This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X0UkyHdYo_oLG_rcvNJagY0aQeQ.roa File: X0UkyHdYo_oLG_rcvNJagY0aQeQ.roa (raw, json) Hash identifier: Fh9gqvDf2as8+meJxdn+ofY4kLPzmOhAgJmS4pOrBlA= Subject key identifier: 5F:45:24:C8:77:58:A3:FA:0B:1B:FA:DC:BC:D2:5A:81:8D:1A:41:E4 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F850FE0D57EC89A4E5722A2684B50E1 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X0UkyHdYo_oLG_rcvNJagY0aQeQ.roa Signing time: Fri 02 Jan 2026 16:23:05 +0000 ROA not before: Fri 02 Jan 2026 16:23:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211644 IP address blocks: 95.47.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:0f:e0:d5:7e:c8:9a:4e:57:22:a2:68:4b:50:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f4524c87758a3fa0b1bfadcbcd25a818d1a41e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f2:29:80:26:18:05:89:2e:9f:0e:ba:c9:bb: af:5f:00:38:1c:57:fe:6f:7b:6f:8f:52:c3:79:0d: 27:7a:eb:60:b9:b1:49:96:57:6a:63:ef:8c:0b:34: 55:d4:20:c4:1c:29:95:d8:a1:ce:11:47:45:17:c5: ce:3a:e8:2b:8d:82:b7:be:11:e3:e7:e1:d8:e0:bf: 28:c7:53:2f:fe:f5:f5:2e:d3:10:5e:d0:fe:ff:28: 5a:b2:c7:27:3c:fb:18:2e:23:cc:61:da:83:f1:7d: ff:f4:fa:65:1b:c1:1d:7f:bf:08:44:77:ba:81:03: db:5e:f3:eb:30:3c:e6:09:93:12:d3:72:0b:8d:7f: 63:bf:40:a3:2f:54:57:03:0d:43:48:c1:5f:f7:df: dc:0d:d0:e2:2d:79:55:31:26:ff:df:4a:23:e3:31: a4:c1:54:5f:64:4a:28:1e:36:62:3b:ba:7a:15:41: 0c:f3:0e:ff:9e:ab:34:9c:80:4a:5f:c0:bc:1a:61: fc:a3:70:ca:b4:62:79:a5:71:56:d6:65:31:b2:b6: cf:86:45:39:1e:85:ce:53:e2:88:95:78:99:38:f5: c3:58:fb:9c:84:e7:f2:ba:67:2f:5e:f0:31:ef:39: e8:52:29:a1:b1:38:39:d2:83:01:f6:7b:f9:0a:6c: a2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:45:24:C8:77:58:A3:FA:0B:1B:FA:DC:BC:D2:5A:81:8D:1A:41:E4 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X0UkyHdYo_oLG_rcvNJagY0aQeQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.96.0/22 Signature Algorithm: sha256WithRSAEncryption 64:50:03:61:dc:0e:be:fd:43:21:35:c2:fa:ed:7d:5a:50:02: b4:fe:2f:df:c2:72:b5:c6:52:72:2e:8c:bb:ba:2f:20:76:e7: 92:ca:1d:0f:5b:84:64:19:fd:c8:8d:b2:68:73:e4:f1:68:a8: 64:28:f7:e9:a3:ba:0d:98:fa:73:dc:83:20:5d:10:f7:de:80: 94:ef:18:1c:9a:1b:9b:77:5f:cb:ec:99:f5:a6:8d:32:24:dc: 9f:6c:f7:ad:6f:1f:eb:1a:63:3e:2b:a3:49:df:9d:e9:e3:3c: ce:01:a3:0a:8b:d9:00:8d:7a:7e:64:bc:79:63:22:72:ab:7d: 50:b8:2c:18:a2:6f:e4:6c:a6:b3:38:21:c8:36:f3:c8:77:bf: 95:b7:03:df:fb:93:c1:2b:3a:8a:cb:d7:6f:15:3e:5c:7f:94: 13:46:cb:0f:f2:62:f0:50:28:94:36:ce:f3:58:06:0f:b8:55: ee:9e:50:fc:0e:1e:1f:be:5d:c3:23:25:54:ed:41:95:15:84: cc:50:e2:db:e9:05:16:43:06:3e:00:a0:3c:cf:8b:35:5d:21: 92:fa:9f:cd:8b:35:e3:9d:86:72:27:d2:67:61:54:5e:2c:c2: 90:5a:ee:f6:cc:1c:ca:78:c7:e9:1e:14:14:19:5d:30:4b:05: 40:0f:d8:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hQ/g1X7Imk5XIqJoS1DhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjQ1MjRjODc3NThhM2ZhMGIxYmZhZGNiY2QyNWE4MThkMWE0MWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PIpgCYYBYkunw66ybuvXwA4HFf+ b3tvj1LDeQ0neutgubFJlldqY++MCzRV1CDEHCmV2KHOEUdFF8XOOugrjYK3vhHj 5+HY4L8ox1Mv/vX1LtMQXtD+/yhasscnPPsYLiPMYdqD8X3/9PplG8Edf78IRHe6 gQPbXvPrMDzmCZMS03ILjX9jv0CjL1RXAw1DSMFf99/cDdDiLXlVMSb/30oj4zGk wVRfZEooHjZiO7p6FUEM8w7/nqs0nIBKX8C8GmH8o3DKtGJ5pXFW1mUxsrbPhkU5 HoXOU+KIlXiZOPXDWPuchOfyumcvXvAx7znoUimhsTg50oMB9nv5CmyilwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF9FJMh3WKP6Cxv63LzSWoGNGkHkMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWDBVa3lIZFlvX29MR19yY3ZOSmFnWTBhUWVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXy9gMA0G CSqGSIb3DQEBCwUAA4IBAQBkUANh3A6+/UMhNcL67X1aUAK0/i/fwnK1xlJyLoy7 ui8gdueSyh0PW4RkGf3IjbJoc+TxaKhkKPfpo7oNmPpz3IMgXRD33oCU7xgcmhub d1/L7Jn1po0yJNyfbPetbx/rGmM+K6NJ353p4zzOAaMKi9kAjXp+ZLx5YyJyq31Q uCwYom/kbKazOCHINvPId7+VtwPf+5PBKzqKy9dvFT5cf5QTRssP8mLwUCiUNs7z WAYPuFXunlD8Dh4fvl3DIyVU7UGVFYTMUOLb6QUWQwY+AKA8z4s1XSGS+p/NizXj nYZyJ9JnYVReLMKQWu72zBzKeMfpHhQUGV0wSwVAD9gW -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:42 2026 by rpki-client