This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/hP6LOiB-JXjzIxcAoNUeheYCC_w.roa File: hP6LOiB-JXjzIxcAoNUeheYCC_w.roa (raw, json) Hash identifier: Am0rp7j+BYvMadHXe785VdV8wLgqVi6auP8kJTGDcRE= Subject key identifier: 84:FE:8B:3A:20:7E:25:78:F3:23:17:00:A0:D5:1E:85:E6:02:0B:FC Certificate issuer: /CN=ce5649dbba592f1c9f3f2889bcf81fd225989367 Certificate serial: 019B78A36310FE20A699DEE13F5AFE312DA4 Authority key identifier: CE:56:49:DB:BA:59:2F:1C:9F:3F:28:89:BC:F8:1F:D2:25:98:93:67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlZJ27pZLxyfPyiJvPgf0iWYk2c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/hP6LOiB-JXjzIxcAoNUeheYCC_w.roa Signing time: Thu 01 Jan 2026 08:18:52 +0000 ROA not before: Thu 01 Jan 2026 08:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58273 IP address blocks: 185.217.156.0/22 maxlen: 24 2a0b:cac0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/zlZJ27pZLxyfPyiJvPgf0iWYk2c.crl rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/zlZJ27pZLxyfPyiJvPgf0iWYk2c.mft rsync://rpki.ripe.net/repository/DEFAULT/zlZJ27pZLxyfPyiJvPgf0iWYk2c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:63:10:fe:20:a6:99:de:e1:3f:5a:fe:31:2d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce5649dbba592f1c9f3f2889bcf81fd225989367 Validity Not Before: Jan 1 08:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84fe8b3a207e2578f3231700a0d51e85e6020bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:54:bf:7d:16:11:91:c8:9c:60:dd:30:a0:29: 74:4f:7d:86:0d:23:87:48:05:f5:ec:e5:ad:ca:03: 97:26:35:5b:4b:2f:40:09:46:e1:c6:d7:72:01:e3: 78:40:19:ce:f1:e5:7c:70:30:15:53:80:2c:36:fb: 95:0e:97:11:53:f3:5f:f6:5a:2e:24:72:ec:8c:ff: eb:27:97:9e:43:4b:a1:d8:d9:61:1f:ac:2c:e7:84: 84:7f:45:a7:fc:6b:9c:ed:0c:3b:69:50:16:1b:09: 4e:51:2a:37:9d:b5:de:09:4d:d1:e0:f5:90:ee:59: 67:d5:ff:a5:4c:2b:52:dc:a2:35:af:78:94:06:81: a6:fd:86:a0:aa:dd:ad:d1:0b:e0:56:73:3f:fc:77: 03:aa:9b:5d:df:a2:5a:1a:0e:e6:7e:e3:8e:3c:cf: f7:1e:2d:70:8d:21:5a:c8:b0:e9:af:3b:2b:9c:01: f2:35:55:32:41:0c:cd:c8:21:90:66:c1:df:d2:78: c8:c4:d0:20:8d:53:b7:54:97:2b:4c:d8:66:95:fd: b0:81:4b:01:17:08:47:5d:db:00:27:d4:46:b0:da: 19:4d:d8:28:3f:eb:a1:00:02:2b:d5:3e:67:0e:8a: cc:42:fc:34:6b:15:c4:bc:f6:57:80:a3:17:3b:cd: 85:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FE:8B:3A:20:7E:25:78:F3:23:17:00:A0:D5:1E:85:E6:02:0B:FC X509v3 Authority Key Identifier: keyid:CE:56:49:DB:BA:59:2F:1C:9F:3F:28:89:BC:F8:1F:D2:25:98:93:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlZJ27pZLxyfPyiJvPgf0iWYk2c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/hP6LOiB-JXjzIxcAoNUeheYCC_w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/937385-1a90-42f5-8e40-c67ab83ac1f5/1/zlZJ27pZLxyfPyiJvPgf0iWYk2c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.217.156.0/22 