This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/0bOZqErT7cPqtg8A6up5AuWvx0k.roa File: 0bOZqErT7cPqtg8A6up5AuWvx0k.roa (raw, json) Hash identifier: TLkmyalxkw5UtbYf/UBevHhaws4BaWA7DIMpjH0huR4= Subject key identifier: D1:B3:99:A8:4A:D3:ED:C3:EA:B6:0F:00:EA:EA:79:02:E5:AF:C7:49 Certificate issuer: /CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97 Certificate serial: 019B7C80C1C7D134811E98D666FF716B0875 Authority key identifier: 55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/0bOZqErT7cPqtg8A6up5AuWvx0k.roa Signing time: Fri 02 Jan 2026 02:19:31 +0000 ROA not before: Fri 02 Jan 2026 02:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61996 IP address blocks: 95.169.214.0/24 maxlen: 24 95.169.215.0/24 maxlen: 24 95.169.216.0/24 maxlen: 24 95.169.217.0/24 maxlen: 24 95.169.220.0/24 maxlen: 24 95.169.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.mft rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:c1:c7:d1:34:81:1e:98:d6:66:ff:71:6b:08:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97 Validity Not Before: Jan 2 02:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d1b399a84ad3edc3eab60f00eaea7902e5afc749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d4:e6:9a:78:da:07:84:19:69:79:ad:79:0c: 6c:cb:9a:d4:50:d1:df:54:3f:69:49:01:41:09:2a: c8:fc:02:a7:15:ac:a6:e3:58:d4:b5:f1:64:41:9b: b7:61:e1:97:9b:96:98:71:a0:af:2c:15:ec:cb:4c: 88:f5:48:2f:6d:c2:0f:a3:ee:d1:9b:bc:a7:ec:b8: 98:5e:0d:90:9c:f1:0d:03:7b:2f:ef:a6:f6:bf:91: ce:b4:91:14:eb:ae:f4:b4:8c:61:a6:70:fa:ff:4d: a9:57:2d:88:c5:2b:61:07:13:5b:5b:d7:5d:80:8d: 65:96:29:e0:22:29:2d:8e:04:16:68:27:7c:b1:90: 1f:00:26:83:a3:df:ff:4e:f1:0f:ba:38:60:76:23: 56:91:f1:37:70:72:a1:fa:5a:43:51:6f:8f:1a:cc: 08:dd:33:cb:78:db:07:85:02:af:22:e9:8c:3a:5d: bc:b3:7e:d1:0a:4c:01:84:3b:1e:34:bf:12:b6:96: 90:65:3d:85:11:01:5e:f9:51:e5:a3:f7:b3:6b:36: 42:05:8c:fe:0d:1e:67:5b:ef:95:9e:2d:33:e0:9c: bd:db:67:69:b2:3c:19:2f:01:8a:95:24:de:57:b1: aa:c7:a5:3c:d1:10:a9:6b:e0:c5:82:dc:dd:f0:c2: c6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B3:99:A8:4A:D3:ED:C3:EA:B6:0F:00:EA:EA:79:02:E5:AF:C7:49 X509v3 Authority Key Identifier: keyid:55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/0bOZqErT7cPqtg8A6up5AuWvx0k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.169.214.0-95.169.217.255 95.169.220.0/24 95.169.223.0/24 Signature Algorithm: sha256WithRSAEncryption 78:a3:1c:71:7d:07:7c:b1:c8:90:f1:e1:c4:bf:13:87:1c:cf: