This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/Hs3ktAK06Dj681LT3K6I_ytQOww.roa File: Hs3ktAK06Dj681LT3K6I_ytQOww.roa (raw, json) Hash identifier: wbOb5BXeVE4ZTQ/ou2jyGYitrKnVaEx90HF7mvuSF08= Subject key identifier: 1E:CD:E4:B4:02:B4:E8:38:FA:F3:52:D3:DC:AE:88:FF:2B:50:3B:0C Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36 Certificate serial: 019B7FF1E0BFE00BA480B9B5F567D4F1881C Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/Hs3ktAK06Dj681LT3K6I_ytQOww.roa Signing time: Fri 02 Jan 2026 18:21:56 +0000 ROA not before: Fri 02 Jan 2026 18:21:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210875 IP address blocks: 87.236.160.0/24 maxlen: 24 2a11:4c80::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:e0:bf:e0:0b:a4:80:b9:b5:f5:67:d4:f1:88:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36 Validity Not Before: Jan 2 18:21:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ecde4b402b4e838faf352d3dcae88ff2b503b0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:51:85:26:02:07:94:20:fa:59:1d:c0:b7:91: 53:cc:b2:32:f7:04:cb:94:13:59:c7:aa:c1:2c:6d: 30:1b:91:6c:11:38:cb:3f:70:46:20:83:dd:31:9b: ce:84:6b:c0:b9:6c:d1:d8:2d:fd:ec:13:c2:af:33: fd:04:d3:33:08:df:d1:e2:6f:f2:5d:74:c2:f5:0d: a0:03:b2:07:04:76:cf:ed:0f:ca:de:9c:c4:c6:2b: dc:dd:06:f0:4b:f8:7c:a8:9f:1d:de:2d:a9:78:2b: 71:61:ac:16:1e:8f:4a:2f:fd:15:66:d7:57:76:7d: 29:2f:86:37:00:75:5c:6b:c0:71:65:f5:bc:0d:e2: 86:af:3d:08:64:55:68:cb:ef:db:22:94:a3:a0:10: 08:c9:2c:0d:9c:13:9b:d3:38:50:5e:15:64:d2:a8: 1c:5d:c7:da:ad:d4:39:dd:97:b6:fc:17:3f:a6:04: 9b:51:24:2f:42:90:95:a9:77:af:15:b1:f6:f1:05: 80:68:c8:b5:92:e0:38:b9:10:00:5b:6c:65:4b:78: e3:f3:ed:d3:4c:64:4f:38:9e:6b:aa:6b:85:1d:13: 55:5f:5f:7f:7b:8e:44:8e:cc:da:b0:29:d1:d0:58: 4b:6c:40:42:0b:64:7a:d9:4f:f9:c4:2f:3d:b8:bc: 16:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:CD:E4:B4:02:B4:E8:38:FA:F3:52:D3:DC:AE:88:FF:2B:50:3B:0C X509v3 Authority Key Identifier: keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/Hs3ktAK06Dj681LT3K6I_ytQOww.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.236.160.0/24 IPv6: 2a11:4c80::/29 Signature Algorithm: sha256WithRSAEncryption 0a:ed:ec:28:e7:e8:28:4a:8c:26:5a:06:61:27:9a:2c:c8:04: cb:ed:c3:0c:cc:fe:9d:ac:f5:a8:13:83:f4:ff:a5:e2:0e:36: 51:aa:7c:6c:19:e0:20:1b:eb:27:f7:38:64:34:be:f6:02:6f: 10:23:ba:7d:1b:77:c5:16:c2:db:0c:99:01:44:58:51:5b:6f: 23:b6:83:c3:d4:27:ed:d8:b9:62:8a:24:a6:a4:b4:30:56:88: 50:7c:16:04:7d:a4:5f:9b:06:88:fe:19:2d:77:a1:e7:c8:8f: 3b:da:7c:0a:24:d6:a1:31:71:8d:18:16:76:b2:f8:db:cb:11: ab:9e:b7:0b:30:bd:00:2c:85:3e:20:57:a5:56:af:f1:8d:bf: 5b:3b:9a:8d:bb:87:2b:c7:cb:cb:3f:50:bd:93:75:a2:95:03: 83:17:11:1d:de:60:77:48:da:3a:9f:3e:07:35:4b:f3:de:d8: 6f:9b:42:98:3b:d0:9c:85:05:6c:5d:74:50:f5:76:6d:e1:85: fb:a3:74:78:31:33:3b:82:88:ce:93:d4:52:15:7c:78:50:29: e1:54:bb:b2:6c:f3:3a:b3:fc:48:87:91:54:9c:0b:8e:5a:83: 97:75:36:46:fc:b3:5f:28:69:f3:9d:e0:4c:80:32:99:6b:57: b0:c5:24:77 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8eC/4AukgLm19WfU8YgcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhYWU0NmUyMTM1OTMwZGEyNjhjMDY0ZGNlNWFkYmI2M2Ew Y2VjMzYwHhcNMjYwMTAyMTgyMTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWNkZTRiNDAyYjRlODM4ZmFmMzUyZDNkY2FlODhmZjJiNTAzYjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFGFJgIHlCD6WR3At5FTzLIy9wTL lBNZx6rBLG0wG5FsETjLP3BGIIPdMZvOhGvAuWzR2C397BPCrzP9BNMzCN/R4m/y XXTC9Q2gA7IHBHbP7Q/K3pzExivc3QbwS/h8qJ8d3i2peCtxYawWHo9KL/0VZtdX dn0pL4Y3AHVca8BxZfW8DeKGrz0IZFVoy+/bIpSjoBAIySwNnBOb0zhQXhVk0qgc XcfardQ53Ze2/Bc/pgSbUSQvQpCVqXevFbH28QWAaMi1kuA4uRAAW2xlS3jj8+3T TGRPOJ5rqmuFHRNVX19/e45EjszasCnR0FhLbEBCC2R62U/5xC89uLwW6QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB7N5LQCtOg4+vNS09yuiP8rUDsMMB8GA1UdIwQY MBaAFJquRuITWTDaJowGTc5a27Y6DOw2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9kOGZjNzgtYTUxYi00M2RjLWI1MGEt OGFlNDMwODFhYTM2LzEvSHMza3RBSzA2RGo2ODFMVDNLNklfeXRRT3d3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9kOGZjNzgtYTUxYi00M2RjLWI1MGEtOGFlNDMwODFhYTM2 LzEvbXE1RzRoTlpNTm9takFaTnpscmJ0am9NN0RZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAV+ygMA0E AgACMAcDBQMqEUyAMA0GCSqGSIb3DQEBCwUAA4IBAQAK7ewo5+goSowmWgZhJ5os yATL7cMMzP6drPWoE4P0/6XiDjZRqnxsGeAgG+sn9zhkNL72Am8QI7p9G3fFFsLb DJkBRFhRW28jtoPD1Cft2LliiiSmpLQwVohQfBYEfaRfmwaI/hktd6HnyI872nwK JNahMXGNGBZ2svjbyxGrnrcLML0ALIU+IFelVq/xjb9bO5qNu4crx8vLP1C9k3Wi lQODFxEd3mB3SNo6nz4HNUvz3thvm0KYO9CchQVsXXRQ9XZt4YX7o3R4MTM7gojO k9RSFXx4UCnhVLuybPM6s/xIh5FUnAuOWoOXdTZG/LNfKGnzneBMgDKZa1ewxSR3 -----END CERTIFICATE-----Generated at Tue Feb 10 00:08:30 2026 by rpki-client