This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/ROpvBepIbgL1YB38sWe6DYyZ2hY.roa File: ROpvBepIbgL1YB38sWe6DYyZ2hY.roa (raw, json) Hash identifier: e7h0xATOBW6CdBIVhb27eeZ36b1QWdWkJWfktjBe1pA= Subject key identifier: 44:EA:6F:05:EA:48:6E:02:F5:60:1D:FC:B1:67:BA:0D:8C:99:DA:16 Certificate issuer: /CN=33c5b0d7c0a9cd24b73cdcb92c8746e85a4a5b8f Certificate serial: 019B7A5B05B442FFA5B70A49C3AD47CF219D Authority key identifier: 33:C5:B0:D7:C0:A9:CD:24:B7:3C:DC:B9:2C:87:46:E8:5A:4A:5B:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/ROpvBepIbgL1YB38sWe6DYyZ2hY.roa Signing time: Thu 01 Jan 2026 16:19:04 +0000 ROA not before: Thu 01 Jan 2026 16:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 393410 IP address blocks: 195.149.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/M8Ww18CpzSS3PNy5LIdG6FpKW48.crl rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/M8Ww18CpzSS3PNy5LIdG6FpKW48.mft rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 22:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:05:b4:42:ff:a5:b7:0a:49:c3:ad:47:cf:21:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33c5b0d7c0a9cd24b73cdcb92c8746e85a4a5b8f Validity Not Before: Jan 1 16:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44ea6f05ea486e02f5601dfcb167ba0d8c99da16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c0:b5:5f:e6:37:1a:54:91:5d:9c:07:ef:ae: ad:9e:52:21:20:99:1d:ea:b6:31:27:a5:da:21:3f: 14:26:9a:a9:4e:46:bb:32:35:79:17:d9:e4:30:5b: 42:02:b3:63:23:0e:85:43:dd:b2:97:f5:0f:e0:d2: 1a:76:75:82:14:b2:ba:ba:7b:40:34:bc:6a:3a:2c: 1d:be:7b:87:e4:23:26:e4:4c:06:59:94:69:00:42: 9e:12:15:4c:23:44:58:f6:d4:d9:1c:15:83:89:e0: 59:2d:da:a5:fd:d6:fb:1d:e5:05:e9:97:20:f0:39: d5:f3:a2:90:04:5f:10:2d:35:fc:fe:0d:14:0d:57: 1f:56:ba:01:a3:f2:de:80:4c:bb:0b:22:3d:69:3a: 79:7c:0f:d5:00:ed:52:04:8e:6d:a0:94:cf:81:07: b6:67:d6:5b:6a:3a:4f:dc:60:56:4f:0b:4d:be:46: d1:69:db:3c:68:19:1f:60:2d:73:be:d4:ba:d3:a7: 59:65:52:23:c4:44:12:b7:af:5c:b4:1d:e3:f6:31: 91:fa:0c:b8:c5:a9:b0:9a:e1:54:ca:d9:c4:bf:3f: 67:09:2c:4b:d8:17:c9:18:4c:dc:f2:57:52:a0:e4: ce:8d:37:b1:a3:dc:b0:28:c2:42:15:73:d1:34:e2: 12:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:EA:6F:05:EA:48:6E:02:F5:60:1D:FC:B1:67:BA:0D:8C:99:DA:16 X509v3 Authority Key Identifier: keyid:33:C5:B0:D7:C0:A9:CD:24:B7:3C:DC:B9:2C:87:46:E8:5A:4A:5B:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8Ww18CpzSS3PNy5LIdG6FpKW48.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/ROpvBepIbgL1YB38sWe6DYyZ2hY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/2581f4-8410-4a43-9186-0fab2269ea8e/1/M8Ww18CpzSS3PNy5LIdG6FpKW48.