This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/MxY3wYjJf-HzpELgQOqWr-CuO5k.roa File: MxY3wYjJf-HzpELgQOqWr-CuO5k.roa (raw, json) Hash identifier: esg/AqYi4A1ugA5X6Pi57Y+6AvgsMKQZF7yVPFwOVOY= Subject key identifier: 33:16:37:C1:88:C9:7F:E1:F3:A4:42:E0:40:EA:96:AF:E0:AE:3B:99 Certificate issuer: /CN=96f71b2273ab34ed4a5481176ef70fad867ef166 Certificate serial: 019B7F842F9E83398B413A0971ECF784F9B7 Authority key identifier: 96:F7:1B:22:73:AB:34:ED:4A:54:81:17:6E:F7:0F:AD:86:7E:F1:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lvcbInOrNO1KVIEXbvcPrYZ-8WY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/MxY3wYjJf-HzpELgQOqWr-CuO5k.roa Signing time: Fri 02 Jan 2026 16:22:07 +0000 ROA not before: Fri 02 Jan 2026 16:22:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59885 IP address blocks: 95.214.240.0/24 maxlen: 24 185.152.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/lvcbInOrNO1KVIEXbvcPrYZ-8WY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/lvcbInOrNO1KVIEXbvcPrYZ-8WY.mft rsync://rpki.ripe.net/repository/DEFAULT/lvcbInOrNO1KVIEXbvcPrYZ-8WY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:2f:9e:83:39:8b:41:3a:09:71:ec:f7:84:f9:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96f71b2273ab34ed4a5481176ef70fad867ef166 Validity Not Before: Jan 2 16:22:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=331637c188c97fe1f3a442e040ea96afe0ae3b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7b:29:41:f5:dd:cf:46:bb:b8:54:e2:1d:ce: 07:22:08:b8:d9:82:44:b1:77:98:e3:88:71:52:ec: 02:f8:c3:b2:3c:1b:1c:46:57:14:7b:0b:e2:c5:f7: 59:c9:a6:7d:8e:ff:0c:15:82:94:8e:70:e6:71:50: a5:d7:5a:91:47:0e:7a:17:89:c6:9d:0b:4d:ea:6d: 4d:71:5b:87:57:cb:71:d8:2c:f0:97:6b:17:4a:d0: b3:19:fd:fa:ea:90:fc:a5:41:a8:d3:0f:79:70:5e: 05:6f:42:d4:67:8d:e6:90:3c:13:9b:d5:1c:65:3c: a2:6c:a8:ee:94:25:f9:39:44:4e:35:23:db:d3:f0: 54:93:e2:4b:50:96:78:4c:a1:fc:f9:27:12:a9:eb: b1:bd:52:47:c9:4b:97:54:d9:9b:5c:38:02:3f:9c: f3:21:2a:6b:09:15:2f:7f:3a:83:ec:8e:80:f8:61: 33:1e:db:dc:e3:94:5f:01:77:17:b2:97:fe:43:e4: 54:66:21:6f:5a:1d:a7:bc:c5:4f:3a:bd:5d:f9:26: 07:ea:cc:b4:1c:96:d2:c2:f6:62:bf:5b:7c:1f:a1: 49:29:3a:95:a3:f0:36:f8:28:8f:40:74:dd:92:89: c9:26:4a:48:08:e1:75:33:c4:83:79:d3:21:8f:e6: 7d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:16:37:C1:88:C9:7F:E1:F3:A4:42:E0:40:EA:96:AF:E0:AE:3B:99 X509v3 Authority Key Identifier: keyid:96:F7:1B:22:73:AB:34:ED:4A:54:81:17:6E:F7:0F:AD:86:7E:F1:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lvcbInOrNO1KVIEXbvcPrYZ-8WY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/MxY3wYjJf-HzpELgQOqWr-CuO5k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/07ae9e-3d04-45b6-9db0-46935fcc855e/1/lvcbInOrNO1KVIEXbvcPrYZ-8WY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.214.240.0/24 