This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/CIWFwZHpllyhItc6ZafwS9V0Jvw.roa File: CIWFwZHpllyhItc6ZafwS9V0Jvw.roa (raw, json) Hash identifier: FLaHSv17cLAfaJ7PpG0zmIipTskF+c0L1m1jMEvYS7o= Subject key identifier: 08:85:85:C1:91:E9:96:5C:A1:22:D7:3A:65:A7:F0:4B:D5:74:26:FC Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51 Certificate serial: 019B77C68017476A58F472B54067345D86A5 Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/CIWFwZHpllyhItc6ZafwS9V0Jvw.roa Signing time: Thu 01 Jan 2026 04:17:36 +0000 ROA not before: Thu 01 Jan 2026 04:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212609 IP address blocks: 195.95.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.mft rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:80:17:47:6a:58:f4:72:b5:40:67:34:5d:86:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51 Validity Not Before: Jan 1 04:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=088585c191e9965ca122d73a65a7f04bd57426fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:63:65:71:e4:ea:2f:f7:d5:a0:6b:6c:0d:8a: 50:a1:6c:ed:3b:35:31:46:8e:c8:bc:aa:fb:22:00: 12:a2:1f:8d:c0:3a:48:8f:83:b4:72:f1:34:9e:76: c9:e5:0a:02:3b:47:2d:9f:18:91:b9:c5:af:d5:5a: 69:0f:64:a2:ec:52:c4:fe:64:1b:bc:7c:8d:f6:40: 14:67:9d:05:3d:68:ed:49:e7:25:2e:ac:f9:b8:fe: e6:ba:5e:91:77:db:c8:18:47:91:66:da:02:5e:af: 17:46:aa:59:9a:b5:34:45:ac:72:bf:11:be:2c:09: ac:e4:bc:86:6c:33:ca:7f:a8:74:9e:c7:3c:a6:3b: 49:f2:99:31:f5:35:63:be:97:7d:c1:00:b0:dd:88: eb:0f:4e:8e:6d:48:48:c4:26:f8:b0:f0:74:49:83: 09:30:a6:fb:5c:32:52:a5:58:a6:a2:69:44:0d:cf: bc:f4:7d:78:8b:4c:2b:ff:cd:90:dc:37:d4:e7:51: 82:0d:03:5b:5f:8e:8f:7f:aa:76:e2:e4:57:58:6d: 9d:ea:d2:a7:16:d8:4d:9a:3d:2c:bc:4e:93:b2:bc: c3:5e:53:13:1e:cd:fc:67:d0:3d:6c:b3:92:47:34: 10:20:e0:2a:b8:a9:14:26:c9:cb:74:dd:01:35:9a: 97:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:85:85:C1:91:E9:96:5C:A1:22:D7:3A:65:A7:F0:4B:D5:74:26:FC X509v3 Authority Key Identifier: keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/CIWFwZHpllyhItc6ZafwS9V0Jvw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.95.205.0/24 Signature Algorithm: sha256WithRSAEncryption c1:38:ab:a0:45:97:be:87:f9:05:22:5d:db:b1:59:5a:79:fd: bb:ed:a7:67:99:6e:f1:f7:fd:a5:96:97:68:cd:cf:85:3e:e8: a7:8c:73:93:45:31:c9:a3:86:30:f3:92:f7:e5:de:87:14:4c: f1:c8:8b:19:fc:82:a6:64:02:ec:5f:1c:c2:95:35:4d:c6:67: ca:b1:b2:b2:d6:13:05:12:03:b4:ba:96:96:a9:f7:97:6b:77: b3:b5:cb:b6:45:79:71:d9:14:73:f9:76:1a:dc:10:6d:20:d0: 35:16:5f:50:ee:03:bf:10:80:1c:0b:50:a7:d8:83:04:3a:d3: 2b:db:56:0e:61:f3:0c:93:be:41:0b:2d:38:20:b8:4f:fb:d7: 13:f2:77:15:1a:bd:10:2a:a6:67:f0:f5:d2:a9:49:48:c9:f1: 08:87:78:18:ab:a0:08:b9:ac:c6:77:40:38:2b:84:0e:37:0d: 16:b3:77:11:61:37:1e:d9:33:0b:1b:4a:61:dc:e1:ef:0b:e5: 17:85:3c:f6:9c:61:13:9b:65:12:3f:53:e5:47:d3:8e:f4:aa: 3d:69:97:eb:e1:97:24:9e:2d:29:32:c4:99:3b:c9:34:f9:88: c5:eb:ac:e5:b4:f1:34:83:f2:51:cc:b6:ad:12:0a:e1:48:40: ee:b7:59:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xoAXR2pY9HK1QGc0XYalMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlODI5NjNmZjFhYTcwYWIxMGQxZDMzZTg2YjFkNmQ0OTRk NmNlNTEwHhcNMjYwMTAxMDQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODg1ODVjMTkxZTk5NjVjYTEyMmQ3M2E2NWE3ZjA0YmQ1NzQyNmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GNlceTqL/fVoGtsDYpQoWztOzUx Ro7IvKr7IgASoh+NwDpIj4O0cvE0nnbJ5QoCO0ctnxiRucWv1VppD2Si7FLE/mQb vHyN9kAUZ50FPWjtSeclLqz5uP7mul6Rd9vIGEeRZtoCXq8XRqpZmrU0RaxyvxG+ LAms5LyGbDPKf6h0nsc8pjtJ8pkx9TVjvpd9wQCw3YjrD06ObUhIxCb4sPB0SYMJ MKb7XDJSpVimomlEDc+89H14i0wr/82Q3DfU51GCDQNbX46Pf6p24uRXWG2d6tKn FthNmj0svE6TsrzDXlMTHs38Z9A9bLOSRzQQIOAquKkUJsnLdN0BNZqX0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAiFhcGR6ZZcoSLXOmWn8EvVdCb8MB8GA1UdIwQY MBaAFC6Clj/xqnCrENHTPoax1tSU1s5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQt ZGY2NGYwZTgyMzYwLzEvQ0lXRndaSHBsbHloSXRjNlphZndTOVYwSnZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQtZGY2NGYwZTgyMzYw LzEvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1/NMA0G CSqGSIb3DQEBCwUAA4IBAQDBOKugRZe+h/kFIl3bsVlaef277adnmW7x9/2llpdo zc+FPuinjHOTRTHJo4Yw85L35d6HFEzxyIsZ/IKmZALsXxzClTVNxmfKsbKy1hMF EgO0upaWqfeXa3eztcu2RXlx2RRz+XYa3BBtINA1Fl9Q7gO/EIAcC1Cn2IMEOtMr 21YOYfMMk75BCy04ILhP+9cT8ncVGr0QKqZn8PXSqUlIyfEIh3gYq6AIuazGd0A4 K4QONw0Ws3cRYTce2TMLG0ph3OHvC+UXhTz2nGETm2USP1PlR9OO9Ko9aZfr4Zck ni0pMsSZO8k0+YjF66zltPE0g/JRzLatEgrhSEDut1ls -----END CERTIFICATE-----Generated at Mon Jan 19 18:40:21 2026 by rpki-client