This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/deQ3iUYI2zhDS5WVofbw_0r7MdU.roa File: deQ3iUYI2zhDS5WVofbw_0r7MdU.roa (raw, json) Hash identifier: aWouu4WFuntFUTMgXaNZBkCjMzZT9CqQafzXFsbJDvw= Subject key identifier: 75:E4:37:89:46:08:DB:38:43:4B:95:95:A1:F6:F0:FF:4A:FB:31:D5 Certificate issuer: /CN=71986731925be8551a53091afe6d0972dfa3807e Certificate serial: 019B7834DD18E6713066385AA9335170EA0B Authority key identifier: 71:98:67:31:92:5B:E8:55:1A:53:09:1A:FE:6D:09:72:DF:A3:80:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZhnMZJb6FUaUwka_m0Jct-jgH4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/deQ3iUYI2zhDS5WVofbw_0r7MdU.roa Signing time: Thu 01 Jan 2026 06:18:08 +0000 ROA not before: Thu 01 Jan 2026 06:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211007 IP address blocks: 195.85.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/cZhnMZJb6FUaUwka_m0Jct-jgH4.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/cZhnMZJb6FUaUwka_m0Jct-jgH4.mft rsync://rpki.ripe.net/repository/DEFAULT/cZhnMZJb6FUaUwka_m0Jct-jgH4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:dd:18:e6:71:30:66:38:5a:a9:33:51:70:ea:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71986731925be8551a53091afe6d0972dfa3807e Validity Not Before: Jan 1 06:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75e437894608db38434b9595a1f6f0ff4afb31d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a3:8b:0b:77:c1:1d:46:4d:2b:e4:7d:47:17: fb:ff:0d:29:12:f9:30:4d:82:4b:ff:0c:4c:63:79: d9:04:58:8e:33:73:bc:40:31:73:a9:52:2a:22:5d: 79:8a:39:e0:a8:c2:df:d4:78:bb:43:63:e2:d0:a6: d9:8d:6d:39:96:81:b1:e6:6b:f7:9b:2c:2b:a4:0a: 3f:c6:42:23:86:7d:76:e4:b0:42:8a:45:2c:2e:8a: 78:0c:2e:c6:30:09:4b:74:0c:c5:d7:74:29:8d:fa: 4f:47:b7:48:a2:ab:43:6f:49:35:d5:0b:aa:21:3b: cc:4d:8d:d9:34:c5:56:01:4f:8d:e3:f6:d4:0b:e5: ec:25:9a:dc:e9:63:f8:5b:ac:89:01:2e:39:cb:73: 7b:b7:5b:40:b6:54:10:af:19:27:66:75:e3:7e:3b: 28:65:41:a2:31:e1:87:cb:02:6d:a3:ef:92:9b:cd: 24:b0:32:d9:93:0e:80:ec:90:0c:1d:73:be:d8:88: d6:df:9c:a2:94:04:13:2d:a0:41:69:5f:70:7d:60: 06:42:21:cd:ff:6c:55:6e:ed:23:60:84:be:f5:09: 4c:0b:81:12:2c:fa:73:76:ea:ac:70:86:2e:4e:1c: 2a:b6:1b:be:68:43:80:bb:65:61:d5:03:2d:c7:96: dc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E4:37:89:46:08:DB:38:43:4B:95:95:A1:F6:F0:FF:4A:FB:31:D5 X509v3 Authority Key Identifier: keyid:71:98:67:31:92:5B:E8:55:1A:53:09:1A:FE:6D:09:72:DF:A3:80:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZhnMZJb6FUaUwka_m0Jct-jgH4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/deQ3iUYI2zhDS5WVofbw_0r7MdU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/9a10c3-212f-4c5e-97bb-e0d576a5450e/1/cZhnMZJb6FUaUwka_m0Jct-jgH4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.85.222.