This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/cTo7aISO84nOHKaRVBLYx28LK0A.roa File: cTo7aISO84nOHKaRVBLYx28LK0A.roa (raw, json) Hash identifier: LEsXVf9msfVX9j57PmDwNgO8xzpz3g9TuIibghpJUtc= Subject key identifier: 71:3A:3B:68:84:8E:F3:89:CE:1C:A6:91:54:12:D8:C7:6F:0B:2B:40 Certificate issuer: /CN=1b9ecfa71efef9bb1bfe7b2e40215cda5b231e5d Certificate serial: 019B7DC9B3457708DEED1E386FF0F38448F5 Authority key identifier: 1B:9E:CF:A7:1E:FE:F9:BB:1B:FE:7B:2E:40:21:5C:DA:5B:23:1E:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G57Ppx7--bsb_nsuQCFc2lsjHl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/cTo7aISO84nOHKaRVBLYx28LK0A.roa Signing time: Fri 02 Jan 2026 08:18:49 +0000 ROA not before: Fri 02 Jan 2026 08:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 95.214.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/G57Ppx7--bsb_nsuQCFc2lsjHl0.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/G57Ppx7--bsb_nsuQCFc2lsjHl0.mft rsync://rpki.ripe.net/repository/DEFAULT/G57Ppx7--bsb_nsuQCFc2lsjHl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:b3:45:77:08:de:ed:1e:38:6f:f0:f3:84:48:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b9ecfa71efef9bb1bfe7b2e40215cda5b231e5d Validity Not Before: Jan 2 08:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=713a3b68848ef389ce1ca6915412d8c76f0b2b40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:83:f4:26:5c:43:97:6e:9e:6b:e5:fa:f2: 1e:b6:d4:e2:ea:c2:5b:6a:1c:82:87:39:0e:ab:fb: 52:bd:b9:99:e7:37:04:68:eb:8b:26:21:90:02:17: 0f:de:73:a9:9a:57:97:b5:b5:c8:ec:a2:74:5a:80: 46:f0:34:af:ca:ec:4c:ec:e0:f3:ed:23:06:1e:3c: f7:91:47:59:4a:ce:1c:f5:45:1f:85:ec:f3:06:64: 58:84:81:39:2d:1f:d4:9c:0e:21:db:2a:2e:33:88: ed:ce:2b:76:9a:09:13:50:8d:0b:e2:37:78:e2:13: 54:a3:36:bc:8e:7d:8a:a3:2a:f0:13:c3:95:1c:33: 76:f6:71:a6:06:ff:89:e2:f6:ab:cb:b7:ff:c2:c9: 9d:94:d5:fd:09:ee:23:6a:29:97:f9:e9:49:bc:a9: 00:c1:df:2c:a6:15:dc:68:81:2f:5a:df:29:35:9a: c5:4d:82:4c:a0:10:90:40:c5:d4:11:4a:a6:e8:5e: 0a:a9:d7:60:ee:32:03:2d:04:3f:6e:7b:1e:a2:95: 09:06:c9:45:f9:fc:d0:09:4d:46:5f:4e:f4:90:01: 73:d3:f4:b7:9a:ba:4a:81:e7:8f:be:c5:08:fc:c7: 30:21:1b:04:c4:cc:94:c6:23:a5:85:ea:2b:db:eb: 41:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3A:3B:68:84:8E:F3:89:CE:1C:A6:91:54:12:D8:C7:6F:0B:2B:40 X509v3 Authority Key Identifier: keyid:1B:9E:CF:A7:1E:FE:F9:BB:1B:FE:7B:2E:40:21:5C:DA:5B:23:1E:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G57Ppx7--bsb_nsuQCFc2lsjHl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/cTo7aISO84nOHKaRVBLYx28LK0A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/G57Ppx7--bsb_nsuQCFc2lsjHl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.214.96.