This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ad6ad3-4014-4000-a400-f049839fa730/1/hX56E-sl6aHlAsJVpCUmggT-itQ.roa File: hX56E-sl6aHlAsJVpCUmggT-itQ.roa (raw, json) Hash identifier: zGrp5qWxfaDDtjYhp74VIMRhcorx1N2/XDFt+aUjFhY= Subject key identifier: 85:7E:7A:13:EB:25:E9:A1:E5:02:C2:55:A4:25:26:82:04:FE:8A:D4 Certificate issuer: /CN=d4589bd2c0fbe7e2d8592cee687192bbb57979f7 Certificate serial: 019B7A5ADD96CCF1E0D31F4C859D59AE7894 Authority key identifier: D4:58:9B:D2:C0:FB:E7:E2:D8:59:2C:EE:68:71:92:BB:B5:79:79:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Fib0sD75-LYWSzuaHGSu7V5efc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ad6ad3-4014-4000-a400-f049839fa730/1/hX56E-sl6aHlAsJVpCUmggT-itQ.roa Signing time: Thu 01 Jan 2026 16:18:53 +0000 ROA not before: Thu 01 Jan 2026 16:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61396 IP address blocks: 91.197.156.0/22 maxlen: 22 91.197.156.0/23 maxlen: 23 91.197.158.0/23 maxlen: 23 91.247.32.0/22 maxlen: 22 91.247.32.0/23 maxlen: 23 91.247.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/ad6ad3-4014-4000-a400-f049839fa730/1/1Fib0sD75-LYWSzuaHGSu7V5efc.crl rsync://rpki.ripe.net/repository/DEFAULT/08/ad6ad3-4014-4000-a400-f049839fa730/1/1Fib0sD75-LYWSzuaHGSu7V5efc.mft rsync://rpki.ripe.net/repository/DEFAULT/1Fib0sD75-LYWSzuaHGSu7V5efc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:dd:96:cc:f1:e0:d3:1f:4c:85:9d:59:ae:78:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4589bd2c0fbe7e2d8592cee687192bbb57979f7 Validity Not Before: Jan 1 16:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=857e7a13eb25e9a1e502c255a425268204fe8ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:cb:5c:eb:ee:c9:4d:4a:fa:62:dd:e5:52: ba:24:78:d6:d3:e6:1c:d5:94:0d:bb:43:a6:b7:58: 18:3a:d7:68:62:db:6c:c8:78:96:2c:6c:ca:ef:45: bd:52:4b:49:8f:b6:b0:15:27:62:c7:85:38:21:f5: 30:74:ac:6e:09:4a:55:c3:1d:2c:6f:14:6e:1f:06: 5e:0c:2e:ae:5d:ff:f9:6e:32:c6:49:e6:06:ed:70: d9:a1:3e:2e:32:26:cc:6c:46:15:53:eb:c8:45:a2: da:ca:04:d4:03:ed:43:84:62:9c:5d:39:eb:41:32: a9:74:d9:3c:d2:47:f9:a3:e9:a9:b6:8e:c2:7d:e0: c8:7a:72:9a:34:cb:88:3e:e0:a8:70:2c:e0:20:cf: e2:66:1d:82:e3:55:27:32:19:16:fb:b4:c5:86:73: f0:59:3c:91:44:88:b0:19:2e:be:40:14:20:a9:db: 48:7a:71:be:cd:78:5a:3e:b2:96:e8:70:69:43:4c: fc:8f:99:fb:35:4d:07:b6:2a:59:be:f9:a9:21:c7: 39:58:61:eb:92:1c:30:74:39:71:e4:d8:cb:27:1d: 66:38:12:8c:b3:7b:43:03:74:a4:ed:89:4a:84:2a: 23:ef:16:64:d9:9e:08:3d:c5:28:a6:31:a0:db:4f: 18:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7E:7A:13:EB:25:E9:A1:E5:02:C2:55:A4:25:26:82:04:FE:8A:D4 X509v3 Authority Key Identifier: