This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/nN1BqZwpwg6pGbp1ybabVsffEuI.roa File: nN1BqZwpwg6pGbp1ybabVsffEuI.roa (raw, json) Hash identifier: pegbr3i5RQokP5AQQn4oGY5tWqdgEeSi6ilxYg+Y1MU= Subject key identifier: 9C:DD:41:A9:9C:29:C2:0E:A9:19:BA:75:C9:B6:9B:56:C7:DF:12:E2 Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84 Certificate serial: 019B7E371C8E05B08AF1554420914491B44C Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/nN1BqZwpwg6pGbp1ybabVsffEuI.roa Signing time: Fri 02 Jan 2026 10:18:19 +0000 ROA not before: Fri 02 Jan 2026 10:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59917 IP address blocks: 95.181.208.0/23 maxlen: 23 95.181.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:1c:8e:05:b0:8a:f1:55:44:20:91:44:91:b4:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84 Validity Not Before: Jan 2 10:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9cdd41a99c29c20ea919ba75c9b69b56c7df12e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8d:90:79:c1:63:5d:e5:1e:c1:df:ac:45:54: 68:02:82:fd:7a:21:a9:a7:80:d9:fa:f0:bf:40:f8: 93:08:f4:d5:b8:fd:39:70:17:92:93:a4:fb:4f:1a: eb:87:a9:3e:51:1a:29:9f:45:11:f2:89:0a:48:80: 34:34:02:16:bd:b6:a6:5f:a2:16:c9:55:96:af:a1: 7f:98:de:47:30:ce:81:71:93:7a:ec:8c:f9:14:b2: d4:2e:75:9c:40:8c:ef:10:2b:3f:90:31:aa:6d:6c: 02:0a:3d:1e:be:a7:5a:8a:bc:90:9e:32:ea:62:7d: e4:04:fb:5c:98:48:e0:35:65:97:21:51:ee:f7:d4: 5d:0b:70:01:4c:18:c6:6c:1a:16:62:06:a2:07:4e: 88:5e:9e:76:fe:1e:36:fc:9e:c1:a0:40:c9:eb:b4: 84:62:fe:25:bd:be:7f:f5:78:5f:97:ab:32:d2:8c: 60:2d:be:e6:64:22:6b:33:52:39:07:49:5b:a2:53: b6:8d:68:3a:d4:66:4d:0e:e6:c1:8d:b2:08:2f:c9: db:17:51:d2:3a:75:4f:58:a8:16:d0:57:59:57:99: 70:cd:66:88:65:7a:ca:d4:b2:e9:68:97:52:52:6b: 42:6d:47:aa:81:51:e5:f4:77:3a:cc:e9:c0:e0:6d: e5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:DD:41:A9:9C:29:C2:0E:A9:19:BA:75:C9:B6:9B:56:C7:DF:12:E2 X509v3 Authority Key Identifier: keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/nN1BqZwpwg6pGbp1ybabVsffEuI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.181.208.0/22 Signature Algorithm: sha256WithRSAEncryption 21:77:19:0e:b7:c8:47:07:5d:b9:02:99:b3:69:a1:55:63:a6: 9c:a8:12:7a:a0:2f:8d:44:f0:05:ca:07:62:c2:9c:17:ad:bc: 7f:d4:c6:8f:41:1b:31:a7:94:cd:c5:34:a0:61:38:e5:ca:1a: de:f7:2f:19:d0:8b:ed:40:8b:d0:45:a4:10:9f:45:bf:39:5d: 7e:16:c1:94:e5:ff:3d:42:d8:ce:e2:8e:45:19:c4:56:17:cc: 52:d2:77:77:57:25:66:d0:b1:42:16:73:0c:59:ca:cd:33:69: ab:e4:2c:16:0f:27:14:8d:01:49:cb:53:9a:be:d7:f8:dc:5b: f6:1d:db:a1:42:90:17:8b:b5:14:78:85:9f:38:37:1d:51:59: 61:3f:53:1c:04:c0:35:a4:a0:aa:4a:9b:6b:9b:82:7d:90:bb: 0d:43:79:aa:2c:f0:47:b3:6d:10:a0:48:c0:a4:76:be:fa:05: 6b:f4:d3:de:49:81:4a:0a:b5:52:3e:dd:37:60:52:7b:26:ab: 78:f2:ff:a3:7f:11:40:7d:90:12:54:50:db:4c:e6:e3:58:a0: 4b:9b:c2:41:2c:a3:34:79:80:a8:3d:38:ab:90:9b:d1:6a:28: 73:e6:46:8f:d9:eb:c3:37:fe:c0:1e:df:32:c8:c1:bb:e6:b0: e4:e0:6f:46 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+NxyOBbCK8VVEIJFEkbRMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzMzhlZjQxYjJjMDEwNWE5MWNjYmI5Yzg5MzM3ZmFlYjEy OWZmODQwHhcNMjYwMTAyMTAxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5Y2RkNDFhOTljMjljMjBlYTkxOWJhNzVjOWI2OWI1NmM3ZGYxMmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA042QecFjXeUewd+sRVRoAoL9eiGp p4DZ+vC/QPiTCPTVuP05cBeSk6T7Txrrh6k+URopn0UR8okKSIA0NAIWvbamX6IW yVWWr6F/mN5HMM6BcZN67Iz5FLLULnWcQIzvECs/kDGqbWwCCj0evqdairyQnjLq Yn3kBPtcmEjgNWWXIVHu99RdC3ABTBjGbBoWYgaiB06IXp52/h42/J7BoEDJ67SE Yv4lvb5/9Xhfl6sy0oxgLb7mZCJrM1I5B0lbolO2jWg61GZNDubBjbIIL8nbF1HS OnVPWKgW0FdZV5lwzWaIZXrK1LLpaJdSUmtCbUeqgVHl9Hc6zOnA4G3lZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJzdQamcKcIOqRm6dcm2m1bH3xLiMB8GA1UdIwQY MBaAFIM470GywBBakcy7nIkzf66xKf+EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3pqdlFiTEFFRnFSekx1Y2lUTl9yckVwXzRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80MGQ5OTYtYTJjZC00MWYxLWE3Mzgt MjhmYzc3OTY3NzYzLzEvbk4xQnFad3B3ZzZwR2JwMXliYWJWc2ZmRXVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS80MGQ5OTYtYTJjZC00MWYxLWE3MzgtMjhmYzc3OTY3NzYz LzEvZ3pqdlFiTEFFRnFSekx1Y2lUTl9yckVwXzRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCX7XQMA0G CSqGSIb3DQEBCwUAA4IBAQAhdxkOt8hHB125ApmzaaFVY6acqBJ6oC+NRPAFygdi wpwXrbx/1MaPQRsxp5TNxTSgYTjlyhre9y8Z0IvtQIvQRaQQn0W/OV1+FsGU5f89 QtjO4o5FGcRWF8xS0nd3VyVm0LFCFnMMWcrNM2mr5CwWDycUjQFJy1Oavtf43Fv2 HduhQpAXi7UUeIWfODcdUVlhP1McBMA1pKCqSptrm4J9kLsNQ3mqLPBHs20QoEjA pHa++gVr9NPeSYFKCrVSPt03YFJ7Jqt48v+jfxFAfZASVFDbTObjWKBLm8JBLKM0 eYCoPTirkJvRaihz5kaP2evDN/7AHt8yyMG75rDk4G9G -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:53 2026 by rpki-client