This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e20938-433c-4a26-8745-9d747d9a250a/1/hGGn56Yo_VSmgrsGFDnJfZjli00.roa File: hGGn56Yo_VSmgrsGFDnJfZjli00.roa (raw, json) Hash identifier: IdVlpuGxDlB7X5s4S8Mv8+g/EUJ+VGMrKs3BCA2moLY= Subject key identifier: 84:61:A7:E7:A6:28:FD:54:A6:82:BB:06:14:39:C9:7D:98:E5:8B:4D Certificate issuer: /CN=be448c67a3ab0ea375fba848c9fe8c8eb1e84d6f Certificate serial: 019B7C7F6F1E8071BA247D1A586C05DF58D1 Authority key identifier: BE:44:8C:67:A3:AB:0E:A3:75:FB:A8:48:C9:FE:8C:8E:B1:E8:4D:6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkSMZ6OrDqN1-6hIyf6MjrHoTW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e20938-433c-4a26-8745-9d747d9a250a/1/hGGn56Yo_VSmgrsGFDnJfZjli00.roa Signing time: Fri 02 Jan 2026 02:18:04 +0000 ROA not before: Fri 02 Jan 2026 02:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48352 IP address blocks: 195.16.75.0/24 maxlen: 24 2a11:c600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e20938-433c-4a26-8745-9d747d9a250a/1/vkSMZ6OrDqN1-6hIyf6MjrHoTW8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e20938-433c-4a26-8745-9d747d9a250a/1/vkSMZ6OrDqN1-6hIyf6MjrHoTW8.mft rsync://rpki.ripe.net/repository/DEFAULT/vkSMZ6OrDqN1-6hIyf6MjrHoTW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:6f:1e:80:71:ba:24:7d:1a:58:6c:05:df:58:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be448c67a3ab0ea375fba848c9fe8c8eb1e84d6f Validity Not Before: Jan 2 02:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8461a7e7a628fd54a682bb061439c97d98e58b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:cf:83:a4:57:41:42:8d:77:15:dc:be:ac:73: 29:53:9e:e4:20:e9:2e:cb:f3:a8:1d:3d:e5:fe:80: 40:63:b9:04:57:ab:91:46:11:e0:ba:b1:1e:57:28: 76:17:52:e0:7e:31:cf:9b:0a:61:6f:f5:4b:d7:d1: 39:b2:56:32:c2:8e:60:41:25:c4:7c:fc:70:52:28: 45:fa:50:01:0d:6d:70:e3:56:ff:8a:08:94:f4:a3: f5:d9:d7:f6:41:8f:35:50:c4:13:97:79:92:8b:78: 05:ee:0d:e3:dd:97:ff:d1:dd:d8:52:fd:22:c9:b4: 68:85:01:78:c6:00:33:8e:fe:63:8e:ab:f2:11:8e: 45:43:bf:b0:fd:79:2c:09:f7:39:49:1c:44:c3:b8: 9a:98:8b:45:85:d9:e0:6f:3e:f6:c5:b4:7b:1b:83: 14:dd:47:52:df:cc:4f:f7:9e:ee:b7:e4:4c:a0:b1: 8e:aa:cd:19:78:b7:c7:af:48:c9:df:0e:86:36:b7: a8:fe:27:a9:07:96:dd:e9:c5:54:0c:90:5d:2f:75: 24:cb:ca:f7:fb:fe:65:7b:ac:40:9a:1d:fa:24:93: 20:25:5f:69:41:7c:92:ae:c0:ac:6b:2e:43:cc:c1: 04:76:a0:68:4a:f4:4a:3b:4c:6f:62:51:4c:68:3f: 6a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:61:A7:E7:A6:28:FD:54:A6:82:BB:06:14:39:C9:7D:98:E5:8B:4D X509v3 Authority Key Identifier: keyid:BE:44:8C:67:A3:AB:0E:A3:75:FB:A8:48:C9:FE:8C:8E:B1:E8:4D:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkSMZ6OrDqN1-6hIyf6MjrHoTW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e20938-433c-4a26-8745-9d747d9a250a/1/hGGn56Yo_VSmgrsGFDnJfZjli00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e20938-433c-4a26-8745-9d747d9a250a/1/vkSMZ6OrDqN1-6hIyf6MjrHoTW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.16.75.0/24 