This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b67d6c-9b92-4994-8472-bd971e9c5199/1/yAvipSzqrRMIwGb_dYX551oEf3c.roa File: yAvipSzqrRMIwGb_dYX551oEf3c.roa (raw, json) Hash identifier: PTrrr2bY67mRScuYX9mwm1OfW9eCtFbaYeGSBUpSsqs= Subject key identifier: C8:0B:E2:A5:2C:EA:AD:13:08:C0:66:FF:75:85:F9:E7:5A:04:7F:77 Certificate issuer: /CN=da4f5746a6dc740b61b98ef82dc6c33ddb238ed8 Certificate serial: 019B77C75681774BC2361535DBAE005BC5D5 Authority key identifier: DA:4F:57:46:A6:DC:74:0B:61:B9:8E:F8:2D:C6:C3:3D:DB:23:8E:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2k9XRqbcdAthuY74LcbDPdsjjtg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b67d6c-9b92-4994-8472-bd971e9c5199/1/yAvipSzqrRMIwGb_dYX551oEf3c.roa Signing time: Thu 01 Jan 2026 04:18:30 +0000 ROA not before: Thu 01 Jan 2026 04:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49024 IP address blocks: 95.131.122.0/23 maxlen: 23 95.131.122.0/24 maxlen: 24 95.131.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b67d6c-9b92-4994-8472-bd971e9c5199/1/2k9XRqbcdAthuY74LcbDPdsjjtg.crl rsync://rpki.ripe.net/repository/DEFAULT/97/b67d6c-9b92-4994-8472-bd971e9c5199/1/2k9XRqbcdAthuY74LcbDPdsjjtg.mft rsync://rpki.ripe.net/repository/DEFAULT/2k9XRqbcdAthuY74LcbDPdsjjtg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:56:81:77:4b:c2:36:15:35:db:ae:00:5b:c5:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da4f5746a6dc740b61b98ef82dc6c33ddb238ed8 Validity Not Before: Jan 1 04:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c80be2a52ceaad1308c066ff7585f9e75a047f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:9d:21:54:93:15:a5:49:1d:b7:d3:af:d5: 85:74:76:38:c2:7a:34:fb:2a:b5:13:4d:8a:aa:43: 3e:42:29:99:e7:1e:d1:60:ea:f3:64:2e:5c:dc:e7: b8:4a:d0:09:77:4c:3c:a8:b6:76:ab:81:e4:cd:5f: 5f:84:36:84:1c:fd:d0:40:24:05:cd:16:85:b0:f3: 65:23:7e:ce:b6:92:b3:2e:41:a3:8c:7a:e9:60:e1: c1:c7:42:cc:50:5a:ed:90:57:fe:d6:ba:ce:b1:4e: ff:36:bc:45:32:19:3f:c0:79:00:8d:e6:8f:ae:50: 7a:da:01:38:bc:75:36:d6:4f:cc:f8:be:54:c2:60: 08:07:30:63:35:be:ce:ba:9b:0d:66:3f:49:0b:4c: 59:12:ce:1b:3b:e8:19:fc:b3:bc:3f:5d:d0:92:e5: 40:b1:6e:9b:d5:8c:d3:60:90:51:23:e7:5d:7f:dd: 71:41:1c:c0:b5:5b:1f:6a:19:a5:5a:2c:ce:d8:74: 8a:2d:f3:8b:5d:72:46:25:a0:74:f3:a4:8a:f7:f8: 37:8f:e5:b0:6f:e1:14:b2:16:e5:82:45:8b:1d:79: 1b:b0:d1:e8:56:17:e0:13:e8:c5:f2:19:53:7e:6a: ef:9d:c6:c7:74:b9:b8:1c:7d:97:30:ed:60:f7:d1: 5c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0B:E2:A5:2C:EA:AD:13:08:C0:66:FF:75:85:F9:E7:5A:04:7F:77 X509v3 Authority Key Identifier: