This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/H2tuVkWgjp6XpzlorJ0CMh9rzOQ.roa File: H2tuVkWgjp6XpzlorJ0CMh9rzOQ.roa (raw, json) Hash identifier: has59eIOKa6q3uHYWVg7mO28StrkkiAgF2EF9c4ggME= Subject key identifier: 1F:6B:6E:56:45:A0:8E:9E:97:A7:39:68:AC:9D:02:32:1F:6B:CC:E4 Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75 Certificate serial: 019B7A5B5551C6207DD090089072BD8185F7 Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/H2tuVkWgjp6XpzlorJ0CMh9rzOQ.roa Signing time: Thu 01 Jan 2026 16:19:24 +0000 ROA not before: Thu 01 Jan 2026 16:19:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216325 IP address blocks: 185.94.183.0/24 maxlen: 24 2a13:d940::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:55:51:c6:20:7d:d0:90:08:90:72:bd:81:85:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75 Validity Not Before: Jan 1 16:19:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f6b6e5645a08e9e97a73968ac9d02321f6bcce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:65:da:44:79:c0:dc:8d:20:b1:45:42:39: 98:14:58:ed:06:39:8f:73:ab:e7:a3:d9:a8:b2:b6: 49:4f:0b:73:43:93:86:01:86:ce:31:94:7a:44:9d: bd:95:b8:f8:0f:f9:67:5a:05:fb:bd:3a:43:e8:f4: 73:94:2d:86:a9:92:3e:e6:d4:b5:c0:b1:f2:26:05: 1b:ee:73:f0:34:a2:16:e0:d6:80:99:ac:fc:f7:9d: e2:7c:88:20:b8:98:01:2b:68:d4:b2:84:f7:52:aa: 13:ca:84:e1:a0:0d:33:c5:40:12:8c:7b:ee:e0:6d: 5b:2d:e7:36:84:2a:56:b0:07:60:f4:7b:8b:ca:19: 20:ee:72:7c:12:1e:1f:8e:23:4c:99:34:c1:60:bc: 2b:fe:4b:8b:6c:45:b8:e9:0d:57:72:05:87:4e:bd: 67:54:99:77:2a:8f:03:a1:ae:da:e5:eb:13:9f:aa: 32:3e:53:45:04:b9:52:ae:d5:9e:e8:6a:a4:07:87: bf:aa:30:39:5d:f6:1b:11:41:1d:b4:18:30:5d:6c: 29:93:0c:cf:f2:78:c2:fe:ad:f8:8a:f4:7b:f3:c1: 71:fb:c1:35:f9:b0:8a:3a:9c:54:7c:5d:c5:da:03: 1a:4a:28:94:76:4a:82:35:d2:11:e4:b1:82:bc:44: f7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:6B:6E:56:45:A0:8E:9E:97:A7:39:68:AC:9D:02:32:1F:6B:CC:E4 X509v3 Authority Key Identifier: keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/H2tuVkWgjp6XpzlorJ0CMh9rzOQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.94.183.0/24 IPv6: 2a13:d940::/29 Signature Algorithm: sha256WithRSAEncryption 42:a7:d4:0e:6f:5a:3b:00:ea:40:b0:ea:ef:b4:c5:25:78:38: 55:d0:2b:5d:40:6d:cc:8c:0e:05:75:c8:4d:3e:45:90:0b:33: 76:63:1e:6d:bd:f7:66:ea:f2:6c:0c:58:34:59:db:f4:f7:d6: 9a:30:34:12:2f:ea:3d:c7:9f:38:f7:09:34:a5:72:90:1e:f8: 3d:4d:81:ab:79:f2:35:14:01:77:51:0f:7c:70:18:55:74:5c: 79:70:11:08:16:fd:86:f2:ec:80:a5:58:10:34:c2:30:87:66: 29:5a:bf:eb:19:9f:d5:e1:dc:0a:97:5f:b1:b1:b2:c0:bb:57: 67:b6:fc:49:95:28:8d:af:ac:b9:54:01:f4:80:f9:1b:26:63: 83:36:4f:89:33:75:d6:36:46:d2:c1:44:18:e0:60:e5:df:dd: 59:10:8a:5c:1b:a0:4d:53:8c:e1:8f:db:44:53:e9:9f:99:84: ac:70:4c:36:22:76:f2:68:e9:a3:df:25:65:48:d1:13:12:77: 1b:8d:db:c6:99:80:84:7b:eb:e4:c9:cc:98:a4:e2:3b:16:80: 8c:e2:41:b9:d3:9e:2f:1b:e1:8f:b2:f9:f1:87:e0:74:b5:18: 55:89:ea:91:00:e3:e4:d9:77:fd:8a:71:2c:fb:20:6e:3b:67: 25:36:b9:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6W1VRxiB90JAIkHK9gYX3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MGI0OTdkNTFiZDlmNDdiODRmNjkzZDY4N2ZiZThjZjZj ZmZiNzUwHhcNMjYwMTAxMTYxOTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjZiNmU1NjQ1YTA4ZTllOTdhNzM5NjhhYzlkMDIzMjFmNmJjY2U0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEZl2kR5wNyNILFFQjmYFFjtBjmP c6vno9mosrZJTwtzQ5OGAYbOMZR6RJ29lbj4D/lnWgX7vTpD6PRzlC2GqZI+5tS1 wLHyJgUb7nPwNKIW4NaAmaz8953ifIgguJgBK2jUsoT3UqoTyoThoA0zxUASjHvu 4G1bLec2hCpWsAdg9HuLyhkg7nJ8Eh4fjiNMmTTBYLwr/kuLbEW46Q1XcgWHTr1n VJl3Ko8Doa7a5esTn6oyPlNFBLlSrtWe6GqkB4e/qjA5XfYbEUEdtBgwXWwpkwzP 8njC/q34ivR788Fx+8E1+bCKOpxUfF3F2gMaSiiUdkqCNdIR5LGCvET3KQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB9rblZFoI6el6c5aKydAjIfa8zkMB8GA1UdIwQY MBaAFNgLSX1RvZ9HuE9pPWh/voz2z/t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy85MjBkYzQtY2QzYy00Y2FjLWFjZmMt NGM4NTQ0NWEwMzZhLzEvSDJ0dVZrV2dqcDZYcHpsb3JKMENNaDlyek9RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy85MjBkYzQtY2QzYy00Y2FjLWFjZmMtNGM4NTQ0NWEwMzZh LzEvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuV63MA0E AgACMAcDBQMqE9lAMA0GCSqGSIb3DQEBCwUAA4IBAQBCp9QOb1o7AOpAsOrvtMUl eDhV0CtdQG3MjA4FdchNPkWQCzN2Yx5tvfdm6vJsDFg0Wdv099aaMDQSL+o9x584 9wk0pXKQHvg9TYGrefI1FAF3UQ98cBhVdFx5cBEIFv2G8uyApVgQNMIwh2YpWr/r GZ/V4dwKl1+xsbLAu1dntvxJlSiNr6y5VAH0gPkbJmODNk+JM3XWNkbSwUQY4GDl 391ZEIpcG6BNU4zhj9tEU+mfmYSscEw2InbyaOmj3yVlSNETEncbjdvGmYCEe+vk ycyYpOI7FoCM4kG5054vG+GPsvnxh+B0tRhVieqRAOPk2Xf9inEs+yBuO2clNrld -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:09 2026 by rpki-client