This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/hj9uyuHnnlFd0x9G2TnG2XeZVwU.roa File: hj9uyuHnnlFd0x9G2TnG2XeZVwU.roa (raw, json) Hash identifier: omuDv6cvkQ1Vxo4qn67eCuvFXOzSVc9gpTeiRSMZI1I= Subject key identifier: 86:3F:6E:CA:E1:E7:9E:51:5D:D3:1F:46:D9:39:C6:D9:77:99:57:05 Certificate issuer: /CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb Certificate serial: 019BD61E32D8CA7BC017CF5028A699CEA804 Authority key identifier: 30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/hj9uyuHnnlFd0x9G2TnG2XeZVwU.roa Signing time: Mon 19 Jan 2026 11:57:41 +0000 ROA not before: Mon 19 Jan 2026 11:57:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 185.56.46.0/24 maxlen: 24 185.87.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.mft rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d6:1e:32:d8:ca:7b:c0:17:cf:50:28:a6:99:ce:a8:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3027a631bb6738eb68bb6ea6c424ef4a7d14c3cb Validity Not Before: Jan 19 11:57:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=863f6ecae1e79e515dd31f46d939c6d977995705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:bd:bc:57:a2:bf:cb:59:c0:c5:8c:b2:3d:02: 1d:ec:aa:8c:57:83:e8:2d:55:9f:50:52:b2:23:f1: 16:50:64:64:e7:43:97:67:55:bc:fb:cb:8e:4c:49: b9:4e:03:c0:6b:7a:ab:72:a8:ac:4b:86:1e:4a:4b: 8c:df:4a:50:b6:de:a3:46:cf:f3:59:84:0b:a9:f0: 63:43:91:1e:8d:4f:fb:23:bf:da:81:88:53:b0:c5: 10:f3:46:01:cb:8c:61:93:e5:81:47:02:83:b0:73: 31:7c:38:cd:e6:0c:7f:d6:cc:d7:77:90:38:ff:2f: f0:97:38:51:5d:cc:3c:18:9e:fd:c4:47:5d:b6:5f: b7:9e:ea:97:10:b2:68:a4:fb:f6:aa:9c:a4:3c:1e: da:01:62:c3:d1:25:7c:0f:40:fb:8e:88:35:f9:08: 68:ee:c3:01:3e:65:ae:b0:59:f0:10:f1:65:30:aa: 65:95:43:9a:e8:6b:85:16:e9:d4:e3:f2:1b:cf:b2: 00:50:c8:90:10:97:28:0a:c8:1a:46:2b:b4:d6:1e: 51:bd:76:18:94:0b:64:4e:df:f4:9d:95:e7:ba:5e: ee:20:ed:74:2e:1f:e7:44:7a:cc:9b:17:c6:7d:37: d2:95:4a:60:9b:e6:5a:e1:77:49:24:fb:e3:5d:d4: 02:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3F:6E:CA:E1:E7:9E:51:5D:D3:1F:46:D9:39:C6:D9:77:99:57:05 X509v3 Authority Key Identifier: keyid:30:27:A6:31:BB:67:38:EB:68:BB:6E:A6:C4:24:EF:4A:7D:14:C3:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCemMbtnOOtou26mxCTvSn0Uw8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/hj9uyuHnnlFd0x9G2TnG2XeZVwU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/8d78eb-2832-4083-ae1f-1dd6d281c88a/1/MCemMbtnOOtou26mxCTvSn0Uw8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.46.0/24 185.87.59.0/24 Signature Algorithm: