This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/7ab96f-093e-4c52-bf9b-52e151f42c23/1/D14MO7BIQvaHAdeDBscgN5omBJ4.roa File: D14MO7BIQvaHAdeDBscgN5omBJ4.roa (raw, json) Hash identifier: r6jJ5ch2wUm0LzOkighkT3HkT455ug6IrSIakMtnP58= Subject key identifier: 0F:5E:0C:3B:B0:48:42:F6:87:01:D7:83:06:C7:20:37:9A:26:04:9E Certificate issuer: /CN=a9d29f703b8ec8e93ca48405dee4730eed93c6b2 Certificate serial: 019B7F15BF271F44C169F16D513CE4502731 Authority key identifier: A9:D2:9F:70:3B:8E:C8:E9:3C:A4:84:05:DE:E4:73:0E:ED:93:C6:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qdKfcDuOyOk8pIQF3uRzDu2TxrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/7ab96f-093e-4c52-bf9b-52e151f42c23/1/D14MO7BIQvaHAdeDBscgN5omBJ4.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212945 IP address blocks: 195.85.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/7ab96f-093e-4c52-bf9b-52e151f42c23/1/qdKfcDuOyOk8pIQF3uRzDu2TxrI.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/7ab96f-093e-4c52-bf9b-52e151f42c23/1/qdKfcDuOyOk8pIQF3uRzDu2TxrI.mft rsync://rpki.ripe.net/repository/DEFAULT/qdKfcDuOyOk8pIQF3uRzDu2TxrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:bf:27:1f:44:c1:69:f1:6d:51:3c:e4:50:27:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a9d29f703b8ec8e93ca48405dee4730eed93c6b2 Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f5e0c3bb04842f68701d78306c720379a26049e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e9:8c:de:f7:db:e2:f1:92:8c:5f:5e:a9:f1: 0c:38:eb:a8:00:9e:6a:03:31:15:cb:27:a5:6c:aa: 72:7c:3e:b0:b1:b1:24:c3:a5:a2:fa:dc:1c:a7:2d: be:f3:74:a4:db:1d:ee:fb:c2:04:0d:d9:4a:50:29: 07:14:4e:2f:84:4a:cc:1b:0f:1b:18:4d:4b:53:49: 49:7e:20:4a:e1:22:89:7e:4a:78:1e:10:d5:ec:96: a2:1a:c2:73:be:6c:7d:ed:63:ff:7f:06:2b:35:fd: 16:d1:f1:21:6e:38:7d:1f:d1:ef:2e:08:7d:98:22: 3d:2e:bb:8f:b8:45:af:ad:fc:14:ff:f0:1e:97:20: 54:7e:f0:e7:b4:d4:e0:ce:2f:ea:7f:b4:e2:b1:af: 93:80:3d:e9:2c:ac:80:4a:f6:b7:7f:50:21:44:90: 13:38:fa:c0:43:b3:4e:76:bb:7a:b6:05:4c:7c:c2: 87:5c:11:9a:37:80:9b:05:aa:78:70:97:58:68:8c: b8:d8:b6:5c:52:e3:b0:46:1e:3b:1b:a5:45:6c:e4: ec:dc:43:25:f1:ca:2d:dd:0e:f5:bf:4d:ec:b7:e8: b2:78:b0:a4:9c:02:8d:e7:5a:cc:f4:8e:20:d2:74: 38:64:cb:a6:6b:ea:8e:e1:66:fb:b6:29:1e:1d:a1: 5e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5E:0C:3B:B0:48:42:F6:87:01:D7:83:06:C7:20:37:9A:26:04:9E X509v3 Authority Key Identifier: keyid:A9:D2:9F:70:3B:8E:C8:E9:3C:A4:84:05:DE:E4:73:0E:ED:93:C6:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qdKfcDuOyOk8pIQF3uRzDu2TxrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7ab96f-093e-4c52-bf9b-52e151f42c23/1/D14MO7BIQvaHAdeDBscgN5omBJ4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7ab96f-093e-4c52-bf9b-52e151f42c23/1/qdKfcDuOyOk8pIQF3uRzDu2TxrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.85.212.0/24 