This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/orkN8kh0qcB_VCslwz51tHHNaAU.roa File: orkN8kh0qcB_VCslwz51tHHNaAU.roa (raw, json) Hash identifier: dUBSK9KfqCI+pE9Izw/A7vLikxTN6uwvNNFCurXqWqA= Subject key identifier: A2:B9:0D:F2:48:74:A9:C0:7F:54:2B:25:C3:3E:75:B4:71:CD:68:05 Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d Certificate serial: 019B7C12F64CCD5C731A2ABD8ED30884B90F Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/orkN8kh0qcB_VCslwz51tHHNaAU.roa Signing time: Fri 02 Jan 2026 00:19:35 +0000 ROA not before: Fri 02 Jan 2026 00:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47299 IP address blocks: 195.65.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:f6:4c:cd:5c:73:1a:2a:bd:8e:d3:08:84:b9:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d Validity Not Before: Jan 2 00:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2b90df24874a9c07f542b25c33e75b471cd6805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:e0:51:cf:9e:e8:c6:a9:60:7d:f8:3e:90: 72:67:d1:a5:9a:61:0f:f4:d5:df:20:c2:db:22:65: f1:8d:f0:6f:93:2e:b8:86:07:34:7e:e4:56:79:85: e0:f6:7d:69:72:36:c4:65:0d:3b:6b:67:1c:05:a5: d1:a9:b9:a1:91:0a:3f:9a:04:7f:ff:31:58:54:82: 2e:55:4f:23:bf:81:f1:3e:64:56:85:9f:6d:17:5a: be:e2:98:90:02:08:6d:c4:8f:7f:06:b5:8a:4a:c1: 07:7a:ff:ef:0c:7d:67:53:a6:09:00:02:2b:85:2d: c2:b4:91:0f:1a:cb:f2:c6:e7:68:b2:7b:9c:22:36: ed:14:46:dc:ea:07:0f:ff:5c:e3:f2:9c:80:5c:07: 52:1e:1a:c2:11:b3:3b:77:a9:bf:28:ce:a9:13:f5: 30:b7:92:42:e0:04:a1:7a:e2:12:69:1d:58:f6:18: 0e:2a:52:5a:ac:0e:a8:90:c0:03:77:54:1c:25:d4: 77:7c:58:18:b7:ee:00:48:d9:d0:03:dd:bd:12:5a: f3:28:6e:22:6c:ce:54:9a:e7:4e:eb:58:1d:ff:e9: 10:5a:81:bf:12:50:b6:ad:3d:24:b1:4c:08:6d:c5: 6d:b4:9e:d6:d0:cf:fb:bb:9f:0f:34:a4:87:f6:c9: d6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B9:0D:F2:48:74:A9:C0:7F:54:2B:25:C3:3E:75:B4:71:CD:68:05 X509v3 Authority Key Identifier: keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/orkN8kh0qcB_VCslwz51tHHNaAU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.65.37.0/24 Signature Algorithm: sha256WithRSAEncryption 52:95:40:41:6e:e8:68:24:a6:4c:9e:41:b3:f9:79:1e:59:cd: 13:05:78:ce:8c:e0:3b:c0:34:8a:f6:80:45:ec:eb:48:f0:e6: 1d:31:27:99:39:eb:dc:76:57:61:a8:f3:ae:15:7c:2e:e0:5c: fc:b8:73:9a:4f:1f:69:72:fc:45:39:bd:4e:98:a2:18:de:8d: d2:81:9d:fe:42:1a:c8:03:ad:fe:0d:88:15:68:fe:0c:76:28: f4:4d:0b:de:f5:e2:7c:50:5f:43:1a:de:08:c4:b9:89:a6:1e: 94:f9:5a:07:c7:87:90:70:c3:11:b8:6b:5f:32:fd:48:7d:da: 18:cb:62:9b:42:42:19:21:4a:28:46:29:c2:1f:35:6b:bf:bd: fe:ea:be:9a:f7:37:9a:c5:eb:80:d0:5e:a0:91:0e:2a:5f:5d: 68:a5:ae:90:78:ae:f0:54:b5:57:1b:0a:23:a6:dc:fb:84:12: 95:ca:f5:f7:8d:5c:55:4d:3f:60:12:d7:9a:e0:73:e7:8f:aa: 1c:4c:c7:39:d5:99:f5:2d:e6:15:c9:e3:45:c4:b6:3f:2a:89: de:3b:8d:ff:8c:06:44:ac:96:59:47:9f:81:ee:c3:bc:6d:de: 29:2e:34:09:07:56:97:fa:10:1e:96:22:4a:d6:e1:96:c8:cd: b6:24:0b:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EvZMzVxzGiq9jtMIhLkPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy MDRjOGQwHhcNMjYwMTAyMDAxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmI5MGRmMjQ4NzRhOWMwN2Y1NDJiMjVjMzNlNzViNDcxY2Q2ODA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXzgUc+e6MapYH34PpByZ9GlmmEP 9NXfIMLbImXxjfBvky64hgc0fuRWeYXg9n1pcjbEZQ07a2ccBaXRqbmhkQo/mgR/ /zFYVIIuVU8jv4HxPmRWhZ9tF1q+4piQAghtxI9/BrWKSsEHev/vDH1nU6YJAAIr hS3CtJEPGsvyxudosnucIjbtFEbc6gcP/1zj8pyAXAdSHhrCEbM7d6m/KM6pE/Uw t5JC4ASheuISaR1Y9hgOKlJarA6okMADd1QcJdR3fFgYt+4ASNnQA929ElrzKG4i bM5UmudO61gd/+kQWoG/ElC2rT0ksUwIbcVttJ7W0M/7u58PNKSH9snW4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKK5DfJIdKnAf1QrJcM+dbRxzWgFMB8GA1UdIwQY MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt YmQxOTI2NzZjOWJiLzEvb3JrTjhraDBxY0JfVkNzbHd6NTF0SEhOYUFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0ElMA0G CSqGSIb3DQEBCwUAA4IBAQBSlUBBbuhoJKZMnkGz+XkeWc0TBXjOjOA7wDSK9oBF 7OtI8OYdMSeZOevcdldhqPOuFXwu4Fz8uHOaTx9pcvxFOb1OmKIY3o3SgZ3+QhrI A63+DYgVaP4Mdij0TQve9eJ8UF9DGt4IxLmJph6U+VoHx4eQcMMRuGtfMv1IfdoY y2KbQkIZIUooRinCHzVrv73+6r6a9zeaxeuA0F6gkQ4qX11opa6QeK7wVLVXGwoj ptz7hBKVyvX3jVxVTT9gEtea4HPnj6ocTMc51Zn1LeYVyeNFxLY/KoneO43/jAZE rJZZR5+B7sO8bd4pLjQJB1aX+hAeliJK1uGWyM22JAvA -----END CERTIFICATE-----Generated at Mon Jan 26 17:45:38 2026 by rpki-client