This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/fn22VffPk13JEZ43P7QzWAHfKUI.roa File: fn22VffPk13JEZ43P7QzWAHfKUI.roa (raw, json) Hash identifier: jLIrzazW1c/8A69YDLVF5OeAhGmqg599WqHWOZ8LrQc= Subject key identifier: 7E:7D:B6:55:F7:CF:93:5D:C9:11:9E:37:3F:B4:33:58:01:DF:29:42 Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3 Certificate serial: 019B76EABFF9EBFFA61B0D02F8F94DEA2FC3 Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/fn22VffPk13JEZ43P7QzWAHfKUI.roa Signing time: Thu 01 Jan 2026 00:17:34 +0000 ROA not before: Thu 01 Jan 2026 00:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39855 IP address blocks: 195.238.95.0/24 maxlen: 24 195.238.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:bf:f9:eb:ff:a6:1b:0d:02:f8:f9:4d:ea:2f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3 Validity Not Before: Jan 1 00:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e7db655f7cf935dc9119e373fb4335801df2942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:02:9f:84:e3:84:7a:af:13:1a:d6:82:69:31: 01:60:8c:f9:51:8a:62:bb:74:49:44:c6:5a:4e:5b: 60:e0:02:d4:79:e2:d0:5c:fc:19:d1:d6:8b:6e:06: 8c:5d:ec:2b:54:ba:f4:73:1e:57:49:ed:2a:9a:06: 64:89:47:b4:10:42:38:23:e1:37:2d:53:e8:06:f9: e3:4a:f3:0e:c2:a7:96:d4:3b:17:2d:18:6e:50:6e: 44:3f:e3:4d:ec:1e:1c:a0:a3:ed:5e:ef:99:1b:4b: d0:6c:17:a0:4d:ed:86:11:76:3c:d6:ec:41:eb:8d: 09:d7:80:6d:84:f4:f2:d4:0e:e4:54:4e:44:92:3c: 90:32:5b:2c:0e:2f:97:44:ea:23:6d:ea:84:aa:26: 69:df:08:86:25:c4:fe:93:8f:33:f5:30:4d:bf:ec: 09:77:a3:7b:2b:4f:78:bd:c1:a1:5a:f9:0e:f3:f4: d6:f4:40:b7:4d:d1:64:22:7d:ce:3d:98:0f:5d:b0: 60:05:69:02:5b:22:9a:3d:45:5f:e7:cc:b1:b8:c9: ee:fb:69:18:8d:5c:64:8d:2e:4f:d1:24:2a:34:62: ad:8f:0e:44:b2:a8:6f:5d:4d:23:4d:dd:bc:c1:4f: d8:4f:0a:6c:4b:a1:9a:8e:7c:2f:05:db:0d:55:21: 49:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7D:B6:55:F7:CF:93:5D:C9:11:9E:37:3F:B4:33:58:01:DF:29:42 X509v3 Authority Key Identifier: keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/fn22VffPk13JEZ43P7QzWAHfKUI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.238.95.0/24 195.238.242.0/23 Signature Algorithm: sha256WithRSAEncryption 23:61:b2:03:41:89:10:16:e5:cc:dd:d6:04:77:c2:b6:b6:de: 21:2d:11:d6:e5:5f:20:d5:b7:1a:bb:18:ef:a9:b1:a2:7c:32: bd:76:28:21:b1:f2:47:22:eb:dd:3b:32:21:2c:c7:d2:37:76: 60:bc:8f:4a:d7:a2:99:02:bf:14:22:02:cc:37:d5:83:15:6b: 40:0e:08:b5:dd:00:9a:07:2d:af:1c:6e:a7:ca:e7:2b:1a:9f: 81:cb:3f:e9:96:44:d3:9b:59:46:2f:2d:b9:18:d0:7a:80:ad: 19:2f:ad:98:7b:9d:46:3c:30:5d:e4:6a:89:fd:01:60:44:5f: 31:b6:a3:d0:c3:9e:94:9a:16:9d:63:04:74:c2:07:e4:63:79: ff:9a:37:b6:57:10:2d:34:49:b1:de:7e:d0:b8:f3:75:af:ef: a1:d6:05:6a:e0:54:a5:ef:a2:a7:e4:4d:d0:de:e7:4d:c8:64: b2:ca:10:86:f6:0b:3c:55:08:e9:38:8b:7b:e2:72:c7:45:26: 26:de:7e:e8:bf:ab:8c:24:1c:d7:be:d4:54:b4:6f:6e:aa:52: 38:4d:48:91:a7:5a:86:54:1b:8c:a1:99:38:81:04:d1:f8:cd: 66:34:53:93:b1:09:05:b0:fd:20:de:b4:0d:66:7b:02:5f:19: 85:34:38:4d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26r/56/+mGw0C+PlN6i/DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNzcwOWU3YjBlZmJhMTI3MDI1YzgzZTVkMzE5NGM3MWJh NDI4YzMwHhcNMjYwMTAxMDAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTdkYjY1NWY3Y2Y5MzVkYzkxMTllMzczZmI0MzM1ODAxZGYyOTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQKfhOOEeq8TGtaCaTEBYIz5UYpi u3RJRMZaTltg4ALUeeLQXPwZ0daLbgaMXewrVLr0cx5XSe0qmgZkiUe0EEI4I+E3 LVPoBvnjSvMOwqeW1DsXLRhuUG5EP+NN7B4coKPtXu+ZG0vQbBegTe2GEXY81uxB 640J14BthPTy1A7kVE5EkjyQMlssDi+XROojbeqEqiZp3wiGJcT+k48z9TBNv+wJ d6N7K094vcGhWvkO8/TW9EC3TdFkIn3OPZgPXbBgBWkCWyKaPUVf58yxuMnu+2kY jVxkjS5P0SQqNGKtjw5EsqhvXU0jTd28wU/YTwpsS6GajnwvBdsNVSFJpQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFH59tlX3z5NdyRGeNz+0M1gB3ylCMB8GA1UdIwQY MBaAFIB3Ceew77oScCXIPl0xlMcbpCjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0hjSjU3RHZ1aEp3SmNnLVhUR1V4eHVrS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9jNDI2YzMtNGYwMy00NmJiLTgwMDgt YmU5YWQyYmY3MjVmLzEvZm4yMlZmZlBrMTNKRVo0M1A3UXpXQUhmS1VJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9jNDI2YzMtNGYwMy00NmJiLTgwMDgtYmU5YWQyYmY3MjVm LzEvZ0hjSjU3RHZ1aEp3SmNnLVhUR1V4eHVrS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw+5fAwQB w+7yMA0GCSqGSIb3DQEBCwUAA4IBAQAjYbIDQYkQFuXM3dYEd8K2tt4hLRHW5V8g 1bcauxjvqbGifDK9dighsfJHIuvdOzIhLMfSN3ZgvI9K16KZAr8UIgLMN9WDFWtA Dgi13QCaBy2vHG6nyucrGp+Byz/plkTTm1lGLy25GNB6gK0ZL62Ye51GPDBd5GqJ /QFgRF8xtqPQw56UmhadYwR0wgfkY3n/mje2VxAtNEmx3n7QuPN1r++h1gVq4FSl 76Kn5E3Q3udNyGSyyhCG9gs8VQjpOIt74nLHRSYm3n7ov6uMJBzXvtRUtG9uqlI4 TUiRp1qGVBuMoZk4gQTR+M1mNFOTsQkFsP0g3rQNZnsCXxmFNDhN -----END CERTIFICATE-----Generated at Mon Jan 19 23:21:44 2026 by rpki-client