This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/rmfOCXUngu6VbsrOjC8BylUA3Gg.roa File: rmfOCXUngu6VbsrOjC8BylUA3Gg.roa (raw, json) Hash identifier: 2tWzXgc3FToTGxYr/7T7kqlA+8uMb6f05pi0Ge4rIx4= Subject key identifier: AE:67:CE:09:75:27:82:EE:95:6E:CA:CE:8C:2F:01:CA:55:00:DC:68 Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc Certificate serial: 019B7C1188CF2C6C176A8154FEF562142967 Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/rmfOCXUngu6VbsrOjC8BylUA3Gg.roa Signing time: Fri 02 Jan 2026 00:18:02 +0000 ROA not before: Fri 02 Jan 2026 00:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213494 IP address blocks: 45.95.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.mft rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:88:cf:2c:6c:17:6a:81:54:fe:f5:62:14:29:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc Validity Not Before: Jan 2 00:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae67ce09752782ee956ecace8c2f01ca5500dc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bd:2f:ef:31:ae:67:f5:15:94:a3:00:df:47: 70:71:da:28:af:c0:64:d9:89:d6:6b:e0:83:11:df: fe:21:91:1a:a0:98:7c:90:a5:41:1f:25:2e:f0:d8: 0a:6d:75:01:f6:f7:a2:5e:a5:71:29:b0:e5:5f:d6: 13:b1:7a:60:f9:c5:ff:ea:9f:e6:c1:14:10:81:d3: 92:a8:2a:4e:64:40:09:25:ce:1a:9f:49:c6:33:a6: cd:d6:cd:40:85:78:6a:39:ec:32:8d:23:05:db:e6: 9e:79:3b:8d:e7:6d:2e:b8:bf:d8:3d:0e:39:3b:e6: 9d:3e:03:e5:ba:0a:22:5f:09:db:10:4e:05:ec:b8: 1d:54:d0:02:38:63:ea:33:a7:5b:9b:b2:fa:a7:14: c0:5f:9e:a1:15:36:8c:02:4c:9e:fc:36:c8:7b:cb: e2:45:8e:af:60:bf:53:ff:cd:4a:5a:f7:6c:81:7e: 54:20:17:d8:7b:dc:1f:97:78:cf:d3:8a:2c:f1:ca: 39:ad:fc:b9:ea:de:55:d3:3e:57:e5:6e:69:95:a4: 3e:c1:47:2d:82:5f:c3:bb:32:1e:df:cc:e4:55:d7: 3e:93:c2:3d:aa:05:11:eb:10:81:45:4c:38:93:e3: f9:b0:46:38:04:e1:88:de:b2:a9:8f:15:7f:53:7e: 88:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:67:CE:09:75:27:82:EE:95:6E:CA:CE:8C:2F:01:CA:55:00:DC:68 X509v3 Authority Key Identifier: keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/rmfOCXUngu6VbsrOjC8BylUA3Gg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.95.189.0/24 Signature Algorithm: sha256WithRSAEncryption 11:f6:c1:76:be:7c:60:ad:1f:b8:7c:06:b9:98:24:9a:da:ed: 68:5a:8d:eb:93:26:c3:cb:45:85:5d:37:64:07:d8:7c:ca:b1: b6:27:bb:24:1f:93:48:4e:50:c3:92:35:8c:07:b4:97:97:0f: 86:e8:b8:fd:ea:5a:34:c4:c4:59:82:f7:a0:94:49:80:11:8c: b2:2e:95:c4:aa:d8:43:b8:46:60:94:82:c2:f7:98:92:7a:5e: e5:b3:51:b0:f5:88:59:4f:83:bf:bb:f6:67:f5:6b:c8:0b:15: df:46:81:87:ab:a1:f8:d7:16:a4:05:4a:ec:75:fa:06:25:0b: a0:5e:0e:b9:b3:05:f7:e7:18:39:eb:7f:dd:82:ee:6f:89:0f: ca:a3:73:09:10:01:ce:09:72:05:5f:ca:30:ed:4f:88:e8:ab: 0e:2f:74:a5:53:d0:60:74:08:94:3d:b8:fe:ee:dc:b3:6d:93: 23:55:db:f7:dd:c9:58:55:22:bb:f6:e1:7f:a4:2e:8e:ef:22: 5a:16:67:1a:fe:d8:7e:5e:0c:7a:76:34:52:e9:03:a0:5d:1c: 2d:19:51:0a:43:8a:c7:c6:60:47:7c:c8:2f:b4:ba:b4:05:ab: 5d:24:e0:51:ba:1e:35:a3:61:c5:1a:f0:34:d6:43:ae:44:5c: c0:be:60:76 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EYjPLGwXaoFU/vViFClnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlYjQ0MWRhZGJiZWNiNjk2NWQ0ZWExZjA0NmNjNWM4ZTI4 ODE3ZmMwHhcNMjYwMTAyMDAxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTY3Y2UwOTc1Mjc4MmVlOTU2ZWNhY2U4YzJmMDFjYTU1MDBkYzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArr0v7zGuZ/UVlKMA30dwcdoor8Bk 2YnWa+CDEd/+IZEaoJh8kKVBHyUu8NgKbXUB9veiXqVxKbDlX9YTsXpg+cX/6p/m wRQQgdOSqCpOZEAJJc4an0nGM6bN1s1AhXhqOewyjSMF2+aeeTuN520uuL/YPQ45 O+adPgPlugoiXwnbEE4F7LgdVNACOGPqM6dbm7L6pxTAX56hFTaMAkye/DbIe8vi RY6vYL9T/81KWvdsgX5UIBfYe9wfl3jP04os8co5rfy56t5V0z5X5W5plaQ+wUct gl/DuzIe38zkVdc+k8I9qgUR6xCBRUw4k+P5sEY4BOGI3rKpjxV/U36IfQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK5nzgl1J4LulW7KzowvAcpVANxoMB8GA1UdIwQY MBaAFI60QdrbvstpZdTqHwRsxcjiiBf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmIt NDZiOTQ5MDkyY2JlLzEvcm1mT0NYVW5ndTZWYnNyT2pDOEJ5bFVBM0dnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmItNDZiOTQ5MDkyY2Jl LzEvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV+9MA0G CSqGSIb3DQEBCwUAA4IBAQAR9sF2vnxgrR+4fAa5mCSa2u1oWo3rkybDy0WFXTdk B9h8yrG2J7skH5NITlDDkjWMB7SXlw+G6Lj96lo0xMRZgveglEmAEYyyLpXEqthD uEZglILC95iSel7ls1Gw9YhZT4O/u/Zn9WvICxXfRoGHq6H41xakBUrsdfoGJQug Xg65swX35xg563/dgu5viQ/Ko3MJEAHOCXIFX8ow7U+I6KsOL3SlU9BgdAiUPbj+ 7tyzbZMjVdv33clYVSK79uF/pC6O7yJaFmca/th+Xgx6djRS6QOgXRwtGVEKQ4rH xmBHfMgvtLq0BatdJOBRuh41o2HFGvA01kOuRFzAvmB2 -----END CERTIFICATE-----Generated at Sun Jan 25 08:51:56 2026 by rpki-client