This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/0z8pTI41iPuVrCQVQ1wuJedcLng.roa File: 0z8pTI41iPuVrCQVQ1wuJedcLng.roa (raw, json) Hash identifier: e+SXHoPepQrK1mT7vZuMdVv/Sb/mCHdwtmRTk5f2KY0= Subject key identifier: D3:3F:29:4C:8E:35:88:FB:95:AC:24:15:43:5C:2E:25:E7:5C:2E:78 Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019B77C6FD28D9E5E27A2398577EC3BACD37 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/0z8pTI41iPuVrCQVQ1wuJedcLng.roa Signing time: Thu 01 Jan 2026 04:18:08 +0000 ROA not before: Thu 01 Jan 2026 04:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 272825 IP address blocks: 95.164.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:fd:28:d9:e5:e2:7a:23:98:57:7e:c3:ba:cd:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Jan 1 04:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d33f294c8e3588fb95ac2415435c2e25e75c2e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0f:16:a1:93:fb:0a:cc:ca:72:43:e2:2a:2c: 9a:4d:78:a5:a7:f1:4b:03:e1:83:ab:9f:a9:d2:f1: 94:0c:79:33:c8:ee:52:98:04:ca:b7:20:8f:2e:3b: a7:48:08:89:b0:a6:35:ad:48:e9:af:81:5e:57:3d: 79:f9:15:5f:09:92:4f:4d:f6:b8:81:62:66:ac:94: 7b:92:9a:9c:f5:70:e5:16:6a:40:ff:97:f6:61:58: 5c:b7:16:c0:f3:07:bf:89:4b:2f:c5:2b:75:2f:a9: 71:ee:ae:4f:e3:d8:30:b7:c0:c3:b7:50:d5:16:66: fa:79:26:e6:d7:37:03:11:d0:68:6f:65:03:f7:78: ad:44:79:d5:46:6f:6c:e4:5f:2d:f7:69:b3:a6:7e: 12:c8:4e:6c:a3:1d:6a:32:f4:ca:a6:b3:5a:0a:a3: 62:2e:07:54:9e:ee:9f:cb:5d:e1:90:8a:52:83:47: 7a:25:c3:70:3f:f6:c6:90:bc:0c:c7:69:ba:f1:3d: f9:f4:eb:be:68:49:a0:2a:8b:69:8b:f3:f1:84:d0: 06:01:71:45:00:80:29:65:e2:e5:d0:b4:98:a9:94: cd:a4:71:cd:13:53:dc:56:ea:b2:17:2e:0d:2d:a2: 1b:26:e5:0b:ed:1c:ee:13:6b:16:88:43:ba:d5:77: 01:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3F:29:4C:8E:35:88:FB:95:AC:24:15:43:5C:2E:25:E7:5C:2E:78 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/0z8pTI41iPuVrCQVQ1wuJedcLng.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.164.164.0/22 Signature Algorithm: sha256WithRSAEncryption 17:d2:42:f0:de:c1:b7:f2:9b:28:94:69:d8:e0:34:52:ae:d7: 11:9a:0b:4a:d7:ce:1b:ec:23:98:4e:58:6c:44:d1:aa:f1:72: c3:9b:a6:36:3a:64:f3:c6:31:5e:f3:54:cb:c4:95:23:c0:c2: ad:d2:d9:32:bf:1b:fa:6c:ae:eb:31:c0:b7:5e:53:46:8f:fd: 90:0b:9f:32:27:27:1f:a9:21:7d:94:01:b8:5c:7d:e8:c7:6c: cf:2f:9f:7c:1c:6c:1d:e1:71:d9:6a:ea:10:35:6f:e1:d9:a3: 98:93:ac:ea:b1:03:96:49:bc:89:09:57:a2:e5:8d:75:da:4c: 6d:88:46:16:0b:65:d2:9b:72:c7:61:53:c1:52:48:25:2f:f5: c1:11:9b:08:1f:9d:74:49:c4:3b:59:e9:d9:55:61:3f:35:fc: f4:0d:69:ca:74:c9:ed:d4:19:18:bf:75:91:01:57:da:3c:b3: 4a:ae:15:da:b5:dc:21:8a:51:7e:d7:6e:8f:f5:0f:ba:e5:06: f2:43:b3:cc:1b:1b:a6:ba:2b:21:fa:5e:a2:44:9a:b4:1c:dd: f4:5f:84:d2:d9:aa:85:89:f5:1a:9b:82:53:29:61:b0:fb:14: 1e:97:a4:d8:28:62:f0:90:f2:ea:55:a0:75:9c:72:0c:ea:9d: 3e:6e:a6:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xv0o2eXieiOYV37Dus03MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwMTAxMDQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzNmMjk0YzhlMzU4OGZiOTVhYzI0MTU0MzVjMmUyNWU3NWMyZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQ8WoZP7CszKckPiKiyaTXilp/FL A+GDq5+p0vGUDHkzyO5SmATKtyCPLjunSAiJsKY1rUjpr4FeVz15+RVfCZJPTfa4 gWJmrJR7kpqc9XDlFmpA/5f2YVhctxbA8we/iUsvxSt1L6lx7q5P49gwt8DDt1DV Fmb6eSbm1zcDEdBob2UD93itRHnVRm9s5F8t92mzpn4SyE5sox1qMvTKprNaCqNi LgdUnu6fy13hkIpSg0d6JcNwP/bGkLwMx2m68T359Ou+aEmgKotpi/PxhNAGAXFF AIApZeLl0LSYqZTNpHHNE1PcVuqyFy4NLaIbJuUL7RzuE2sWiEO61XcB4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNM/KUyONYj7lawkFUNcLiXnXC54MB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvMHo4cFRJNDFpUHVWckNRVlExd3VKZWRjTG5nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCX6SkMA0G CSqGSIb3DQEBCwUAA4IBAQAX0kLw3sG38psolGnY4DRSrtcRmgtK184b7COYTlhs RNGq8XLDm6Y2OmTzxjFe81TLxJUjwMKt0tkyvxv6bK7rMcC3XlNGj/2QC58yJycf qSF9lAG4XH3ox2zPL598HGwd4XHZauoQNW/h2aOYk6zqsQOWSbyJCVei5Y112kxt iEYWC2XSm3LHYVPBUkglL/XBEZsIH510ScQ7WenZVWE/Nfz0DWnKdMnt1BkYv3WR AVfaPLNKrhXatdwhilF+126P9Q+65QbyQ7PMGxumuish+l6iRJq0HN30X4TS2aqF ifUam4JTKWGw+xQel6TYKGLwkPLqVaB1nHIM6p0+bqZC -----END CERTIFICATE-----Generated at Wed Jan 21 12:46:25 2026 by rpki-client