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:54:ae:10:c3:19:6b:ff:a2:98:df:df:79:b3:fe:59:80:07: 6d:39:b4:a0:54:bb:93:f8:02:12:34:e2:d1:a7:b5:4c:27:2a: 7c:4b:65:95:23:af:79:0a:1a:2d:c7:fa:b3:db:2f:7c:2a:da: d8:10:e1:b4:b5:03:ec:69:ba:4c:3b:86:10:32:52:d4:ff:d8: e7:6d:fb:c4:f6:2a:2e:0d:e9:54:cb:ed:5f:0c:5a:52:3b:83: 62:84:47:15:1d:b7:a9:ce:11:92:8f:3a:7f:b9:c2:5f:b1:31: 6d:a8:0c:98:63:ca:17:6e:fb:86:08:0d:2f:f5:54:af:e3:35: 35:0a:ce:36:83:91:50:5b:e0:1b:76:e9:af:dc:45:92:3d:11: f2:b2:e8:12:c6:57:bb:e9:a6:82:ca:22:ba:2d:e4:6a:d4:a7: 52:47:94:7c:af:f5:8a:aa:c0:d7:49:9d:52:9b:f1:08:bd:97: 7b:28:65:b4:05:33:bc:10:e7:fa:13:c0:77:19:20:39:14:bd: 20:86:81:ae:7e:f7:29:13:ef:43:8b:3e:d9:1b:44:87:60:78: fa:3c:c5:33:dd:52:50:23:df:97:8b:1b:56:c5:64:a9:d4:35: 8e:61:9d:ea:b7:b7:66:6f:ae:d3:38:bd:85:4e:1a:18:57:13: c7:a1:63:93 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9ybNFdwje7R44b/DzhEj1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOWVjZmE3MWVmZWY5YmIxYmZlN2IyZTQwMjE1Y2RhNWIy MzFlNWQwHhcNMjYwMTAyMDgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTNhM2I2ODg0OGVmMzg5Y2UxY2E2OTE1NDEyZDhjNzZmMGIyYjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/6D9CZcQ5dunmvl+vIettTi6sJb ahyChzkOq/tSvbmZ5zcEaOuLJiGQAhcP3nOpmleXtbXI7KJ0WoBG8DSvyuxM7ODz 7SMGHjz3kUdZSs4c9UUfhezzBmRYhIE5LR/UnA4h2youM4jtzit2mgkTUI0L4jd4 4hNUoza8jn2KoyrwE8OVHDN29nGmBv+J4vary7f/wsmdlNX9Ce4jaimX+elJvKkA wd8sphXcaIEvWt8pNZrFTYJMoBCQQMXUEUqm6F4Kqddg7jIDLQQ/bnseopUJBslF +fzQCU1GX070kAFz0/S3mrpKgeePvsUI/McwIRsExMyUxiOlheor2+tB3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHE6O2iEjvOJzhymkVQS2MdvCytAMB8GA1UdIwQY MBaAFBuez6ce/vm7G/57LkAhXNpbIx5dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzU3UHB4Ny0tYnNiX25zdVFDRmMybHNqSGwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9lZDE2MDktMTA4Ni00N2I0LWE0OWQt ZjEwZDI2ZTNjM2RmLzEvY1RvN2FJU084NG5PSEthUlZCTFl4MjhMSzBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9lZDE2MDktMTA4Ni00N2I0LWE0OWQtZjEwZDI2ZTNjM2Rm LzEvRzU3UHB4Ny0tYnNiX25zdVFDRmMybHNqSGwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCX9ZgMA0G CSqGSIb3DQEBCwUAA4IBAQAbVK4Qwxlr/6KY3995s/5ZgAdtObSgVLuT+AISNOLR p7VMJyp8S2WVI695Chotx/qz2y98KtrYEOG0tQPsabpMO4YQMlLU/9jnbfvE9iou DelUy+1fDFpSO4NihEcVHbepzhGSjzp/ucJfsTFtqAyYY8oXbvuGCA0v9VSv4zU1 Cs42g5FQW+Abdumv3EWSPRHysugSxle76aaCyiK6LeRq1KdSR5R8r/WKqsDXSZ1S m/EIvZd7KGW0BTO8EOf6E8B3GSA5FL0ghoGufvcpE+9Diz7ZG0SHYHj6PMUz3VJQ I9+XixtWxWSp1DWOYZ3qt7dmb67TOL2FThoYVxPHoWOT -----END CERTIFICATE-----Generated at Sat Jan 3 04:59:30 2026 by rpki-client