IPv6: 2a11:c600::/29 Signature Algorithm: sha256WithRSAEncryption 9c:ed:d6:cf:fa:9b:64:71:e3:3a:8a:3b:33:ee:a9:96:53:ea: 53:55:d1:19:37:9f:5b:55:72:bb:2f:f2:e6:5b:c4:d8:6e:26: 0f:66:a9:89:01:3a:c5:18:d1:04:66:1f:64:80:e6:0a:dc:7f: ae:ad:9c:4a:63:49:3e:82:56:dd:fc:6c:20:f7:63:1a:06:5f: f9:dd:e3:0a:0a:dd:ed:b7:c7:d5:a7:96:62:31:37:ef:0d:52: 9e:f3:ae:e7:20:ba:63:03:04:82:01:da:4c:77:3c:57:d2:7c: 9b:cd:08:40:c3:7b:55:87:e5:34:e6:36:2f:4c:a7:0d:f5:22: d5:9a:31:df:c0:b0:b4:be:0e:67:b1:29:38:76:f2:34:ed:5e: 51:1d:59:22:eb:54:d9:79:38:f7:89:e4:a3:f0:7a:68:53:bc: 8c:66:c0:db:1a:ca:82:2d:8f:1a:0e:79:ed:9d:90:11:7d:9b: f3:73:a6:a3:d0:0c:f9:54:cc:81:47:6d:00:9f:54:f1:5d:fe: 93:cf:2d:45:1f:75:80:2a:d3:16:5f:4b:f1:ab:11:6c:65:6f: 6e:da:c4:ec:b7:3e:d7:a6:e8:fc:b9:cd:07:d8:91:91:42:c4: c1:59:33:23:93:1a:55:41:b6:63:32:0d:b8:bf:67:ca:54:de: 16:5f:5f:3e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f28egHG6JH0aWGwF31jRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNDQ4YzY3YTNhYjBlYTM3NWZiYTg0OGM5ZmU4YzhlYjFl ODRkNmYwHhcNMjYwMTAyMDIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDYxYTdlN2E2MjhmZDU0YTY4MmJiMDYxNDM5Yzk3ZDk4ZTU4YjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkc+DpFdBQo13Fdy+rHMpU57kIOku y/OoHT3l/oBAY7kEV6uRRhHgurEeVyh2F1LgfjHPmwphb/VL19E5slYywo5gQSXE fPxwUihF+lABDW1w41b/igiU9KP12df2QY81UMQTl3mSi3gF7g3j3Zf/0d3YUv0i ybRohQF4xgAzjv5jjqvyEY5FQ7+w/XksCfc5SRxEw7iamItFhdngbz72xbR7G4MU 3UdS38xP957ut+RMoLGOqs0ZeLfHr0jJ3w6GNreo/iepB5bd6cVUDJBdL3Uky8r3 +/5le6xAmh36JJMgJV9pQXySrsCsay5DzMEEdqBoSvRKO0xvYlFMaD9qyQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIRhp+emKP1UpoK7BhQ5yX2Y5YtNMB8GA1UdIwQY MBaAFL5EjGejqw6jdfuoSMn+jI6x6E1vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmtTTVo2T3JEcU4xLTZoSXlmNk1qckhvVFc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lMjA5MzgtNDMzYy00YTI2LTg3NDUt OWQ3NDdkOWEyNTBhLzEvaEdHbjU2WW9fVlNtZ3JzR0ZEbkpmWmpsaTAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lMjA5MzgtNDMzYy00YTI2LTg3NDUtOWQ3NDdkOWEyNTBh LzEvdmtTTVo2T3JEcU4xLTZoSXlmNk1qckhvVFc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwxBLMA0E AgACMAcDBQMqEcYAMA0GCSqGSIb3DQEBCwUAA4IBAQCc7dbP+ptkceM6ijsz7qmW U+pTVdEZN59bVXK7L/LmW8TYbiYPZqmJATrFGNEEZh9kgOYK3H+urZxKY0k+glbd /Gwg92MaBl/53eMKCt3tt8fVp5ZiMTfvDVKe867nILpjAwSCAdpMdzxX0nybzQhA w3tVh+U05jYvTKcN9SLVmjHfwLC0vg5nsSk4dvI07V5RHVki61TZeTj3ieSj8Hpo U7yMZsDbGsqCLY8aDnntnZARfZvzc6aj0Az5VMyBR20An1TxXf6Tzy1FH3WAKtMW X0vxqxFsZW9u2sTstz7Xpuj8uc0H2JGRQsTBWTMjkxpVQbZjMg24v2fKVN4WX18+ -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:03 2026 by rpki-client