd:c2:15:3c:5c:26:c2:0e:bb:8c:95:3e:4a:03:95:5a:40: f0:5e:31:a5:5d:23:e6:6b:c3:6a:6a:5a:73:fe:e9:2f:e9:7c: 65:1b:83:5c:2e:98:ee:06:21:32:ff:6e:64:66:4b:01:8c:b5: 93:3d:7b:95:c7:1c:78:09:3c:62:d9:da:a9:a9:38:0a:f5:dd: 9f:c0:13:18 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZs1ygFoWturyocD20lZ0HTMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjUxMjE5MDg0NjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlY2FiOTYyNDFhM2QxMjQ1YzliZGExZTE0MDQzOTZmNzI3MWEyYmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8yG0IJxAiDat4PBXl3JVi0JuVZY 6kakqqbzAUmgQjWriCn+7ya4cy+8U/O8my9m6TDDxoeoOqS+vy4ewgY2niD5gZTm U73jdiGzsPBDBbN/6utYiYvKIM85R4rfjXfkOoOB0dIv/6QrrRUKasGQijy1yS60 qlABJlPEm/xeyrdqqedVxbufH8TzmXkTVG7cY7b2TVWk0HkpxuVUXgy0TzZ+bYaJ YsAsbOUaj+jh3ro2j9GwtTJDeFotkKIWjrg7HI33hEAsjv4sbIy/gHCG3Nk6OXBi qS+iN2sFZFPCRnwd/fqqX2W6peJ2vCiDULoglhOQGqvT3MqdWWTgwC1TUwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOyrliQaPRJFyb2h4UBDlvcnGivyMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvN0t1V0pCbzlFa1hKdmFIaFFFT1c5eWNhS19JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUaxmMA0G CSqGSIb3DQEBCwUAA4IBAQAk8FaYj+wRpNrwdnmPkkYqynXouz9oU3rMIpbuCB1i feyS/TfXb8tazQukbA8d6h8/V2TMvCwDQzN/Fu+eZjh4Yxt/4KKZgBo/FEYVQ5CA hFB+6gVRajDDrm8z8Wq6luWzSE4rQETS463AJgKcF8oGGK3tWaCLINoYb032Kq9N rVPytI318Qw121w0i/N9z18ESbpPB4SWCZ7Cv32MAq91JUVYXijo7JJOgFiGx0P8 Tx/aEsmjzcIVPFwmwg67jJU+SgOVWkDwXjGlXSPma8Nqalpz/ukv6XxlG4NcLpju BiEy/25kZksBjLWTPXuVxxx4CTxi2dqpqTgK9d2fwBMY -----END CERTIFICATE-----Generated at Fri Dec 19 17:40:16 2025 by rpki-client