This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/307607-5706-4e44-bb8e-189d00a333ee/1/sKDKorvVElJgqwc1YL9x1RhoYEM.roa File: sKDKorvVElJgqwc1YL9x1RhoYEM.roa (raw, json) Hash identifier: SXIrFPkLP5e0Dojj65FY1WNGEqYxxlyXHUyw6TzDiOM= Subject key identifier: B0:A0:CA:A2:BB:D5:12:52:60:AB:07:35:60:BF:71:D5:18:68:60:43 Certificate issuer: /CN=432fe70f4cef10376836152f38e4e08532cc7b9f Certificate serial: 019B7C80D3DD222AF81B6786793FD50A83F0 Authority key identifier: 43:2F:E7:0F:4C:EF:10:37:68:36:15:2F:38:E4:E0:85:32:CC:7B:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qy_nD0zvEDdoNhUvOOTghTLMe58.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/307607-5706-4e44-bb8e-189d00a333ee/1/sKDKorvVElJgqwc1YL9x1RhoYEM.roa Signing time: Fri 02 Jan 2026 02:19:36 +0000 ROA not before: Fri 02 Jan 2026 02:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34984 IP address blocks: 185.95.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/307607-5706-4e44-bb8e-189d00a333ee/1/Qy_nD0zvEDdoNhUvOOTghTLMe58.crl rsync://rpki.ripe.net/repository/DEFAULT/27/307607-5706-4e44-bb8e-189d00a333ee/1/Qy_nD0zvEDdoNhUvOOTghTLMe58.mft rsync://rpki.ripe.net/repository/DEFAULT/Qy_nD0zvEDdoNhUvOOTghTLMe58.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:d3:dd:22:2a:f8:1b:67:86:79:3f:d5:0a:83:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432fe70f4cef10376836152f38e4e08532cc7b9f Validity Not Before: Jan 2 02:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0a0caa2bbd5125260ab073560bf71d518686043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:e7:b1:87:57:4b:1b:81:41:2e:ce:f9:06: 6b:9a:58:70:f7:64:c9:c9:9b:af:76:49:5f:0f:ab: 6d:3c:5c:f4:fd:50:26:07:a2:d6:9a:4b:ff:04:10: a9:77:42:59:b2:78:07:5f:39:c8:3a:6d:ef:fd:0c: 8c:67:08:5d:68:fe:4c:27:17:69:13:bd:e6:dc:e9: d0:9b:fc:c1:70:6b:4c:e7:0d:27:45:4c:8c:59:1b: b4:68:f1:b5:63:4b:74:9c:85:97:78:59:fc:90:84: 34:a1:d9:51:16:34:a2:dd:0b:56:5f:c1:2d:26:14: 2b:29:8a:c2:1b:77:50:ea:7b:25:32:d1:54:14:e1: 9a:3b:9e:80:fe:ad:74:30:1a:6f:22:6a:dd:2d:a2: 0d:ff:5f:1e:63:d1:f7:11:1a:59:65:83:0e:c3:1c: 13:71:2a:49:8a:f0:b1:0b:1b:4a:09:15:06:e1:84: f1:a2:d7:47:64:dc:9e:8d:7a:d4:10:0e:c3:93:cf: 42:d3:70:fe:ad:12:56:5c:99:ca:58:7a:c7:56:23: 67:ab:95:f2:2a:9c:34:78:9c:f6:a2:4d:72:7c:f2: fd:6b:25:5d:39:a7:a6:7a:db:dc:53:e1:80:ed:47: 9c:ad:5c:5f:2b:75:e4:f7:20:c1:9a:91:7e:be:4d: 0f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A0:CA:A2:BB:D5:12:52:60:AB:07:35:60:BF:71:D5:18:68:60:43 X509v3 Authority Key Identifier: keyid:43:2F:E7:0F:4C:EF:10:37:68:36:15:2F:38:E4:E0:85:32:CC:7B:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qy_nD0zvEDdoNhUvOOTghTLMe58.