This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/ce5lJ-hpH1wu-kVRML7xAZPt-gE.roa File: ce5lJ-hpH1wu-kVRML7xAZPt-gE.roa (raw, json) Hash identifier: 8ViUaToRkyhjrSgTu0qhVkwYrKw/qmbuzYwV/hXV6/M= Subject key identifier: 71:EE:65:27:E8:69:1F:5C:2E:FA:45:51:30:BE:F1:01:93:ED:FA:01 Certificate issuer: /CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314 Certificate serial: 019B797F0339990A2BA2781AE2872A781B0C Authority key identifier: 68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/ce5lJ-hpH1wu-kVRML7xAZPt-gE.roa Signing time: Thu 01 Jan 2026 12:18:45 +0000 ROA not before: Thu 01 Jan 2026 12:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48803 IP address blocks: 195.49.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:03:39:99:0a:2b:a2:78:1a:e2:87:2a:78:1b:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68e3ba87e3a93468cc3b3c3f60fa63d5e853c314 Validity Not Before: Jan 1 12:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71ee6527e8691f5c2efa455130bef10193edfa01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6e:f7:fd:b4:12:67:70:ac:ad:f4:61:18:f7: 61:cb:31:af:34:5f:f4:ef:d0:cf:d2:8a:7b:74:72: 8c:5e:37:a0:06:e5:9c:fa:fd:ae:78:0f:67:7d:09: e9:05:0a:e3:93:dd:5c:84:b3:7e:03:b2:03:8f:32: 3e:b0:6b:f9:2f:d2:c8:ab:87:a3:50:f1:10:5d:89: 0e:01:19:eb:7a:d7:f1:aa:0a:76:42:c4:80:21:62: b0:e2:3d:ac:bc:d5:38:d0:75:54:9c:e0:11:56:80: c4:d8:a8:0c:e2:2e:c7:2f:d5:2f:bf:55:7b:1d:9b: 99:96:12:44:2b:c5:21:d2:f5:ff:8f:99:71:be:9e: 0f:c3:39:aa:d2:b2:7a:08:84:d0:7e:8e:64:aa:90: fa:2a:8c:99:a1:79:cf:11:41:63:c4:59:c0:96:a6: 04:78:20:a2:91:36:01:2f:17:31:c8:db:07:37:de: e3:64:82:78:17:e9:71:a0:5a:52:b6:5a:d6:8d:60: 80:c0:f4:b2:49:07:00:7e:58:53:a2:44:7f:78:70: b5:6d:45:41:8a:37:35:2e:12:8c:f5:86:9f:a7:43: c4:62:95:c0:0c:ca:5b:06:1b:97:04:8d:8b:5b:fc: 29:74:d7:56:51:01:63:58:dd:ad:91:d7:9b:3e:75: 3c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EE:65:27:E8:69:1F:5C:2E:FA:45:51:30:BE:F1:01:93:ED:FA:01 X509v3 Authority Key Identifier: keyid:68:E3:BA:87:E3:A9:34:68:CC:3B:3C:3F:60:FA:63:D5:E8:53:C3:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/ce5lJ-hpH1wu-kVRML7xAZPt-gE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1eff17-65ec-45ea-a75d-96eb07f7825b/1/aOO6h-OpNGjMOzw_YPpj1ehTwxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.49.240.0/21 Signature Algorithm: sha256WithRSAEncryption 90:cc:1a:2b:9b:58:b2:40:0f:06:5b:f2:43:62:e3:07:8c:a3: 