This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/H3BcLlLdlK5OktIlKB08CLOJceQ.roa File: H3BcLlLdlK5OktIlKB08CLOJceQ.roa (raw, json) Hash identifier: gCov3Lq4RydmSmoM9Ym4TkvogcYAidCIuxal3h4GAM8= Subject key identifier: 1F:70:5C:2E:52:DD:94:AE:4E:92:D2:25:28:1D:3C:08:B3:89:71:E4 Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Certificate serial: 019B7E37F6D42B792C9C582FD6BA7F221841 Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/H3BcLlLdlK5OktIlKB08CLOJceQ.roa Signing time: Fri 02 Jan 2026 10:19:15 +0000 ROA not before: Fri 02 Jan 2026 10:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55002 IP address blocks: 185.170.88.0/24 maxlen: 24 185.170.90.0/24 maxlen: 24 193.8.190.0/24 maxlen: 24 193.8.191.0/24 maxlen: 24 193.73.208.0/24 maxlen: 24 193.134.94.0/24 maxlen: 24 194.11.164.0/24 maxlen: 24 194.11.166.0/24 maxlen: 24 2001:67c:4f0::/48 maxlen: 48 2a09:5f80::/48 maxlen: 48 2a09:5f80:2::/48 maxlen: 48 2a09:5f80:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 10:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:f6:d4:2b:79:2c:9c:58:2f:d6:ba:7f:22:18:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Validity Not Before: Jan 2 10:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f705c2e52dd94ae4e92d225281d3c08b38971e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:ef:5d:ba:46:57:33:df:cd:97:8e:61:c4: dc:33:82:d6:6e:02:e5:d8:6c:6c:c9:5e:0f:13:4f: f9:8a:d7:35:0c:b6:eb:31:bd:7d:da:ab:90:c1:2a: d5:cf:2f:fb:c0:40:af:a9:a2:d2:5b:12:3d:e0:46: 63:22:5f:30:9d:ed:08:56:26:1f:74:50:0e:c1:46: 5f:ac:fe:cf:b4:1c:bc:6e:05:79:db:a6:e6:02:4d: 28:42:ce:f8:8c:78:be:fa:fa:9a:61:5b:b0:32:2b: 50:74:6d:d7:a0:d8:ab:5e:cd:a9:8a:ae:b8:8e:8a: 9c:89:e2:e0:bf:f9:cf:50:b9:56:b4:2a:3e:fb:65: 6b:23:09:00:a5:ca:18:67:57:4f:62:d2:c6:96:73: 53:4d:b5:64:46:44:5e:e1:15:8d:9f:76:3d:9a:23: 88:e2:4f:09:79:4c:d5:8e:dd:d4:e6:38:aa:10:7f: c4:84:52:9f:f9:84:a5:31:0e:87:6c:04:bc:09:d1: db:de:73:93:b4:ad:dc:30:e4:a2:a7:77:23:2a:c3: a9:3c:48:69:a6:79:fe:cd:32:b3:36:d6:49:f9:27: 31:30:79:57:88:c2:64:59:55:98:c9:7b:99:b5:a1: 2d:75:65:fa:0f:01:21:84:e5:90:bf:06:9d:30:73: 28:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:70:5C:2E:52:DD:94:AE:4E:92:D2:25:28:1D:3C:08:B3:89:71:E4 X509v3 Authority Key Identifier: keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/H3BcLlLdlK5OktIlKB08CLOJceQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.170.88.0/24 185.170.90.0/24 193.8.190.0/23 193.73.208.0/24 193.134.94.0/24 