This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/1a0Y-XPntLJBTaP7Z1JCmBOeYnc.roa File: 1a0Y-XPntLJBTaP7Z1JCmBOeYnc.roa (raw, json) Hash identifier: PDXJOAnSiEAeJBJEKNLP3n4C9TS71R3MwFilb6PORGw= Subject key identifier: D5:AD:18:F9:73:E7:B4:B2:41:4D:A3:FB:67:52:42:98:13:9E:62:77 Certificate issuer: /CN=2c75f35d256cc4a5b88319bb7e4bbba329e49341 Certificate serial: 019B76EB555DFB12CDEA87E4C3529E53CF3F Authority key identifier: 2C:75:F3:5D:25:6C:C4:A5:B8:83:19:BB:7E:4B:BB:A3:29:E4:93:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/1a0Y-XPntLJBTaP7Z1JCmBOeYnc.roa Signing time: Thu 01 Jan 2026 00:18:12 +0000 ROA not before: Thu 01 Jan 2026 00:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197808 IP address blocks: 195.22.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LHXzXSVsxKW4gxm7fku7oynkk0E.crl rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LHXzXSVsxKW4gxm7fku7oynkk0E.mft rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:55:5d:fb:12:cd:ea:87:e4:c3:52:9e:53:cf:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2c75f35d256cc4a5b88319bb7e4bbba329e49341 Validity Not Before: Jan 1 00:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d5ad18f973e7b4b2414da3fb67524298139e6277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:04:0d:25:d0:cf:0e:24:f4:df:a1:08:f4:8a: 5e:68:5e:24:18:ce:6f:49:4f:6d:3b:4f:a1:b1:b9: bd:09:cb:58:08:5f:97:1b:a2:61:93:41:f6:46:98: 67:dc:52:72:c5:bc:34:d6:bc:b8:76:b0:d1:31:d7: fe:90:91:85:01:ff:1a:18:0d:d1:04:98:da:94:21: c4:59:66:20:f2:4c:c7:72:b5:a1:47:5b:33:63:41: 42:dd:e9:fc:ba:ec:b8:6a:2b:31:39:ad:d4:e8:9b: 80:07:10:a7:ee:9a:53:b9:29:da:ec:2f:85:49:d5: 2f:f0:7f:1b:fa:3a:04:0a:95:41:12:27:23:66:2c: 33:ed:ca:1f:9b:ce:75:8c:1a:68:57:8a:20:60:8e: 53:c5:5c:89:60:79:48:8b:f3:cd:00:8c:27:7f:08: 07:ce:e1:88:3c:96:35:55:a2:6e:d2:59:72:a3:a4: cc:36:d4:70:dd:83:61:73:d8:78:9b:57:3c:02:b3: a5:b0:f3:b6:dc:35:29:8d:ed:22:90:42:46:70:bb: bc:96:64:19:b4:6a:c8:bc:cb:91:c4:a2:2b:38:72: d3:3f:f8:7e:bd:f9:21:dc:66:95:7f:db:66:67:7a: c2:41:19:af:8c:42:4a:e8:bc:c1:31:dd:54:15:c2: bc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:AD:18:F9:73:E7:B4:B2:41:4D:A3:FB:67:52:42:98:13:9E:62:77 X509v3 Authority Key Identifier: keyid:2C:75:F3:5D:25:6C:C4:A5:B8:83:19:BB:7E:4B:BB:A3:29:E4:93:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHXzXSVsxKW4gxm7fku7oynkk0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/1a0Y-XPntLJBTaP7Z1JCmBOeYnc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/40a1e5-7d2a-48d6-a50e-f96fb4ea7e70/1/LHXzXSVsxKW4gxm7fku7oynkk0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.22.123.