06:bd:5a:62:41:ea:80:98:6f:a0:da:da:34:5f:c2:58:06:a8: f5:73:8f:5f:bb:4e:15:3a:f8:71:08:d4:4e:cb:05:6b:b8:d9: e7:66:34:24:73:35:04:3c:60:ca:f7:c8:31:77:88:7b:4c:df: 4b:d8:b4:d1:e8:10:07:50:f9:96:8a:f6:3d:8b:56:24:23:19: ad:72:b4:46:28:28:28:3a:bd:95:8b:7f:3d:31:09:09:ad:e0: 10:16:fb:6b:63:8d:f0:c5:35:1f:07:d8:26:43:a1:75:66:bb: 77:7b:e9:af:e9:ae:7d:a8:a0:19:f3:11:59:a4:5c:44:b9:24: df:bd:df:a9:8a:1c:55:73:9b:26:d9:2b:01:da:33:ab:b6:df: 3d:a9:e6:ba:26:a7:09:4e:00:82:26:2e:ac:09:60:91:cc:f8: 64:df:10:80:b6:a6:e7:7f:34:03:03:62:82:9e:36:fa:48:7c: 7b:20:32:52:7e:93:73:4b:42:ce:88:fe:1b:1a:ec:c0:33:96: 63:8b:33:ae:13:b2:6d:82:cd:83:67:96:b2:b7:83:38:23:79: bb:fc:1c:8f:36:9d:f9:8d:3d:9d:4c:eb:7e:be:7d:f1:9b:d2: e5:9e:3d:b3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fwM5mQoronga4ocqeBsMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZTNiYTg3ZTNhOTM0NjhjYzNiM2MzZjYwZmE2M2Q1ZTg1 M2MzMTQwHhcNMjYwMTAxMTIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MWVlNjUyN2U4NjkxZjVjMmVmYTQ1NTEzMGJlZjEwMTkzZWRmYTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW73/bQSZ3CsrfRhGPdhyzGvNF/0 79DP0op7dHKMXjegBuWc+v2ueA9nfQnpBQrjk91chLN+A7IDjzI+sGv5L9LIq4ej UPEQXYkOARnretfxqgp2QsSAIWKw4j2svNU40HVUnOARVoDE2KgM4i7HL9Uvv1V7 HZuZlhJEK8Uh0vX/j5lxvp4Pwzmq0rJ6CITQfo5kqpD6KoyZoXnPEUFjxFnAlqYE eCCikTYBLxcxyNsHN97jZIJ4F+lxoFpStlrWjWCAwPSySQcAflhTokR/eHC1bUVB ijc1LhKM9Yafp0PEYpXADMpbBhuXBI2LW/wpdNdWUQFjWN2tkdebPnU87wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHHuZSfoaR9cLvpFUTC+8QGT7foBMB8GA1UdIwQY MBaAFGjjuofjqTRozDs8P2D6Y9XoU8MUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU9PNmgtT3BOR2pNT3p3X1lQcGoxZWhUd3hRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xZWZmMTctNjVlYy00NWVhLWE3NWQt OTZlYjA3Zjc4MjViLzEvY2U1bEotaHBIMXd1LWtWUk1MN3hBWlB0LWdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8xZWZmMTctNjVlYy00NWVhLWE3NWQtOTZlYjA3Zjc4MjVi LzEvYU9PNmgtT3BOR2pNT3p3X1lQcGoxZWhUd3hRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwzHwMA0G CSqGSIb3DQEBCwUAA4IBAQCQzBorm1iyQA8GW/JDYuMHjKMGvVpiQeqAmG+g2to0 X8JYBqj1c49fu04VOvhxCNROywVruNnnZjQkczUEPGDK98gxd4h7TN9L2LTR6BAH UPmWivY9i1YkIxmtcrRGKCgoOr2Vi389MQkJreAQFvtrY43wxTUfB9gmQ6F1Zrt3 e+mv6a59qKAZ8xFZpFxEuSTfvd+pihxVc5sm2SsB2jOrtt89qea6JqcJTgCCJi6s CWCRzPhk3xCAtqbnfzQDA2KCnjb6SHx7IDJSfpNzS0LOiP4bGuzAM5ZjizOuE7Jt gs2DZ5ayt4M4I3m7/ByPNp35jT2dTOt+vn3xm9Llnj2z -----END CERTIFICATE-----Generated at Sun Jan 25 15:01:12 2026 by rpki-client