This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0r-kbqJ-l3lgFXvNqd9Fyl05f8s.roa File: 0r-kbqJ-l3lgFXvNqd9Fyl05f8s.roa (raw, json) Hash identifier: zkB4hniWZVu45L9CCA2ofdeBg6Kq1Q6Frs50TnzIqVo= Subject key identifier: D2:BF:A4:6E:A2:7E:97:79:60:15:7B:CD:A9:DF:45:CA:5D:39:7F:CB Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F848D9734007C609C600413870872EA Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0r-kbqJ-l3lgFXvNqd9Fyl05f8s.roa Signing time: Fri 02 Jan 2026 16:22:31 +0000 ROA not before: Fri 02 Jan 2026 16:22:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8381 IP address blocks: 95.46.2.0/23 maxlen: 24 95.46.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:8d:97:34:00:7c:60:9c:60:04:13:87:08:72:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2bfa46ea27e977960157bcda9df45ca5d397fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:40:84:0c:12:92:59:11:f7:a6:60:fa:40:fe: 5d:bf:4c:8f:fb:e5:68:d8:2d:29:c3:4d:45:7b:d1: de:1b:b3:18:31:16:33:a8:fa:92:81:86:f1:82:55: bc:ff:0f:9b:76:32:29:35:66:4f:64:a0:e4:a2:a7: 2c:bc:30:07:4a:e4:81:a6:39:3b:2a:9e:2b:42:90: 08:a3:3a:30:8f:fc:f1:84:73:1b:b8:4f:a3:24:90: 3d:47:e4:91:e0:b3:9c:bc:6c:79:b3:63:a1:af:53: 61:35:e9:d0:77:9a:27:3d:9d:dd:f5:a8:e4:6a:9f: cc:a7:ed:66:e4:82:76:76:56:e7:2d:1d:46:88:3a: 6a:a6:9b:ee:b1:60:cb:81:ba:30:c5:1f:68:c5:63: eb:0b:28:35:17:2f:c7:99:62:0e:6a:40:75:f8:ea: a7:c0:f9:7f:65:1b:01:0c:76:f1:da:f7:3f:94:9b: 09:e7:f2:22:a3:3c:24:82:1c:3f:44:5e:59:3a:87: a9:64:75:d2:0b:7f:03:02:1a:fe:21:82:f9:71:15: a6:96:40:35:6b:84:e4:b3:16:74:27:2a:f1:4f:65: ff:ef:01:1e:b2:82:a9:a6:68:23:c7:aa:80:0d:9a: a2:39:e1:60:13:65:4c:b6:25:ce:b4:99:ef:ed:1a: 93:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:BF:A4:6E:A2:7E:97:79:60:15:7B:CD:A9:DF:45:CA:5D:39:7F:CB X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/0r-kbqJ-l3lgFXvNqd9Fyl05f8s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.46.2.0/23 95.46.122.0/23 Signature Algorithm: sha256WithRSAEncryption a0:cc:95:63:db:50:f5:14:e2:fd:58:87:fe:47:d2:2f:ed:0b: 23:87:21:80:04:cb:9c:79:c7:fe:8f:97:b4:74:31:df:73:3e: 39:90:06:b7:9a:be:75:54:43:37:b3:2f:44:b0:26:2c:b0:f8: d0:4c:aa:e4:8d:e9:d5:de:25:cb:9c:6f:00:f9:ca:d6:b7:4b: 06:cf:17:8c:20:08:7b:4a:8d:b3:f7:fa:31:8e:70:06:4c:85: 4c:ae:6b:d6:93:9a:35:e3:bd:0d:5a:22:f0:35:3b:f3:f5:25: 86:3f:04:44:67:e6:8e:2d:77:14:2b:42:75:b8:6f:36:94:6e: 3d:3e:e6:ff:6a:37:aa:3e:55:f7:79:ca:a5:f7:5e:9f:5f:49: f7:d6:ea:c4:da:72:a4:72:14:7a:25:55:5b:47:ca:9e:49:f6: c8:de:e1:f0:5b:05:3f:a6:b8:af:b4:b0:db:37:cb:11:e0:b5: 83:ea:ea:d7:2e:0b:1d:bb:a5:b4:1b:a4:ea:7c:19:f7:7a:d0: 64:e5:f6:30:3a:61:1d:56:70:67:cc:c9:80:ea:83:53:be:fa: ab:f6:1e:84:fe:28:e5:4e:5c:75:24:0f:89:72:09:d0:ed:60: 27:84:01:a0:4f:6d:7d:43:9d:80:d1:45:07:a3:ae:f8:a9:1f: 5c:38:97:be -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hI2XNAB8YJxgBBOHCHLqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMmJmYTQ2ZWEyN2U5Nzc5NjAxNTdiY2RhOWRmNDVjYTVkMzk3ZmNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmECEDBKSWRH3pmD6QP5dv0yP++Vo 2C0pw01Fe9HeG7MYMRYzqPqSgYbxglW8/w+bdjIpNWZPZKDkoqcsvDAHSuSBpjk7 Kp4rQpAIozowj/zxhHMbuE+jJJA9R+SR4LOcvGx5s2Ohr1NhNenQd5onPZ3d9ajk ap/Mp+1m5IJ2dlbnLR1GiDpqppvusWDLgbowxR9oxWPrCyg1Fy/HmWIOakB1+Oqn wPl/ZRsBDHbx2vc/lJsJ5/Iiozwkghw/RF5ZOoepZHXSC38DAhr+IYL5cRWmlkA1 a4TksxZ0JyrxT2X/7wEesoKppmgjx6qADZqiOeFgE2VMtiXOtJnv7RqTRwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNK/pG6ifpd5YBV7zanfRcpdOX/LMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvMHIta2JxSi1sM2xnRlh2TnFkOUZ5bDA1ZjhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBXy4CAwQB Xy56MA0GCSqGSIb3DQEBCwUAA4IBAQCgzJVj21D1FOL9WIf+R9Iv7QsjhyGABMuc ecf+j5e0dDHfcz45kAa3mr51VEM3sy9EsCYssPjQTKrkjenV3iXLnG8A+crWt0sG zxeMIAh7So2z9/oxjnAGTIVMrmvWk5o1470NWiLwNTvz9SWGPwREZ+aOLXcUK0J1 uG82lG49Pub/ajeqPlX3ecql916fX0n31urE2nKkchR6JVVbR8qeSfbI3uHwWwU/ privtLDbN8sR4LWD6urXLgsdu6W0G6TqfBn3etBk5fYwOmEdVnBnzMmA6oNTvvqr 9h6E/ijlTlx1JA+JcgnQ7WAnhAGgT219Q52A0UUHo674qR9cOJe+ -----END CERTIFICATE-----Generated at Mon Jan 26 08:04:24 2026 by rpki-client