This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/tMOM49mON-wD8zTtajFPDha_yco.roa File: tMOM49mON-wD8zTtajFPDha_yco.roa (raw, json) Hash identifier: X25vCvqdM17ldWbN+OsedMb7/hCVvVUgdyyal0kP0OU= Subject key identifier: B4:C3:8C:E3:D9:8E:37:EC:03:F3:34:ED:6A:31:4F:0E:16:BF:C9:CA Certificate issuer: /CN=20e425a32b62d39818c4cbb0081075686fc4c8e8 Certificate serial: 019B7B35F7184928E659E9B2C3A1362B3619 Authority key identifier: 20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/tMOM49mON-wD8zTtajFPDha_yco.roa Signing time: Thu 01 Jan 2026 20:18:12 +0000 ROA not before: Thu 01 Jan 2026 20:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203771 IP address blocks: 95.170.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.mft rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:f7:18:49:28:e6:59:e9:b2:c3:a1:36:2b:36:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e425a32b62d39818c4cbb0081075686fc4c8e8 Validity Not Before: Jan 1 20:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4c38ce3d98e37ec03f334ed6a314f0e16bfc9ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:99:a4:d3:8b:4d:62:e9:49:14:09:cf:1a:42: bc:ed:74:6d:7a:bf:15:b5:47:f0:aa:74:be:b7:b7: be:34:be:aa:c7:4a:c6:d3:0b:e4:c3:ff:e4:ad:14: 8c:ff:8e:0e:29:93:7c:bb:61:30:4d:9a:18:17:7b: b7:ac:b1:3a:6d:df:66:89:89:ee:6f:7d:46:cc:e8: 51:cc:9c:83:06:75:5a:3d:f2:97:d7:b5:70:8e:8b: 01:a0:cb:ed:cd:47:5c:8f:6b:87:16:18:5f:93:26: dc:fc:16:77:fd:8d:7d:50:69:49:df:95:ef:87:79: 29:b1:28:6a:51:c9:d4:e2:8b:6b:37:9d:8a:4d:ec: 72:a2:85:2b:e6:b5:9b:3e:c3:6b:56:cc:c0:20:7c: bc:9b:f6:d7:66:aa:dc:6b:65:9d:f2:06:c6:c5:0c: bd:36:71:b6:d9:a0:72:31:20:a4:55:22:73:ff:c4: fd:d1:5f:9a:0a:31:4a:3f:e0:5d:25:bb:a9:d5:e6: da:f8:05:81:36:95:ab:46:80:36:62:94:fb:c9:09: 93:25:a4:eb:ef:88:76:28:ee:3d:6b:75:b2:40:b9: e1:dc:b0:54:d1:d1:a0:8a:0c:25:a1:07:b9:ba:15: 86:a6:91:b8:57:4d:16:10:b0:86:ac:41:75:d8:ad: 52:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C3:8C:E3:D9:8E:37:EC:03:F3:34:ED:6A:31:4F:0E:16:BF:C9:CA X509v3 Authority Key Identifier: keyid:20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/tMOM49mON-wD8zTtajFPDha_yco.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.170.25.0/24 Signature Algorithm: sha256WithRSAEncryption 27:c0:a3:51:4d:67:8d:8b:09:19:b2:26:89:ac:2a:de:b7:57: bc:77:8c:27:b1:4c:30:89:50:e7:bf:f5:b6:5b:f4:f7:da:c3: fe:05:d8:b2:ff:03:4a:82:ab:3e:94:6f:d7:fc:84:61:2a:5c: d4:86:2e:04:fe:60:ab:34:ce:07:32:5e:17:d3:99:70:fd:d0: 57:07:7e:85:34:85:36:89:3b:3c:80:0d:b9:85:fc:03:a7:c1: b0:9d:78:be:b1:73:6e:6c:3c:9b:70:39:e5:05:ac:7b:c7:6d: 95:7b:97:8c:b9:12:d6:2b:32:d6:61:9e:d3:13:bf:6a:68:a1: 04:a8:d2:3d:0c:31:bd:ba:56:c5:09:40:b3:ac:57:41:65:e4: 25:01:8a:ab:33:d3:fe:aa:ee:5d:18:54:44:f2:05:c6:cd:ef: d4:36:ea:af:a2:eb:1b:8a:26:0f:36:6f:5e:0b:6f:68:22:7e: 92:a6:65:1f:0e:66:84:88:46:d3:90:1c:9a:5f:34:bd:66:a0: d2:48:c7:f9:b4:f1:38:a8:ca:07:ee:ca:9d:36:97:fe:ed:5f: 95:5c:5b:43:1f:1e:80:c0:bf:c7:69:03:19:4b:67:cc:4c:3f: c3:8a:f9:d0:46:22:1e:97:66:7f:51:bd:a8:b3:ac:ad:00:97: f1:72:60:41 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NfcYSSjmWemyw6E2KzYZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTQyNWEzMmI2MmQzOTgxOGM0Y2JiMDA4MTA3NTY4NmZj NGM4ZTgwHhcNMjYwMTAxMjAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGMzOGNlM2Q5OGUzN2VjMDNmMzM0ZWQ2YTMxNGYwZTE2YmZjOWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpmk04tNYulJFAnPGkK87XRter8V tUfwqnS+t7e+NL6qx0rG0wvkw//krRSM/44OKZN8u2EwTZoYF3u3rLE6bd9miYnu b31GzOhRzJyDBnVaPfKX17VwjosBoMvtzUdcj2uHFhhfkybc/BZ3/Y19UGlJ35Xv h3kpsShqUcnU4otrN52KTexyooUr5rWbPsNrVszAIHy8m/bXZqrca2Wd8gbGxQy9 NnG22aByMSCkVSJz/8T90V+aCjFKP+BdJbup1eba+AWBNpWrRoA2YpT7yQmTJaTr 74h2KO49a3WyQLnh3LBU0dGgigwloQe5uhWGppG4V00WELCGrEF12K1SFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLTDjOPZjjfsA/M07WoxTw4Wv8nKMB8GA1UdIwQY MBaAFCDkJaMrYtOYGMTLsAgQdWhvxMjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9RbG95dGkwNWdZeE11d0NCQjFhR19FeU9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9mZDhjMDEtN2I3MS00NDJjLTlhZGIt ZWNkMjk2NWNiN2U3LzEvdE1PTTQ5bU9OLXdEOHpUdGFqRlBEaGFfeWNvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS9mZDhjMDEtN2I3MS00NDJjLTlhZGItZWNkMjk2NWNiN2U3 LzEvSU9RbG95dGkwNWdZeE11d0NCQjFhR19FeU9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6oZMA0G CSqGSIb3DQEBCwUAA4IBAQAnwKNRTWeNiwkZsiaJrCret1e8d4wnsUwwiVDnv/W2 W/T32sP+Bdiy/wNKgqs+lG/X/IRhKlzUhi4E/mCrNM4HMl4X05lw/dBXB36FNIU2 iTs8gA25hfwDp8GwnXi+sXNubDybcDnlBax7x22Ve5eMuRLWKzLWYZ7TE79qaKEE qNI9DDG9ulbFCUCzrFdBZeQlAYqrM9P+qu5dGFRE8gXGze/UNuqvousbiiYPNm9e C29oIn6SpmUfDmaEiEbTkByaXzS9ZqDSSMf5tPE4qMoH7sqdNpf+7V+VXFtDHx6A wL/HaQMZS2fMTD/DivnQRiIel2Z/Ub2os6ytAJfxcmBB -----END CERTIFICATE-----Generated at Sun Jan 25 07:16:50 2026 by rpki-client