sha256WithRSAEncryption 12:cf:c2:ae:39:8d:9e:90:a2:df:98:07:80:a9:96:d2:3a:ee: b1:66:ea:1c:f4:ae:6f:04:35:4e:a9:fb:13:e1:6f:4d:d5:09: a4:a4:a4:d9:43:5c:a9:17:66:15:10:21:c5:21:86:97:7d:7b: b3:81:7d:24:6c:53:35:99:2d:eb:c9:ef:88:ba:99:2c:44:38: ad:11:f6:05:42:ed:e8:79:4b:93:74:c7:a7:53:4d:2a:60:20: 5c:00:3c:77:6d:ea:37:b1:ed:7a:81:91:22:2d:7b:95:4b:80: dc:36:67:29:d0:7f:41:54:d8:c6:26:b9:d1:ad:a3:68:8a:a6: 16:53:38:5e:52:23:0d:36:71:de:fc:3d:ec:46:a0:ff:a5:a6: dc:85:3b:4c:5b:ff:d8:78:96:4e:47:0e:45:91:28:75:d2:c3: b5:7a:fb:cd:10:a0:64:da:c2:1a:69:b4:3a:eb:bb:09:d6:a7: ea:7d:43:85:52:4d:cc:17:11:c2:ee:d4:00:8b:92:11:40:1d: fc:41:67:68:c7:72:e4:97:a5:8a:ac:39:83:f6:9e:1d:c5:56: 87:f7:c7:79:b8:f5:20:2e:01:60:95:f3:26:47:b7:3c:78:a5: 1b:4a:af:7c:3f:03:41:df:68:a9:f6:9e:8e:b3:df:f0:73:ba: c3:e0:64:06 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvWHjLYynvAF89QKKaZzqgEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMjdhNjMxYmI2NzM4ZWI2OGJiNmVhNmM0MjRlZjRhN2Qx NGMzY2IwHhcNMjYwMTE5MTE1NzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjNmNmVjYWUxZTc5ZTUxNWRkMzFmNDZkOTM5YzZkOTc3OTk1NzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6728V6K/y1nAxYyyPQId7KqMV4Po LVWfUFKyI/EWUGRk50OXZ1W8+8uOTEm5TgPAa3qrcqisS4YeSkuM30pQtt6jRs/z WYQLqfBjQ5EejU/7I7/agYhTsMUQ80YBy4xhk+WBRwKDsHMxfDjN5gx/1szXd5A4 /y/wlzhRXcw8GJ79xEddtl+3nuqXELJopPv2qpykPB7aAWLD0SV8D0D7jog1+Qho 7sMBPmWusFnwEPFlMKpllUOa6GuFFunU4/Ibz7IAUMiQEJcoCsgaRiu01h5RvXYY lAtkTt/0nZXnul7uIO10Lh/nRHrMmxfGfTfSlUpgm+Za4XdJJPvjXdQC0QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIY/bsrh555RXdMfRtk5xtl3mVcFMB8GA1UdIwQY MBaAFDAnpjG7ZzjraLtupsQk70p9FMPLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUNlbU1idG5PT3RvdTI2bXhDVHZTbjBVdzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS84ZDc4ZWItMjgzMi00MDgzLWFlMWYt MWRkNmQyODFjODhhLzEvaGo5dXl1SG5ubEZkMHg5RzJUbkcyWGVaVndVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS84ZDc4ZWItMjgzMi00MDgzLWFlMWYtMWRkNmQyODFjODhh LzEvTUNlbU1idG5PT3RvdTI2bXhDVHZTbjBVdzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuTguAwQA uVc7MA0GCSqGSIb3DQEBCwUAA4IBAQASz8KuOY2ekKLfmAeAqZbSOu6xZuoc9K5v BDVOqfsT4W9N1QmkpKTZQ1ypF2YVECHFIYaXfXuzgX0kbFM1mS3rye+IupksRDit EfYFQu3oeUuTdMenU00qYCBcADx3beo3se16gZEiLXuVS4DcNmcp0H9BVNjGJrnR raNoiqYWUzheUiMNNnHe/D3sRqD/pabchTtMW//YeJZORw5FkSh10sO1evvNEKBk 2sIaabQ667sJ1qfqfUOFUk3MFxHC7tQAi5IRQB38QWdox3Lkl6WKrDmD9p4dxVaH 98d5uPUgLgFglfMmR7c8eKUbSq98PwNB32ip9p6Os9/wc7rD4GQG -----END CERTIFICATE-----Generated at Mon Jan 19 16:53:32 2026 by rpki-client