This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ArkmqC5cV4rKHjFzE81Ldao0sEs.roa File: ArkmqC5cV4rKHjFzE81Ldao0sEs.roa (raw, json) Hash identifier: hEg6+Nvrfwd2KymAJ5TeuyiIIA0Jz1wye1KL+ASCfyU= Subject key identifier: 02:B9:26:A8:2E:5C:57:8A:CA:1E:31:73:13:CD:4B:75:AA:34:B0:4B Certificate issuer: /CN=1027a8a61299b80a3e71d1a981427ec00b849d17 Certificate serial: 019B7B369D198072EF992271F3111B60488B Authority key identifier: 10:27:A8:A6:12:99:B8:0A:3E:71:D1:A9:81:42:7E:C0:0B:84:9D:17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ArkmqC5cV4rKHjFzE81Ldao0sEs.roa Signing time: Thu 01 Jan 2026 20:18:55 +0000 ROA not before: Thu 01 Jan 2026 20:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47543 IP address blocks: 95.142.100.0/24 maxlen: 24 95.142.101.0/24 maxlen: 24 178.237.35.0/24 maxlen: 24 178.237.36.0/24 maxlen: 24 178.237.37.0/24 maxlen: 24 178.237.38.0/24 maxlen: 24 2a00:1188:10::/48 maxlen: 48 2a00:1188:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.mft rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:9d:19:80:72:ef:99:22:71:f3:11:1b:60:48:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1027a8a61299b80a3e71d1a981427ec00b849d17 Validity Not Before: Jan 1 20:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=02b926a82e5c578aca1e317313cd4b75aa34b04b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:20:73:a5:2f:7a:1c:6b:0a:7f:3b:7e:fd:99: f2:73:76:ba:5b:84:cf:f7:b3:df:c5:1d:f5:2e:b6: 04:66:9a:4c:e7:e3:00:f7:9f:29:09:bb:c1:b0:34: a4:74:c2:d7:4b:1c:01:d3:d6:a0:8d:76:3e:c3:ef: a3:a8:f1:57:e6:34:4e:0d:d7:d8:42:5a:7f:49:cb: d7:06:4b:29:c5:99:1b:dd:a1:fd:1a:ce:1b:2e:58: bf:84:87:10:49:cc:80:8d:6f:5e:16:b2:6f:88:b5: 53:bb:2c:c8:7e:8e:97:59:bf:47:01:e7:bf:50:16: 45:74:77:2a:a9:12:bc:95:50:3d:69:c7:10:56:05: 00:01:4e:c4:fe:7c:9d:c6:d7:f9:c5:22:6b:8e:6f: a9:e1:34:81:f1:04:67:95:29:c7:b0:b4:f6:7f:3d: b5:00:28:13:16:1b:e0:a3:77:d4:89:a1:6a:0a:98: 85:a1:6b:fd:35:07:dc:8f:17:35:e4:33:f5:a0:8e: c5:9c:4d:ed:48:47:30:19:ab:c2:70:c5:09:bc:57: 89:70:c9:5f:9e:75:52:73:4f:12:47:44:e3:3d:22: b9:8e:06:23:65:28:3e:6d:8f:44:68:f7:84:bf:12: d0:93:eb:6e:7c:37:ca:62:59:b2:52:52:14:3c:09: 26:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B9:26:A8:2E:5C:57:8A:CA:1E:31:73:13:CD:4B:75:AA:34:B0:4B X509v3 Authority Key Identifier: keyid:10:27:A8:A6:12:99:B8:0A:3E:71:D1:A9:81:42:7E:C0:0B:84:9D:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ArkmqC5cV4rKHjFzE81Ldao0sEs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.142.100.0/23 178.237.35.0-178.237.38.255 IPv6: 2a00:1188:10::/48 2a00:1188:12::/48 Signature Algorithm: