This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/aWg21xYS3AUVunbtCCZYY0IE-qA.roa File: aWg21xYS3AUVunbtCCZYY0IE-qA.roa (raw, json) Hash identifier: FfCb8eVmyUDpcRLrhqbLVf0Nu60pvL/vFuk4kk28e1o= Subject key identifier: 69:68:36:D7:16:12:DC:05:15:BA:76:ED:08:26:58:63:42:04:FA:A0 Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3 Certificate serial: 019B77C676D4D999A395E9426FCF0EF89196 Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/aWg21xYS3AUVunbtCCZYY0IE-qA.roa Signing time: Thu 01 Jan 2026 04:17:33 +0000 ROA not before: Thu 01 Jan 2026 04:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197168 IP address blocks: 95.158.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.mft rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:76:d4:d9:99:a3:95:e9:42:6f:cf:0e:f8:91:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3 Validity Not Before: Jan 1 04:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=696836d71612dc0515ba76ed082658634204faa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4a:6b:79:ae:e3:db:39:1b:9e:fd:bb:47:0c: 88:2f:7d:9d:8c:b8:b4:34:3f:56:4e:c3:7f:f1:0c: aa:05:5f:d6:99:b9:59:6f:61:0c:76:41:54:35:e0: 2b:ec:cd:45:9e:7d:ea:2e:30:02:26:78:c4:ef:22: 6a:a0:b1:78:36:4b:00:3e:d9:15:8f:cb:b9:6b:1c: f9:dc:4e:28:e8:25:43:cb:73:84:ca:6f:e8:3a:e3: 65:10:96:bd:89:12:b3:2e:44:9b:b9:b4:95:db:99: 46:21:75:09:00:26:cd:4c:f8:ce:f5:3c:51:42:b0: 91:71:5a:fe:f5:8c:24:06:26:37:7d:50:d2:e9:7d: 88:0e:60:6c:7a:ee:66:1f:60:45:82:fc:09:33:7e: ad:b0:a7:37:d4:76:ca:12:23:2c:8c:ed:87:c2:4e: c6:81:b7:86:12:0b:7c:64:de:58:d7:4a:81:ff:df: d1:6b:ac:8f:8f:b1:57:a6:05:8b:26:60:34:e5:9e: 79:f7:c7:88:e2:82:36:ee:10:c4:d8:53:16:ff:4d: c2:01:d5:51:67:e4:d7:71:e8:f7:9f:63:fa:93:b9: 15:a7:ef:75:6a:56:d0:6e:5d:3e:d2:01:27:a3:83: 6d:07:1d:27:6b:01:26:2a:4f:48:c0:ef:d6:dc:c1: b5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:68:36:D7:16:12:DC:05:15:BA:76:ED:08:26:58:63:42:04:FA:A0 X509v3 Authority Key Identifier: keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/aWg21xYS3AUVunbtCCZYY0IE-qA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.158.142.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:26:52:b7:68:fb:20:35:73:89:ec:57:a8:73:22:81:1a:79: 9b:c9:e0:ad:f7:48:fa:67:45:c1:9e:30:61:bb:04:26:21:f2: 7c:d7:db:51:1f:c4:ec:75:90:e4:34:01:a7:0c:fd:84:3a:1c: 6d:10:1c:8d:d8:37:fd:2c:77:ca:e1:1a:84:02:91:d4:e2:b5: 37:68:f1:5b:16:cf:1b:98:32:fb:76:50:8f:72:ab:64:ad:5c: e7:1f:24:8e:b6:34:01:d6:91:b0:4e:5e:4e:f6:80:03:87:7a: 1d:2e:0f:43:b8:b7:3a:d5:cd:1e:96:5d:20:32:06:fc:9c:aa: d5:9a:1e:0a:8c:2c:77:9c:fa:5f:b6:8a:71:c9:a3:ea:ab:1c: ea:49:b9:c6:07:37:63:6c:59:38:12:ab:43:e7:26:5f:cd:aa: 88:a3:47:b5:91:4f:b4:cb:c1:5b:0d:a4:d6:00:1f:dc:60:ca: 69:cf:05:62:be:a5:28:1b:f9:ef:16:91:59:d8:97:20:02:ad: a2:67:41:0e:e9:1b:fd:76:07:c4:99:26:9f:84:2e:31:93:53: 30:05:f3:01:80:f0:9f:51:c1:91:b0:af:78:ba:84:df:7d:db: 65:53:fe:e6:85:7c:10:96:67:3a:b4:9c:a4:45:ee:0e:a2:32: 86:ee:17:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xnbU2ZmjlelCb88O+JGWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViZWM5MDMwYzcwYTNkNDE5MmQ1OWMyOGRjYzhkNTQ3Njk0 MzQwYjMwHhcNMjYwMTAxMDQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTY4MzZkNzE2MTJkYzA1MTViYTc2ZWQwODI2NTg2MzQyMDRmYWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEprea7j2zkbnv27RwyIL32djLi0 ND9WTsN/8QyqBV/WmblZb2EMdkFUNeAr7M1Fnn3qLjACJnjE7yJqoLF4NksAPtkV j8u5axz53E4o6CVDy3OEym/oOuNlEJa9iRKzLkSbubSV25lGIXUJACbNTPjO9TxR QrCRcVr+9YwkBiY3fVDS6X2IDmBseu5mH2BFgvwJM36tsKc31HbKEiMsjO2Hwk7G gbeGEgt8ZN5Y10qB/9/Ra6yPj7FXpgWLJmA05Z5598eI4oI27hDE2FMW/03CAdVR Z+TXcej3n2P6k7kVp+91albQbl0+0gEno4NtBx0nawEmKk9IwO/W3MG1MQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGloNtcWEtwFFbp27QgmWGNCBPqgMB8GA1UdIwQY MBaAFOvskDDHCj1BktWcKNzI1UdpQ0CzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNi15UU1NY0tQVUdTMVp3bzNNalZSMmxEUUxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8zNzJiODctOTVmNC00Yzk4LWE2ZjQt NGE2Zjg2ODMyNjVjLzEvYVdnMjF4WVMzQVVWdW5idENDWllZMElFLXFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8zNzJiODctOTVmNC00Yzk4LWE2ZjQtNGE2Zjg2ODMyNjVj LzEvNi15UU1NY0tQVUdTMVp3bzNNalZSMmxEUUxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBX56OMA0G CSqGSIb3DQEBCwUAA4IBAQANJlK3aPsgNXOJ7FeocyKBGnmbyeCt90j6Z0XBnjBh uwQmIfJ819tRH8TsdZDkNAGnDP2EOhxtEByN2Df9LHfK4RqEApHU4rU3aPFbFs8b mDL7dlCPcqtkrVznHySOtjQB1pGwTl5O9oADh3odLg9DuLc61c0ell0gMgb8nKrV mh4KjCx3nPpftopxyaPqqxzqSbnGBzdjbFk4EqtD5yZfzaqIo0e1kU+0y8FbDaTW AB/cYMppzwVivqUoG/nvFpFZ2JcgAq2iZ0EO6Rv9dgfEmSafhC4xk1MwBfMBgPCf UcGRsK94uoTffdtlU/7mhXwQlmc6tJykRe4OojKG7hdL -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:09 2026 by rpki-client