This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X45kRxjWmijM8xXrasFgUu_rqz8.roa File: X45kRxjWmijM8xXrasFgUu_rqz8.roa (raw, json) Hash identifier: NIczAS02vUwsgM4npc9PS2r/HiWO4ehFlgne4wcVRig= Subject key identifier: 5F:8E:64:47:18:D6:9A:28:CC:F3:15:EB:6A:C1:60:52:EF:EB:AB:3F Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F851197E6E4F3EA920D42EEC5BEE30B Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X45kRxjWmijM8xXrasFgUu_rqz8.roa Signing time: Fri 02 Jan 2026 16:23:05 +0000 ROA not before: Fri 02 Jan 2026 16:23:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212206 IP address blocks: 95.47.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:11:97:e6:e4:f3:ea:92:0d:42:ee:c5:be:e3:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5f8e644718d69a28ccf315eb6ac16052efebab3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ad:9f:26:a0:b3:57:00:88:58:c9:3d:56:cb: ba:0a:6c:29:12:6e:8f:21:8d:c7:2b:f8:70:4f:e5: 89:01:32:2e:2c:4e:9a:7c:f3:0b:41:75:32:9a:bd: db:94:96:40:2e:54:10:bd:48:1f:03:a5:5a:8b:b9: 97:b7:9a:ac:e2:20:a2:c3:b8:dd:8b:7e:6e:f4:ff: b8:ac:5d:e0:15:12:f5:2b:8d:6f:1d:fb:17:2e:8b: 47:ce:7c:ec:8e:88:86:e0:09:ef:86:ca:e5:b4:ca: 08:fd:be:40:d9:a8:29:e1:3e:c3:22:1a:30:60:6f: 22:26:ca:22:bb:de:9d:b1:be:64:22:67:71:f0:b4: ac:2c:e9:51:da:2a:9d:8f:d8:4b:b0:7e:c3:69:65: 6c:27:bc:f1:8e:9a:30:fb:cd:4f:cc:d0:fd:51:0a: db:d7:ca:14:01:a0:ad:b1:22:94:b6:54:4e:51:3f: 35:b2:cc:df:00:5b:4e:37:94:23:82:c9:c2:62:32: f3:95:bb:c8:92:dc:89:ca:56:fc:c7:51:ad:ee:36: 42:ba:6f:7b:17:b1:3f:a8:08:32:99:83:af:d5:ea: d1:d2:26:53:32:38:61:12:0d:2a:39:f8:c8:14:6a: 08:5c:b8:f8:f7:8d:bd:93:75:3d:3a:5d:ae:8f:dd: cb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8E:64:47:18:D6:9A:28:CC:F3:15:EB:6A:C1:60:52:EF:EB:AB:3F X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X45kRxjWmijM8xXrasFgUu_rqz8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.156.0/24 Signature Algorithm: sha256WithRSAEncryption 12:b4:dc:a4:ac:32:04:65:5f:02:f7:cd:4c:53:e1:7b:47:83: a8:08:38:a3:9c:41:33:60:aa:34:48:af:de:5b:4c:2f:e9:69: 4f:56:af:22:80:98:b7:62:0f:fc:d1:2d:ad:9d:42:eb:67:ae: e7:a7:88:bd:4c:1d:7a:0d:5f:77:c2:61:34:82:9c:ed:8a:09: 29:ba:80:c3:9b:15:75:a1:ad:71:e6:b4:4a:6c:c1:97:9e:0f: 6e:21:99:62:18:da:fc:fe:93:9d:81:1d:ce:fa:23:dc:df:f5: c1:1d:28:e0:a1:29:e3:8a:33:02:8c:02:64:63:0b:40:ab:f7: c0:b4:56:8a:f7:72:fe:af:e1:72:57:89:e7:c9:65:a4:19:ad: 00:ec:7a:ec:e8:60:2f:98:76:a6:42:ca:7c:80:2c:3f:c1:3f: 8f:c9:d3:a2:7f:3b:be:ae:a9:a1:aa:8a:b3:30:cd:80:0f:11: 8b:dd:52:2f:33:c5:92:9f:01:a1:12:07:40:6b:50:86:4e:f2: d8:a7:ac:ca:e7:1b:11:6d:54:d6:c4:cb:6c:2b:e8:d1:5a:12: 62:6c:3d:03:e3:93:9a:af:c0:c8:83:78:fe:5b:aa:49:5e:37: 67:b0:b7:fd:86:0c:22:ec:2b:53:80:1f:f6:eb:ce:04:ad:85: a3:ae:2d:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hRGX5uTz6pINQu7FvuMLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ZjhlNjQ0NzE4ZDY5YTI4Y2NmMzE1ZWI2YWMxNjA1MmVmZWJhYjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2q2fJqCzVwCIWMk9Vsu6CmwpEm6P IY3HK/hwT+WJATIuLE6afPMLQXUymr3blJZALlQQvUgfA6Vai7mXt5qs4iCiw7jd i35u9P+4rF3gFRL1K41vHfsXLotHznzsjoiG4AnvhsrltMoI/b5A2agp4T7DIhow YG8iJsoiu96dsb5kImdx8LSsLOlR2iqdj9hLsH7DaWVsJ7zxjpow+81PzND9UQrb 18oUAaCtsSKUtlROUT81sszfAFtON5QjgsnCYjLzlbvIktyJylb8x1Gt7jZCum97 F7E/qAgymYOv1erR0iZTMjhhEg0qOfjIFGoIXLj49429k3U9Ol2uj93LqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFF+OZEcY1poozPMV62rBYFLv66s/MB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvWDQ1a1J4aldtaWpNOHhYcmFzRmdVdV9ycXo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXy+cMA0G CSqGSIb3DQEBCwUAA4IBAQAStNykrDIEZV8C981MU+F7R4OoCDijnEEzYKo0SK/e W0wv6WlPVq8igJi3Yg/80S2tnULrZ67np4i9TB16DV93wmE0gpztigkpuoDDmxV1 oa1x5rRKbMGXng9uIZliGNr8/pOdgR3O+iPc3/XBHSjgoSnjijMCjAJkYwtAq/fA tFaK93L+r+FyV4nnyWWkGa0A7Hrs6GAvmHamQsp8gCw/wT+PydOifzu+rqmhqoqz MM2ADxGL3VIvM8WSnwGhEgdAa1CGTvLYp6zK5xsRbVTWxMtsK+jRWhJibD0D45Oa r8DIg3j+W6pJXjdnsLf9hgwi7CtTgB/2684ErYWjri1+ -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:36 2026 by rpki-client