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:fc:21:4f:32:16:e7:ae:a8:a4:91:6e:bb:47:4d:3a:ef:91: e5:de:0a:a5:38:62:d0:16:1a:38:85:f5:fa:b2:0c:03:b6:37: 3d:4a:ed:45:87:86:17:f5:8b:3c:0f:2b:75:df:20:2f:3a:4d: 01:1a:67:76:d3:27:7d:22:d5:e9:d5:6e:f6:d9:c9:20:3c:8e: 78:5a:08:92:3f:1f:a4:06:fa:0f:0b:7b:58:eb:2e:fb:7d:57: 6a:63:33:6d:4a:c7:ab:42:18:8c:8b:40:d8:d6:3f:a5:74:33: e6:0b:9d:57:6f:94:d0:d9:04:75:8f:58:eb:94:3d:57:01:db: f3:5d:25:bf:ad:75:5e:39:ee:59:7b:5b:65:1d:a7:d4:47:b1: 68:6c:7c:e7:b4:4b:05:60:a8:6a:5f:2d:29:48:16:f4:22:e5: a6:d4:8d:05:71:e0:76:6b:b7:6c:00:fc:af:5b:65:72:35:e3: 48:46:46:dd:9f:20:1c:dc:37:35:fc:f3:13:00:42:f9:05:27: 97:f8:aa:a5:15:80:70:5d:ca:35:23:d5:18:af:74:09:36:58: 9b:db:44:20:b0:8f:3c:01:d0:09:25:ae:c5:65:41:77:54:99: 40:01:7d:43:ed:de:cd:d9:75:96:94:d1:13:79:b1:3c:f6:ab: 31:35:d3:fd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NN0Y5nEwZjhaqTNRcOoLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxOTg2NzMxOTI1YmU4NTUxYTUzMDkxYWZlNmQwOTcyZGZh MzgwN2UwHhcNMjYwMTAxMDYxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWU0Mzc4OTQ2MDhkYjM4NDM0Yjk1OTVhMWY2ZjBmZjRhZmIzMWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6OLC3fBHUZNK+R9Rxf7/w0pEvkw TYJL/wxMY3nZBFiOM3O8QDFzqVIqIl15ijngqMLf1Hi7Q2Pi0KbZjW05loGx5mv3 mywrpAo/xkIjhn125LBCikUsLop4DC7GMAlLdAzF13QpjfpPR7dIoqtDb0k11Quq ITvMTY3ZNMVWAU+N4/bUC+XsJZrc6WP4W6yJAS45y3N7t1tAtlQQrxknZnXjfjso ZUGiMeGHywJto++Sm80ksDLZkw6A7JAMHXO+2IjW35yilAQTLaBBaV9wfWAGQiHN /2xVbu0jYIS+9QlMC4ESLPpzduqscIYuThwqthu+aEOAu2Vh1QMtx5bcBwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHXkN4lGCNs4Q0uVlaH28P9K+zHVMB8GA1UdIwQY MBaAFHGYZzGSW+hVGlMJGv5tCXLfo4B+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1pobk1aSmI2RlVhVXdrYV9tMEpjdC1qZ0g0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi85YTEwYzMtMjEyZi00YzVlLTk3YmIt ZTBkNTc2YTU0NTBlLzEvZGVRM2lVWUkyemhEUzVXVm9mYndfMHI3TWRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi85YTEwYzMtMjEyZi00YzVlLTk3YmItZTBkNTc2YTU0NTBl LzEvY1pobk1aSmI2RlVhVXdrYV9tMEpjdC1qZ0g0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1XeMA0G CSqGSIb3DQEBCwUAA4IBAQAr/CFPMhbnrqikkW67R00675Hl3gqlOGLQFho4hfX6 sgwDtjc9Su1Fh4YX9Ys8Dyt13yAvOk0BGmd20yd9ItXp1W722ckgPI54WgiSPx+k BvoPC3tY6y77fVdqYzNtSserQhiMi0DY1j+ldDPmC51Xb5TQ2QR1j1jrlD1XAdvz XSW/rXVeOe5Ze1tlHafUR7FobHzntEsFYKhqXy0pSBb0IuWm1I0FceB2a7dsAPyv W2VyNeNIRkbdnyAc3Dc1/PMTAEL5BSeX+KqlFYBwXco1I9UYr3QJNlib20QgsI88 AdAJJa7FZUF3VJlAAX1D7d7N2XWWlNETebE89qsxNdP9 -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:17 2026 by rpki-client