This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tXzxrwHcR1fgkJRHL671tP3jj1U.roa File: tXzxrwHcR1fgkJRHL671tP3jj1U.roa (raw, json) Hash identifier: qgQk0hodLVw0NGavx6UmWnHT5dnAS9FtW67rdZkW05E= Subject key identifier: B5:7C:F1:AF:01:DC:47:57:E0:90:94:47:2F:AE:F5:B4:FD:E3:8F:55 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F8515F1D035BDDE0075736B060E8607 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tXzxrwHcR1fgkJRHL671tP3jj1U.roa Signing time: Fri 02 Jan 2026 16:23:06 +0000 ROA not before: Fri 02 Jan 2026 16:23:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212940 IP address blocks: 95.46.106.0/24 maxlen: 24 95.47.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:15:f1:d0:35:bd:de:00:75:73:6b:06:0e:86:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:23:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b57cf1af01dc4757e09094472faef5b4fde38f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6c:00:2d:fc:3e:51:8e:95:3d:d6:19:49:93: 38:50:f0:fd:38:81:06:8d:e9:8a:de:53:93:4a:4d: b4:a5:8f:8b:fe:bb:70:a6:a2:03:fe:2d:0a:be:c2: cc:63:8c:6c:db:60:ba:39:03:3f:d5:8c:ff:e3:5d: 72:9b:46:45:ac:75:94:55:66:97:52:bd:7f:48:60: 77:5f:46:e5:4f:c6:f2:35:e0:f2:98:15:fd:64:ec: 9d:d9:85:e7:17:d3:d4:cf:cd:af:5c:04:0f:03:47: 22:7d:4e:4e:c8:07:03:3e:ee:63:73:d4:69:67:27: 5b:c8:f2:20:d0:ea:79:46:dc:76:f0:d3:aa:3e:53: 85:72:bb:6b:f1:91:3e:13:13:74:dd:be:79:8b:6a: 1f:fe:2d:da:b7:e7:43:1b:0e:02:14:54:28:3c:3a: 6d:2d:c7:52:de:f9:16:83:72:25:a8:93:f4:bc:0f: 93:57:1e:48:a8:a0:5f:be:89:cc:c1:cd:c6:b3:96: d2:ca:3b:84:eb:41:7a:33:11:28:88:5d:54:3c:41: f5:e5:61:24:5b:d9:2d:18:95:7d:ab:53:a3:f2:40: ae:31:41:39:9b:d1:16:1e:f3:f5:52:19:d1:96:11: 44:11:58:bd:62:42:cc:72:99:3d:b6:b0:a9:73:2f: 51:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7C:F1:AF:01:DC:47:57:E0:90:94:47:2F:AE:F5:B4:FD:E3:8F:55 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/tXzxrwHcR1fgkJRHL671tP3jj1U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.46.106.0/24 95.47.177.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:5a:bc:aa:d7:e6:ba:af:ae:9f:66:25:fc:6f:ff:1e:25:c6: 86:2f:6c:d7:58:40:59:b5:59:a0:b2:d4:fc:56:b3:53:67:12: 0a:8a:e5:0c:4f:27:4d:60:d6:f9:5c:1f:ec:d0:03:d7:d4:0b: 42:ea:a1:06:ed:da:28:6e:d3:36:a5:95:5b:b8:ac:a9:e8:42: 74:49:c8:c1:26:cf:d6:75:44:7d:da:7a:db:74:06:44:28:9a: b8:ed:f4:36:11:dd:1f:b9:8c:c5:ae:56:9c:b6:5e:b5:d3:7d: ea:34:41:fe:5e:d3:9a:d8:dc:51:47:49:44:56:0b:02:da:24: 07:41:87:15:e7:86:d9:93:1a:8e:7e:23:87:56:65:02:f4:fe: 1c:3b:ae:e8:2f:66:c0:bc:cd:64:43:08:07:7c:3c:b9:93:71: 20:3c:ef:e9:ff:3e:49:4d:08:87:a1:b4:93:fa:23:d7:60:c9: 48:14:ad:65:5a:78:36:20:39:38:79:c1:d8:b5:4b:b4:de:ee: db:e4:ab:8e:a1:24:da:5a:89:98:58:54:b1:d4:10:c3:c4:84: f0:ee:f0:6a:d4:96:c7:ee:c4:48:6d:67:ca:82:87:44:d9:62: 7a:77:d4:96:2e:aa:1a:d9:2c:d7:fb:36:5b:79:c0:f3:21:cc: a7:bc:77:dd -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hRXx0DW93gB1c2sGDoYHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMzA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTdjZjFhZjAxZGM0NzU3ZTA5MDk0NDcyZmFlZjViNGZkZTM4ZjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2wALfw+UY6VPdYZSZM4UPD9OIEG jemK3lOTSk20pY+L/rtwpqID/i0KvsLMY4xs22C6OQM/1Yz/411ym0ZFrHWUVWaX Ur1/SGB3X0blT8byNeDymBX9ZOyd2YXnF9PUz82vXAQPA0cifU5OyAcDPu5jc9Rp ZydbyPIg0Op5Rtx28NOqPlOFcrtr8ZE+ExN03b55i2of/i3at+dDGw4CFFQoPDpt LcdS3vkWg3IlqJP0vA+TVx5IqKBfvonMwc3Gs5bSyjuE60F6MxEoiF1UPEH15WEk W9ktGJV9q1Oj8kCuMUE5m9EWHvP1UhnRlhFEEVi9YkLMcpk9trCpcy9RKwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLV88a8B3EdX4JCURy+u9bT9449VMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvdFh6eHJ3SGNSMWZna0pSSEw2NzF0UDNqajFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXy5qAwQA Xy+xMA0GCSqGSIb3DQEBCwUAA4IBAQA9Wryq1+a6r66fZiX8b/8eJcaGL2zXWEBZ tVmgstT8VrNTZxIKiuUMTydNYNb5XB/s0APX1AtC6qEG7doobtM2pZVbuKyp6EJ0 ScjBJs/WdUR92nrbdAZEKJq47fQ2Ed0fuYzFrlactl61033qNEH+XtOa2NxRR0lE VgsC2iQHQYcV54bZkxqOfiOHVmUC9P4cO67oL2bAvM1kQwgHfDy5k3EgPO/p/z5J TQiHobST+iPXYMlIFK1lWng2IDk4ecHYtUu03u7b5KuOoSTaWomYWFSx1BDDxITw 7vBq1JbH7sRIbWfKgodE2WJ6d9SWLqoa2SzX+zZbecDzIcynvHfd -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:27 2026 by rpki-client