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.149.107.0/24 Signature Algorithm: sha256WithRSAEncryption 33:cd:f1:bd:c9:a4:d6:79:0a:bc:df:f2:ba:50:8f:8b:db:95: ff:5c:72:6a:46:f3:57:3a:3b:09:72:da:af:df:2a:f6:2a:93: 51:b6:4b:a2:71:af:1f:6b:9b:85:5e:21:cb:ff:8a:d7:ba:62: dd:a0:0b:b1:26:b9:c8:b0:24:3e:ed:d1:f1:44:93:f2:44:7f: d9:b5:08:04:78:ab:a7:8e:fb:1a:9e:0b:9e:5a:e8:fa:bd:91: 2c:02:09:2b:c8:1c:05:9d:11:e4:c9:a9:14:e2:7b:fe:fa:3a: d2:52:50:91:83:78:1d:55:e6:d2:2b:ac:4c:7a:b8:fa:b7:83: e6:55:43:7c:f3:a2:2a:0d:8a:55:ba:8c:f5:0f:96:11:44:d6: b6:9f:a7:98:8e:cc:ca:7a:53:40:1a:41:23:20:80:a2:79:ae: 5f:51:2f:67:09:60:fc:85:1d:fd:47:c8:76:b8:d2:e9:8d:6b: 50:f5:a1:ac:a1:f1:a8:57:af:3e:fc:bb:85:c1:cc:e6:4b:c8: b8:bb:c7:2a:57:4f:6c:7c:16:58:70:9b:e8:f1:6d:70:ed:0e: c2:71:aa:26:00:e7:c3:35:1c:a5:ee:0e:6c:6b:ce:87:51:7f: 05:20:a9:7f:3b:55:27:f8:5e:a5:1d:ea:5f:e8:de:ab:40:cc: 8a:30:35:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WwW0Qv+ltwpJw61HzyGdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYzViMGQ3YzBhOWNkMjRiNzNjZGNiOTJjODc0NmU4NWE0 YTViOGYwHhcNMjYwMTAxMTYxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NGVhNmYwNWVhNDg2ZTAyZjU2MDFkZmNiMTY3YmEwZDhjOTlkYTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAocC1X+Y3GlSRXZwH766tnlIhIJkd 6rYxJ6XaIT8UJpqpTka7MjV5F9nkMFtCArNjIw6FQ92yl/UP4NIadnWCFLK6untA NLxqOiwdvnuH5CMm5EwGWZRpAEKeEhVMI0RY9tTZHBWDieBZLdql/db7HeUF6Zcg 8DnV86KQBF8QLTX8/g0UDVcfVroBo/LegEy7CyI9aTp5fA/VAO1SBI5toJTPgQe2 Z9ZbajpP3GBWTwtNvkbRads8aBkfYC1zvtS606dZZVIjxEQSt69ctB3j9jGR+gy4 xamwmuFUytnEvz9nCSxL2BfJGEzc8ldSoOTOjTexo9ywKMJCFXPRNOIS4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFETqbwXqSG4C9WAd/LFnug2MmdoWMB8GA1UdIwQY MBaAFDPFsNfAqc0ktzzcuSyHRuhaSluPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTThXdzE4Q3B6U1MzUE55NUxJZEc2RnBLVzQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8yNTgxZjQtODQxMC00YTQzLTkxODYt MGZhYjIyNjllYThlLzEvUk9wdkJlcEliZ0wxWUIzOHNXZTZEWXlaMmhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8yNTgxZjQtODQxMC00YTQzLTkxODYtMGZhYjIyNjllYThl LzEvTThXdzE4Q3B6U1MzUE55NUxJZEc2RnBLVzQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw5VrMA0G CSqGSIb3DQEBCwUAA4IBAQAzzfG9yaTWeQq83/K6UI+L25X/XHJqRvNXOjsJctqv 3yr2KpNRtkuica8fa5uFXiHL/4rXumLdoAuxJrnIsCQ+7dHxRJPyRH/ZtQgEeKun jvsangueWuj6vZEsAgkryBwFnRHkyakU4nv++jrSUlCRg3gdVebSK6xMerj6t4Pm VUN886IqDYpVuoz1D5YRRNa2n6eYjszKelNAGkEjIICiea5fUS9nCWD8hR39R8h2 uNLpjWtQ9aGsofGoV68+/LuFwczmS8i4u8cqV09sfBZYcJvo8W1w7Q7CcaomAOfD NRyl7g5sa86HUX8FIKl/O1Un+F6lHepf6N6rQMyKMDXh -----END CERTIFICATE-----Generated at Wed Jan 7 06:55:50 2026 by rpki-client