This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/nZEoNnUzLuKA0B7d88rqkJt68iQ.roa File: nZEoNnUzLuKA0B7d88rqkJt68iQ.roa (raw, json) Hash identifier: fgBH81eM//7Gr5s15+AQ9fhhR3aq2fqtD8PopfREdZw= Subject key identifier: 9D:91:28:36:75:33:2E:E2:80:D0:1E:DD:F3:CA:EA:90:9B:7A:F2:24 Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Certificate serial: 019B7DC88B73CD7C7AEFEBDB55ED1F8BC04B Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/nZEoNnUzLuKA0B7d88rqkJt68iQ.roa Signing time: Fri 02 Jan 2026 08:17:33 +0000 ROA not before: Fri 02 Jan 2026 08:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215106 IP address blocks: 95.161.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.mft rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:8b:73:cd:7c:7a:ef:eb:db:55:ed:1f:8b:c0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Validity Not Before: Jan 2 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d91283675332ee280d01eddf3caea909b7af224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:55:ab:07:94:46:5c:bf:b9:70:aa:14:7d:a8: 1b:fd:64:28:3a:f2:59:e3:3b:c9:04:2b:a0:4b:f7: 21:2e:54:df:0f:3f:03:7a:83:1b:f4:27:86:a2:6a: 5d:57:ad:bb:79:03:e6:df:0d:18:4f:de:d5:ce:72: fd:7c:ab:5f:6e:49:19:a2:f4:f7:dd:ae:54:08:56: 55:4b:50:2b:de:25:cb:ff:0d:19:87:93:1f:73:c5: 3f:af:0c:0f:2c:4f:a3:10:ca:6e:0c:e6:b0:76:94: 6a:f7:f1:60:23:bb:7f:c1:7d:13:0c:92:9f:83:dc: c9:49:5d:e0:6a:c5:56:26:45:46:44:5a:d9:86:75: 90:d3:bc:f9:2e:84:d9:72:d2:1d:5e:ef:bf:b0:24: 81:01:bd:ed:9e:7e:a2:95:f7:32:cb:08:88:01:5d: 10:37:d6:9d:9d:2b:d0:19:76:82:e6:24:1f:03:50: 13:1c:9c:86:4a:90:5c:63:f1:32:2f:cd:37:c2:48: 5d:e1:20:b6:3f:a9:44:81:f1:50:a2:f2:0b:4f:bb: 62:2a:76:31:f4:fb:fb:6a:94:ba:09:71:70:eb:31: 14:e7:f8:e8:f4:7f:25:3d:c0:16:6f:9e:1c:e7:97: ef:0d:a4:58:7c:d2:af:03:4c:0d:db:c2:af:77:97: bc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:91:28:36:75:33:2E:E2:80:D0:1E:DD:F3:CA:EA:90:9B:7A:F2:24 X509v3 Authority Key Identifier: keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/nZEoNnUzLuKA0B7d88rqkJt68iQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.161.23.0/24 Signature Algorithm: sha256WithRSAEncryption 19:2a:e8:4a:04:52:c9:4e:e5:61:0e:d9:b4:8f:a5:2f:77:3c: 75:e3:95:59:1f:d5:15:c9:0f:b9:e9:ce:ca:0b:eb:b7:ce:41: 91:ae:c9:10:87:f3:fb:8d:05:4b:49:cf:2e:2a:ed:bb:ce:c4: fd:f1:f7:a5:43:dd:a5:13:90:27:79:16:f0:3e:3d:8f:85:4b: 2a:72:87:80:2d:1d:e4:6e:6b:04:2d:de:70:30:af:a6:40:cb: a1:5e:12:61:a4:66:15:2e:7b:bb:6c:96:0b:fe:19:bc:5e:66: 5c:04:ca:7d:ec:eb:3d:0c:58:5c:fb:a6:65:a9:1f:79:a4:bb: c5:c7:d3:6c:ec:e8:86:9e:48:25:ce:b5:37:74:83:de:7a:65: 54:1a:5c:13:e5:45:7d:0c:69:c0:b8:e4:99:8d:e9:b9:18:76: aa:4f:fc:1f:bf:d9:91:16:ba:a7:da:4a:4e:a7:32:26:23:82: 78:bc:4a:30:f0:4b:a0:6b:9f:e7:4c:0f:84:50:49:1a:0f:1d: 8f:cb:5b:2e:e8:16:67:0c:bb:a6:47:5a:f5:b4:26:0a:14:72: 47:d7:d5:35:da:f8:34:08:cd:8a:f6:8d:46:a0:92:23:7e:e6: bc:05:a2:32:0c:d7:81:05:d9:44:e4:7d:71:23:0e:5e:23:29: e9:8e:74:06 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yItzzXx67+vbVe0fi8BLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjhlN2UwMWZhZGE0OWMxYTUyZmExM2YzNjI2YzQxYjQx YTUxYjgwHhcNMjYwMTAyMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDkxMjgzNjc1MzMyZWUyODBkMDFlZGRmM2NhZWE5MDliN2FmMjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1WrB5RGXL+5cKoUfagb/WQoOvJZ 4zvJBCugS/chLlTfDz8DeoMb9CeGompdV627eQPm3w0YT97VznL9fKtfbkkZovT3 3a5UCFZVS1Ar3iXL/w0Zh5Mfc8U/rwwPLE+jEMpuDOawdpRq9/FgI7t/wX0TDJKf g9zJSV3gasVWJkVGRFrZhnWQ07z5LoTZctIdXu+/sCSBAb3tnn6ilfcyywiIAV0Q N9adnSvQGXaC5iQfA1ATHJyGSpBcY/EyL803wkhd4SC2P6lEgfFQovILT7tiKnYx 9Pv7apS6CXFw6zEU5/jo9H8lPcAWb54c55fvDaRYfNKvA0wN28Kvd5e8xwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJ2RKDZ1My7igNAe3fPK6pCbevIkMB8GA1UdIwQY MBaAFGIo5+AfraScGlL6E/NibEG0GlG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUt NzY3NDE2NTI1MTBkLzEvblpFb05uVXpMdUtBMEI3ZDg4cnFrSnQ2OGlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUtNzY3NDE2NTI1MTBk LzEvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6EXMA0G CSqGSIb3DQEBCwUAA4IBAQAZKuhKBFLJTuVhDtm0j6Uvdzx145VZH9UVyQ+56c7K C+u3zkGRrskQh/P7jQVLSc8uKu27zsT98felQ92lE5AneRbwPj2PhUsqcoeALR3k bmsELd5wMK+mQMuhXhJhpGYVLnu7bJYL/hm8XmZcBMp97Os9DFhc+6ZlqR95pLvF x9Ns7OiGnkglzrU3dIPeemVUGlwT5UV9DGnAuOSZjem5GHaqT/wfv9mRFrqn2kpO pzImI4J4vEow8Euga5/nTA+EUEkaDx2Py1su6BZnDLumR1r1tCYKFHJH19U12vg0 CM2K9o1GoJIjfua8BaIyDNeBBdlE5H1xIw5eIynpjnQG -----END CERTIFICATE-----Generated at Sun Jan 25 13:09:24 2026 by rpki-client