This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/cfmhFWxRmQMPqxzLZOdLCKBVtII.roa File: cfmhFWxRmQMPqxzLZOdLCKBVtII.roa (raw, json) Hash identifier: hnNzoR6kq2MH8dzC1wQ5EZyQAUNnpRqddoSLhzjNpPw= Subject key identifier: 71:F9:A1:15:6C:51:99:03:0F:AB:1C:CB:64:E7:4B:08:A0:55:B4:82 Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c Certificate serial: 019B7834CE49B1FDA7EE8C1975BB78CD6CC7 Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/cfmhFWxRmQMPqxzLZOdLCKBVtII.roa Signing time: Thu 01 Jan 2026 06:18:05 +0000 ROA not before: Thu 01 Jan 2026 06:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12722 IP address blocks: 195.209.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:ce:49:b1:fd:a7:ee:8c:19:75:bb:78:cd:6c:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c Validity Not Before: Jan 1 06:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71f9a1156c5199030fab1ccb64e74b08a055b482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:67:f7:5e:09:82:55:cc:a1:23:4d:01:16:0a: 74:88:10:e3:a0:53:fd:06:e8:b7:56:f1:90:fc:b5: 2c:34:61:4c:29:85:cd:9f:b3:dc:b7:4b:37:f0:e2: a2:72:34:61:ba:99:46:70:3f:56:11:5f:62:3c:e1: 6a:70:b5:1e:14:d3:42:12:61:00:99:c3:69:13:c3: 80:bd:6d:b2:51:d7:ef:6c:d7:e4:dd:9e:19:ad:29: 6b:54:03:a8:7d:f4:d0:8c:a3:76:bb:85:12:a6:95: 4f:df:2d:0f:fe:1a:e0:f1:29:fa:3d:f2:0d:40:7a: 84:47:93:f2:7b:4a:5d:7f:aa:ed:3f:f6:55:56:b2: 62:50:95:80:82:54:66:67:b6:1b:b9:33:24:51:50: 7a:2d:1b:e8:9b:ba:a1:63:bd:3f:e5:63:d7:bc:b4: 35:0b:18:b6:0c:29:aa:86:a7:96:33:76:40:42:da: 17:fd:f2:9d:33:c2:0c:dd:6c:cb:cf:b0:65:0f:00: 40:5b:b8:be:5b:13:7b:59:25:84:b1:8b:77:b9:be: 57:39:34:07:4b:43:f1:d1:c2:c6:89:7b:e8:1b:30: 50:4c:fb:a8:a6:28:1a:9e:56:7b:e3:c7:40:7e:73: 4d:a0:09:c8:bb:ec:74:13:d6:23:05:ae:14:a6:f5: c9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F9:A1:15:6C:51:99:03:0F:AB:1C:CB:64:E7:4B:08:A0:55:B4:82 X509v3 Authority Key Identifier: keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/cfmhFWxRmQMPqxzLZOdLCKBVtII.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.209.55.0/24 Signature Algorithm: sha256WithRSAEncryption 42:ba:6e:6b:62:49:bd:88:a3:d0:8d:13:e8:3d:5e:fb:8d:75: 86:c3:b8:3f:11:a4:3a:5f:20:fa:73:84:2b:28:8e:20:96:75: 41:5a:a6:78:63:1b:65:6a:02:5a:3f:0b:7b:53:4f:b5:d3:5e: 27:b6:28:5d:20:a7:5b:1d:7c:09:af:6d:3e:08:ba:a3:13:0b: 47:ba:08:b0:a0:3e:48:25:d7:df:38:31:5e:cf:b0:82:96:8d: 9b:75:3d:ef:0b:b9:a3:0f:bf:a3:b2:4f:16:b6:2c:b5:47:85: 75:c7:df:cf:5f:70:47:b2:f9:17:eb:51:d3:9c:68:fb:a5:cf: d6:f1:8a:54:63:b3:7a:a9:54:23:45:92:1c:bd:ba:f3:35:76: 89:c5:dd:65:3a:4d:23:0d:b2:c6:68:4e:48:9c:05:a5:17:5c: e3:f8:62:f5:34:f2:77:2e:71:a1:78:ae:7d:d5:3a:8c:49:bc: bd:b3:43:7e:7c:bd:8a:f1:09:2b:e1:a4:68:c0:dd:24:8d:de: 48:66:c7:37:a9:40:90:12:b0:01:62:fd:55:00:79:df:dd:a1: 93:06:2c:be:71:da:f3:fa:a5:9a:bc:91:55:92:2b:82:71:ca: ed:eb:68:16:d3:7e:50:09:90:92:1b:3a:9f:0b:9d:b5:f7:e6: db:58:93:0a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NM5Jsf2n7owZdbt4zWzHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NDhiMzM4MzM5OTAwZmY3ZjNiNTliMjQ2ZDI0ZDI2ODdj NjM2N2MwHhcNMjYwMTAxMDYxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MWY5YTExNTZjNTE5OTAzMGZhYjFjY2I2NGU3NGIwOGEwNTViNDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGf3XgmCVcyhI00BFgp0iBDjoFP9 Bui3VvGQ/LUsNGFMKYXNn7Pct0s38OKicjRhuplGcD9WEV9iPOFqcLUeFNNCEmEA mcNpE8OAvW2yUdfvbNfk3Z4ZrSlrVAOoffTQjKN2u4USppVP3y0P/hrg8Sn6PfIN QHqER5Pye0pdf6rtP/ZVVrJiUJWAglRmZ7YbuTMkUVB6LRvom7qhY70/5WPXvLQ1 Cxi2DCmqhqeWM3ZAQtoX/fKdM8IM3WzLz7BlDwBAW7i+WxN7WSWEsYt3ub5XOTQH S0Px0cLGiXvoGzBQTPuopiganlZ748dAfnNNoAnIu+x0E9YjBa4UpvXJKQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHH5oRVsUZkDD6scy2TnSwigVbSCMB8GA1UdIwQY MBaAFAZIszgzmQD/fztZskbSTSaHxjZ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQt MGQ5MThlZWRjMjZmLzEvY2ZtaEZXeFJtUU1QcXh6TFpPZExDS0JWdElJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQtMGQ5MThlZWRjMjZm LzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9E3MA0G CSqGSIb3DQEBCwUAA4IBAQBCum5rYkm9iKPQjRPoPV77jXWGw7g/EaQ6XyD6c4Qr KI4glnVBWqZ4YxtlagJaPwt7U0+1014ntihdIKdbHXwJr20+CLqjEwtHugiwoD5I JdffODFez7CClo2bdT3vC7mjD7+jsk8Wtiy1R4V1x9/PX3BHsvkX61HTnGj7pc/W 8YpUY7N6qVQjRZIcvbrzNXaJxd1lOk0jDbLGaE5InAWlF1zj+GL1NPJ3LnGheK59 1TqMSby9s0N+fL2K8Qkr4aRowN0kjd5IZsc3qUCQErABYv1VAHnf3aGTBiy+cdrz +qWavJFVkiuCccrt62gW035QCZCSGzqfC5219+bbWJMK -----END CERTIFICATE-----Generated at Sun Jan 25 17:39:31 2026 by rpki-client