This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/HPHaju7FtNHrk9_DXh-YfiFpidI.roa File: HPHaju7FtNHrk9_DXh-YfiFpidI.roa (raw, json) Hash identifier: LNqB6wa9uW83EsTJKIbnkPn6xu6c+Y72wuxiUZE+hMY= Subject key identifier: 1C:F1:DA:8E:EE:C5:B4:D1:EB:93:DF:C3:5E:1F:98:7E:21:69:89:D2 Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec Certificate serial: 019B797ECB356D1E259E0AB11AFBB79FF12F Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/HPHaju7FtNHrk9_DXh-YfiFpidI.roa Signing time: Thu 01 Jan 2026 12:18:31 +0000 ROA not before: Thu 01 Jan 2026 12:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198003 IP address blocks: 82.103.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:cb:35:6d:1e:25:9e:0a:b1:1a:fb:b7:9f:f1:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec Validity Not Before: Jan 1 12:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cf1da8eeec5b4d1eb93dfc35e1f987e216989d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d6:bc:47:7e:89:62:e0:87:e6:bc:e0:f5:8e: 2b:57:f7:34:95:1f:bc:b3:fe:56:a0:2d:03:75:db: a0:c6:28:ff:46:e6:90:d1:68:ac:6d:cd:d6:5e:9f: 75:8e:64:46:eb:84:04:7c:07:0c:c2:cf:2c:47:12: c5:34:56:4d:11:02:57:65:fd:4d:bc:1c:a1:cf:8d: b3:14:74:4f:33:d0:99:e0:48:d1:67:ec:4a:ca:b3: 67:e1:ed:a5:49:60:86:55:65:4c:07:ed:14:8d:d2: 63:e3:69:cc:f5:45:12:50:fb:7c:b1:f9:4b:ca:3f: 31:7e:55:99:75:a5:c1:f2:43:e2:9e:2b:1a:aa:7f: 6a:ce:01:33:24:8a:67:64:ca:2b:06:a3:bb:86:6f: 52:ab:2e:5e:95:c4:ca:cd:fb:77:0a:cf:6c:2f:39: fb:d5:7b:06:9c:d6:07:9c:8e:f9:c8:1a:98:ef:13: d6:da:a4:9c:2f:4b:c3:5b:4b:f6:22:72:02:eb:e1: f5:e3:bf:a4:e7:49:15:04:c2:e8:72:20:a2:79:44: cf:52:b8:72:10:41:e5:7b:9c:f8:e8:b3:62:45:86: 8b:4e:2d:91:7a:53:b4:6b:5a:c2:48:be:61:9a:63: 6c:7e:cf:dd:6b:e8:d7:b4:33:95:3a:6a:20:2c:f1: 72:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F1:DA:8E:EE:C5:B4:D1:EB:93:DF:C3:5E:1F:98:7E:21:69:89:D2 X509v3 Authority Key Identifier: keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/HPHaju7FtNHrk9_DXh-YfiFpidI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.103.125.0/24 Signature Algorithm: sha256WithRSAEncryption 44:10:b3:8a:3e:c7:b2:97:3e:46:50:a0:73:17:14:56:e0:91: a8:7d:8f:3a:5e:4e:c7:32:33:3e:ec:9d:53:2b:9c:73:62:e0: 71:b4:d5:60:35:32:09:f1:f3:ae:3c:9c:13:9f:68:69:37:7f: da:0c:54:06:25:44:4c:bf:56:6d:65:f4:c9:32:2b:7a:fd:62: ae:7b:13:67:1d:af:ff:af:aa:54:10:a7:09:00:33:d9:3a:64: fa:17:2a:fd:ae:37:56:19:e9:0c:1e:93:e9:39:c2:ac:0a:78: 31:87:e2:7c:00:4a:b1:04:34:be:39:94:2a:01:29:23:f7:c4: 35:4e:52:33:dc:e3:46:0c:03:71:42:27:61:12:2d:e0:5e:b3: 50:90:b4:d0:27:ae:49:4e:4a:a8:5d:8d:4f:b6:d0:ef:1c:8f: ce:de:a0:29:4e:fa:c1:4f:d7:89:12:83:46:d7:7f:68:c7:ba: 60:d5:ee:24:07:e9:76:f1:d5:66:6a:d6:c6:f9:96:7a:fc:36: d2:92:60:82:d5:cb:d2:6f:79:7e:f1:3f:41:88:4a:2c:2c:7d: b1:d4:46:33:28:c7:7d:43:70:b2:aa:cf:b6:2a:30:9f:19:e3: 95:19:45:9e:fc:1c:29:02:3c:f5:bb:e8:d5:6c:30:13:35:d5: 6e:b1:7a:e5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fss1bR4lngqxGvu3n/EvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj ZDgyZWMwHhcNMjYwMTAxMTIxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2YxZGE4ZWVlYzViNGQxZWI5M2RmYzM1ZTFmOTg3ZTIxNjk4OWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9a8R36JYuCH5rzg9Y4rV/c0lR+8 s/5WoC0Dddugxij/RuaQ0Wisbc3WXp91jmRG64QEfAcMws8sRxLFNFZNEQJXZf1N vByhz42zFHRPM9CZ4EjRZ+xKyrNn4e2lSWCGVWVMB+0UjdJj42nM9UUSUPt8sflL yj8xflWZdaXB8kPinisaqn9qzgEzJIpnZMorBqO7hm9Sqy5elcTKzft3Cs9sLzn7 1XsGnNYHnI75yBqY7xPW2qScL0vDW0v2InIC6+H147+k50kVBMLociCieUTPUrhy EEHle5z46LNiRYaLTi2RelO0a1rCSL5hmmNsfs/da+jXtDOVOmogLPFyuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBzx2o7uxbTR65Pfw14fmH4haYnSMB8GA1UdIwQY MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt N2ZiYmFlNmY5NDM3LzEvSFBIYWp1N0Z0TkhyazlfRFhoLVlmaUZwaWRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3 LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUmd9MA0G CSqGSIb3DQEBCwUAA4IBAQBEELOKPseylz5GUKBzFxRW4JGofY86Xk7HMjM+7J1T K5xzYuBxtNVgNTIJ8fOuPJwTn2hpN3/aDFQGJURMv1ZtZfTJMit6/WKuexNnHa// r6pUEKcJADPZOmT6Fyr9rjdWGekMHpPpOcKsCngxh+J8AEqxBDS+OZQqASkj98Q1 TlIz3ONGDANxQidhEi3gXrNQkLTQJ65JTkqoXY1PttDvHI/O3qApTvrBT9eJEoNG 139ox7pg1e4kB+l28dVmatbG+ZZ6/DbSkmCC1cvSb3l+8T9BiEosLH2x1EYzKMd9 Q3Cyqs+2KjCfGeOVGUWe/BwpAjz1u+jVbDATNdVusXrl -----END CERTIFICATE-----Generated at Mon Jan 26 17:24:32 2026 by rpki-client