This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rhAkYU1aBiU0S3Ix7S4UfJd_K9Y.roa File: rhAkYU1aBiU0S3Ix7S4UfJd_K9Y.roa (raw, json) Hash identifier: +oBrv+JIjbfxy5QCD6w6jw5n/Ub+3ujRipJ50UTCukE= Subject key identifier: AE:10:24:61:4D:5A:06:25:34:4B:72:31:ED:2E:14:7C:97:7F:2B:D6 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F849DD394BD6FD4FD219559C433525C Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rhAkYU1aBiU0S3Ix7S4UfJd_K9Y.roa Signing time: Fri 02 Jan 2026 16:22:36 +0000 ROA not before: Fri 02 Jan 2026 16:22:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41967 IP address blocks: 95.47.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:9d:d3:94:bd:6f:d4:fd:21:95:59:c4:33:52:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae1024614d5a0625344b7231ed2e147c977f2bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e4:ff:9d:85:bc:9e:f3:e2:9f:f6:2d:54:49: 7b:ed:da:f9:3d:4c:99:23:4c:2a:8f:68:20:b5:5b: d7:90:cf:6f:2b:9d:b3:4c:18:26:e3:29:1d:f0:b3: 8f:55:28:e2:29:9a:2c:c0:7d:fe:c8:f2:f6:7d:de: 10:4c:a0:01:e4:cd:1b:c7:82:26:90:24:db:77:a7: f3:1f:7c:85:3d:32:7b:8d:94:69:91:c8:fa:a8:9b: bc:27:64:b7:53:05:4f:03:09:da:5b:1d:e8:be:10: 14:7e:d0:cb:7b:97:c1:5b:f2:72:aa:c9:37:24:4b: d5:00:13:55:d1:85:04:11:8b:8c:3a:e4:f5:d7:e5: a3:5f:c6:d5:c6:64:40:b2:31:bd:6a:b5:ec:6a:ae: 2f:8d:18:21:c1:f6:34:28:5b:44:24:de:a4:19:c7: ac:17:39:b3:a3:61:3b:a3:70:5a:1e:86:df:b9:51: e5:22:d9:9b:14:6d:db:a1:37:d4:6b:c8:13:41:86: 31:e3:8a:33:d3:f7:d6:a2:0b:6e:bf:a4:5a:7e:eb: be:6d:db:99:f1:35:f2:64:fd:27:03:b0:cf:e8:10: f5:b3:a6:c8:70:3b:19:a6:44:70:b0:30:c4:69:96: 76:4f:68:34:31:d5:16:72:9c:72:61:5d:7c:5f:18: d1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:10:24:61:4D:5A:06:25:34:4B:72:31:ED:2E:14:7C:97:7F:2B:D6 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/rhAkYU1aBiU0S3Ix7S4UfJd_K9Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.148.0/22 Signature Algorithm: sha256WithRSAEncryption a6:00:2e:3e:29:26:03:30:7c:45:54:71:36:a8:8e:60:3f:79: 96:af:ae:ec:20:f0:c0:4b:3d:e0:34:12:78:87:9f:84:75:86: 33:96:11:5e:30:5b:f4:a4:d4:39:9a:8c:1c:e1:16:d8:81:45: 4f:36:5b:17:18:c3:cd:87:19:d3:f3:a3:10:f1:08:e3:b0:c2: 46:cb:9e:34:f4:18:c6:1e:f6:88:6a:bc:fe:d4:3f:46:1a:b1: 4c:c5:df:ed:f2:ce:d6:0a:27:8d:be:eb:b8:8c:16:8a:53:a0: 08:4f:86:f9:b4:43:d3:17:8b:c5:7f:2a:d0:06:1b:cc:bf:59: 3a:ef:d8:24:69:bc:4d:c7:b1:67:62:9e:e8:45:3d:58:d7:fa: 93:f5:99:40:77:b2:cf:ef:84:02:80:63:82:fa:3f:89:95:a6: b7:e4:92:68:a8:f9:a1:54:30:0e:f9:14:6f:1d:f9:6a:d3:0a: 9a:a5:ba:11:a9:57:54:02:a5:96:1f:04:1c:30:c4:62:d2:78: 32:2b:52:a3:4a:13:2c:9b:26:71:12:d8:0a:c1:16:26:30:e4: 3d:bf:ff:7f:53:77:fc:12:ee:56:eb:e1:27:d5:01:88:a8:7a: 65:d7:69:9e:de:c2:3f:f0:25:4b:ce:95:77:c5:0b:95:9f:b5: a9:f7:26:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hJ3TlL1v1P0hlVnEM1JcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTEwMjQ2MTRkNWEwNjI1MzQ0YjcyMzFlZDJlMTQ3Yzk3N2YyYmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5uT/nYW8nvPin/YtVEl77dr5PUyZ I0wqj2ggtVvXkM9vK52zTBgm4ykd8LOPVSjiKZoswH3+yPL2fd4QTKAB5M0bx4Im kCTbd6fzH3yFPTJ7jZRpkcj6qJu8J2S3UwVPAwnaWx3ovhAUftDLe5fBW/Jyqsk3 JEvVABNV0YUEEYuMOuT11+WjX8bVxmRAsjG9arXsaq4vjRghwfY0KFtEJN6kGces Fzmzo2E7o3BaHobfuVHlItmbFG3boTfUa8gTQYYx44oz0/fWogtuv6Rafuu+bduZ 8TXyZP0nA7DP6BD1s6bIcDsZpkRwsDDEaZZ2T2g0MdUWcpxyYV18XxjR7wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK4QJGFNWgYlNEtyMe0uFHyXfyvWMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvcmhBa1lVMWFCaVUwUzNJeDdTNFVmSmRfSzlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXy+UMA0G CSqGSIb3DQEBCwUAA4IBAQCmAC4+KSYDMHxFVHE2qI5gP3mWr67sIPDASz3gNBJ4 h5+EdYYzlhFeMFv0pNQ5mowc4RbYgUVPNlsXGMPNhxnT86MQ8QjjsMJGy5409BjG HvaIarz+1D9GGrFMxd/t8s7WCieNvuu4jBaKU6AIT4b5tEPTF4vFfyrQBhvMv1k6 79gkabxNx7FnYp7oRT1Y1/qT9ZlAd7LP74QCgGOC+j+Jlaa35JJoqPmhVDAO+RRv Hflq0wqapboRqVdUAqWWHwQcMMRi0ngyK1KjShMsmyZxEtgKwRYmMOQ9v/9/U3f8 Eu5W6+En1QGIqHpl12me3sI/8CVLzpV3xQuVn7Wp9yaj -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:20 2026 by rpki-client