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/307607-5706-4e44-bb8e-189d00a333ee/1/sKDKorvVElJgqwc1YL9x1RhoYEM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/307607-5706-4e44-bb8e-189d00a333ee/1/Qy_nD0zvEDdoNhUvOOTghTLMe58.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.95.168.0/22 Signature Algorithm: sha256WithRSAEncryption b0:f0:6d:df:88:86:fd:61:de:31:12:61:f9:25:56:d3:a0:95: 54:87:92:6e:a6:4b:2e:a6:9f:36:e3:8f:ac:8f:dd:86:c8:4c: 16:7d:22:65:42:3f:1a:19:69:3a:3e:b4:c1:9f:f1:1f:1b:f5: 3c:6c:ce:36:74:ba:fa:16:29:f8:7a:34:f8:7d:8f:f2:a8:71: b1:e9:8d:57:32:e9:7d:4f:01:c8:b4:a3:e1:25:bc:d0:92:b6: c8:75:61:4b:45:2b:f0:c3:56:17:f2:45:0d:fd:02:70:20:1b: 4b:80:98:64:60:c5:c7:4c:3c:c5:22:80:96:37:ce:ef:16:a8: b2:7d:b4:89:94:b6:86:c1:11:8b:02:e5:42:0a:39:86:b3:7b: b7:52:c7:98:06:a0:53:b6:d4:3e:b8:07:e7:06:3b:ec:1e:ce: cf:82:0f:ce:2c:c0:cd:eb:6c:1a:78:52:fd:b9:22:e2:2d:e8: ff:56:03:af:2a:c7:a6:e3:bb:70:a8:58:01:df:da:9f:a3:20: 36:76:65:4c:bb:2a:b5:c6:f3:56:6e:ff:f2:10:e4:89:eb:83: 61:0b:41:c5:85:c9:52:9f:ab:b8:94:84:2e:8a:aa:63:8c:95: 4f:ff:c3:68:d6:31:da:f5:cb:34:35:24:0f:c9:21:77:7d:37: 03:9d:c3:5c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gNPdIir4G2eGeT/VCoPwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzMmZlNzBmNGNlZjEwMzc2ODM2MTUyZjM4ZTRlMDg1MzJj YzdiOWYwHhcNMjYwMTAyMDIxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGEwY2FhMmJiZDUxMjUyNjBhYjA3MzU2MGJmNzFkNTE4Njg2MDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtA3nsYdXSxuBQS7O+QZrmlhw92TJ yZuvdklfD6ttPFz0/VAmB6LWmkv/BBCpd0JZsngHXznIOm3v/QyMZwhdaP5MJxdp E73m3OnQm/zBcGtM5w0nRUyMWRu0aPG1Y0t0nIWXeFn8kIQ0odlRFjSi3QtWX8Et JhQrKYrCG3dQ6nslMtFUFOGaO56A/q10MBpvImrdLaIN/18eY9H3ERpZZYMOwxwT cSpJivCxCxtKCRUG4YTxotdHZNyejXrUEA7Dk89C03D+rRJWXJnKWHrHViNnq5Xy Kpw0eJz2ok1yfPL9ayVdOaemetvcU+GA7UecrVxfK3Xk9yDBmpF+vk0PywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLCgyqK71RJSYKsHNWC/cdUYaGBDMB8GA1UdIwQY MBaAFEMv5w9M7xA3aDYVLzjk4IUyzHufMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUXlfbkQwenZFRGRvTmhVdk9PVGdoVExNZTU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8zMDc2MDctNTcwNi00ZTQ0LWJiOGUt MTg5ZDAwYTMzM2VlLzEvc0tES29ydlZFbEpncXdjMVlMOXgxUmhvWUVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8zMDc2MDctNTcwNi00ZTQ0LWJiOGUtMTg5ZDAwYTMzM2Vl LzEvUXlfbkQwenZFRGRvTmhVdk9PVGdoVExNZTU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuV+oMA0G CSqGSIb3DQEBCwUAA4IBAQCw8G3fiIb9Yd4xEmH5JVbToJVUh5Jupksupp8244+s j92GyEwWfSJlQj8aGWk6PrTBn/EfG/U8bM42dLr6Fin4ejT4fY/yqHGx6Y1XMul9 TwHItKPhJbzQkrbIdWFLRSvww1YX8kUN/QJwIBtLgJhkYMXHTDzFIoCWN87vFqiy fbSJlLaGwRGLAuVCCjmGs3u3UseYBqBTttQ+uAfnBjvsHs7Pgg/OLMDN62waeFL9 uSLiLej/VgOvKsem47twqFgB39qfoyA2dmVMuyq1xvNWbv/yEOSJ64NhC0HFhclS n6u4lIQuiqpjjJVP/8No1jHa9cs0NSQPySF3fTcDncNc -----END CERTIFICATE-----Generated at Mon Jan 26 05:30:29 2026 by rpki-client