194.11.164.0/24 194.11.166.0/24 IPv6: 2001:67c:4f0::/48 2a09:5f80::/48 2a09:5f80:2::/47 Signature Algorithm: sha256WithRSAEncryption 59:4b:cc:78:c4:6f:fa:43:60:5e:bb:97:82:d3:ab:11:b1:91: 58:09:b9:c5:d2:d0:5c:f2:cd:87:fe:08:47:f1:bc:a0:de:67: 85:c7:12:55:04:00:de:43:6c:32:2a:a6:7c:bf:9f:09:49:e4: f3:a3:2d:37:96:12:07:2f:f5:f1:e7:87:04:03:7c:9c:44:ca: 52:d7:3d:5b:60:8e:19:17:9b:c2:6f:e6:f3:c9:99:13:80:c0: b6:32:e5:8e:7a:6a:2a:7f:b7:f9:43:03:de:20:6a:c1:bd:64: 92:30:bb:83:e6:73:62:81:47:4d:d8:bb:ac:04:0f:db:9a:50: 77:34:0d:9e:db:e5:6e:35:af:4e:ed:44:db:2c:b6:a2:e3:5b: bf:c7:88:b9:74:75:50:d0:97:08:e6:1d:c2:8b:b5:96:41:13: b7:0d:f0:bf:12:7d:b8:6d:6d:4f:e7:44:dc:0e:20:83:20:5d: e8:01:32:7a:b7:ab:2b:1c:69:31:a6:a2:64:6b:2e:36:4e:f7: 4a:3b:b7:d6:46:d6:bd:38:4d:e3:b0:47:ee:42:0c:cf:e2:9a: d6:1a:80:a2:49:a8:59:36:4e:49:2b:84:7e:e0:a1:5f:2a:65: 26:54:dd:50:b7:9a:d5:b7:2c:4a:38:0a:4e:f6:c9:73:be:f1: cc:22:dc:e3 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgISAZt+N/bUK3ksnFgv1rp/IhhBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll ZDIxMWQwHhcNMjYwMTAyMTAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjcwNWMyZTUyZGQ5NGFlNGU5MmQyMjUyODFkM2MwOGIzODk3MWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurjvXbpGVzPfzZeOYcTcM4LWbgLl 2GxsyV4PE0/5itc1DLbrMb192quQwSrVzy/7wECvqaLSWxI94EZjIl8wne0IViYf dFAOwUZfrP7PtBy8bgV526bmAk0oQs74jHi++vqaYVuwMitQdG3XoNirXs2piq64 joqcieLgv/nPULlWtCo++2VrIwkApcoYZ1dPYtLGlnNTTbVkRkRe4RWNn3Y9miOI 4k8JeUzVjt3U5jiqEH/EhFKf+YSlMQ6HbAS8CdHb3nOTtK3cMOSip3cjKsOpPEhp pnn+zTKzNtZJ+ScxMHlXiMJkWVWYyXuZtaEtdWX6DwEhhOWQvwadMHMofwIDAQAB o4ICUDCCAkwwHQYDVR0OBBYEFB9wXC5S3ZSuTpLSJSgdPAiziXHkMB8GA1UdIwQY MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt NGIyZGExOTdhN2U2LzEvSDNCY0xsTGRsSzVPa3RJbEtCMDhDTE9KY2VRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2 LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGYGCCsGAQUFBwEHAQH/BFcwVTAwBAIAATAqAwQAuapYAwQA uapaAwQBwQi+AwQAwUnQAwQAwYZeAwQAwgukAwQAwgumMCEEAgACMBsDBwAgAQZ8 BPADBwAqCV+AAAADBwEqCV+AAAIwDQYJKoZIhvcNAQELBQADggEBAFlLzHjEb/pD YF67l4LTqxGxkVgJucXS0FzyzYf+CEfxvKDeZ4XHElUEAN5DbDIqpny/nwlJ5POj LTeWEgcv9fHnhwQDfJxEylLXPVtgjhkXm8Jv5vPJmROAwLYy5Y56aip/t/lDA94g asG9ZJIwu4Pmc2KBR03Yu6wED9uaUHc0DZ7b5W41r07tRNsstqLjW7/HiLl0dVDQ lwjmHcKLtZZBE7cN8L8SfbhtbU/nRNwOIIMgXegBMnq3qyscaTGmomRrLjZO90o7 t9ZG1r04TeOwR+5CDM/imtYagKJJqFk2TkkrhH7goV8qZSZU3VC3mtW3LEo4Ck72 yXO+8cwi3OM= -----END CERTIFICATE-----Generated at Tue Jan 20 14:13:51 2026 by rpki-client