This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/25b6ce-c211-4668-9a47-fe58f84dd3fd/1/CI4ko7IFE2eF3AlAlzoIHGGOq_A.roa File: CI4ko7IFE2eF3AlAlzoIHGGOq_A.roa (raw, json) Hash identifier: r0qwmSw9Inbl8qdHUq2nQr86Vl9zhDV6qpUzB9VSqQc= Subject key identifier: 08:8E:24:A3:B2:05:13:67:85:DC:09:40:97:3A:08:1C:61:8E:AB:F0 Certificate issuer: /CN=056f4a43e0b0651247fc3629c627b9c385f0c376 Certificate serial: 019B7A5AEFEC393C957DA9703EA0CF7B7602 Authority key identifier: 05:6F:4A:43:E0:B0:65:12:47:FC:36:29:C6:27:B9:C3:85:F0:C3:76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BW9KQ-CwZRJH_DYpxie5w4Xww3Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/25b6ce-c211-4668-9a47-fe58f84dd3fd/1/CI4ko7IFE2eF3AlAlzoIHGGOq_A.roa Signing time: Thu 01 Jan 2026 16:18:58 +0000 ROA not before: Thu 01 Jan 2026 16:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56595 IP address blocks: 195.95.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/25b6ce-c211-4668-9a47-fe58f84dd3fd/1/BW9KQ-CwZRJH_DYpxie5w4Xww3Y.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/25b6ce-c211-4668-9a47-fe58f84dd3fd/1/BW9KQ-CwZRJH_DYpxie5w4Xww3Y.mft rsync://rpki.ripe.net/repository/DEFAULT/BW9KQ-CwZRJH_DYpxie5w4Xww3Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:ef:ec:39:3c:95:7d:a9:70:3e:a0:cf:7b:76:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=056f4a43e0b0651247fc3629c627b9c385f0c376 Validity Not Before: Jan 1 16:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=088e24a3b205136785dc0940973a081c618eabf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:63:9a:c4:74:43:7f:d9:1b:30:18:90:be:8b: da:b3:4e:bc:dc:77:f3:05:16:87:f4:55:c8:1c:db: aa:5e:55:8b:7a:b4:7f:e7:cb:94:7d:5d:29:5f:db: a6:5b:c1:e5:6f:62:11:75:79:11:11:96:a3:9f:48: 29:ee:8e:27:66:e7:c0:5e:5b:26:65:ad:8a:9a:7f: 2c:04:1f:56:fc:90:75:2a:cc:16:62:1e:01:77:05: 91:4e:37:d6:b6:f9:65:89:7f:dd:81:0b:45:f8:06: 55:fe:e7:38:a4:3c:31:43:4b:2e:1f:24:3b:de:9f: b7:85:7a:43:ac:1c:91:5a:9d:b7:4e:2e:34:d0:d8: fd:ba:dc:91:aa:66:df:b5:32:ea:ba:e6:26:4c:2f: 0e:8e:60:08:3c:0b:e2:d9:66:eb:9a:9a:d3:aa:8c: d8:7c:b8:1a:1f:dc:27:21:4f:7f:48:3e:cb:06:e3: 9d:28:1e:10:70:51:25:91:1c:08:34:63:d5:42:d3: d4:41:41:be:27:15:d7:15:f0:5a:f4:01:e7:31:75: cc:cd:6e:1c:d6:8e:c7:d5:fd:63:3d:3f:00:cb:28: 56:07:35:2f:2a:36:d1:bf:62:a9:3f:c7:22:1a:39: 40:98:24:d2:b4:74:18:b0:25:2d:6a:2d:c7:cd:aa: 3d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8E:24:A3:B2:05:13:67:85:DC:09:40:97:3A:08:1C:61:8E:AB:F0 X509v3 Authority Key Identifier: keyid:05:6F:4A:43:E0:B0:65:12:47:FC:36:29:C6:27:B9:C3:85:F0:C3:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BW9KQ-CwZRJH_DYpxie5w4Xww3Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/25b6ce-c211-4668-9a47-fe58f84dd3fd/1/CI4ko7IFE2eF3AlAlzoIHGGOq_A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/25b6ce-c211-4668-9a47-fe58f84dd3fd/1/BW9KQ-CwZRJH_DYpxie5w4Xww3Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.95.134.0/24 