bc:ea:1d:fb:07:40:48:aa:51:f2:bd:03:e0:f0:7b:77:d3:ea: f9:4f:0b:78:97:ec:6b:25:89:1c:8d:cd:f6:c6:bd:b6:de:cc: 93:8d:32:f6:f0:1f:f2:4f:41:4d:64:23:b2:df:92:e3:46:7b: 90:3c:1d:54:e4:ee:63:96:90:88:c2:70:f2:02:b5:0e:33:fa: 7b:5c:2d:68:2f:65:88:80:a4:2e:97:25:1b:ae:8b:f2:7c:a4: be:c3:b4:80:d8:53:7f:d8:f2:fe:30:76:c0:10:42:e0:03:27: a9:39:4f:56:b3:3e:12:a8:97:c7:37:3b:71:bf:ff:a0:ca:52: e4:29:e4:5a:2f:92:b0:42:4c:80:46:f0:e6:39:06:3e:6e:8e: f7:ee:43:e8:aa:3f:6c:1e:cf:9e:31:2a:e0:7d:0d:35:d6:50: 47:3f:2c:73:ed:72:8f:c4:8f:3e:d1:10:e2:0a:c2:82:61:d5: aa:ea:d4:c4:6d:d2:cd:5d:14:87:b3:92:d7:19:81:06:a8:de: 5b:8a:ac:9b:bd:82:c3:9c:5e:7e:f6:2b:b8:e3:77:27:3b:82: 88:62:0c:78:ad:e5:68:02:fe:01:df:fb:ca:1f:76:92:ca:d1: b1:5a:e2:ae -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt8gMHH0TSBHpjWZv9xawh1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1N2IwYWMxMGI4NjQyYTI3ZGQzZDc0ZWQ2Y2I1ZWUwNDVl NjdiOTcwHhcNMjYwMTAyMDIxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMWIzOTlhODRhZDNlZGMzZWFiNjBmMDBlYWVhNzkwMmU1YWZjNzQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NTmmnjaB4QZaXmteQxsy5rUUNHf VD9pSQFBCSrI/AKnFaym41jUtfFkQZu3YeGXm5aYcaCvLBXsy0yI9UgvbcIPo+7R m7yn7LiYXg2QnPENA3sv76b2v5HOtJEU6670tIxhpnD6/02pVy2IxSthBxNbW9dd gI1llingIiktjgQWaCd8sZAfACaDo9//TvEPujhgdiNWkfE3cHKh+lpDUW+PGswI 3TPLeNsHhQKvIumMOl28s37RCkwBhDseNL8StpaQZT2FEQFe+VHlo/ezazZCBYz+ DR5nW++Vni0z4Jy922dpsjwZLwGKlSTeV7Gqx6U80RCpa+DFgtzd8MLGGQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFNGzmahK0+3D6rYPAOrqeQLlr8dJMB8GA1UdIwQY MBaAFFV7CsELhkKifdPXTtbLXuBF5nuXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlhzS3dRdUdRcUo5MDlkTzFzdGU0RVhtZTVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81ZTVjMzAtOGFhNC00N2U4LWJkOGYt ZmJlMWEwZDBhYTk4LzEvMGJPWnFFclQ3Y1BxdGc4QTZ1cDVBdVd2eDBrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi81ZTVjMzAtOGFhNC00N2U4LWJkOGYtZmJlMWEwZDBhYTk4 LzEvVlhzS3dRdUdRcUo5MDlkTzFzdGU0RVhtZTVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBAFfqdYD BAFfqdgDBABfqdwDBABfqd8wDQYJKoZIhvcNAQELBQADggEBAHijHHF9B3yxyJDx 4cS/E4ccz7zqHfsHQEiqUfK9A+Dwe3fT6vlPC3iX7GsliRyNzfbGvbbezJONMvbw H/JPQU1kI7LfkuNGe5A8HVTk7mOWkIjCcPICtQ4z+ntcLWgvZYiApC6XJRuui/J8 pL7DtIDYU3/Y8v4wdsAQQuADJ6k5T1azPhKol8c3O3G//6DKUuQp5FovkrBCTIBG 8OY5Bj5ujvfuQ+iqP2wez54xKuB9DTXWUEc/LHPtco/Ejz7REOIKwoJh1arq1MRt 0s1dFIezktcZgQao3luKrJu9gsOcXn72K7jjdyc7gohiDHit5WgC/gHf+8ofdpLK 0bFa4q4= -----END CERTIFICATE-----Generated at Mon Jan 26 05:32:30 2026 by rpki-client