This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/RNDz_4tH9L_gf3FZK7wHn9W5JTw.roa File: RNDz_4tH9L_gf3FZK7wHn9W5JTw.roa (raw, json) Hash identifier: iV+7oOHFOY9zS0+jnxTaMolInYSGv9N0+a/6Pd3g5JQ= Subject key identifier: 44:D0:F3:FF:8B:47:F4:BF:E0:7F:71:59:2B:BC:07:9F:D5:B9:25:3C Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Certificate serial: 019B7DC88B20D964982B43F3563AC6A2604F Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/RNDz_4tH9L_gf3FZK7wHn9W5JTw.roa Signing time: Fri 02 Jan 2026 08:17:33 +0000 ROA not before: Fri 02 Jan 2026 08:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213411 IP address blocks: 95.161.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.mft rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:8b:20:d9:64:98:2b:43:f3:56:3a:c6:a2:60:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Validity Not Before: Jan 2 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44d0f3ff8b47f4bfe07f71592bbc079fd5b9253c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:68:8d:ca:d4:d5:13:53:ef:e3:9d:ea:e7:46: d2:6e:08:f8:4b:e5:15:9a:62:1c:fd:b4:84:2c:fa: 32:0c:42:18:81:4a:ae:46:54:35:68:d5:53:ae:78: 73:9f:e1:2a:5b:be:53:a3:91:5c:df:ef:14:3e:20: 7a:71:e8:02:6c:86:90:09:e7:99:4f:47:3c:14:6d: 12:9a:c3:09:bd:87:9c:ed:a4:ed:17:4c:17:00:a0: 44:86:be:02:6b:09:c8:97:c4:e9:66:5e:70:ad:11: 16:d7:ab:97:89:ed:0a:f4:0b:41:fc:29:16:e6:15: 01:5b:40:b2:4e:84:f9:23:13:c7:de:ed:2b:c7:27: 14:7d:33:c4:2f:85:ca:27:bd:70:f3:1a:68:a5:82: 9e:07:4a:49:55:9d:77:7a:d6:dd:3b:82:fe:bb:98: 49:70:50:1c:e4:64:10:1d:fb:08:b3:55:a2:50:a7: d9:d9:f5:91:4c:9a:e3:8b:84:3f:76:cb:f0:4c:a2: 0b:81:9d:ca:cb:72:e7:f9:9f:73:87:ca:f2:e6:46: 79:06:6b:db:5b:00:0d:69:c0:df:e0:39:73:5d:38: 7b:cb:4d:05:72:94:79:7a:83:ae:76:cc:34:ff:66: 99:28:62:91:c6:61:36:10:11:01:34:6c:46:60:45: 99:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D0:F3:FF:8B:47:F4:BF:E0:7F:71:59:2B:BC:07:9F:D5:B9:25:3C X509v3 Authority Key Identifier: keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/RNDz_4tH9L_gf3FZK7wHn9W5JTw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.161.240.0/24 Signature Algorithm: sha256WithRSAEncryption 16:a1:58:37:80:5d:a7:0f:10:0f:ac:ea:fb:4c:c7:48:3f:74: 45:30:4e:b0:da:84:60:56:79:d5:e5:49:ef:b7:a5:18:2c:70: d4:ab:2e:40:e4:e1:dd:0b:25:7e:c8:ec:90:88:fe:9e:c2:43: d3:05:d3:38:c7:b8:fe:b7:48:c7:f7:ec:40:75:2f:5f:0b:50: 57:9e:5b:a6:98:55:bd:04:e5:a3:c7:05:9c:87:b2:5a:56:ee: 88:ee:20:15:2f:ad:1e:f6:7d:3f:11:dd:7c:51:65:c0:dc:d4: 8f:94:80:31:20:e3:ab:d2:e1:9d:63:5a:d3:8e:dd:45:f3:7e: 0c:3e:85:55:37:aa:b7:89:71:7a:f6:d0:ae:76:4f:5e:c4:9c: 64:14:7a:e1:90:7a:12:2a:70:a9:97:d1:67:0b:5f:94:b4:46: 04:f5:0b:2c:25:72:57:4c:81:12:38:3e:05:22:2b:9c:dc:55: 26:4d:b0:9d:47:26:17:6f:84:6a:18:d0:34:24:61:5c:4b:0d: 40:bc:56:08:3e:3e:47:00:70:9b:f3:29:b2:7b:0a:5f:96:1d: e1:70:94:81:58:30:88:01:64:30:6f:47:c3:ea:ef:99:e3:8d: c2:ce:80:7d:b9:15:c1:4c:18:f3:9c:c1:aa:5d:e4:14:1b:f1: c4:1f:6e:53 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yIsg2WSYK0PzVjrGomBPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjhlN2UwMWZhZGE0OWMxYTUyZmExM2YzNjI2YzQxYjQx YTUxYjgwHhcNMjYwMTAyMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NGQwZjNmZjhiNDdmNGJmZTA3ZjcxNTkyYmJjMDc5ZmQ1YjkyNTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmiNytTVE1Pv453q50bSbgj4S+UV mmIc/bSELPoyDEIYgUquRlQ1aNVTrnhzn+EqW75To5Fc3+8UPiB6cegCbIaQCeeZ T0c8FG0SmsMJvYec7aTtF0wXAKBEhr4CawnIl8TpZl5wrREW16uXie0K9AtB/CkW 5hUBW0CyToT5IxPH3u0rxycUfTPEL4XKJ71w8xpopYKeB0pJVZ13etbdO4L+u5hJ cFAc5GQQHfsIs1WiUKfZ2fWRTJrji4Q/dsvwTKILgZ3Ky3Ln+Z9zh8ry5kZ5Bmvb WwANacDf4DlzXTh7y00FcpR5eoOudsw0/2aZKGKRxmE2EBEBNGxGYEWZyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFETQ8/+LR/S/4H9xWSu8B5/VuSU8MB8GA1UdIwQY MBaAFGIo5+AfraScGlL6E/NibEG0GlG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUt NzY3NDE2NTI1MTBkLzEvUk5Eel80dEg5TF9nZjNGWks3d0huOVc1SlR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUtNzY3NDE2NTI1MTBk LzEvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6HwMA0G CSqGSIb3DQEBCwUAA4IBAQAWoVg3gF2nDxAPrOr7TMdIP3RFME6w2oRgVnnV5Unv t6UYLHDUqy5A5OHdCyV+yOyQiP6ewkPTBdM4x7j+t0jH9+xAdS9fC1BXnlummFW9 BOWjxwWch7JaVu6I7iAVL60e9n0/Ed18UWXA3NSPlIAxIOOr0uGdY1rTjt1F834M PoVVN6q3iXF69tCudk9exJxkFHrhkHoSKnCpl9FnC1+UtEYE9QssJXJXTIESOD4F Iiuc3FUmTbCdRyYXb4RqGNA0JGFcSw1AvFYIPj5HAHCb8ymyewpflh3hcJSBWDCI AWQwb0fD6u+Z443CzoB9uRXBTBjznMGqXeQUG/HEH25T -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:36 2026 by rpki-client