This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/htGXjVomK79OKrmcY2KJgs4ezPg.roa File: htGXjVomK79OKrmcY2KJgs4ezPg.roa (raw, json) Hash identifier: Ecl/Jiy52V1qsICQs2cHZIKGG76jH9NDSw0LPqpC/rA= Subject key identifier: 86:D1:97:8D:5A:26:2B:BF:4E:2A:B9:9C:63:62:89:82:CE:1E:CC:F8 Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F8447E18364B8D7904278B0AA9EDFC8 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/htGXjVomK79OKrmcY2KJgs4ezPg.roa Signing time: Fri 02 Jan 2026 16:22:14 +0000 ROA not before: Fri 02 Jan 2026 16:22:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50917 IP address blocks: 45.152.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:47:e1:83:64:b8:d7:90:42:78:b0:aa:9e:df:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86d1978d5a262bbf4e2ab99c63628982ce1eccf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:b6:1b:be:8e:92:9b:50:f1:6a:0e:65:42: 2a:bc:0e:d6:39:80:52:a7:58:d4:d1:3f:ac:8b:0d: d9:a2:1e:0c:b1:13:33:11:dd:76:0b:06:79:00:0e: 50:19:40:6a:27:d5:1d:64:9e:32:c0:91:be:de:05: a5:80:75:a1:d6:a2:30:b1:2d:ef:f4:5b:81:9b:bc: 66:0b:e9:3f:72:9d:1f:7c:18:b3:df:db:bf:39:83: e2:bc:a6:a6:40:67:23:d4:dc:26:d0:7f:26:0a:5f: a1:2a:5f:f7:d4:c2:b6:cf:60:8c:38:44:1d:29:96: 3f:49:cd:5a:be:a1:28:72:61:23:98:30:7a:26:37: 06:ff:bd:c5:83:2b:a9:c1:48:f7:89:30:0d:a9:e8: f2:e0:5d:69:62:a2:af:fa:21:b2:3e:f0:36:fd:74: 14:58:4f:0e:a2:bd:71:d0:db:f0:b2:15:4f:47:39: 48:b1:17:66:fc:21:0f:58:fa:fe:22:96:23:c0:90: c7:e3:3d:27:51:ce:7d:ce:81:fa:34:bf:6a:1d:93: b4:96:e6:55:2e:b5:02:26:8c:1c:75:1d:d0:05:ad: 7a:58:78:89:ee:c1:f8:f2:ea:f3:4d:75:c5:52:2b: 63:4a:c6:b5:e5:65:3b:11:1e:3b:2e:cc:ee:e1:27: 4b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D1:97:8D:5A:26:2B:BF:4E:2A:B9:9C:63:62:89:82:CE:1E:CC:F8 X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/htGXjVomK79OKrmcY2KJgs4ezPg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.152.39.0/24 Signature Algorithm: sha256WithRSAEncryption ac:71:d4:10:50:d7:00:5b:0b:d4:5f:1c:af:04:33:8b:08:1b: 66:b9:77:48:a7:a3:ac:55:63:b3:4c:ff:57:74:76:e2:b5:64: d5:af:91:26:5c:c6:61:cb:32:6d:b7:19:db:ab:28:23:2e:42: 72:89:8c:4b:4f:5a:13:4f:a6:a8:2a:05:ed:b0:44:50:1e:75: a7:13:ca:04:3f:eb:ed:40:24:3b:9c:bb:31:ba:ee:80:06:a5: bc:22:06:e1:32:bb:1b:2b:3c:14:47:ce:f4:f6:fa:00:22:e5: cd:04:95:5d:0c:8a:70:db:bc:e8:ca:0b:0e:b7:c9:19:45:11: a5:0e:d1:e1:d9:2a:54:57:c6:cc:99:4f:4f:e1:e0:2f:21:28: d9:3b:5f:a8:cc:49:2c:8e:91:fe:e2:d8:32:3a:ac:07:5b:b1: 38:24:c7:71:d9:34:6f:ed:3f:60:79:60:65:c5:6d:c5:36:98: 1d:ee:43:40:a5:39:8e:ec:10:59:46:fe:2a:46:fb:1e:73:94: 6a:12:91:8c:84:88:78:c8:ec:33:35:ee:44:e8:12:dc:bd:de: 55:b5:db:46:26:1c:a0:45:0f:93:ef:ba:b7:3f:b2:e6:a4:3b: eb:62:0d:44:e1:0d:e8:cc:78:11:60:31:0b:19:ee:e8:07:4f: bc:47:f6:7c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hEfhg2S415BCeLCqnt/IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmQxOTc4ZDVhMjYyYmJmNGUyYWI5OWM2MzYyODk4MmNlMWVjY2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXy2G76OkptQ8WoOZUIqvA7WOYBS p1jU0T+siw3Zoh4MsRMzEd12CwZ5AA5QGUBqJ9UdZJ4ywJG+3gWlgHWh1qIwsS3v 9FuBm7xmC+k/cp0ffBiz39u/OYPivKamQGcj1Nwm0H8mCl+hKl/31MK2z2CMOEQd KZY/Sc1avqEocmEjmDB6JjcG/73FgyupwUj3iTANqejy4F1pYqKv+iGyPvA2/XQU WE8Oor1x0NvwshVPRzlIsRdm/CEPWPr+IpYjwJDH4z0nUc59zoH6NL9qHZO0luZV LrUCJowcdR3QBa16WHiJ7sH48urzTXXFUitjSsa15WU7ER47Lszu4SdLAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIbRl41aJiu/Tiq5nGNiiYLOHsz4MB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvaHRHWGpWb21LNzlPS3JtY1kyS0pnczRlelBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZgnMA0G CSqGSIb3DQEBCwUAA4IBAQCscdQQUNcAWwvUXxyvBDOLCBtmuXdIp6OsVWOzTP9X dHbitWTVr5EmXMZhyzJttxnbqygjLkJyiYxLT1oTT6aoKgXtsERQHnWnE8oEP+vt QCQ7nLsxuu6ABqW8IgbhMrsbKzwUR8709voAIuXNBJVdDIpw27zoygsOt8kZRRGl DtHh2SpUV8bMmU9P4eAvISjZO1+ozEksjpH+4tgyOqwHW7E4JMdx2TRv7T9geWBl xW3FNpgd7kNApTmO7BBZRv4qRvsec5RqEpGMhIh4yOwzNe5E6BLcvd5VtdtGJhyg RQ+T77q3P7LmpDvrYg1E4Q3ozHgRYDELGe7oB0+8R/Z8 -----END CERTIFICATE-----Generated at Wed Jan 21 16:57:12 2026 by rpki-client