keyid:D4:58:9B:D2:C0:FB:E7:E2:D8:59:2C:EE:68:71:92:BB:B5:79:79:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Fib0sD75-LYWSzuaHGSu7V5efc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ad6ad3-4014-4000-a400-f049839fa730/1/hX56E-sl6aHlAsJVpCUmggT-itQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ad6ad3-4014-4000-a400-f049839fa730/1/1Fib0sD75-LYWSzuaHGSu7V5efc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.197.156.0/22 91.247.32.0/22 Signature Algorithm: sha256WithRSAEncryption 52:46:1d:37:da:80:7b:90:70:d8:6b:79:2b:34:3d:4f:02:a8: 7c:ad:6c:9b:47:77:1a:4c:e3:63:bd:9d:35:b7:34:4c:07:cd: bd:aa:62:a2:73:02:b8:ee:4c:0b:e8:ad:29:9e:03:79:b9:27: 7b:36:8a:41:ba:ce:4c:e1:14:7b:b8:bb:38:f0:6f:9e:62:76: 97:db:ab:ed:78:4a:13:3a:1f:13:f9:3f:2c:96:86:f4:f5:06: cf:32:05:b5:03:48:a9:b5:e9:c2:cd:d3:ab:00:51:13:d1:f3: ad:ff:da:7a:81:9b:ee:70:80:09:11:ac:10:02:df:4e:72:5a: 1f:45:54:6d:06:57:e5:88:0f:a7:cb:25:99:ef:37:f0:0f:f4: 07:03:c7:f3:85:03:2d:72:c8:99:4c:b8:61:44:d8:97:b3:40: 4b:c3:32:4b:bd:43:8b:08:74:ba:2a:2a:1a:5b:ed:2c:f8:a2: d1:72:40:24:93:71:af:d4:66:fe:f1:03:28:d3:2d:27:a3:a1: 70:07:15:ab:67:c2:08:94:0b:b3:df:c5:9c:1f:be:45:9b:be: ea:9c:c5:83:e7:19:c8:79:d2:1b:0c:14:86:0b:27:8b:90:f1: 98:36:b9:19:37:cc:74:87:16:41:fe:ff:ca:df:4e:72:6f:30: f7:ce:06:21 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6Wt2WzPHg0x9MhZ1ZrniUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NTg5YmQyYzBmYmU3ZTJkODU5MmNlZTY4NzE5MmJiYjU3 OTc5ZjcwHhcNMjYwMTAxMTYxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTdlN2ExM2ViMjVlOWExZTUwMmMyNTVhNDI1MjY4MjA0ZmU4YWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxL/LXOvuyU1K+mLd5VK6JHjW0+Yc 1ZQNu0Omt1gYOtdoYttsyHiWLGzK70W9UktJj7awFSdix4U4IfUwdKxuCUpVwx0s bxRuHwZeDC6uXf/5bjLGSeYG7XDZoT4uMibMbEYVU+vIRaLaygTUA+1DhGKcXTnr QTKpdNk80kf5o+mpto7CfeDIenKaNMuIPuCocCzgIM/iZh2C41UnMhkW+7TFhnPw WTyRRIiwGS6+QBQgqdtIenG+zXhaPrKW6HBpQ0z8j5n7NU0HtipZvvmpIcc5WGHr khwwdDlx5NjLJx1mOBKMs3tDA3Sk7YlKhCoj7xZk2Z4IPcUopjGg208YWQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIV+ehPrJemh5QLCVaQlJoIE/orUMB8GA1UdIwQY MBaAFNRYm9LA++fi2Fks7mhxkru1eXn3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUZpYjBzRDc1LUxZV1N6dWFIR1N1N1Y1ZWZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9hZDZhZDMtNDAxNC00MDAwLWE0MDAt ZjA0OTgzOWZhNzMwLzEvaFg1NkUtc2w2YUhsQXNKVnBDVW1nZ1QtaXRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9hZDZhZDMtNDAxNC00MDAwLWE0MDAtZjA0OTgzOWZhNzMw LzEvMUZpYjBzRDc1LUxZV1N6dWFIR1N1N1Y1ZWZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW8WcAwQC W/cgMA0GCSqGSIb3DQEBCwUAA4IBAQBSRh032oB7kHDYa3krND1PAqh8rWybR3ca TONjvZ01tzRMB829qmKicwK47kwL6K0pngN5uSd7NopBus5M4RR7uLs48G+eYnaX 26vteEoTOh8T+T8slob09QbPMgW1A0iptenCzdOrAFET0fOt/9p6gZvucIAJEawQ At9OclofRVRtBlfliA+nyyWZ7zfwD/QHA8fzhQMtcsiZTLhhRNiXs0BLwzJLvUOL CHS6KioaW+0s+KLRckAkk3Gv1Gb+8QMo0y0no6FwBxWrZ8IIlAuz38WcH75Fm77q nMWD5xnIedIbDBSGCyeLkPGYNrkZN8x0hxZB/v/K305ybzD3zgYh -----END CERTIFICATE-----Generated at Tue Feb 10 05:48:59 2026 by rpki-client