This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/ESQujN5DaULTkC6C6ybAQLdooUw.roa File: ESQujN5DaULTkC6C6ybAQLdooUw.roa (raw, json) Hash identifier: kGih2+U+odRcMpkYTKXLRUpY39oIhEjGgAU5Suq/FjE= Subject key identifier: 11:24:2E:8C:DE:43:69:42:D3:90:2E:82:EB:26:C0:40:B7:68:A1:4C Certificate issuer: /CN=1c5c72ee422c61667e3056de6b3ffce034305175 Certificate serial: 019B7BA504CF0DE78328E324E12CB3BBF9F4 Authority key identifier: 1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/ESQujN5DaULTkC6C6ybAQLdooUw.roa Signing time: Thu 01 Jan 2026 22:19:30 +0000 ROA not before: Thu 01 Jan 2026 22:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60635 IP address blocks: 95.66.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/HFxy7kIsYWZ-MFbeaz_84DQwUXU.crl rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/HFxy7kIsYWZ-MFbeaz_84DQwUXU.mft rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:04:cf:0d:e7:83:28:e3:24:e1:2c:b3:bb:f9:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c5c72ee422c61667e3056de6b3ffce034305175 Validity Not Before: Jan 1 22:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11242e8cde436942d3902e82eb26c040b768a14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:47:69:23:22:c3:e2:fb:45:98:25:fa:38:77: 2d:79:7a:c6:21:26:79:8e:4e:d3:d0:b3:5a:ab:c8: 08:d8:a3:74:10:c4:8a:8f:43:d0:95:5f:c7:bb:00: 61:4c:91:3e:37:30:7f:7c:bd:f8:c7:46:33:25:71: 30:22:f2:39:10:c5:bf:ad:a5:b1:8a:ca:df:6e:37: d3:8f:bb:42:c8:b6:a8:4c:94:3b:3d:cb:78:08:2c: 8d:c9:71:7d:76:bc:5e:af:6c:27:ec:ca:48:46:90: ca:2b:23:55:48:87:34:26:17:1c:f7:db:30:68:07: ed:54:a7:22:02:85:0d:eb:86:94:0f:30:32:19:27: db:a6:52:07:fb:10:43:94:e7:3b:08:1b:a3:19:d0: 5d:ad:77:19:95:8e:5e:39:78:82:ca:fe:c7:8c:90: dc:8a:37:c4:7f:4a:23:1e:fd:17:36:5a:b5:38:58: 53:45:a0:fd:13:3e:9d:6f:1a:90:2b:1e:94:f8:a9: d4:f9:71:27:95:cb:31:7e:56:3a:33:cc:9f:fd:12: ed:da:ea:40:56:9d:00:28:c3:7b:21:d4:3c:82:b9: c2:17:b4:59:b0:c0:35:59:df:b9:36:cf:5a:b1:90: 6f:38:06:55:c2:e5:e0:4f:96:7d:5f:23:f1:9a:30: f3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:24:2E:8C:DE:43:69:42:D3:90:2E:82:EB:26:C0:40:B7:68:A1:4C X509v3 Authority Key Identifier: keyid:1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/ESQujN5DaULTkC6C6ybAQLdooUw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/HFxy7kIsYWZ-MFbeaz_84DQwUXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.66.226.