This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0pFpwd071QFN2jlMSIx2p2WyFuk.roa File: 0pFpwd071QFN2jlMSIx2p2WyFuk.roa (raw, json) Hash identifier: egcWC952RKwDHQzLuNnM6VmCsxyabA1V6ZOO/VbjSnk= Subject key identifier: D2:91:69:C1:DD:3B:D5:01:4D:DA:39:4C:48:8C:76:A7:65:B2:16:E9 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F850F98B1236A0577900BC7D55B0FA4 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0pFpwd071QFN2jlMSIx2p2WyFuk.roa Signing time: Fri 02 Jan 2026 16:23:05 +0000 ROA not before: Fri 02 Jan 2026 16:23:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211621 IP address blocks: 95.47.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:0f:98:b1:23:6a:05:77:90:0b:c7:d5:5b:0f:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d29169c1dd3bd5014dda394c488c76a765b216e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8b:63:e8:65:a5:ff:c4:a5:70:cd:87:04:62: 46:ba:d5:16:f6:4f:72:0f:99:0a:84:51:11:97:b2: 91:06:04:57:87:6e:05:a6:3e:c4:82:27:a0:41:66: 88:0e:d2:32:86:c7:bf:1e:46:5f:23:4e:81:49:33: 59:5e:b2:76:38:7c:5e:5d:60:43:3e:94:02:e8:14: 06:45:7c:16:ee:0b:74:5f:a5:78:87:84:65:08:d3: 67:b3:7d:3a:5c:db:20:74:f9:3d:a0:ed:78:09:12: 23:16:b8:20:ee:ba:7c:ea:45:85:8a:1a:85:16:67: a1:09:d0:91:2a:c5:87:fe:a2:14:3d:d4:60:66:a5: 32:ca:39:51:d0:01:d1:50:cf:1d:6c:bd:f6:9a:14: c3:4d:bf:16:9f:f1:e0:9d:12:10:cb:3d:90:09:de: a6:ce:49:11:f3:67:0e:cd:24:64:ce:88:4e:43:c3: 21:67:ee:90:8b:46:4d:49:b7:0a:ac:4c:6b:c4:d0: f3:8e:3c:11:f0:60:e5:9f:bf:ca:f9:6b:6e:a5:2f: bd:89:82:c1:d8:ea:b4:f6:17:2e:94:a4:a3:63:6a: 73:b4:85:4b:1d:28:2d:ca:8a:cf:33:fc:f2:3f:a6: 00:af:9b:08:de:b1:bd:fb:2a:33:93:cc:4b:88:84: fa:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:91:69:C1:DD:3B:D5:01:4D:DA:39:4C:48:8C:76:A7:65:B2:16:E9 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0pFpwd071QFN2jlMSIx2p2WyFuk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.104.0/23 Signature Algorithm: sha256WithRSAEncryption 87:04:be:b1:ad:69:c0:66:e3:1f:b4:ff:a4:1e:88:af:53:ea: d5:b9:0d:52:c7:fe:7e:ed:5e:8b:52:06:67:5c:47:65:12:98: 70:c8:23:c7:5e:7d:4c:de:12:5c:81:d6:5f:0c:c2:61:82:5b: 4e:8e:d8:ca:6a:31:ab:70:40:8b:53:3e:82:cd:8e:09:d0:0a: 3b:b1:07:58:e4:95:48:22:e5:0b:bd:25:1b:cf:59:b8:e1:3f: 05:f7:d9:d8:fc:a3:50:6a:71:cf:2d:6e:5b:7b:82:23:26:b1: c0:48:b6:8c:99:71:0e:0d:19:5d:df:a6:4f:49:50:ea:05:11: 8b:1d:1a:13:5f:82:bd:65:8f:55:24:f0:69:a0:d6:6c:e7:0a: a5:aa:f6:5c:a5:9a:da:a2:e4:0f:1b:a5:80:cf:0d:ff:2b:e1: 34:ff:10:9d:aa:c0:7c:b8:9a:28:a8:49:6d:c2:e6:e2:76:10: e4:c4:82:16:3b:aa:81:cf:4f:f4:03:1f:37:98:df:a0:b8:de: 5b:1a:33:46:e1:c5:11:41:0d:1f:8b:58:40:83:2c:f4:e5:ac: 37:ff:8e:98:cb:1c:0d:da:d8:89:16:7d:36:4d:72:f1:b4:78: 16:60:65:96:f5:aa:8b:75:93:32:73:ce:e8:66:e8:53:7a:f4: e6:dc:bd:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hQ+YsSNqBXeQC8fVWw+kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjkxNjljMWRkM2JkNTAxNGRkYTM5NGM0ODhjNzZhNzY1YjIxNmU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04tj6GWl/8SlcM2HBGJGutUW9k9y D5kKhFERl7KRBgRXh24Fpj7EgiegQWaIDtIyhse/HkZfI06BSTNZXrJ2OHxeXWBD PpQC6BQGRXwW7gt0X6V4h4RlCNNns306XNsgdPk9oO14CRIjFrgg7rp86kWFihqF FmehCdCRKsWH/qIUPdRgZqUyyjlR0AHRUM8dbL32mhTDTb8Wn/HgnRIQyz2QCd6m zkkR82cOzSRkzohOQ8MhZ+6Qi0ZNSbcKrExrxNDzjjwR8GDln7/K+WtupS+9iYLB 2Oq09hculKSjY2pztIVLHSgtyorPM/zyP6YAr5sI3rG9+yozk8xLiIT6+wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNKRacHdO9UBTdo5TEiMdqdlshbpMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvMHBGcHdkMDcxUUZOMmpsTVNJeDJwMld5RnVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXy9oMA0G CSqGSIb3DQEBCwUAA4IBAQCHBL6xrWnAZuMftP+kHoivU+rVuQ1Sx/5+7V6LUgZn XEdlEphwyCPHXn1M3hJcgdZfDMJhgltOjtjKajGrcECLUz6CzY4J0Ao7sQdY5JVI IuULvSUbz1m44T8F99nY/KNQanHPLW5be4IjJrHASLaMmXEODRld36ZPSVDqBRGL HRoTX4K9ZY9VJPBpoNZs5wqlqvZcpZraouQPG6WAzw3/K+E0/xCdqsB8uJooqElt wubidhDkxIIWO6qBz0/0Ax83mN+guN5bGjNG4cURQQ0fi1hAgyz05aw3/46YyxwN 2tiJFn02TXLxtHgWYGWW9aqLdZMyc87oZuhTevTm3L2y -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:35 2026 by rpki-client