This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/rE8FN9Y7EQiQiPsfmxGx2ltm4pI.roa File: rE8FN9Y7EQiQiPsfmxGx2ltm4pI.roa (raw, json) Hash identifier: 8TQ1vN9BSVaOb/GPbDisRcKit2wNmxeUSrgCG351vsg= Subject key identifier: AC:4F:05:37:D6:3B:11:08:90:88:FB:1F:9B:11:B1:DA:5B:66:E2:92 Certificate issuer: /CN=20e425a32b62d39818c4cbb0081075686fc4c8e8 Certificate serial: 019AEEF7D1604144E508743CAECDB8A675AB Authority key identifier: 20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/rE8FN9Y7EQiQiPsfmxGx2ltm4pI.roa Signing time: Fri 05 Dec 2025 14:43:29 +0000 ROA not before: Fri 05 Dec 2025 14:43:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 95.170.12.0/24 maxlen: 24 95.170.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.mft rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ee:f7:d1:60:41:44:e5:08:74:3c:ae:cd:b8:a6:75:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e425a32b62d39818c4cbb0081075686fc4c8e8 Validity Not Before: Dec 5 14:43:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=ac4f0537d63b11089088fb1f9b11b1da5b66e292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:f5:eb:e5:09:76:10:ae:7d:21:16:65:38: 5b:70:ac:15:6e:5e:4f:14:8b:43:31:b7:7d:45:f4: 7f:e0:1b:2f:65:2e:ba:36:8a:30:31:50:02:32:df: 95:4b:af:ab:48:53:e7:1a:c7:1c:07:2a:1f:76:78: d1:dd:66:99:c4:ec:42:c3:f3:d5:68:f5:64:9b:8b: 28:5d:d6:72:cc:f0:4a:bb:d4:a7:76:03:8c:e1:db: d9:86:a3:67:e2:4c:0a:85:f0:11:c8:d4:47:7c:d6: 11:e1:ee:a1:6e:40:c1:21:85:8d:7b:0e:09:0d:fe: 3c:b0:14:e0:a7:f4:93:32:8b:e8:61:20:5a:93:e9: cd:f9:62:13:33:8b:1d:cb:5a:02:1c:ec:14:60:41: 86:e5:59:5b:d7:bf:a4:03:fb:e4:c9:70:08:77:f8: ed:72:8c:56:af:27:1a:3a:ef:bf:f8:df:f3:1b:9c: fe:92:fd:a2:56:e4:77:25:14:51:f8:ae:6c:ef:77: c0:3c:9a:f2:0c:dc:12:e7:15:1e:14:42:6d:a6:8b: 6e:43:e5:85:48:b6:60:7d:10:34:2f:a0:66:01:b4: c1:9e:cd:07:b7:19:29:bd:7a:4b:c8:ec:32:f5:60: 98:89:b5:cc:e6:08:62:56:68:b1:47:8f:92:3e:bc: b7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:4F:05:37:D6:3B:11:08:90:88:FB:1F:9B:11:B1:DA:5B:66:E2:92 X509v3 Authority Key Identifier: keyid:20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/rE8FN9Y7EQiQiPsfmxGx2ltm4pI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.170.12.0/24 95.170.29.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:f6:84:b6:23:72:0a:2a:80:64:92:e1:7e:36:b3:54:b2:7f: 98:0a:91:8a:2b:81:48:f7:42:e3:64:d5:ea:de:b9:e3:31:11: f1:8f:f1:44:c2:2a:2e:3d:4d:97:c1:f2:6f:3f:89:3f:c7:e0: 9b:66:25:09:ca:d1:41:59:6a:dc:82:3d:61:23:09:a5:96:61: 2a:1c:4a:a3:7a:e0:84:7c:73:91:d0:7f:f2:fe:5b:8d:7d:83: 50:82:83:04:10:2f:28:21:8a:50:3f:29:f8:6f:88:c1:00:94: 6a:73:fa:df:6e:52:bb:19:71:9f:91:8b:be:c1:c8:17:50:91: 62:66:6b:c7:69:b3:fe:86:9f:1b:70:d8:a7:cc:4e:b3:ac:a9: 54:cd:5a:0a:b6:7d:a7:e7:9d:a0:ba:eb:38:54:32:a6:44:2b: 9d:76:8e:0d:93:e6:65:dc:62:98:db:1f:7e:f8:82:e7:1b:e4: 7f:e2:8f:e7:8d:58:2f:3d:0c:26:04:6c:53:2d:39:62:b8:f9: 68:a3:6c:7c:07:53:3a:48:3c:b7:8e:26:86:35:e2:c1:b7:61: d5:68:6a:19:d0:5c:41:95:52:65:24:d1:93:59:f8:a1:2b:f9: 55:b6:70:87:75:0c:ce:6c:38:80:5b:cd:f2:60:29:b9:a2:9c: f2:02:97:5e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZru99FgQUTlCHQ8rs24pnWrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTQyNWEzMmI2MmQzOTgxOGM0Y2JiMDA4MTA3NTY4NmZj NGM4ZTgwHhcNMjUxMjA1MTQ0MzI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzRmMDUzN2Q2M2IxMTA4OTA4OGZiMWY5YjExYjFkYTViNjZlMjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqT16+UJdhCufSEWZThbcKwVbl5P FItDMbd9RfR/4BsvZS66NoowMVACMt+VS6+rSFPnGsccByofdnjR3WaZxOxCw/PV aPVkm4soXdZyzPBKu9SndgOM4dvZhqNn4kwKhfARyNRHfNYR4e6hbkDBIYWNew4J Df48sBTgp/STMovoYSBak+nN+WITM4sdy1oCHOwUYEGG5Vlb17+kA/vkyXAId/jt coxWrycaOu+/+N/zG5z+kv2iVuR3JRRR+K5s73fAPJryDNwS5xUeFEJtpotuQ+WF SLZgfRA0L6BmAbTBns0HtxkpvXpLyOwy9WCYibXM5ghiVmixR4+SPry3MwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKxPBTfWOxEIkIj7H5sRsdpbZuKSMB8GA1UdIwQY MBaAFCDkJaMrYtOYGMTLsAgQdWhvxMjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9RbG95dGkwNWdZeE11d0NCQjFhR19FeU9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9mZDhjMDEtN2I3MS00NDJjLTlhZGIt ZWNkMjk2NWNiN2U3LzEvckU4Rk45WTdFUWlRaVBzZm14R3gybHRtNHBJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS9mZDhjMDEtN2I3MS00NDJjLTlhZGItZWNkMjk2NWNiN2U3 LzEvSU9RbG95dGkwNWdZeE11d0NCQjFhR19FeU9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX6oMAwQA X6odMA0GCSqGSIb3DQEBCwUAA4IBAQB79oS2I3IKKoBkkuF+NrNUsn+YCpGKK4FI 90LjZNXq3rnjMRHxj/FEwiouPU2XwfJvP4k/x+CbZiUJytFBWWrcgj1hIwmllmEq HEqjeuCEfHOR0H/y/luNfYNQgoMEEC8oIYpQPyn4b4jBAJRqc/rfblK7GXGfkYu+ wcgXUJFiZmvHabP+hp8bcNinzE6zrKlUzVoKtn2n552guus4VDKmRCuddo4Nk+Zl 3GKY2x9++ILnG+R/4o/njVgvPQwmBGxTLTliuPloo2x8B1M6SDy3jiaGNeLBt2HV aGoZ0FxBlVJlJNGTWfihK/lVtnCHdQzObDiAW83yYCm5opzyApde -----END CERTIFICATE-----Generated at Sat Dec 6 18:07:03 2025 by rpki-client