keyid:DA:4F:57:46:A6:DC:74:0B:61:B9:8E:F8:2D:C6:C3:3D:DB:23:8E:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2k9XRqbcdAthuY74LcbDPdsjjtg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b67d6c-9b92-4994-8472-bd971e9c5199/1/yAvipSzqrRMIwGb_dYX551oEf3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b67d6c-9b92-4994-8472-bd971e9c5199/1/2k9XRqbcdAthuY74LcbDPdsjjtg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.131.122.0/23 Signature Algorithm: sha256WithRSAEncryption 92:49:4d:80:0a:c7:37:23:97:b8:aa:93:69:c1:af:01:c4:b1: 18:e1:f8:7b:6d:95:0d:4d:d3:b0:2f:72:1a:d9:86:61:ab:88: f2:7f:16:8c:57:0c:ed:02:5e:22:20:e5:55:7a:74:a4:a0:63: db:6f:4a:c9:20:d1:01:78:62:4c:bd:99:c9:12:d3:af:9a:18: bc:8e:f3:a9:10:b0:6d:77:00:09:7d:97:d3:82:0b:64:a4:67: 41:80:b3:ad:6d:0f:96:27:92:63:1c:ca:e1:a1:5d:a7:3e:85: 22:ad:34:a9:0d:f8:1c:6b:a3:c8:37:f9:7b:29:d5:51:95:ba: 74:27:6e:8a:48:7a:dc:7d:99:2e:75:06:83:00:73:7c:b7:51: eb:95:ce:9c:ad:43:af:e6:84:69:9f:bc:56:c8:3b:23:4a:00: c8:fb:97:23:e2:b4:25:74:d5:71:25:d8:ec:ff:47:72:91:16: d7:ab:fc:86:45:07:8d:45:66:0c:c6:e5:00:a4:90:c8:21:1c: 84:17:6b:a0:f2:08:67:18:a1:f3:63:7d:62:9d:0c:c3:88:24: 1f:62:c1:90:06:4c:db:f4:57:7c:cb:f4:69:62:c8:54:e4:89: 6e:85:9b:03:0f:45:3d:10:80:2e:2f:ea:0c:fe:c0:67:71:37: 27:b2:f3:26 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x1aBd0vCNhU1264AW8XVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhNGY1NzQ2YTZkYzc0MGI2MWI5OGVmODJkYzZjMzNkZGIy MzhlZDgwHhcNMjYwMTAxMDQxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjODBiZTJhNTJjZWFhZDEzMDhjMDY2ZmY3NTg1ZjllNzVhMDQ3Zjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurydIVSTFaVJHbfTr9WFdHY4wno0 +yq1E02KqkM+QimZ5x7RYOrzZC5c3Oe4StAJd0w8qLZ2q4HkzV9fhDaEHP3QQCQF zRaFsPNlI37OtpKzLkGjjHrpYOHBx0LMUFrtkFf+1rrOsU7/NrxFMhk/wHkAjeaP rlB62gE4vHU21k/M+L5UwmAIBzBjNb7OupsNZj9JC0xZEs4bO+gZ/LO8P13QkuVA sW6b1YzTYJBRI+ddf91xQRzAtVsfahmlWizO2HSKLfOLXXJGJaB086SK9/g3j+Ww b+EUshblgkWLHXkbsNHoVhfgE+jF8hlTfmrvncbHdLm4HH2XMO1g99FcuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMgL4qUs6q0TCMBm/3WF+edaBH93MB8GA1UdIwQY MBaAFNpPV0am3HQLYbmO+C3Gwz3bI47YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMms5WFJxYmNkQXRodVk3NExjYkRQZHNqanRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iNjdkNmMtOWI5Mi00OTk0LTg0NzIt YmQ5NzFlOWM1MTk5LzEveUF2aXBTenFyUk1Jd0diX2RZWDU1MW9FZjNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9iNjdkNmMtOWI5Mi00OTk0LTg0NzItYmQ5NzFlOWM1MTk5 LzEvMms5WFJxYmNkQXRodVk3NExjYkRQZHNqanRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBX4N6MA0G CSqGSIb3DQEBCwUAA4IBAQCSSU2ACsc3I5e4qpNpwa8BxLEY4fh7bZUNTdOwL3Ia 2YZhq4jyfxaMVwztAl4iIOVVenSkoGPbb0rJINEBeGJMvZnJEtOvmhi8jvOpELBt dwAJfZfTggtkpGdBgLOtbQ+WJ5JjHMrhoV2nPoUirTSpDfgca6PIN/l7KdVRlbp0 J26KSHrcfZkudQaDAHN8t1Hrlc6crUOv5oRpn7xWyDsjSgDI+5cj4rQldNVxJdjs /0dykRbXq/yGRQeNRWYMxuUApJDIIRyEF2ug8ghnGKHzY31inQzDiCQfYsGQBkzb 9Fd8y/RpYshU5IluhZsDD0U9EIAuL+oM/sBncTcnsvMm -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:34 2026 by rpki-client