This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/8YzhnSN10hTauaidvQ9SJyu3qro.roa File: 8YzhnSN10hTauaidvQ9SJyu3qro.roa (raw, json) Hash identifier: FtXj7rMNyFmmjhAHs+HHxN9MAe9qfrbQfR9dwyX4aqc= Subject key identifier: F1:8C:E1:9D:23:75:D2:14:DA:B9:A8:9D:BD:0F:52:27:2B:B7:AA:BA Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Certificate serial: 019B7DC8846EFFA6A431E1B8A1479098F787 Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/8YzhnSN10hTauaidvQ9SJyu3qro.roa Signing time: Fri 02 Jan 2026 08:17:31 +0000 ROA not before: Fri 02 Jan 2026 08:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52000 IP address blocks: 95.161.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.mft rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 17:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:84:6e:ff:a6:a4:31:e1:b8:a1:47:90:98:f7:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8 Validity Not Before: Jan 2 08:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f18ce19d2375d214dab9a89dbd0f52272bb7aaba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:cf:22:51:cb:e3:58:44:79:e3:cd:31:8e:61: 07:bd:da:f2:7b:71:65:62:52:d5:60:57:f9:43:db: c4:29:23:84:41:de:d3:3d:03:9d:1e:31:37:e9:7b: e6:3f:5b:21:70:b8:e1:46:96:54:ed:d9:2c:04:7a: af:95:7c:4d:fd:db:d4:85:10:d0:e9:5c:4a:25:7b: 86:6e:c7:ae:a7:28:9f:08:79:d5:4a:3a:75:97:a9: e0:25:c8:cc:93:d2:7c:1d:ed:81:bd:c8:e3:e3:00: b0:40:b1:67:05:93:4e:ad:9c:73:f4:34:2c:89:d8: 89:59:4e:da:73:8c:e0:56:e6:36:8a:92:8f:5f:9b: 11:9d:a2:b3:4d:da:20:73:ee:4a:6f:52:a8:57:09: 28:5c:33:48:c2:93:b3:25:fa:20:e9:0e:b9:37:26: c7:75:98:90:94:ca:c8:89:a4:aa:f8:fa:a0:4a:70: b8:bb:50:3a:99:9f:f7:04:77:b1:06:60:06:21:26: ea:ab:5c:51:d4:fa:4d:af:2b:63:75:ec:b7:df:85: 76:8a:5e:b1:8d:55:8a:28:64:51:f2:91:1f:d9:23: 99:7a:3e:9f:dd:b2:12:25:e9:0e:50:ec:79:56:03: a1:ad:43:19:95:64:fa:b7:38:bc:84:4e:a0:56:77: 28:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8C:E1:9D:23:75:D2:14:DA:B9:A8:9D:BD:0F:52:27:2B:B7:AA:BA X509v3 Authority Key Identifier: keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/8YzhnSN10hTauaidvQ9SJyu3qro.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.161.81.0/24 Signature Algorithm: sha256WithRSAEncryption 10:2c:76:79:7a:ef:43:f7:23:0c:0a:82:ed:ae:65:82:31:9d: db:d2:43:ed:a2:fa:d4:df:7b:59:c6:a1:1a:87:0e:c3:98:fa: 63:e6:e5:bf:52:a3:57:46:21:7b:4f:18:65:17:b3:c7:20:bc: 78:8c:bf:d3:e8:06:e0:83:74:64:8c:42:1d:a2:ae:eb:97:62: 7d:73:08:c4:e2:b5:4b:48:a0:ae:21:3b:0a:74:1a:84:61:20: b8:9e:1c:44:c7:7a:44:d4:d8:26:3a:e9:84:ea:c6:67:da:60: 0c:dc:85:d3:1e:7d:d7:b0:96:36:57:4a:64:61:5b:6d:78:24: c0:81:0b:88:06:98:e5:3a:f7:0f:b8:de:4c:27:f1:ed:b3:e7: 9e:7f:38:75:5e:6e:1b:73:8d:8d:61:14:a8:3e:27:88:6b:54: 77:ed:2d:cc:27:32:7c:88:03:16:30:74:b6:e9:04:5f:63:8c: 03:6a:04:0d:37:12:c5:a7:c7:9b:4d:b0:18:50:ed:3b:86:71: 3d:40:83:50:9c:29:cb:f3:0e:05:ad:e7:d5:b9:50:65:a7:49: 02:46:fe:9c:7f:13:5e:e9:92:22:b7:eb:96:1b:50:8e:6f:8c: 98:de:64:bd:8e:ff:49:a0:4e:c0:47:65:74:87:12:72:42:b3: 83:c2:db:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yIRu/6akMeG4oUeQmPeHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjhlN2UwMWZhZGE0OWMxYTUyZmExM2YzNjI2YzQxYjQx YTUxYjgwHhcNMjYwMTAyMDgxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMThjZTE5ZDIzNzVkMjE0ZGFiOWE4OWRiZDBmNTIyNzJiYjdhYWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjc8iUcvjWER5480xjmEHvdrye3Fl YlLVYFf5Q9vEKSOEQd7TPQOdHjE36XvmP1shcLjhRpZU7dksBHqvlXxN/dvUhRDQ 6VxKJXuGbseupyifCHnVSjp1l6ngJcjMk9J8He2Bvcjj4wCwQLFnBZNOrZxz9DQs idiJWU7ac4zgVuY2ipKPX5sRnaKzTdogc+5Kb1KoVwkoXDNIwpOzJfog6Q65NybH dZiQlMrIiaSq+PqgSnC4u1A6mZ/3BHexBmAGISbqq1xR1PpNrytjdey334V2il6x jVWKKGRR8pEf2SOZej6f3bISJekOUOx5VgOhrUMZlWT6tzi8hE6gVncoaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPGM4Z0jddIU2rmonb0PUicrt6q6MB8GA1UdIwQY MBaAFGIo5+AfraScGlL6E/NibEG0GlG4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUt NzY3NDE2NTI1MTBkLzEvOFl6aG5TTjEwaFRhdWFpZHZROVNKeXUzcXJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iYWFmZjMtYWViNC00NjE2LThmYjUtNzY3NDE2NTI1MTBk LzEvWWlqbjRCLXRwSndhVXZvVDgySnNRYlFhVWJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6FRMA0G CSqGSIb3DQEBCwUAA4IBAQAQLHZ5eu9D9yMMCoLtrmWCMZ3b0kPtovrU33tZxqEa hw7DmPpj5uW/UqNXRiF7TxhlF7PHILx4jL/T6Abgg3RkjEIdoq7rl2J9cwjE4rVL SKCuITsKdBqEYSC4nhxEx3pE1NgmOumE6sZn2mAM3IXTHn3XsJY2V0pkYVtteCTA gQuIBpjlOvcPuN5MJ/Hts+eefzh1Xm4bc42NYRSoPieIa1R37S3MJzJ8iAMWMHS2 6QRfY4wDagQNNxLFp8ebTbAYUO07hnE9QINQnCnL8w4FrefVuVBlp0kCRv6cfxNe 6ZIit+uWG1COb4yY3mS9jv9JoE7AR2V0hxJyQrODwtup -----END CERTIFICATE-----Generated at Thu Jan 8 23:54:30 2026 by rpki-client