This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/H8UNN8H7VPAPeU8HfY2pZ9baom8.roa File: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (raw, json) Hash identifier: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M= Subject key identifier: 1F:C5:0D:37:C1:FB:54:F0:0F:79:4F:07:7D:8D:A9:67:D6:DA:A2:6F Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Certificate serial: 019B7CEE243C19FCD553A815BDC8DC63341A Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/H8UNN8H7VPAPeU8HfY2pZ9baom8.roa Signing time: Fri 02 Jan 2026 04:19:00 +0000 ROA not before: Fri 02 Jan 2026 04:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49981 IP address blocks: 185.105.192.0/22 maxlen: 22 2a06:3880::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:24:3c:19:fc:d5:53:a8:15:bd:c8:dc:63:34:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Validity Not Before: Jan 2 04:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1fc50d37c1fb54f00f794f077d8da967d6daa26f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8d:19:68:25:b2:7b:39:1e:85:f0:cc:bb:c8: 63:0a:bd:a2:ef:30:26:3c:56:91:dc:dc:70:42:6d: 03:73:2c:3a:6b:d6:5f:1e:d8:41:f7:9d:9e:b9:e0: db:1b:fd:cc:4a:80:ec:4f:d2:00:67:61:32:31:f7: 4b:34:d9:cc:c5:56:79:51:ab:17:39:25:ca:22:71: 79:cb:37:8a:f0:a4:ba:e0:b0:4c:e5:ac:3f:52:9d: 39:db:2a:51:83:9e:c8:67:3c:51:82:95:8e:f4:8b: 73:2c:7e:0a:7f:64:92:35:ef:12:ad:fd:34:06:b9: e9:65:7b:18:df:39:8a:59:fd:d6:ae:87:fe:ba:f2: 9f:f5:88:01:1a:f7:77:6f:ee:79:1e:7c:e9:1b:5c: f1:78:66:ad:1d:ee:12:43:55:0d:c5:e3:29:c8:08: fd:1b:33:63:3d:d5:bb:62:2b:c2:02:2e:99:8c:b5: c7:31:d4:85:be:f1:e5:9f:fe:93:d9:7c:43:09:8a: ea:2a:87:cb:2e:57:24:4c:3e:f7:12:13:5d:1a:9f: ea:7e:ef:d9:7d:94:a8:bf:ff:28:ae:c6:02:e4:5b: cd:7c:ae:bf:3e:3b:95:c9:8b:ce:49:71:27:5d:85: 82:c2:7b:7e:6b:41:66:1e:aa:c8:3d:02:d7:3e:31: af:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C5:0D:37:C1:FB:54:F0:0F:79:4F:07:7D:8D:A9:67:D6:DA:A2:6F X509v3 Authority Key Identifier: keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/H8UNN8H7VPAPeU8HfY2pZ9baom8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.105.192.0/22 IPv6: 2a06:3880::/29 Signature Algorithm: sha256WithRSAEncryption 1d:64:1e:b5:36:c2:34:ee:c1:42:46:d8:ce:f9:29:a3:b0:bb: 36:b7:29:c0:d7:57:ee:ce:f3:40:d8:5b:f1:6b:36:37:af:bf: c6:7a:fb:56:7c:2f:88:6e:8c:7d:ee:df:99:df:a9:18:b3:0f: d4:cb:dc:df:b3:1e:26:86:b6:cd:4c:55:59:70:8c:05:fa:56: 3e:be:48:fe:1e:95:94:8f:c8:7b:e0:e8:28:29:27:43:99:b1: 00:75:a2:2f:a6:19:27:1e:f4:52:38:64:5f:b6:46:ed:33:ff: 07:95:ba:4a:9c:8c:b3:75:fe:59:b6:6c:5f:3e:1d:b6:df:3e: 39:dc:50:bb:52:00:6d:a6:c0:da:66:e2:f8:d8:76:7f:ab:c7: 1c:1a:c5:fd:70:91:e9:e7:3c:e0:e9:a0:47:46:cb:43:d8:ed: 32:01:10:e6:4f:f5:d6:0d:86:12:ce:d7:a6:64:07:ba:cc:6c: f4:c9:ca:8a:94:c7:e6:63:3d:8e:fe:dd:50:e9:b8:07:ce:19: 69:25:c9:14:a4:3c:e6:f5:38:07:57:a3:c7:7c:60:48:87:88: 23:ea:f9:43:4c:8c:96:28:8f:2e:a3:a6:b4:fb:ef:9d:45:09: 46:7d:43:40:70:3f:48:b8:1a:f8:cb:fc:b5:b6:6b:34:f6:99: ce:79:d8:db -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87iQ8GfzVU6gVvcjcYzQaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1 ZDA3ZjMwHhcNMjYwMTAyMDQxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmM1MGQzN2MxZmI1NGYwMGY3OTRmMDc3ZDhkYTk2N2Q2ZGFhMjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp40ZaCWyezkehfDMu8hjCr2i7zAm PFaR3NxwQm0Dcyw6a9ZfHthB952eueDbG/3MSoDsT9IAZ2EyMfdLNNnMxVZ5UasX OSXKInF5yzeK8KS64LBM5aw/Up052ypRg57IZzxRgpWO9ItzLH4Kf2SSNe8Srf00 BrnpZXsY3zmKWf3Wrof+uvKf9YgBGvd3b+55HnzpG1zxeGatHe4SQ1UNxeMpyAj9 GzNjPdW7YivCAi6ZjLXHMdSFvvHln/6T2XxDCYrqKofLLlckTD73EhNdGp/qfu/Z fZSov/8orsYC5FvNfK6/PjuVyYvOSXEnXYWCwnt+a0FmHqrIPQLXPjGv3wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB/FDTfB+1TwD3lPB32NqWfW2qJvMB8GA1UdIwQY MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt ZmQyMTM3MjJiZmY5LzEvSDhVTk44SDdWUEFQZVU4SGZZMnBaOWJhb204LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5 LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuWnAMA0E AgACMAcDBQMqBjiAMA0GCSqGSIb3DQEBCwUAA4IBAQAdZB61NsI07sFCRtjO+Smj sLs2tynA11fuzvNA2FvxazY3r7/GevtWfC+Ibox97t+Z36kYsw/Uy9zfsx4mhrbN TFVZcIwF+lY+vkj+HpWUj8h74OgoKSdDmbEAdaIvphknHvRSOGRftkbtM/8HlbpK nIyzdf5ZtmxfPh223z453FC7UgBtpsDaZuL42HZ/q8ccGsX9cJHp5zzg6aBHRstD 2O0yARDmT/XWDYYSztemZAe6zGz0ycqKlMfmYz2O/t1Q6bgHzhlpJckUpDzm9TgH V6PHfGBIh4gj6vlDTIyWKI8uo6a0+++dRQlGfUNAcD9IuBr4y/y1tms09pnOedjb -----END CERTIFICATE-----Generated at Mon Jan 19 17:31:38 2026 by rpki-client