sha256WithRSAEncryption 0c:ca:08:2f:19:5b:9f:77:50:7f:7f:da:76:4a:a7:f0:b1:1f: 1b:76:d9:00:53:db:43:e6:1d:99:35:cf:9a:bf:67:9a:80:3d: d0:05:0d:d1:ba:c7:f3:44:fa:f3:0a:eb:c5:ed:cc:81:9a:e5: 47:d5:77:5b:38:e2:f4:3d:9e:58:c4:89:a3:33:a0:54:2b:2b: 4c:db:2b:a2:2b:ea:ac:be:46:7a:e1:c2:b2:f1:d7:01:7a:7d: 12:74:22:93:a6:97:44:38:5e:de:e5:aa:b5:49:3d:82:a8:7d: f8:ce:36:00:3b:91:bb:9e:3f:71:2e:e8:94:47:8f:b1:f4:b7: 90:37:0e:7e:f3:0a:7b:4f:9b:d7:21:4a:a8:1e:43:96:88:26: 0f:1d:ad:8e:1f:79:0d:2b:96:a5:a4:ee:c0:8d:e7:c3:de:f7: ee:b1:c7:8a:1e:5d:14:9d:a9:04:2b:38:0d:9a:a8:02:df:62: 14:88:67:c1:9a:30:e7:e2:7e:a7:04:ca:0c:a7:0f:bc:0b:02: 2e:d6:09:e9:18:a3:09:bd:c9:d7:7b:2a:d0:90:90:20:57:cd: f5:a1:92:e5:ba:00:f3:55:36:7a:1e:d3:2b:b6:cd:78:7f:ae: 09:71:81:14:fb:b6:18:e2:7e:49:7b:85:fc:1d:55:45:fc:2d: 62:13:e7:30 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt7Np0ZgHLvmSJx8xEbYEiLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwMjdhOGE2MTI5OWI4MGEzZTcxZDFhOTgxNDI3ZWMwMGI4 NDlkMTcwHhcNMjYwMTAxMjAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMmI5MjZhODJlNWM1NzhhY2ExZTMxNzMxM2NkNGI3NWFhMzRiMDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSBzpS96HGsKfzt+/Znyc3a6W4TP 97PfxR31LrYEZppM5+MA958pCbvBsDSkdMLXSxwB09agjXY+w++jqPFX5jRODdfY Qlp/ScvXBkspxZkb3aH9Gs4bLli/hIcQScyAjW9eFrJviLVTuyzIfo6XWb9HAee/ UBZFdHcqqRK8lVA9accQVgUAAU7E/nydxtf5xSJrjm+p4TSB8QRnlSnHsLT2fz21 ACgTFhvgo3fUiaFqCpiFoWv9NQfcjxc15DP1oI7FnE3tSEcwGavCcMUJvFeJcMlf nnVSc08SR0TjPSK5jgYjZSg+bY9EaPeEvxLQk+tufDfKYlmyUlIUPAkmgQIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFAK5JqguXFeKyh4xcxPNS3WqNLBLMB8GA1UdIwQY MBaAFBAnqKYSmbgKPnHRqYFCfsALhJ0XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUNlb3BoS1p1QW8tY2RHcGdVSi13QXVFblJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYTlkMTMtOGNhNi00NTc3LWE1OWMt OWRkOTk3ZWVmNGVmLzEvQXJrbXFDNWNWNHJLSGpGekU4MUxkYW8wc0VzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iYTlkMTMtOGNhNi00NTc3LWE1OWMtOWRkOTk3ZWVmNGVm LzEvRUNlb3BoS1p1QW8tY2RHcGdVSi13QXVFblJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAaBAIAATAUAwQBX45kMAwD BACy7SMDBACy7SYwGAQCAAIwEgMHACoAEYgAEAMHACoAEYgAEjANBgkqhkiG9w0B AQsFAAOCAQEADMoILxlbn3dQf3/adkqn8LEfG3bZAFPbQ+YdmTXPmr9nmoA90AUN 0brH80T68wrrxe3MgZrlR9V3Wzji9D2eWMSJozOgVCsrTNsroivqrL5GeuHCsvHX AXp9EnQik6aXRDhe3uWqtUk9gqh9+M42ADuRu54/cS7olEePsfS3kDcOfvMKe0+b 1yFKqB5DlogmDx2tjh95DSuWpaTuwI3nw9737rHHih5dFJ2pBCs4DZqoAt9iFIhn wZow5+J+pwTKDKcPvAsCLtYJ6RijCb3J13sq0JCQIFfN9aGS5boA81U2eh7TK7bN eH+uCXGBFPu2GOJ+SXuF/B1VRfwtYhPnMA== -----END CERTIFICATE-----Generated at Mon Jan 26 13:45:51 2026 by rpki-client