This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/UCEmdT26I0EOR3Nt1P8sgXrneEw.roa File: UCEmdT26I0EOR3Nt1P8sgXrneEw.roa (raw, json) Hash identifier: 2J9iX7MsnY4Cv8KwFj4V7pkU1D5h+Wv7mrqIWsSr/t0= Subject key identifier: 50:21:26:75:3D:BA:23:41:0E:47:73:6D:D4:FF:2C:81:7A:E7:78:4C Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Certificate serial: 019B775901AD4B55EC7663DC632FAB906262 Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/UCEmdT26I0EOR3Nt1P8sgXrneEw.roa Signing time: Thu 01 Jan 2026 02:18:00 +0000 ROA not before: Thu 01 Jan 2026 02:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21859 IP address blocks: 95.173.53.0/24 maxlen: 24 95.173.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:01:ad:4b:55:ec:76:63:dc:63:2f:ab:90:62:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Validity Not Before: Jan 1 02:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=502126753dba23410e47736dd4ff2c817ae7784c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:93:a4:c4:6c:5c:14:6c:77:2e:74:f6:93:fd: 41:86:f9:3c:08:67:f9:e9:39:40:dc:0b:c9:28:ce: 03:95:d5:01:c6:35:b0:73:e2:19:a8:cb:9b:b8:ae: 34:51:22:4e:ee:3f:b1:03:cb:6b:55:22:9b:bc:1b: 5d:8b:4e:60:af:4c:d0:40:cc:f2:a7:59:36:6c:2e: 50:a7:22:d9:c0:79:a7:34:8d:ae:1b:80:d2:75:8f: 1b:a0:1f:61:a6:38:3c:ca:22:e5:fc:ee:7d:7e:6a: f5:4c:18:a5:82:4a:83:b9:fa:53:3a:ee:8f:35:d2: 8f:f1:66:5f:62:e8:97:c9:3d:b7:e7:00:59:20:11: 09:d3:47:1a:19:89:5d:4d:a4:37:63:71:87:cf:f9: 5d:49:74:35:b5:32:11:9e:90:97:df:86:d9:8f:ec: c0:47:fa:9e:14:6d:36:ca:6e:06:89:cf:2e:08:10: 03:cf:86:7a:c6:7a:50:42:1e:6a:d8:00:eb:2e:2a: e9:da:f1:5f:3d:19:4f:3a:95:6e:02:13:72:d3:64: fe:d8:da:3e:58:66:3c:e7:61:3a:10:19:6e:21:a7: 71:ef:25:1e:52:d7:ea:96:2f:3b:5b:4c:a2:42:ad: d1:20:99:44:26:fd:f8:6b:16:31:7f:da:db:3d:6f: c0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:21:26:75:3D:BA:23:41:0E:47:73:6D:D4:FF:2C:81:7A:E7:78:4C X509v3 Authority Key Identifier: keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/UCEmdT26I0EOR3Nt1P8sgXrneEw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.173.53.0/24 95.173.61.0/24 Signature Algorithm: sha256WithRSAEncryption 09:3f:13:be:4e:3a:6c:0d:39:d5:03:93:7c:85:fe:22:5b:bd: 96:92:59:97:c4:59:33:36:a6:10:41:aa:42:93:77:a5:ae:3d: 9f:27:c6:be:03:5c:6d:81:26:78:98:b9:01:ad:f1:6b:b0:60: 59:5a:54:43:24:b7:87:69:41:e2:96:35:98:05:6d:b0:ae:4b: fc:15:e5:24:8f:de:55:6b:ac:2d:82:66:c7:12:69:ce:1f:f9: f7:07:a9:e1:38:33:61:9a:84:1a:3e:7a:dc:e8:53:ac:6c:02: bd:d5:a9:aa:c5:0e:b2:74:29:7c:15:9f:57:74:ba:46:7f:ca: 79:3d:82:80:d6:bc:dc:91:d8:2b:c6:a7:4e:e7:d8:17:a0:ff: d6:85:e7:3c:38:09:36:54:45:78:2a:a9:96:8a:b3:fa:b8:0b: aa:25:a8:67:3a:24:e5:6d:46:46:cf:fb:f6:62:40:77:50:8a: 45:ff:67:45:66:1e:d9:31:05:bd:2d:a5:9d:86:36:3a:b4:66: 12:1c:da:7a:3e:60:8a:d2:3f:41:1b:a6:df:1f:b1:58:7c:dd: bd:d5:33:b3:f7:88:d5:6d:95:07:c4:83:ff:9e:5d:89:14:ad: 8e:81:f3:a4:30:a5:14:1a:6d:5b:b6:55:25:0c:38:01:0d:6e: 37:e7:a8:e0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WQGtS1XsdmPcYy+rkGJiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjYxNzU4Y2UzMzA2MjI0NzBhMzlhZThkNmVmNGEyMDQ0 ZjgzYzQwHhcNMjYwMTAxMDIxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MDIxMjY3NTNkYmEyMzQxMGU0NzczNmRkNGZmMmM4MTdhZTc3ODRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpOkxGxcFGx3LnT2k/1Bhvk8CGf5 6TlA3AvJKM4DldUBxjWwc+IZqMubuK40USJO7j+xA8trVSKbvBtdi05gr0zQQMzy p1k2bC5QpyLZwHmnNI2uG4DSdY8boB9hpjg8yiLl/O59fmr1TBilgkqDufpTOu6P NdKP8WZfYuiXyT235wBZIBEJ00caGYldTaQ3Y3GHz/ldSXQ1tTIRnpCX34bZj+zA R/qeFG02ym4Gic8uCBADz4Z6xnpQQh5q2ADrLirp2vFfPRlPOpVuAhNy02T+2No+ WGY852E6EBluIadx7yUeUtfqli87W0yiQq3RIJlEJv34axYxf9rbPW/ApwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFAhJnU9uiNBDkdzbdT/LIF653hMMB8GA1UdIwQY MBaAFGBmF1jOMwYiRwo5ro1u9KIET4PEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2Ut MWY4NzQ2OTQ1NDgzLzEvVUNFbWRUMjZJMEVPUjNOdDFQOHNnWHJuZUV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2UtMWY4NzQ2OTQ1NDgz LzEvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX601AwQA X609MA0GCSqGSIb3DQEBCwUAA4IBAQAJPxO+TjpsDTnVA5N8hf4iW72WklmXxFkz NqYQQapCk3elrj2fJ8a+A1xtgSZ4mLkBrfFrsGBZWlRDJLeHaUHiljWYBW2wrkv8 FeUkj95Va6wtgmbHEmnOH/n3B6nhODNhmoQaPnrc6FOsbAK91amqxQ6ydCl8FZ9X dLpGf8p5PYKA1rzckdgrxqdO59gXoP/Whec8OAk2VEV4KqmWirP6uAuqJahnOiTl bUZGz/v2YkB3UIpF/2dFZh7ZMQW9LaWdhjY6tGYSHNp6PmCK0j9BG6bfH7FYfN29 1TOz94jVbZUHxIP/nl2JFK2OgfOkMKUUGm1btlUlDDgBDW4356jg -----END CERTIFICATE-----Generated at Thu Jan 8 17:25:05 2026 by rpki-client