Signature Algorithm: sha256WithRSAEncryption 10:15:62:8e:f3:99:ea:56:a9:93:e0:71:1b:0a:8d:20:16:3d: 01:e9:82:a0:56:00:80:86:30:75:6a:43:dc:bc:9e:f7:83:3b: fd:6b:77:d9:ac:5e:25:b4:e6:d5:de:52:7d:ca:f3:94:3c:a1: 4e:87:19:3d:8c:94:5d:76:32:4e:3c:fd:68:12:07:6b:67:79: 77:6e:93:3c:26:3f:13:42:01:49:ba:9a:91:8c:d4:c4:b8:ec: 98:f6:f0:97:0e:f6:23:df:a0:86:52:75:13:fc:7d:de:0a:4a: ea:16:b4:5c:a3:03:eb:10:44:53:c7:20:74:b3:9a:19:d9:bf: 18:eb:ac:2f:17:89:13:ab:ab:2d:76:90:3e:9c:46:24:a5:69: 0f:98:cd:7b:05:cc:65:7e:b1:c8:17:79:66:1c:d4:c8:d0:47: 76:aa:53:95:56:e3:3a:25:89:b8:0e:f0:48:cb:58:6e:a4:94: a7:72:2c:01:fa:23:fe:00:68:9f:db:44:b0:01:d0:e3:ee:28: 8d:a1:19:29:30:86:81:d3:28:c0:8f:e4:ba:d7:50:bc:84:b5: e0:1a:bc:78:00:a2:58:f4:4e:9b:00:5f:90:ab:ef:ae:da:0c: 0b:c2:e7:44:ca:67:8d:4e:36:e2:c8:48:96:75:c7:04:6f:1f: 8f:f6:23:bb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wu/sOTyVfalwPqDPe3YCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NmY0YTQzZTBiMDY1MTI0N2ZjMzYyOWM2MjdiOWMzODVm MGMzNzYwHhcNMjYwMTAxMTYxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODhlMjRhM2IyMDUxMzY3ODVkYzA5NDA5NzNhMDgxYzYxOGVhYmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGOaxHRDf9kbMBiQvovas0683Hfz BRaH9FXIHNuqXlWLerR/58uUfV0pX9umW8Hlb2IRdXkREZajn0gp7o4nZufAXlsm Za2Kmn8sBB9W/JB1KswWYh4BdwWRTjfWtvlliX/dgQtF+AZV/uc4pDwxQ0suHyQ7 3p+3hXpDrByRWp23Ti400Nj9utyRqmbftTLquuYmTC8OjmAIPAvi2WbrmprTqozY fLgaH9wnIU9/SD7LBuOdKB4QcFElkRwINGPVQtPUQUG+JxXXFfBa9AHnMXXMzW4c 1o7H1f1jPT8AyyhWBzUvKjbRv2KpP8ciGjlAmCTStHQYsCUtai3Hzao9xQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAiOJKOyBRNnhdwJQJc6CBxhjqvwMB8GA1UdIwQY MBaAFAVvSkPgsGUSR/w2KcYnucOF8MN2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlc5S1EtQ3daUkpIX0RZcHhpZTV3NFh3dzNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8yNWI2Y2UtYzIxMS00NjY4LTlhNDct ZmU1OGY4NGRkM2ZkLzEvQ0k0a283SUZFMmVGM0FsQWx6b0lIR0dPcV9BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8yNWI2Y2UtYzIxMS00NjY4LTlhNDctZmU1OGY4NGRkM2Zk LzEvQlc5S1EtQ3daUkpIX0RZcHhpZTV3NFh3dzNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1+GMA0G CSqGSIb3DQEBCwUAA4IBAQAQFWKO85nqVqmT4HEbCo0gFj0B6YKgVgCAhjB1akPc vJ73gzv9a3fZrF4ltObV3lJ9yvOUPKFOhxk9jJRddjJOPP1oEgdrZ3l3bpM8Jj8T QgFJupqRjNTEuOyY9vCXDvYj36CGUnUT/H3eCkrqFrRcowPrEERTxyB0s5oZ2b8Y 66wvF4kTq6stdpA+nEYkpWkPmM17BcxlfrHIF3lmHNTI0Ed2qlOVVuM6JYm4DvBI y1hupJSnciwB+iP+AGif20SwAdDj7iiNoRkpMIaB0yjAj+S611C8hLXgGrx4AKJY 9E6bAF+Qq++u2gwLwudEymeNTjbiyEiWdccEbx+P9iO7 -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:18 2026 by rpki-client