This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/rHtH6ewJBJbv0Px0ycpkTuJZhpw.roa File: rHtH6ewJBJbv0Px0ycpkTuJZhpw.roa (raw, json) Hash identifier: TT27fGDeU9y8svpHAoyYAyCi7PfXey2z2Ll9/ZDN9Dw= Subject key identifier: AC:7B:47:E9:EC:09:04:96:EF:D0:FC:74:C9:CA:64:4E:E2:59:86:9C Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84 Certificate serial: 019B7E371843D3505303EA18B36F97B939A3 Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/rHtH6ewJBJbv0Px0ycpkTuJZhpw.roa Signing time: Fri 02 Jan 2026 10:18:18 +0000 ROA not before: Fri 02 Jan 2026 10:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25436 IP address blocks: 95.85.82.0/24 maxlen: 24 95.181.145.0/24 maxlen: 24 188.68.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:18:43:d3:50:53:03:ea:18:b3:6f:97:b9:39:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84 Validity Not Before: Jan 2 10:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac7b47e9ec090496efd0fc74c9ca644ee259869c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:69:c4:49:68:e5:4d:b1:fc:14:d9:e7:ff:d6: d4:61:11:b2:d3:43:c3:13:8f:63:a0:9b:37:e5:83: 73:53:f4:ac:b2:a3:79:11:ec:f4:b2:5b:99:fc:f0: 03:29:9a:9b:16:52:f8:55:f4:4b:ec:f1:c2:b9:7b: 8d:9c:28:56:d4:4f:7e:28:17:46:1f:f4:e4:ef:cd: 5f:52:62:38:b6:41:78:d2:6f:ff:e4:87:b5:af:7f: d2:f5:3e:78:3c:5b:8f:39:92:75:e6:ad:30:45:2c: d6:62:4c:9b:e6:57:cd:27:e4:32:c9:45:62:10:e6: 51:ba:21:44:d2:42:56:a9:b3:c8:ed:13:8d:01:3f: c7:77:7f:f6:d8:0a:63:91:04:f7:d5:96:a1:42:86: d9:ff:a3:96:9b:14:31:0e:b2:f9:92:b4:77:c1:6c: fe:01:2d:c0:b1:a7:6a:fd:da:8f:e1:d9:64:2e:3e: ea:7a:90:96:5a:53:42:96:d8:d1:e4:9d:ef:c9:5b: d6:1f:69:0e:7f:68:04:fb:9c:71:d9:d5:9c:06:70: 5c:f1:15:f4:1e:5f:1f:df:37:5d:2f:09:03:c4:b9: 4c:fe:23:08:ee:72:d2:d6:95:25:87:3f:e3:2c:50: 29:72:16:a5:b1:a6:0a:49:62:f4:10:ef:e5:bb:d2: 9b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7B:47:E9:EC:09:04:96:EF:D0:FC:74:C9:CA:64:4E:E2:59:86:9C X509v3 Authority Key Identifier: keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/rHtH6ewJBJbv0Px0ycpkTuJZhpw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.85.82.0/24 95.181.145.0/24 188.68.7.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:c1:8a:68:15:7d:f4:93:b7:3d:48:55:29:d1:5f:0a:6c:95: f8:75:29:78:c2:8a:31:12:0e:d7:f4:39:e9:cf:92:20:d4:11: 0d:d6:3d:e9:a4:4b:d3:82:93:b9:0f:16:7d:c2:f8:ee:20:29: d2:01:99:79:35:16:2b:de:c9:4b:0f:8f:c2:db:f1:b5:ac:17: 9e:28:72:9b:f9:06:d9:20:72:1f:7e:db:9f:fe:74:02:0c:85: 18:7c:78:57:89:63:92:24:83:24:8e:4f:95:fc:a0:0a:55:8c: 7b:bc:b6:b9:8f:55:77:96:be:3e:53:a0:57:9b:78:ec:64:74: fb:73:d8:17:4e:5c:18:7b:ec:c4:d8:d1:6b:f5:75:94:6c:39: 6e:ed:7b:e9:83:ca:15:13:7d:2a:bc:08:75:b7:38:c3:c0:ee: 67:4c:95:36:35:84:f1:88:48:84:28:88:4a:ee:8e:a4:08:89: 5a:7e:7a:10:22:44:76:07:af:68:2a:f9:87:21:75:d6:02:88: 74:4d:5c:a3:c8:33:34:3e:56:58:91:30:13:5b:65:a9:55:cd: be:db:75:d3:82:21:38:d8:9a:99:f0:34:47:e7:ad:b5:b2:89: 21:fb:63:31:c0:92:b9:b1:0e:2f:86:d3:bc:3a:1c:28:e6:75: 77:59:b6:e0 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt+NxhD01BTA+oYs2+XuTmjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzMzhlZjQxYjJjMDEwNWE5MWNjYmI5Yzg5MzM3ZmFlYjEy OWZmODQwHhcNMjYwMTAyMTAxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzdiNDdlOWVjMDkwNDk2ZWZkMGZjNzRjOWNhNjQ0ZWUyNTk4NjljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GnESWjlTbH8FNnn/9bUYRGy00PD E49joJs35YNzU/SssqN5Eez0sluZ/PADKZqbFlL4VfRL7PHCuXuNnChW1E9+KBdG H/Tk781fUmI4tkF40m//5Ie1r3/S9T54PFuPOZJ15q0wRSzWYkyb5lfNJ+QyyUVi EOZRuiFE0kJWqbPI7RONAT/Hd3/22ApjkQT31ZahQobZ/6OWmxQxDrL5krR3wWz+ AS3Asadq/dqP4dlkLj7qepCWWlNCltjR5J3vyVvWH2kOf2gE+5xx2dWcBnBc8RX0 Hl8f3zddLwkDxLlM/iMI7nLS1pUlhz/jLFApchalsaYKSWL0EO/lu9KbxwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFKx7R+nsCQSW79D8dMnKZE7iWYacMB8GA1UdIwQY MBaAFIM470GywBBakcy7nIkzf66xKf+EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3pqdlFiTEFFRnFSekx1Y2lUTl9yckVwXzRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80MGQ5OTYtYTJjZC00MWYxLWE3Mzgt MjhmYzc3OTY3NzYzLzEvckh0SDZld0pCSmJ2MFB4MHljcGtUdUpaaHB3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS80MGQ5OTYtYTJjZC00MWYxLWE3MzgtMjhmYzc3OTY3NzYz LzEvZ3pqdlFiTEFFRnFSekx1Y2lUTl9yckVwXzRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAX1VSAwQA X7WRAwQAvEQHMA0GCSqGSIb3DQEBCwUAA4IBAQBMwYpoFX30k7c9SFUp0V8KbJX4 dSl4wooxEg7X9Dnpz5Ig1BEN1j3ppEvTgpO5DxZ9wvjuICnSAZl5NRYr3slLD4/C 2/G1rBeeKHKb+QbZIHIfftuf/nQCDIUYfHhXiWOSJIMkjk+V/KAKVYx7vLa5j1V3 lr4+U6BXm3jsZHT7c9gXTlwYe+zE2NFr9XWUbDlu7Xvpg8oVE30qvAh1tzjDwO5n TJU2NYTxiEiEKIhK7o6kCIlafnoQIkR2B69oKvmHIXXWAoh0TVyjyDM0PlZYkTAT W2WpVc2+23XTgiE42JqZ8DRH5621sokh+2MxwJK5sQ4vhtO8Ohwo5nV3Wbbg -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:39 2026 by rpki-client