This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/nFU8l0SuNs4mLVgObqGXtp6gnoI.roa File: nFU8l0SuNs4mLVgObqGXtp6gnoI.roa (raw, json) Hash identifier: dp4PPf/CcvyLdCI3a30WQB7bcOJJ7sLxhjedTuWlcA0= Subject key identifier: 9C:55:3C:97:44:AE:36:CE:26:2D:58:0E:6E:A1:97:B6:9E:A0:9E:82 Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019B77C6F06775151330732682DF0B0326D8 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/nFU8l0SuNs4mLVgObqGXtp6gnoI.roa Signing time: Thu 01 Jan 2026 04:18:04 +0000 ROA not before: Thu 01 Jan 2026 04:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 95.164.77.0/24 maxlen: 24 95.164.160.0/22 maxlen: 24 95.164.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f0:67:75:15:13:30:73:26:82:df:0b:03:26:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Jan 1 04:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c553c9744ae36ce262d580e6ea197b69ea09e82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:61:09:1a:24:10:83:be:d0:09:93:59:a4:3c: 09:41:72:8f:19:ea:2f:71:e0:3a:4c:23:85:75:b6: 61:d4:ec:93:29:7a:73:46:b7:ce:58:6a:d7:71:ba: 89:46:ce:5d:38:b9:0a:f7:82:a4:55:37:14:50:44: 70:99:d9:d1:a7:23:67:8b:d8:71:3e:3c:ad:c5:9a: 07:91:dc:33:e3:71:e7:58:93:fb:1c:10:12:41:cb: eb:b2:66:e0:8b:de:a5:94:20:41:86:f8:1f:30:33: bb:50:af:2c:ba:9f:a0:a8:70:15:59:b7:4f:97:a2: ff:7a:c6:64:e9:88:ae:73:c2:fb:9f:88:63:ab:9d: fb:e8:3e:34:3d:fe:ad:3f:62:db:36:6d:47:f8:7a: cd:01:77:12:ca:0f:db:33:86:22:77:c9:61:e2:11: b4:27:00:77:f2:ce:d3:96:2f:7a:cf:e5:bc:5c:7e: df:d3:9b:4a:56:00:7e:ea:ee:9f:43:82:44:e0:f5: c1:65:cd:48:04:b3:02:78:8d:18:75:60:13:ba:08: be:56:17:05:46:b8:04:93:22:13:32:f9:c7:8f:0d: 8d:02:11:35:b5:0b:d2:2c:d9:ee:31:8f:c0:84:0c: d0:12:42:ad:bc:39:d8:2a:6c:e1:a1:18:8c:ca:c2: 70:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:55:3C:97:44:AE:36:CE:26:2D:58:0E:6E:A1:97:B6:9E:A0:9E:82 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/nFU8l0SuNs4mLVgObqGXtp6gnoI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.164.77.0/24 95.164.160.0/22 95.164.224.0/22 Signature Algorithm: sha256WithRSAEncryption c6:de:6c:87:b1:ed:39:43:bb:4b:96:ca:82:27:b1:3f:5f:ea: aa:8a:5e:94:8a:0b:58:53:96:e2:d4:2e:c8:49:b8:65:da:46: c6:3c:9f:85:54:8e:5d:25:07:8e:15:dc:cb:b5:78:44:83:89: 95:09:8f:82:cb:e7:26:18:be:70:9f:8d:c1:6a:7d:58:6f:35: 61:c6:fc:54:df:47:99:2c:f0:4f:20:b6:fc:fe:74:85:7b:34: 45:26:68:ef:5b:77:cf:50:5c:1c:9d:a0:4d:58:8f:55:77:eb: cb:ae:a2:2b:11:11:80:48:bc:1d:e7:db:25:94:3b:e4:b1:7e: 73:a3:3b:77:ac:d5:be:fc:01:a6:a3:9c:cc:af:20:5b:a5:0b: 85:8c:fc:95:5d:19:79:ab:5b:3b:20:10:80:0b:2e:cf:f1:32: 12:4d:16:66:28:60:44:7a:f4:35:39:07:da:79:50:6a:a2:49: 5a:d2:ca:15:dd:3a:88:14:fd:37:b1:70:f4:84:80:35:de:cb: 1c:aa:c5:45:b5:ab:0b:eb:7f:1d:77:54:01:1f:75:65:37:c2: c2:17:5e:7c:7c:c0:63:3e:a3:dc:c2:1d:29:9b:92:f6:e8:e8: 1d:f9:4b:3f:ce:fe:a0:1a:f3:6d:5b:ce:5e:41:e1:63:8d:0a: e0:be:04:c6 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3xvBndRUTMHMmgt8LAybYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwMTAxMDQxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzU1M2M5NzQ0YWUzNmNlMjYyZDU4MGU2ZWExOTdiNjllYTA5ZTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA52EJGiQQg77QCZNZpDwJQXKPGeov ceA6TCOFdbZh1OyTKXpzRrfOWGrXcbqJRs5dOLkK94KkVTcUUERwmdnRpyNni9hx PjytxZoHkdwz43HnWJP7HBASQcvrsmbgi96llCBBhvgfMDO7UK8sup+gqHAVWbdP l6L/esZk6Yiuc8L7n4hjq5376D40Pf6tP2LbNm1H+HrNAXcSyg/bM4Yid8lh4hG0 JwB38s7Tli96z+W8XH7f05tKVgB+6u6fQ4JE4PXBZc1IBLMCeI0YdWATugi+VhcF RrgEkyITMvnHjw2NAhE1tQvSLNnuMY/AhAzQEkKtvDnYKmzhoRiMysJw+QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFJxVPJdErjbOJi1YDm6hl7aeoJ6CMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvbkZVOGwwU3VOczRtTFZnT2JxR1h0cDZnbm9JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAX6RNAwQC X6SgAwQCX6TgMA0GCSqGSIb3DQEBCwUAA4IBAQDG3myHse05Q7tLlsqCJ7E/X+qq il6UigtYU5bi1C7ISbhl2kbGPJ+FVI5dJQeOFdzLtXhEg4mVCY+Cy+cmGL5wn43B an1YbzVhxvxU30eZLPBPILb8/nSFezRFJmjvW3fPUFwcnaBNWI9Vd+vLrqIrERGA SLwd59sllDvksX5zozt3rNW+/AGmo5zMryBbpQuFjPyVXRl5q1s7IBCACy7P8TIS TRZmKGBEevQ1OQfaeVBqokla0soV3TqIFP03sXD0hIA13sscqsVFtasL638dd1QB H3VlN8LCF158fMBjPqPcwh0pm5L26Ogd+Us/zv6gGvNtW85eQeFjjQrgvgTG -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:23 2026 by rpki-client