This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa File: foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa (raw, json) Hash identifier: 1DlyQW+RNTimUxXGNa+g3AQuv/uMpZoTB33IBxZu3oc= Subject key identifier: 7E:83:C9:E4:CF:59:39:59:06:01:65:67:56:A0:C2:E0:2B:38:F8:D5 Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb Certificate serial: 019B7F1530A69A68A8CC2730C1FF8491D0AD Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa Signing time: Fri 02 Jan 2026 14:20:53 +0000 ROA not before: Fri 02 Jan 2026 14:20:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202779 IP address blocks: 95.215.220.0/23 maxlen: 24 2001:67c:1038::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:30:a6:9a:68:a8:cc:27:30:c1:ff:84:91:d0:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb Validity Not Before: Jan 2 14:20:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e83c9e4cf5939590601656756a0c2e02b38f8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:ba:54:8c:ac:97:1b:5b:e5:8b:38:31:09: 74:79:36:52:b0:c4:13:68:6e:d5:96:59:f6:a5:8f: a9:46:b5:97:df:d0:c6:04:bb:22:e4:03:71:20:e2: 7e:17:8d:97:ab:0f:68:23:bd:71:d5:42:d6:8f:81: 24:a8:b8:9e:2a:9f:e3:1e:ca:f7:c4:29:25:c0:d6: 5f:28:07:28:14:cf:a8:15:69:92:ff:66:16:c3:b5: 11:e0:96:19:00:73:d0:57:86:5b:b1:17:00:55:c4: f3:c0:74:59:f0:09:12:2f:7f:aa:f9:39:ed:35:cc: b6:3b:95:fa:f6:b3:f7:39:89:e5:98:76:3a:c1:a4: 70:5f:0e:bb:f6:d2:fc:f0:a2:3c:04:00:7f:6e:be: 82:d8:80:14:38:0b:36:ca:01:da:7a:16:65:9c:a1: 0c:6e:4d:1f:44:0c:17:53:6d:bc:d6:8e:35:03:e9: 97:ae:68:27:e1:25:b5:94:ce:fe:42:b2:98:f4:c1: 49:1c:83:cf:3d:fc:04:2a:0f:48:f0:16:5e:5f:64: da:e2:6e:f0:59:b8:ee:bd:9d:2e:d8:d2:c1:d9:00: 7e:69:d4:4d:04:90:6e:09:54:e8:6c:a0:98:4c:18: e1:fc:02:74:09:c8:b8:a3:25:bb:fe:0c:3e:a9:bc: b6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:83:C9:E4:CF:59:39:59:06:01:65:67:56:A0:C2:E0:2B:38:F8:D5 X509v3 Authority Key Identifier: keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/foPJ5M9ZOVkGAWVnVqDC4Cs4-NU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.215.220.0/23 IPv6: 2001:67c:1038::/48 Signature Algorithm: sha256WithRSAEncryption a9:18:1d:62:90:cc:d2:72:da:0b:42:97:67:7e:8b:5b:83:80: 4d:e8:a9:89:e7:25:6c:f9:49:77:7c:4e:b1:cd:a3:e8:7f:44: db:02:9e:5b:d0:dc:0c:68:2f:d8:fe:8b:65:ce:f7:92:4d:0e: 76:d6:de:99:fb:24:32:00:0e:31:bd:11:1a:d3:7d:11:c3:21: e8:e4:2d:9b:16:3e:ac:aa:4a:22:19:09:b1:59:28:a2:4f:d5: ed:db:2c:c1:41:80:70:24:80:a1:52:49:32:e4:c9:45:87:da: 2b:a8:0b:2b:d4:d8:1d:32:5b:b8:68:51:81:df:c8:e2:f1:90: f3:d4:6a:ae:c3:d7:cd:b6:92:79:7c:8a:34:67:4a:ad:6d:70: 63:1e:dc:a4:5e:24:cd:b8:e7:0b:8a:9f:f4:50:11:63:0a:48: 9a:09:8c:e2:61:72:ee:79:dd:6c:06:4d:47:4d:05:5b:2d:d9: 65:f7:35:26:f7:a8:0e:5e:fe:fb:79:27:bc:5f:a2:09:06:1c: 05:ac:83:41:3f:8e:ad:53:5f:e6:3e:e0:4b:ee:ba:53:03:73: 95:5f:de:14:8b:7e:4c:1d:d3:64:b3:6a:65:12:c5:f1:8a:5a: 96:05:af:80:48:be:1f:bd:ba:3a:3a:92:f7:96:11:48:5b:2c: d2:30:0a:dd -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/FTCmmmiozCcwwf+EkdCtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyNDg1ODc1Yzg0NzBlNmFhY2RjOTQ3NDIxMDVmMzBjNTk3 YWMyYmIwHhcNMjYwMTAyMTQyMDUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTgzYzllNGNmNTkzOTU5MDYwMTY1Njc1NmEwYzJlMDJiMzhmOGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNW6VIyslxtb5Ys4MQl0eTZSsMQT aG7Vlln2pY+pRrWX39DGBLsi5ANxIOJ+F42Xqw9oI71x1ULWj4EkqLieKp/jHsr3 xCklwNZfKAcoFM+oFWmS/2YWw7UR4JYZAHPQV4ZbsRcAVcTzwHRZ8AkSL3+q+Tnt Ncy2O5X69rP3OYnlmHY6waRwXw679tL88KI8BAB/br6C2IAUOAs2ygHaehZlnKEM bk0fRAwXU2281o41A+mXrmgn4SW1lM7+QrKY9MFJHIPPPfwEKg9I8BZeX2Ta4m7w WbjuvZ0u2NLB2QB+adRNBJBuCVTobKCYTBjh/AJ0Cci4oyW7/gw+qby29QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFH6DyeTPWTlZBgFlZ1agwuArOPjVMB8GA1UdIwQY MBaAFPJIWHXIRw5qrNyUdCEF8wxZesK7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS81YTNmMGItODZmNS00MDZlLTkxZDUt OGZkNGMwMjQ0ODhlLzEvZm9QSjVNOVpPVmtHQVdWblZxREM0Q3M0LU5VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS81YTNmMGItODZmNS00MDZlLTkxZDUtOGZkNGMwMjQ0ODhl LzEvOGtoWWRjaEhEbXFzM0pSMElRWHpERmw2d3JzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBX9fcMA8E AgACMAkDBwAgAQZ8EDgwDQYJKoZIhvcNAQELBQADggEBAKkYHWKQzNJy2gtCl2d+ i1uDgE3oqYnnJWz5SXd8TrHNo+h/RNsCnlvQ3AxoL9j+i2XO95JNDnbW3pn7JDIA DjG9ERrTfRHDIejkLZsWPqyqSiIZCbFZKKJP1e3bLMFBgHAkgKFSSTLkyUWH2iuo CyvU2B0yW7hoUYHfyOLxkPPUaq7D1822knl8ijRnSq1tcGMe3KReJM245wuKn/RQ EWMKSJoJjOJhcu553WwGTUdNBVst2WX3NSb3qA5e/vt5J7xfogkGHAWsg0E/jq1T X+Y+4EvuulMDc5Vf3hSLfkwd02SzamUSxfGKWpYFr4BIvh+9ujo6kveWEUhbLNIw Ct0= -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:38 2026 by rpki-client