Signature Algorithm: sha256WithRSAEncryption 94:4e:f2:ef:1e:d6:53:33:f9:e0:b3:8e:09:c0:83:8d:c9:83: 90:94:6b:32:83:25:bf:0b:a6:48:9d:8b:77:cc:80:4f:7d:95: 48:0b:fd:f1:c6:9e:aa:34:ef:ed:eb:1e:e1:8d:c1:fd:01:39: b8:8a:93:6f:33:4b:42:dd:e9:af:46:d1:55:08:f2:fb:69:d8: d7:c3:d2:6d:b3:69:08:5e:8b:a8:5c:d2:9e:ba:1f:b1:37:3d: db:50:94:d9:64:be:90:dd:f5:34:2c:ef:49:dd:37:41:3d:22: 35:4f:ab:c7:de:3a:ab:76:8a:9e:c2:57:c8:ba:7e:52:3f:d6: cd:aa:be:d4:72:99:ad:7a:0d:b9:96:b6:d7:5c:71:9d:fb:4b: a2:5f:f0:33:4d:f8:3c:a5:a7:6c:42:90:49:c0:68:7b:37:bc: 32:13:c6:e5:d5:2b:8f:94:a6:64:dd:a1:a0:e3:25:67:e0:59: 6c:42:ba:a8:44:fa:6f:8d:81:01:63:9f:fa:ed:04:6a:a8:4b: 3a:f5:c5:93:9a:66:33:15:ac:82:9e:94:60:9a:f2:65:86:56: c6:4c:af:b0:0c:d1:51:f7:ca:f5:52:e1:51:9b:22:58:51:61: 8d:8d:1f:9a:e2:86:82:9e:d9:67:91:57:75:64:53:b1:e9:77: 4e:eb:25:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Fb8nH0TBafFtUTzkUCcxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5ZDI5ZjcwM2I4ZWM4ZTkzY2E0ODQwNWRlZTQ3MzBlZWQ5 M2M2YjIwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjVlMGMzYmIwNDg0MmY2ODcwMWQ3ODMwNmM3MjAzNzlhMjYwNDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxemM3vfb4vGSjF9eqfEMOOuoAJ5q AzEVyyelbKpyfD6wsbEkw6Wi+twcpy2+83Sk2x3u+8IEDdlKUCkHFE4vhErMGw8b GE1LU0lJfiBK4SKJfkp4HhDV7JaiGsJzvmx97WP/fwYrNf0W0fEhbjh9H9HvLgh9 mCI9LruPuEWvrfwU//AelyBUfvDntNTgzi/qf7Tisa+TgD3pLKyASva3f1AhRJAT OPrAQ7NOdrt6tgVMfMKHXBGaN4CbBap4cJdYaIy42LZcUuOwRh47G6VFbOTs3EMl 8cot3Q71v03st+iyeLCknAKN51rM9I4g0nQ4ZMuma+qO4Wb7tikeHaFe4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA9eDDuwSEL2hwHXgwbHIDeaJgSeMB8GA1UdIwQY MBaAFKnSn3A7jsjpPKSEBd7kcw7tk8ayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWRLZmNEdU95T2s4cElRRjN1UnpEdTJUeHJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83YWI5NmYtMDkzZS00YzUyLWJmOWIt NTJlMTUxZjQyYzIzLzEvRDE0TU83QklRdmFIQWRlREJzY2dONW9tQko0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS83YWI5NmYtMDkzZS00YzUyLWJmOWItNTJlMTUxZjQyYzIz LzEvcWRLZmNEdU95T2s4cElRRjN1UnpEdTJUeHJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1XUMA0G CSqGSIb3DQEBCwUAA4IBAQCUTvLvHtZTM/ngs44JwIONyYOQlGsygyW/C6ZInYt3 zIBPfZVIC/3xxp6qNO/t6x7hjcH9ATm4ipNvM0tC3emvRtFVCPL7adjXw9Jts2kI XouoXNKeuh+xNz3bUJTZZL6Q3fU0LO9J3TdBPSI1T6vH3jqrdoqewlfIun5SP9bN qr7Ucpmteg25lrbXXHGd+0uiX/AzTfg8padsQpBJwGh7N7wyE8bl1SuPlKZk3aGg 4yVn4FlsQrqoRPpvjYEBY5/67QRqqEs69cWTmmYzFayCnpRgmvJlhlbGTK+wDNFR 98r1UuFRmyJYUWGNjR+a4oaCntlnkVd1ZFOx6XdO6yWH -----END CERTIFICATE-----Generated at Tue Feb 10 07:11:09 2026 by rpki-client