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:5e:f1:3b:1b:ea:32:13:07:bf:ac:34:41:43:5d:b2:f5:88: 68:78:74:a8:24:0b:71:88:b1:10:b9:26:27:51:f6:32:0c:13: 35:02:92:de:5f:f7:51:36:19:44:1b:5e:d9:2a:b4:15:fa:41: 89:94:09:f6:d7:c7:b4:9a:92:0f:c0:0c:7e:6b:35:38:fa:04: 46:e4:78:d0:ab:c9:36:fc:64:36:4c:53:fe:f1:8c:ac:20:a5: 76:46:c3:78:15:23:0d:51:b3:2b:f3:03:0c:a2:02:4f:34:b9: 41:ec:7b:3e:c2:2b:31:61:46:a8:58:ea:7b:a5:d7:6b:d5:54: b5:82:92:09:85:34:0b:8a:07:96:b4:5c:bc:4e:04:1b:69:0a: f7:5f:66:da:06:b6:7d:a9:69:66:8f:d5:3f:e4:cf:70:4c:91: 93:1f:58:9e:8b:07:17:66:c4:c8:a0:09:3b:98:f1:16:dd:9b: 36:59:b9:e4:a6:06:c5:ca:2b:a0:64:84:6d:11:de:06:9b:76: cd:32:e8:d9:8a:1b:da:5d:9d:1c:07:b5:17:29:5b:cd:ca:44: 5e:4b:f3:7f:ab:05:de:9e:ef:8b:02:4b:c4:5a:f0:e8:ee:12: d0:6c:60:4c:b4:33:dc:e3:bf:80:29:b7:07:37:e5:33:33:a6: 7b:76:20:ae -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pQTPDeeDKOMk4Syzu/n0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjNWM3MmVlNDIyYzYxNjY3ZTMwNTZkZTZiM2ZmY2UwMzQz MDUxNzUwHhcNMjYwMTAxMjIxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTI0MmU4Y2RlNDM2OTQyZDM5MDJlODJlYjI2YzA0MGI3NjhhMTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70dpIyLD4vtFmCX6OHcteXrGISZ5 jk7T0LNaq8gI2KN0EMSKj0PQlV/HuwBhTJE+NzB/fL34x0YzJXEwIvI5EMW/raWx isrfbjfTj7tCyLaoTJQ7Pct4CCyNyXF9drxer2wn7MpIRpDKKyNVSIc0Jhcc99sw aAftVKciAoUN64aUDzAyGSfbplIH+xBDlOc7CBujGdBdrXcZlY5eOXiCyv7HjJDc ijfEf0ojHv0XNlq1OFhTRaD9Ez6dbxqQKx6U+KnU+XEnlcsxflY6M8yf/RLt2upA Vp0AKMN7IdQ8grnCF7RZsMA1Wd+5Ns9asZBvOAZVwuXgT5Z9XyPxmjDzywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBEkLozeQ2lC05AugusmwEC3aKFMMB8GA1UdIwQY MBaAFBxccu5CLGFmfjBW3ms//OA0MFF1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEZ4eTdrSXNZV1otTUZiZWF6Xzg0RFF3VVhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9lMDhkMGUtZWU0Yy00YWUxLTllMGIt MTI3OGE0MmUwOTJhLzEvRVNRdWpONURhVUxUa0M2QzZ5YkFRTGRvb1V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9lMDhkMGUtZWU0Yy00YWUxLTllMGItMTI3OGE0MmUwOTJh LzEvSEZ4eTdrSXNZV1otTUZiZWF6Xzg0RFF3VVhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX0LiMA0G CSqGSIb3DQEBCwUAA4IBAQCfXvE7G+oyEwe/rDRBQ12y9YhoeHSoJAtxiLEQuSYn UfYyDBM1ApLeX/dRNhlEG17ZKrQV+kGJlAn218e0mpIPwAx+azU4+gRG5HjQq8k2 /GQ2TFP+8YysIKV2RsN4FSMNUbMr8wMMogJPNLlB7Hs+wisxYUaoWOp7pddr1VS1 gpIJhTQLigeWtFy8TgQbaQr3X2baBrZ9qWlmj9U/5M9wTJGTH1ieiwcXZsTIoAk7 mPEW3Zs2WbnkpgbFyiugZIRtEd4Gm3bNMujZihvaXZ0cB7UXKVvNykReS/N/qwXe nu+LAkvEWvDo7hLQbGBMtDPc47+AKbcHN+UzM6Z7diCu -----END CERTIFICATE-----Generated at Mon Jan 26 10:23:14 2026 by rpki-client