This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/v795sY2U8jhvRzL8MVmYlvFz9_s.roa File: v795sY2U8jhvRzL8MVmYlvFz9_s.roa (raw, json) Hash identifier: Hn47sYXDYoB/4A+t0th2lMVq06CbmCPSmHDsJlsUcW8= Subject key identifier: BF:BF:79:B1:8D:94:F2:38:6F:47:32:FC:31:59:98:96:F1:73:F7:FB Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8 Certificate serial: 019B77C728BB8D7875972A405C8F3AFD9685 Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/v795sY2U8jhvRzL8MVmYlvFz9_s.roa Signing time: Thu 01 Jan 2026 04:18:19 +0000 ROA not before: Thu 01 Jan 2026 04:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29056 IP address blocks: 195.88.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:28:bb:8d:78:75:97:2a:40:5c:8f:3a:fd:96:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8 Validity Not Before: Jan 1 04:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bfbf79b18d94f2386f4732fc31599896f173f7fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f2:c0:ec:c7:bb:6b:0e:cc:12:f3:04:8b:06: 01:8c:8d:a0:28:0d:71:0c:7d:98:45:de:67:71:49: 5b:54:97:f1:d1:79:04:63:3d:bb:e7:e4:aa:6a:20: e0:ad:24:cc:7b:f4:d1:d5:0a:c1:03:03:fb:43:e6: b9:2f:d4:79:c5:c1:e4:d1:47:e4:e8:5f:9d:6b:ec: e8:f8:66:0a:60:4d:68:2c:b7:1b:4e:f7:2f:a1:db: 9a:96:77:20:36:20:41:8e:65:78:7b:a4:39:cc:fd: c2:c2:17:4a:6c:bc:13:1e:75:7e:db:15:7d:66:30: 41:4d:29:19:81:27:b9:a4:ed:11:2f:80:be:08:66: f9:56:54:4a:41:a5:c7:71:c7:e0:a1:39:db:6b:67: 80:f5:37:16:05:af:d6:05:30:2b:1b:f8:59:18:fd: 34:ed:2e:f7:71:40:21:eb:d8:b1:7b:21:5e:ed:55: a8:9f:28:dd:40:b5:6a:57:87:24:a7:d6:6f:ff:41: 6b:4a:e4:8a:4e:dd:f1:7c:58:64:9e:a6:e3:3d:a3: 5c:eb:8a:12:50:49:01:65:e6:ae:33:9d:8c:e7:f2: b9:f5:df:b1:db:4f:35:b8:fe:35:a4:f4:f7:b3:c8: 23:71:3c:14:30:91:fa:63:08:41:6c:88:cb:2c:6f: 80:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BF:79:B1:8D:94:F2:38:6F:47:32:FC:31:59:98:96:F1:73:F7:FB X509v3 Authority Key Identifier: keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/v795sY2U8jhvRzL8MVmYlvFz9_s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.88.238.0/23 Signature Algorithm: sha256WithRSAEncryption 81:c2:45:bf:5b:85:f2:cc:72:bd:b6:e1:d6:40:64:55:56:b2: 09:ad:01:73:8c:ef:2b:72:16:40:89:aa:92:03:7e:94:f0:2a: 92:ba:2b:7c:59:0e:fe:10:a9:55:e6:f7:04:44:ec:01:97:6d: 2b:6c:da:5e:d5:76:81:23:22:78:e9:a2:99:98:98:ca:e6:2c: 27:02:7b:57:0a:e8:d8:f0:f6:de:51:5f:dc:12:4f:fd:f0:ac: d1:1a:19:33:d3:21:66:a2:ff:7c:31:7a:ca:01:80:9c:25:02: d5:7b:3a:27:1e:0e:e8:65:33:63:be:24:00:11:a4:21:65:5c: 0f:24:d8:94:59:13:85:dd:c5:39:41:d4:fc:5d:9d:87:ed:60: b5:f1:8a:13:2a:e1:89:f4:8e:f1:dc:a6:38:32:57:fa:58:34: 72:86:2f:b1:dd:4c:cc:25:b6:aa:ee:8a:ef:f7:4d:31:de:85: cf:01:20:78:ed:9e:ed:8c:20:f4:1e:c2:23:20:e2:21:06:0a: e7:68:2e:3c:4b:af:0b:0f:c1:77:e6:44:3e:2c:29:1a:23:47: 7c:6b:58:bb:10:0b:04:27:c5:37:6d:0c:23:7e:e9:5c:16:cd: b5:08:46:b6:5c:0f:5f:30:c3:5d:fe:d9:9a:ff:db:cf:14:90: f4:9f:44:35 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xyi7jXh1lypAXI86/ZaFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDg1MGY4MDY5ZGY2MmRjNTE1NWMwMmVkMWU2MmJmNTFj ZWRiYzgwHhcNMjYwMTAxMDQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZmJmNzliMThkOTRmMjM4NmY0NzMyZmMzMTU5OTg5NmYxNzNmN2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PLA7Me7aw7MEvMEiwYBjI2gKA1x DH2YRd5ncUlbVJfx0XkEYz275+SqaiDgrSTMe/TR1QrBAwP7Q+a5L9R5xcHk0Ufk 6F+da+zo+GYKYE1oLLcbTvcvodualncgNiBBjmV4e6Q5zP3CwhdKbLwTHnV+2xV9 ZjBBTSkZgSe5pO0RL4C+CGb5VlRKQaXHccfgoTnba2eA9TcWBa/WBTArG/hZGP00 7S73cUAh69ixeyFe7VWonyjdQLVqV4ckp9Zv/0FrSuSKTt3xfFhknqbjPaNc64oS UEkBZeauM52M5/K59d+x2081uP41pPT3s8gjcTwUMJH6YwhBbIjLLG+ADwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL+/ebGNlPI4b0cy/DFZmJbxc/f7MB8GA1UdIwQY MBaAFNBIUPgGnfYtxRVcAu0eYr9RztvIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9kMDk3ZDMtZDRiYS00MTMwLThlOTYt YWQ5NWViZmFhYWUyLzEvdjc5NXNZMlU4amh2UnpMOE1WbVlsdkZ6OV9zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9kMDk3ZDMtZDRiYS00MTMwLThlOTYtYWQ5NWViZmFhYWUy LzEvMEVoUS1BYWQ5aTNGRlZ3QzdSNWl2MUhPMjhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw1juMA0G CSqGSIb3DQEBCwUAA4IBAQCBwkW/W4XyzHK9tuHWQGRVVrIJrQFzjO8rchZAiaqS A36U8CqSuit8WQ7+EKlV5vcEROwBl20rbNpe1XaBIyJ46aKZmJjK5iwnAntXCujY 8PbeUV/cEk/98KzRGhkz0yFmov98MXrKAYCcJQLVezonHg7oZTNjviQAEaQhZVwP JNiUWROF3cU5QdT8XZ2H7WC18YoTKuGJ9I7x3KY4Mlf6WDRyhi+x3UzMJbaq7orv 900x3oXPASB47Z7tjCD0HsIjIOIhBgrnaC48S68LD8F35kQ+LCkaI0d8a1i7EAsE J8U3bQwjfulcFs21CEa2XA9fMMNd/tma/9vPFJD0n0Q1 -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:47 2026 by rpki-client