This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/syHsa3UwI7A4E1vFkZMbu6fpkLc.roa File: syHsa3UwI7A4E1vFkZMbu6fpkLc.roa (raw, json) Hash identifier: KLgolmeV6tSpGZyB1XkLi7+L/oDApU24VOgy7S5H3dg= Subject key identifier: B3:21:EC:6B:75:30:23:B0:38:13:5B:C5:91:93:1B:BB:A7:E9:90:B7 Certificate issuer: /CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042 Certificate serial: 019B797F1A9407898483CE4E8A69BFE1296C Authority key identifier: 0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/syHsa3UwI7A4E1vFkZMbu6fpkLc.roa Signing time: Thu 01 Jan 2026 12:18:51 +0000 ROA not before: Thu 01 Jan 2026 12:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59676 IP address blocks: 95.215.175.0/24 maxlen: 24 2001:67c:2278::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:1a:94:07:89:84:83:ce:4e:8a:69:bf:e1:29:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042 Validity Not Before: Jan 1 12:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b321ec6b753023b038135bc591931bbba7e990b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6c:86:6c:25:33:34:76:12:52:a5:ba:8f:e5: 10:a9:3f:23:ed:85:f4:16:36:89:45:1b:89:cf:9a: 90:28:c9:98:7f:a6:64:93:29:65:ca:d6:48:da:6e: e5:6b:64:0e:c0:df:66:e2:bb:4e:eb:cf:37:d3:41: d6:96:3d:7e:4c:2f:33:6f:4c:95:60:f6:de:e7:b2: a1:59:4f:74:f1:91:73:4f:c9:79:29:a2:63:05:96: e6:f6:5a:6c:c9:3e:df:00:2f:f8:47:2c:5d:7e:ff: 70:b8:6c:fd:fb:f5:42:cf:9a:7c:62:90:86:d8:2b: ce:ac:03:93:3d:b8:f9:bc:96:56:f7:f0:a3:c5:9c: 3f:b6:22:89:ac:b3:1e:fd:9b:1f:58:96:e8:52:8e: b9:45:d8:56:69:ab:99:18:84:6f:b7:8a:91:4d:9f: f3:3a:58:96:d3:97:92:fe:fa:ca:a5:f8:6a:33:01: 7a:3c:c6:0d:fc:87:0e:79:d9:70:a2:3a:ad:85:36: 4a:fb:ce:7b:09:73:f4:8a:12:f3:c6:ae:95:23:0d: af:11:77:82:dd:a6:a8:59:98:38:f4:dc:c9:5d:bb: 30:ee:6e:8d:6c:6f:e0:da:54:0b:f1:a7:5d:4d:d4: a8:33:7c:e6:0a:c9:85:29:e8:10:79:01:88:eb:9d: 3e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:21:EC:6B:75:30:23:B0:38:13:5B:C5:91:93:1B:BB:A7:E9:90:B7 X509v3 Authority Key Identifier: keyid:0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/syHsa3UwI7A4E1vFkZMbu6fpkLc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.215.175.0/24 IPv6: 2001:67c:2278::/48 Signature Algorithm: sha256WithRSAEncryption 54:81:d1:85:04:59:40:73:cb:a9:be:ce:e4:e9:55:2b:ea:12: f0:02:ea:0e:2c:b4:c8:dd:05:81:f9:ff:73:4c:bc:40:72:86: 52:d9:64:bd:e4:e6:67:27:6d:ce:c9:5f:e8:6b:6d:64:d8:86: ad:98:d0:cc:a7:f2:18:35:42:f6:48:af:25:25:c0:b1:2d:9b: df:c1:c2:0c:76:99:4d:94:54:75:27:a3:98:81:bc:75:e4:8c: 06:76:1c:8a:93:89:55:72:db:2e:cc:62:40:0a:9a:d3:8d:2b: 02:23:89:36:46:8e:84:7c:cc:d2:7a:9c:9c:37:ce:39:cc:05: 0e:dc:a2:dc:a1:01:44:d6:07:f9:5c:bf:8f:c4:22:cc:80:f5: e2:3a:70:8c:2d:a8:b1:29:0e:77:a9:21:7e:29:b0:f8:68:82: a7:86:7e:52:15:9a:9d:ac:23:22:38:5b:da:b0:3b:a2:7b:40: e8:49:f9:44:2e:10:d3:4f:2d:5a:0c:1a:ea:ac:c4:8b:be:86: 18:bb:7e:06:0a:8c:cf:08:ea:65:9b:a3:ea:fb:4a:79:19:90: fb:a5:05:82:45:f0:19:cc:67:3f:4d:03:40:12:fe:ac:5a:7f: 77:a1:ed:f4:6e:22:64:bf:b2:2d:e6:a5:7d:62:b9:c9:27:78: 2a:6b:55:c4 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5fxqUB4mEg85Oimm/4SlsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMmU0ZmQyMTlmNWI3N2NlODBjZGZhZjllM2E2NDQxZGVj NTAwNDIwHhcNMjYwMTAxMTIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzIxZWM2Yjc1MzAyM2IwMzgxMzViYzU5MTkzMWJiYmE3ZTk5MGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGyGbCUzNHYSUqW6j+UQqT8j7YX0 FjaJRRuJz5qQKMmYf6ZkkyllytZI2m7la2QOwN9m4rtO688300HWlj1+TC8zb0yV YPbe57KhWU908ZFzT8l5KaJjBZbm9lpsyT7fAC/4Ryxdfv9wuGz9+/VCz5p8YpCG 2CvOrAOTPbj5vJZW9/CjxZw/tiKJrLMe/ZsfWJboUo65RdhWaauZGIRvt4qRTZ/z OliW05eS/vrKpfhqMwF6PMYN/IcOedlwojqthTZK+857CXP0ihLzxq6VIw2vEXeC 3aaoWZg49NzJXbsw7m6NbG/g2lQL8addTdSoM3zmCsmFKegQeQGI650+WwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLMh7Gt1MCOwOBNbxZGTG7un6ZC3MB8GA1UdIwQY MBaAFA4uT9IZ9bd86Azfr546ZEHexQBCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTkt MjM4ZmVlNjkyNDMwLzEvc3lIc2EzVXdJN0E0RTF2RmtaTWJ1NmZwa0xjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTktMjM4ZmVlNjkyNDMw LzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAX9evMA8E AgACMAkDBwAgAQZ8IngwDQYJKoZIhvcNAQELBQADggEBAFSB0YUEWUBzy6m+zuTp VSvqEvAC6g4stMjdBYH5/3NMvEByhlLZZL3k5mcnbc7JX+hrbWTYhq2Y0Myn8hg1 QvZIryUlwLEtm9/Bwgx2mU2UVHUno5iBvHXkjAZ2HIqTiVVy2y7MYkAKmtONKwIj iTZGjoR8zNJ6nJw3zjnMBQ7cotyhAUTWB/lcv4/EIsyA9eI6cIwtqLEpDnepIX4p sPhogqeGflIVmp2sIyI4W9qwO6J7QOhJ+UQuENNPLVoMGuqsxIu+hhi7fgYKjM8I 6mWbo+r7SnkZkPulBYJF8BnMZz9NA0AS/qxaf3eh7fRuImS/si3mpX1iuckneCpr VcQ= -----END CERTIFICATE-----Generated at Mon Jan 12 03:49:01 2026 by rpki-client