This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/9aKkqtdGa1ABukMG_yLakFtZfm8.roa File: 9aKkqtdGa1ABukMG_yLakFtZfm8.roa (raw, json) Hash identifier: KrI6Pr1fZmvsqfb7nSDh5Zvb9gr8g8QjzGikzHidhBA= Subject key identifier: F5:A2:A4:AA:D7:46:6B:50:01:BA:43:06:FF:22:DA:90:5B:59:7E:6F Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3 Certificate serial: 019B77C674C93BBAD0ED4B444EB14ED9F9F1 Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/9aKkqtdGa1ABukMG_yLakFtZfm8.roa Signing time: Thu 01 Jan 2026 04:17:33 +0000 ROA not before: Thu 01 Jan 2026 04:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49040 IP address blocks: 95.158.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.mft rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:74:c9:3b:ba:d0:ed:4b:44:4e:b1:4e:d9:f9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3 Validity Not Before: Jan 1 04:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5a2a4aad7466b5001ba4306ff22da905b597e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:82:5a:3e:44:8e:12:fe:08:5d:4d:d5:2d: 3e:50:a9:c4:64:f0:de:65:56:12:5e:08:2a:72:c9: ac:5b:56:44:2b:00:4f:67:59:0a:aa:80:48:06:61: d8:79:63:68:b3:99:9d:80:d3:49:5a:13:b1:4f:12: 02:ad:b6:ad:37:c8:49:1e:83:86:71:92:c2:ad:07: c1:32:22:c1:6c:8b:f0:d2:c0:80:cb:76:59:04:c9: eb:2b:a2:64:3a:fc:6a:18:c6:18:ae:58:48:b1:54: b7:6a:35:f8:42:df:6b:b8:e1:f8:65:a4:0a:81:68: cc:fc:0c:a8:5e:35:8d:64:6b:71:ef:07:3c:79:9e: 7f:c0:47:35:b5:bf:43:21:c2:91:78:a9:88:75:77: 79:d9:d3:db:02:90:1e:70:d6:e1:27:78:55:5c:25: 02:d5:dd:a1:1f:4e:af:50:0f:23:c3:83:90:80:bc: f6:27:d9:93:82:91:5e:ef:91:64:15:d2:1a:4e:8d: b6:18:ee:55:e8:5f:ca:47:a5:ed:69:0d:57:88:f0: f7:a2:db:7c:e0:a8:8a:c4:e5:65:c3:b6:0c:70:86: aa:d5:ce:d8:1b:72:5e:ef:a2:56:33:49:cc:12:1c: 9d:f8:e8:02:a7:de:9c:37:c0:8f:65:9e:e5:d1:1b: 0c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A2:A4:AA:D7:46:6B:50:01:BA:43:06:FF:22:DA:90:5B:59:7E:6F X509v3 Authority Key Identifier: keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/9aKkqtdGa1ABukMG_yLakFtZfm8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.158.136.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:87:6d:80:1c:65:ed:b8:97:7e:e4:ea:37:ef:c5:4b:cd:35: 4c:22:0f:cf:40:ce:03:49:a8:bc:9f:83:96:6f:e2:ed:69:bb: 04:be:67:f0:65:fd:54:34:fc:51:73:9e:c2:77:a6:2d:b0:dc: ae:e7:e0:a6:41:d8:dd:95:80:43:3b:d0:83:7b:5f:e0:9a:5e: cd:37:63:02:87:d4:fd:13:44:b9:b3:02:40:08:12:51:74:a9: 12:d8:41:75:c2:cb:66:7c:07:3c:fc:00:58:23:32:34:99:e8: 5f:f4:62:a7:d8:0a:bd:f3:6b:e1:d2:3b:36:e9:b6:7e:56:a4: 47:6e:20:b8:16:45:55:0a:db:43:d5:4f:fb:7a:af:4f:5e:45: 63:e4:fb:e1:46:98:8b:51:77:1d:b3:0a:73:aa:a6:ad:c4:bc: 05:3b:c3:00:34:ce:11:32:ca:5d:55:e1:f7:1d:01:51:0f:0b: ff:dc:54:e3:8e:82:1c:d8:09:17:e8:be:89:d1:85:c0:82:3e: 46:fe:b9:bc:4d:8d:32:a2:d5:2d:76:7d:f3:05:86:e1:d1:6a: b6:e7:90:f2:48:9c:17:de:01:21:84:8a:b3:c4:b5:6d:94:ce: 3e:2b:d6:74:fb:30:a4:44:eb:e4:83:30:99:5c:f6:20:db:ff: a9:7b:24:4e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xnTJO7rQ7UtETrFO2fnxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViZWM5MDMwYzcwYTNkNDE5MmQ1OWMyOGRjYzhkNTQ3Njk0 MzQwYjMwHhcNMjYwMTAxMDQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNWEyYTRhYWQ3NDY2YjUwMDFiYTQzMDZmZjIyZGE5MDViNTk3ZTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSaCWj5EjhL+CF1N1S0+UKnEZPDe ZVYSXggqcsmsW1ZEKwBPZ1kKqoBIBmHYeWNos5mdgNNJWhOxTxICrbatN8hJHoOG cZLCrQfBMiLBbIvw0sCAy3ZZBMnrK6JkOvxqGMYYrlhIsVS3ajX4Qt9ruOH4ZaQK gWjM/AyoXjWNZGtx7wc8eZ5/wEc1tb9DIcKReKmIdXd52dPbApAecNbhJ3hVXCUC 1d2hH06vUA8jw4OQgLz2J9mTgpFe75FkFdIaTo22GO5V6F/KR6XtaQ1XiPD3ott8 4KiKxOVlw7YMcIaq1c7YG3Je76JWM0nMEhyd+OgCp96cN8CPZZ7l0RsMeQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPWipKrXRmtQAbpDBv8i2pBbWX5vMB8GA1UdIwQY MBaAFOvskDDHCj1BktWcKNzI1UdpQ0CzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNi15UU1NY0tQVUdTMVp3bzNNalZSMmxEUUxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8zNzJiODctOTVmNC00Yzk4LWE2ZjQt NGE2Zjg2ODMyNjVjLzEvOWFLa3F0ZEdhMUFCdWtNR195TGFrRnRaZm04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8zNzJiODctOTVmNC00Yzk4LWE2ZjQtNGE2Zjg2ODMyNjVj LzEvNi15UU1NY0tQVUdTMVp3bzNNalZSMmxEUUxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX56IMA0G CSqGSIb3DQEBCwUAA4IBAQBPh22AHGXtuJd+5Oo378VLzTVMIg/PQM4DSai8n4OW b+LtabsEvmfwZf1UNPxRc57Cd6YtsNyu5+CmQdjdlYBDO9CDe1/gml7NN2MCh9T9 E0S5swJACBJRdKkS2EF1wstmfAc8/ABYIzI0mehf9GKn2Aq982vh0js26bZ+VqRH biC4FkVVCttD1U/7eq9PXkVj5PvhRpiLUXcdswpzqqatxLwFO8MANM4RMspdVeH3 HQFRDwv/3FTjjoIc2AkX6L6J0YXAgj5G/rm8TY0yotUtdn3zBYbh0Wq255DySJwX 3gEhhIqzxLVtlM4+K9Z0+zCkROvkgzCZXPYg2/+peyRO -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:18 2026 by rpki-client