This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/dbWHVHOe3JKBe6MnXLFIXMg8uyI.roa File: dbWHVHOe3JKBe6MnXLFIXMg8uyI.roa (raw, json) Hash identifier: h4oR2+HCJCnelH7Xovgn1mvRm+SmLlqLgdipYNb4J1M= Subject key identifier: 75:B5:87:54:73:9E:DC:92:81:7B:A3:27:5C:B1:48:5C:C8:3C:BB:22 Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA547A902243918CD618BC3A7144C4B Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/dbWHVHOe3JKBe6MnXLFIXMg8uyI.roa Signing time: Thu 01 Jan 2026 22:19:47 +0000 ROA not before: Thu 01 Jan 2026 22:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202439 IP address blocks: 95.43.236.0/24 maxlen: 24 95.43.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:47:a9:02:24:39:18:cd:61:8b:c3:a7:14:4c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75b58754739edc92817ba3275cb1485cc83cbb22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:cd:82:3a:f6:92:61:d9:ae:b9:60:f3:5e: c6:06:8c:5a:18:3f:12:f0:87:47:92:38:5f:51:c7: 4a:13:d2:d0:ba:36:47:06:8c:61:0a:0c:c1:81:84: 60:95:51:f9:e1:bd:13:a9:be:1d:20:90:ef:1a:53: c6:1f:0a:c4:52:74:93:7e:39:41:f0:9e:fe:7d:0c: 7f:30:7d:56:d6:42:48:b5:3e:de:bf:12:bb:a3:a6: d3:a0:a7:c6:8d:97:4e:02:3c:a6:cf:eb:ea:3f:bf: b1:db:6c:78:3d:f6:08:6c:2a:d7:4a:14:ef:4c:e3: 65:a2:78:ff:a8:fa:71:b4:0f:5b:7b:61:4a:84:d7: 75:0d:c6:46:b1:08:90:d1:65:74:6d:11:1c:b8:79: f8:7c:2b:10:a7:1f:0e:f7:e3:7c:69:b3:d9:d0:81: 1d:39:15:3f:2e:a4:54:23:d9:4e:0a:8d:ba:fa:b1: aa:61:c1:e0:d2:fa:5f:53:e9:d9:73:38:fb:a4:ca: 1c:d9:40:39:9c:9e:ff:ed:3b:41:8c:1c:da:74:d4: e9:01:e1:e4:28:7c:12:cf:78:8d:e0:96:49:7f:26: 09:87:3c:04:6f:2c:26:70:da:c9:e0:91:1f:07:32: 53:33:35:23:0f:5c:0b:05:b4:8b:4a:d9:29:54:36: 90:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B5:87:54:73:9E:DC:92:81:7B:A3:27:5C:B1:48:5C:C8:3C:BB:22 X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/dbWHVHOe3JKBe6MnXLFIXMg8uyI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.43.236.0/24 95.43.239.0/24 Signature Algorithm: sha256WithRSAEncryption 39:64:93:b7:5c:72:f0:dc:41:de:07:9b:f3:37:d1:23:f7:96: 86:6b:6b:97:16:03:4c:aa:ef:f4:44:f2:96:31:ff:80:5c:60: 24:c3:1d:4c:48:dc:7c:5f:36:54:18:e2:a8:32:00:fd:10:30: 6a:86:cb:26:23:15:7c:6f:6e:8a:6e:c7:00:e9:7b:76:4d:03: ec:1f:b2:bc:45:0a:94:43:d6:47:aa:cd:e2:7e:41:5b:be:44: be:f6:7d:20:ab:04:db:0d:3a:cc:55:28:9b:6b:8d:37:e0:e9: 4f:a9:71:ae:f8:aa:d2:ed:74:38:19:65:0e:26:cc:95:d2:15: 02:91:21:05:2b:ee:41:ec:9c:9d:f1:cd:30:27:61:31:05:04: b7:8e:11:9a:5f:12:33:31:b9:01:0b:22:42:2b:a3:a0:9a:0f: 5e:93:bd:68:66:e2:28:d9:96:5d:19:82:0b:26:0f:72:59:3f: 8b:2e:e8:53:b2:0e:20:93:23:6d:cb:6a:25:86:1c:6f:0a:47: e5:6e:cb:0b:66:d1:b9:55:6a:f8:0a:7d:fd:a0:f9:10:b2:4a: f7:6a:05:c0:33:7f:e1:7b:a3:af:de:1e:f4:5a:27:10:51:d5: 27:45:55:77:fa:83:38:3b:0d:db:b4:20:23:c6:df:91:69:fb: 2e:ad:c3:a0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pUepAiQ5GM1hi8OnFExLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWI1ODc1NDczOWVkYzkyODE3YmEzMjc1Y2IxNDg1Y2M4M2NiYjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXXNgjr2kmHZrrlg817GBoxaGD8S 8IdHkjhfUcdKE9LQujZHBoxhCgzBgYRglVH54b0Tqb4dIJDvGlPGHwrEUnSTfjlB 8J7+fQx/MH1W1kJItT7evxK7o6bToKfGjZdOAjymz+vqP7+x22x4PfYIbCrXShTv TONlonj/qPpxtA9be2FKhNd1DcZGsQiQ0WV0bREcuHn4fCsQpx8O9+N8abPZ0IEd ORU/LqRUI9lOCo26+rGqYcHg0vpfU+nZczj7pMoc2UA5nJ7/7TtBjBzadNTpAeHk KHwSz3iN4JZJfyYJhzwEbywmcNrJ4JEfBzJTMzUjD1wLBbSLStkpVDaQbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHW1h1RzntySgXujJ1yxSFzIPLsiMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvZGJXSFZIT2UzSktCZTZNblhMRklYTWc4dXlJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXyvsAwQA XyvvMA0GCSqGSIb3DQEBCwUAA4IBAQA5ZJO3XHLw3EHeB5vzN9Ej95aGa2uXFgNM qu/0RPKWMf+AXGAkwx1MSNx8XzZUGOKoMgD9EDBqhssmIxV8b26KbscA6Xt2TQPs H7K8RQqUQ9ZHqs3ifkFbvkS+9n0gqwTbDTrMVSiba4034OlPqXGu+KrS7XQ4GWUO JsyV0hUCkSEFK+5B7Jyd8c0wJ2ExBQS3jhGaXxIzMbkBCyJCK6Ogmg9ek71oZuIo 2ZZdGYILJg9yWT+LLuhTsg4gkyNty2olhhxvCkflbssLZtG5VWr4Cn39oPkQskr3 agXAM3/he6Ov3h70WicQUdUnRVV3+oM4Ow3btCAjxt+RafsurcOg -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:18 2026 by rpki-client