This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sM77dcK4jWYbBaQAmz2S3uHL8Bg.roa File: sM77dcK4jWYbBaQAmz2S3uHL8Bg.roa (raw, json) Hash identifier: YdYnuCys37j2tQawTokFzi0Z8hUth4h0Bz56u7O1H2c= Subject key identifier: B0:CE:FB:75:C2:B8:8D:66:1B:05:A4:00:9B:3D:92:DE:E1:CB:F0:18 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84CCBF7188FB6DB2C0CAF6D9C2F87F Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sM77dcK4jWYbBaQAmz2S3uHL8Bg.roa Signing time: Fri 02 Jan 2026 16:22:48 +0000 ROA not before: Fri 02 Jan 2026 16:22:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58254 IP address blocks: 95.47.153.0/24 maxlen: 24 146.120.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:cc:bf:71:88:fb:6d:b2:c0:ca:f6:d9:c2:f8:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0cefb75c2b88d661b05a4009b3d92dee1cbf018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d2:61:fb:eb:cc:02:c1:51:38:72:52:cd:e0: ad:dd:d7:10:60:9c:67:52:a8:c8:e2:61:10:03:8b: 46:94:e3:bd:01:6c:bc:9f:ab:7d:5a:65:cb:9c:bd: 45:36:bd:29:0a:f2:10:b7:9a:89:cc:73:3c:b1:d1: ea:10:d0:1e:7c:d1:bd:5d:6c:97:82:2e:c0:5f:52: 37:10:8d:cb:44:bd:6f:f0:a5:a6:86:e4:68:32:b7: 17:db:ed:d4:98:d3:22:c5:23:20:8d:f3:59:bf:fe: 85:b3:10:93:ec:2b:d0:14:82:c2:db:e3:b4:8a:6d: 38:9e:92:cb:cf:0c:e1:38:10:c6:79:d8:61:03:2c: 8c:27:9d:c2:f6:88:85:6b:c2:94:21:63:54:8b:28: 67:0a:30:da:cf:92:95:1d:71:69:d2:cd:d0:e3:d1: 8c:16:e9:54:19:cf:45:f8:2f:9f:18:5a:a6:23:08: b6:71:55:1d:fe:ae:e7:c2:41:6a:d7:aa:3d:46:7d: 04:bb:43:9e:13:24:57:a2:f0:04:86:80:44:a3:e2: fd:b5:5a:36:42:3a:3a:b9:07:ac:f4:78:d2:b6:dc: 5e:ec:b9:01:d8:b7:a0:01:74:77:3a:18:e5:45:f9: b3:1e:94:c4:b6:cc:c8:7e:8e:cf:cf:1f:ef:c8:7c: 03:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CE:FB:75:C2:B8:8D:66:1B:05:A4:00:9B:3D:92:DE:E1:CB:F0:18 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/sM77dcK4jWYbBaQAmz2S3uHL8Bg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.47.153.0/24 146.120.16.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:75:48:0a:a7:0b:5a:7e:05:c3:58:35:50:4c:0a:05:ba:33: b2:85:18:e3:98:40:b9:46:68:75:fd:ea:51:77:93:b2:a7:7e: 46:46:b6:a0:7e:60:3a:0e:63:fd:86:9c:df:9c:62:2a:33:71: 2e:4d:9f:a2:37:3d:fd:19:ac:c3:2a:37:10:b0:68:4a:4f:bd: 60:9d:ea:33:80:98:fc:58:6f:a7:16:1b:b7:ab:df:b2:9a:d2: 41:19:0a:73:99:d2:c7:31:3c:39:30:78:27:1d:fc:39:e5:05: 96:ff:e1:b5:dc:69:74:59:02:5f:ea:7c:23:2f:3f:a7:ba:b4: 12:01:a1:12:f6:63:8b:98:f0:49:f4:1e:69:12:5b:7c:8f:9b: c5:ee:87:ec:2f:91:83:21:be:3b:4e:38:f8:be:89:7e:1c:6b: b5:3b:d7:fe:fc:bd:dc:c9:dd:be:8c:0d:4c:9f:da:7b:12:d3: a6:83:e5:d5:a7:1a:a0:38:2e:b6:26:0f:15:86:08:90:ec:cd: 80:db:56:3e:8d:a5:a0:56:94:6f:5f:2d:ba:47:44:33:cd:9c: ae:a8:2a:94:6f:5d:54:cb:8b:9b:b5:3e:40:0c:24:9b:db:38: 0c:dd:a3:03:b9:94:3d:fe:e8:96:47:64:3e:66:36:e1:28:79: 5b:7f:98:ed -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hMy/cYj7bbLAyvbZwvh/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGNlZmI3NWMyYjg4ZDY2MWIwNWE0MDA5YjNkOTJkZWUxY2JmMDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdJh++vMAsFROHJSzeCt3dcQYJxn UqjI4mEQA4tGlOO9AWy8n6t9WmXLnL1FNr0pCvIQt5qJzHM8sdHqENAefNG9XWyX gi7AX1I3EI3LRL1v8KWmhuRoMrcX2+3UmNMixSMgjfNZv/6FsxCT7CvQFILC2+O0 im04npLLzwzhOBDGedhhAyyMJ53C9oiFa8KUIWNUiyhnCjDaz5KVHXFp0s3Q49GM FulUGc9F+C+fGFqmIwi2cVUd/q7nwkFq16o9Rn0Eu0OeEyRXovAEhoBEo+L9tVo2 Qjo6uQes9HjSttxe7LkB2LegAXR3OhjlRfmzHpTEtszIfo7Pzx/vyHwDzwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLDO+3XCuI1mGwWkAJs9kt7hy/AYMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvc003N2RjSzRqV1liQmFRQW16MlMzdUhMOEJnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXy+ZAwQC kngQMA0GCSqGSIb3DQEBCwUAA4IBAQCcdUgKpwtafgXDWDVQTAoFujOyhRjjmEC5 Rmh1/epRd5Oyp35GRragfmA6DmP9hpzfnGIqM3EuTZ+iNz39GazDKjcQsGhKT71g neozgJj8WG+nFhu3q9+ymtJBGQpzmdLHMTw5MHgnHfw55QWW/+G13Gl0WQJf6nwj Lz+nurQSAaES9mOLmPBJ9B5pElt8j5vF7ofsL5GDIb47Tjj4vol+HGu1O9f+/L3c yd2+jA1Mn9p7EtOmg+XVpxqgOC62Jg8VhgiQ7M2A21Y+jaWgVpRvXy26R0QzzZyu qCqUb11Uy4ubtT5ADCSb2zgM3aMDuZQ9/uiWR2Q+ZjbhKHlbf5jt -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:41 2026 by rpki-client