This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aqPgWOakmp5fii05oBo6v_tlmAQ.roa File: aqPgWOakmp5fii05oBo6v_tlmAQ.roa (raw, json) Hash identifier: 4j9frFtx7FlfahOenBDreDRrYBvvkfNPAcv1Ywz2/HM= Subject key identifier: 6A:A3:E0:58:E6:A4:9A:9E:5F:8A:2D:39:A0:1A:3A:BF:FB:65:98:04 Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019B77C6EED404716C34DDF8E909F55EFA5B Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aqPgWOakmp5fii05oBo6v_tlmAQ.roa Signing time: Thu 01 Jan 2026 04:18:04 +0000 ROA not before: Thu 01 Jan 2026 04:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2914 IP address blocks: 95.164.77.0/24 maxlen: 24 95.164.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 13:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ee:d4:04:71:6c:34:dd:f8:e9:09:f5:5e:fa:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Jan 1 04:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6aa3e058e6a49a9e5f8a2d39a01a3abffb659804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b2:16:45:38:05:6f:9c:08:43:e6:ad:8a:1a: 8e:df:3e:fd:04:f6:62:33:c0:a8:d2:63:bd:65:78: 7f:81:69:1c:5b:10:29:7b:be:8d:23:e5:5a:23:1f: cc:e6:ba:35:a0:6d:ba:48:19:a2:3b:22:10:e8:67: 62:dd:b3:1c:8c:bc:6c:57:2d:22:d6:74:7e:6a:5c: 07:7d:5a:97:9c:8f:cf:f0:a4:86:b1:aa:29:4a:0f: 3a:21:e8:92:46:90:24:95:a2:21:87:59:a0:85:b5: c3:71:3e:d4:84:69:48:b1:77:bf:f8:5c:23:ff:6b: 33:ac:9e:99:f3:84:e2:33:35:44:1e:bf:24:b2:ee: 29:49:cb:e4:dd:f0:72:93:00:bb:ea:69:24:03:71: 36:66:96:85:df:63:c6:bb:dc:77:f0:aa:58:75:3b: 7e:5b:e3:44:0d:cf:c8:58:e2:62:e8:47:22:4c:e2: f9:ad:a7:1b:8c:d3:ae:90:e8:a5:91:52:12:b8:47: b0:2e:53:01:90:8c:e1:4b:65:f2:70:e1:ca:6e:4a: f4:01:5a:a6:75:91:64:49:24:70:bd:7e:62:a2:a7: cd:2d:ce:46:f2:84:a7:20:18:3a:90:40:1d:6d:ea: d3:2e:a9:db:ef:d1:30:c0:0b:c8:41:3b:e4:8d:1c: d7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A3:E0:58:E6:A4:9A:9E:5F:8A:2D:39:A0:1A:3A:BF:FB:65:98:04 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aqPgWOakmp5fii05oBo6v_tlmAQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.164.77.0/24 95.164.160.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:0c:4e:c8:b6:21:8d:08:03:34:c5:d8:2d:bd:ee:c7:84:12: 94:14:1e:ca:dc:4f:d9:03:05:5c:94:15:05:f4:0e:1c:7b:f3: b6:10:4e:a9:fb:28:fc:0e:07:5c:db:c2:d3:f5:05:0f:04:ba: 10:7f:4c:83:a3:fc:fb:f2:cf:c3:25:8e:66:94:e7:e3:a3:e2: c3:7e:ad:05:d7:a9:70:8c:27:bc:8b:86:68:2e:e7:0d:aa:7e: fd:a8:55:aa:5f:1b:dd:79:64:10:a6:7c:e3:11:c2:aa:46:1a: 26:41:47:2c:f0:e1:ae:2e:fd:9d:0f:93:a3:01:b7:f4:19:7b: 1c:df:0a:53:09:66:23:ab:62:c2:0d:96:0f:f1:24:7e:dc:3a: dc:13:ee:28:91:cc:21:8d:f7:eb:ea:9b:e7:ab:ca:c9:67:a1: 3f:bf:05:9c:ad:2b:f6:f8:fa:ff:ca:c9:f6:55:fb:60:ad:1e: f1:97:0c:33:a4:f3:d6:85:b5:f4:66:af:5a:a2:bf:79:52:23: 51:f6:df:72:43:cb:6b:3f:de:06:3a:da:54:b4:c9:77:d0:45: 20:3e:3e:2e:6f:f8:7d:e8:84:3a:dd:05:36:41:2a:7b:84:52: 00:a1:44:98:f2:b4:89:2f:d4:0f:86:ec:b2:2b:67:d0:bc:cf: 2c:7b:e2:85 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xu7UBHFsNN346Qn1XvpbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwMTAxMDQxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YWEzZTA1OGU2YTQ5YTllNWY4YTJkMzlhMDFhM2FiZmZiNjU5ODA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobIWRTgFb5wIQ+atihqO3z79BPZi M8Co0mO9ZXh/gWkcWxApe76NI+VaIx/M5ro1oG26SBmiOyIQ6Gdi3bMcjLxsVy0i 1nR+alwHfVqXnI/P8KSGsaopSg86IeiSRpAklaIhh1mghbXDcT7UhGlIsXe/+Fwj /2szrJ6Z84TiMzVEHr8ksu4pScvk3fBykwC76mkkA3E2ZpaF32PGu9x38KpYdTt+ W+NEDc/IWOJi6EciTOL5racbjNOukOilkVISuEewLlMBkIzhS2XycOHKbkr0AVqm dZFkSSRwvX5ioqfNLc5G8oSnIBg6kEAdberTLqnb79EwwAvIQTvkjRzXTwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGqj4FjmpJqeX4otOaAaOr/7ZZgEMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYXFQZ1dPYWttcDVmaWkwNW9CbzZ2X3RsbUFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX6RNAwQC X6SgMA0GCSqGSIb3DQEBCwUAA4IBAQCcDE7ItiGNCAM0xdgtve7HhBKUFB7K3E/Z AwVclBUF9A4ce/O2EE6p+yj8Dgdc28LT9QUPBLoQf0yDo/z78s/DJY5mlOfjo+LD fq0F16lwjCe8i4ZoLucNqn79qFWqXxvdeWQQpnzjEcKqRhomQUcs8OGuLv2dD5Oj Abf0GXsc3wpTCWYjq2LCDZYP8SR+3DrcE+4okcwhjffr6pvnq8rJZ6E/vwWcrSv2 +Pr/ysn2VftgrR7xlwwzpPPWhbX0Zq9aor95UiNR9t9yQ8trP94GOtpUtMl30EUg Pj4ub/h96IQ63QU2QSp7hFIAoUSY8rSJL9QPhuyyK2fQvM8se+KF -----END CERTIFICATE-----Generated at Thu Jan 8 00:11:49 2026 by rpki-client