IPv6: 2a0b:cac0::/29 Signature Algorithm: sha256WithRSAEncryption 0d:a7:16:8f:29:f4:bc:70:f9:b1:3a:b6:d0:6d:33:77:85:7e: fe:7e:46:ce:3e:0f:01:da:f2:3f:75:c1:2a:26:5a:11:d6:f8: 10:9d:f4:c9:2e:b2:6c:da:18:9a:3c:47:e4:a0:69:9e:07:b4: e7:b4:59:52:ec:ba:05:2c:c7:29:9e:4b:7f:90:49:21:10:e5: 49:7d:c4:21:6a:d8:b4:4b:17:ca:a4:44:43:2a:d0:f3:97:3c: c3:08:7d:69:3b:25:52:92:c3:bb:0b:7f:f3:81:37:a0:f9:fe: 81:13:fc:cb:f8:84:ef:b0:9c:b0:60:18:1d:60:f3:d8:10:3e: ae:c4:b7:94:21:90:85:bb:58:62:72:64:36:24:34:03:81:4c: 9c:1a:92:30:e9:d5:c7:33:70:87:95:e2:c7:bd:b0:09:50:75: 0a:da:ab:97:13:3a:c3:94:93:d0:b7:81:7e:bb:82:5c:fd:5e: 85:2a:c1:33:da:0f:64:73:c5:f5:f8:dd:36:06:f1:38:ff:bd: fc:1e:f3:d0:6f:40:c0:7c:c9:e7:b8:83:50:f0:cd:e1:df:a8: 70:b6:f0:15:0d:3b:66:c8:d3:d6:72:4f:ee:c7:31:26:a9:3e: 04:d4:c1:3e:61:36:66:3f:bf:de:6a:0a:ec:3f:71:32:2b:29: 73:ee:2b:6e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o2MQ/iCmmd7hP1r+MS2kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNTY0OWRiYmE1OTJmMWM5ZjNmMjg4OWJjZjgxZmQyMjU5 ODkzNjcwHhcNMjYwMTAxMDgxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGZlOGIzYTIwN2UyNTc4ZjMyMzE3MDBhMGQ1MWU4NWU2MDIwYmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1S/fRYRkcicYN0woCl0T32GDSOH SAX17OWtygOXJjVbSy9ACUbhxtdyAeN4QBnO8eV8cDAVU4AsNvuVDpcRU/Nf9lou JHLsjP/rJ5eeQ0uh2NlhH6ws54SEf0Wn/Guc7Qw7aVAWGwlOUSo3nbXeCU3R4PWQ 7lln1f+lTCtS3KI1r3iUBoGm/Yagqt2t0QvgVnM//HcDqptd36JaGg7mfuOOPM/3 Hi1wjSFayLDprzsrnAHyNVUyQQzNyCGQZsHf0njIxNAgjVO3VJcrTNhmlf2wgUsB FwhHXdsAJ9RGsNoZTdgoP+uhAAIr1T5nDorMQvw0axXEvPZXgKMXO82FlQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIT+izogfiV48yMXAKDVHoXmAgv8MB8GA1UdIwQY MBaAFM5WSdu6WS8cnz8oibz4H9IlmJNnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemxaSjI3cFpMeHlmUHlpSnZQZ2YwaVdZazJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MzczODUtMWE5MC00MmY1LThlNDAt YzY3YWI4M2FjMWY1LzEvaFA2TE9pQi1KWGp6SXhjQW9OVWVoZVlDQ193LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MzczODUtMWE5MC00MmY1LThlNDAtYzY3YWI4M2FjMWY1 LzEvemxaSjI3cFpMeHlmUHlpSnZQZ2YwaVdZazJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudmcMA0E AgACMAcDBQMqC8rAMA0GCSqGSIb3DQEBCwUAA4IBAQANpxaPKfS8cPmxOrbQbTN3 hX7+fkbOPg8B2vI/dcEqJloR1vgQnfTJLrJs2hiaPEfkoGmeB7TntFlS7LoFLMcp nkt/kEkhEOVJfcQhati0SxfKpERDKtDzlzzDCH1pOyVSksO7C3/zgTeg+f6BE/zL +ITvsJywYBgdYPPYED6uxLeUIZCFu1hicmQ2JDQDgUycGpIw6dXHM3CHleLHvbAJ UHUK2quXEzrDlJPQt4F+u4Jc/V6FKsEz2g9kc8X1+N02BvE4/738HvPQb0DAfMnn uINQ8M3h36hwtvAVDTtmyNPWck/uxzEmqT4E1ME+YTZmP7/eagrsP3EyKylz7itu -----END CERTIFICATE-----Generated at Tue Jan 27 02:08:58 2026 by rpki-client