185.152.111.0/24 Signature Algorithm: sha256WithRSAEncryption 34:3a:72:4c:de:a2:7e:77:55:92:fa:3a:0f:92:fb:76:9f:e8: 13:8e:12:0c:4d:36:ea:8e:e8:4d:b4:27:8d:37:3d:6a:d9:4b: cd:ef:a4:f6:2a:77:a7:1b:8d:a4:00:bc:2a:cf:aa:9c:d0:00: bc:f2:c2:c0:1b:1b:99:10:56:8d:94:4c:95:0e:04:07:3d:9b: 8b:d8:de:39:24:2c:bc:fb:aa:25:35:ce:ce:dd:5b:9c:5d:11: 58:f3:a2:08:cb:3f:db:a1:15:d7:23:d1:06:e2:0b:9c:b0:e2: 1a:7b:5b:a2:13:25:34:39:8a:72:03:84:50:c9:19:ad:49:af: 80:44:16:4d:28:76:3a:4f:3b:c4:9e:2f:85:5d:d6:24:08:3b: 8e:75:d3:f9:d4:7f:c8:d0:a7:45:80:56:d8:02:55:e3:bb:19: d4:84:f7:e5:53:7c:30:d2:86:f1:2f:b3:26:eb:a0:af:b7:fe: 3e:5b:f5:0a:9e:f7:0e:10:6b:be:05:44:f4:87:2c:61:a5:30: 30:03:e4:94:e2:ab:ac:b4:86:ec:82:c3:9b:8c:c8:d1:7b:d1: f8:59:b3:28:5e:e3:cb:73:47:9c:96:df:b2:7c:55:41:05:11: 4b:c6:84:6a:4d:ca:8c:4a:11:1a:aa:04:76:53:58:48:ad:9e: d5:6e:ee:d2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hC+egzmLQToJcez3hPm3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2ZjcxYjIyNzNhYjM0ZWQ0YTU0ODExNzZlZjcwZmFkODY3 ZWYxNjYwHhcNMjYwMTAyMTYyMjA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMzE2MzdjMTg4Yzk3ZmUxZjNhNDQyZTA0MGVhOTZhZmUwYWUzYjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHspQfXdz0a7uFTiHc4HIgi42YJE sXeY44hxUuwC+MOyPBscRlcUewvixfdZyaZ9jv8MFYKUjnDmcVCl11qRRw56F4nG nQtN6m1NcVuHV8tx2Czwl2sXStCzGf366pD8pUGo0w95cF4Fb0LUZ43mkDwTm9Uc ZTyibKjulCX5OURONSPb0/BUk+JLUJZ4TKH8+ScSqeuxvVJHyUuXVNmbXDgCP5zz ISprCRUvfzqD7I6A+GEzHtvc45RfAXcXspf+Q+RUZiFvWh2nvMVPOr1d+SYH6sy0 HJbSwvZiv1t8H6FJKTqVo/A2+CiPQHTdkonJJkpICOF1M8SDedMhj+Z92QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDMWN8GIyX/h86RC4EDqlq/grjuZMB8GA1UdIwQY MBaAFJb3GyJzqzTtSlSBF273D62GfvFmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbHZjYkluT3JOTzFLVklFWGJ2Y1ByWVotOFdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wN2FlOWUtM2QwNC00NWI2LTlkYjAt NDY5MzVmY2M4NTVlLzEvTXhZM3dZakpmLUh6cEVMZ1FPcVdyLUN1TzVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8wN2FlOWUtM2QwNC00NWI2LTlkYjAtNDY5MzVmY2M4NTVl LzEvbHZjYkluT3JOTzFLVklFWGJ2Y1ByWVotOFdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX9bwAwQA uZhvMA0GCSqGSIb3DQEBCwUAA4IBAQA0OnJM3qJ+d1WS+joPkvt2n+gTjhIMTTbq juhNtCeNNz1q2UvN76T2KnenG42kALwqz6qc0AC88sLAGxuZEFaNlEyVDgQHPZuL 2N45JCy8+6olNc7O3VucXRFY86IIyz/boRXXI9EG4gucsOIae1uiEyU0OYpyA4RQ yRmtSa+ARBZNKHY6TzvEni+FXdYkCDuOddP51H/I0KdFgFbYAlXjuxnUhPflU3ww 0obxL7Mm66Cvt/4+W/UKnvcOEGu+BUT0hyxhpTAwA+SU4qustIbsgsObjMjRe9H4 WbMoXuPLc0eclt+yfFVBBRFLxoRqTcqMShEaqgR2U1hIrZ7Vbu7S -----END CERTIFICATE-----Generated at Mon Feb 9 23:54:47 2026 by rpki-client