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:9b:ed:65:f3:59:22:bf:21:67:8b:ec:a3:b5:78:9a:53:53: ed:c5:b5:37:10:23:05:f5:61:f2:a7:9b:0b:d2:de:3d:08:6d: e7:18:5f:c1:d7:47:fa:54:66:a4:ed:40:bf:8c:6e:a8:4d:0b: f2:b0:df:1c:5b:0a:fa:3e:e8:e1:2f:5b:52:47:e5:f0:a1:f0: 79:ba:15:45:f3:9b:6e:a1:7d:10:bd:72:0e:e8:ec:3b:17:cb: 24:69:ce:f0:9c:7e:24:e8:a8:fc:39:81:e8:8c:a6:71:94:4f: c7:dd:35:07:e0:30:08:b9:b4:cc:8c:dd:15:73:44:0b:0b:4a: 90:10:87:24:de:8e:57:c0:52:34:cd:b4:16:c6:43:16:91:ba: 91:c4:74:ef:06:03:47:44:99:94:c1:88:7a:3c:24:04:ca:9e: f6:71:66:b5:f3:32:91:32:b3:e3:a5:22:a5:84:48:66:21:15: 0a:bc:59:8f:94:3b:67:4d:ce:9c:c8:58:c8:4d:37:c3:13:56: 62:2e:4d:89:01:07:71:4e:30:8c:fa:09:ce:ff:b1:af:81:f4: 25:9f:f9:b4:b8:26:35:31:f6:0e:14:70:45:e5:ef:4b:dc:7a: 04:df:24:53:2b:1b:dc:75:c1:83:52:58:f0:c4:11:15:76:4d: 1e:84:f1:2d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt261Vd+xLN6ofkw1KeU88/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjNzVmMzVkMjU2Y2M0YTViODgzMTliYjdlNGJiYmEzMjll NDkzNDEwHhcNMjYwMTAxMDAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNWFkMThmOTczZTdiNGIyNDE0ZGEzZmI2NzUyNDI5ODEzOWU2Mjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gQNJdDPDiT036EI9IpeaF4kGM5v SU9tO0+hsbm9CctYCF+XG6Jhk0H2Rphn3FJyxbw01ry4drDRMdf+kJGFAf8aGA3R BJjalCHEWWYg8kzHcrWhR1szY0FC3en8uuy4aisxOa3U6JuABxCn7ppTuSna7C+F SdUv8H8b+joECpVBEicjZiwz7cofm851jBpoV4ogYI5TxVyJYHlIi/PNAIwnfwgH zuGIPJY1VaJu0llyo6TMNtRw3YNhc9h4m1c8ArOlsPO23DUpje0ikEJGcLu8lmQZ tGrIvMuRxKIrOHLTP/h+vfkh3GaVf9tmZ3rCQRmvjEJK6LzBMd1UFcK8YwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNWtGPlz57SyQU2j+2dSQpgTnmJ3MB8GA1UdIwQY MBaAFCx1810lbMSluIMZu35Lu6Mp5JNBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTEhYelhTVnN4S1c0Z3htN2ZrdTdveW5razBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC80MGExZTUtN2QyYS00OGQ2LWE1MGUt Zjk2ZmI0ZWE3ZTcwLzEvMWEwWS1YUG50TEpCVGFQN1oxSkNtQk9lWW5jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC80MGExZTUtN2QyYS00OGQ2LWE1MGUtZjk2ZmI0ZWE3ZTcw LzEvTEhYelhTVnN4S1c0Z3htN2ZrdTdveW5razBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxZ7MA0G CSqGSIb3DQEBCwUAA4IBAQBtm+1l81kivyFni+yjtXiaU1PtxbU3ECMF9WHyp5sL 0t49CG3nGF/B10f6VGak7UC/jG6oTQvysN8cWwr6PujhL1tSR+XwofB5uhVF85tu oX0QvXIO6Ow7F8skac7wnH4k6Kj8OYHojKZxlE/H3TUH4DAIubTMjN0Vc0QLC0qQ EIck3o5XwFI0zbQWxkMWkbqRxHTvBgNHRJmUwYh6PCQEyp72cWa18zKRMrPjpSKl hEhmIRUKvFmPlDtnTc6cyFjITTfDE1ZiLk2JAQdxTjCM+gnO/7GvgfQln/m0uCY1 MfYOFHBF5e9L3HoE3yRTKxvcdcGDUljwxBEVdk0ehPEt -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:37 2026 by rpki-client