This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/75148a-e40e-409f-8a0b-da851a715fa4/1/H3xTPmvK9zSgTcG__u3TwIPowUk.roa File: H3xTPmvK9zSgTcG__u3TwIPowUk.roa (raw, json) Hash identifier: LbE0stmwuty2WSYq6lcYUDzFt6TCqOOwuZiyFMFNrDY= Subject key identifier: 1F:7C:53:3E:6B:CA:F7:34:A0:4D:C1:BF:FE:ED:D3:C0:83:E8:C1:49 Certificate issuer: /CN=10771dd7dea22e35fdaf19b51b839f43721270ba Certificate serial: 019B7AC7E03110ADBB3BFE631F48317B801D Authority key identifier: 10:77:1D:D7:DE:A2:2E:35:FD:AF:19:B5:1B:83:9F:43:72:12:70:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHcd196iLjX9rxm1G4OfQ3IScLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/75148a-e40e-409f-8a0b-da851a715fa4/1/H3xTPmvK9zSgTcG__u3TwIPowUk.roa Signing time: Thu 01 Jan 2026 18:17:57 +0000 ROA not before: Thu 01 Jan 2026 18:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15924 IP address blocks: 212.146.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/75148a-e40e-409f-8a0b-da851a715fa4/1/EHcd196iLjX9rxm1G4OfQ3IScLo.crl rsync://rpki.ripe.net/repository/DEFAULT/27/75148a-e40e-409f-8a0b-da851a715fa4/1/EHcd196iLjX9rxm1G4OfQ3IScLo.mft rsync://rpki.ripe.net/repository/DEFAULT/EHcd196iLjX9rxm1G4OfQ3IScLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e0:31:10:ad:bb:3b:fe:63:1f:48:31:7b:80:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10771dd7dea22e35fdaf19b51b839f43721270ba Validity Not Before: Jan 1 18:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f7c533e6bcaf734a04dc1bffeedd3c083e8c149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:f7:6e:84:b2:74:2a:0c:50:ea:a8:b0:89:4a: d5:37:24:aa:1c:81:ed:04:05:11:f5:cf:4b:88:b4: 15:ef:ce:86:10:ad:ab:33:22:9a:52:0b:b8:f3:25: 7c:6e:46:4d:46:6a:72:7e:45:c1:2c:16:c5:7b:eb: f5:9a:88:dd:4f:26:51:f0:5d:cb:ce:80:2b:29:af: 72:05:fa:a4:46:b7:ab:25:02:a0:17:e3:64:a6:43: 77:fb:87:7e:e9:6a:12:56:0f:0b:dd:26:c6:d1:14: 5a:5c:e3:dd:33:02:28:7b:86:00:1e:82:fd:4b:e0: fa:eb:fb:6f:58:ca:f9:27:a0:8d:52:16:c9:58:7d: ff:e6:53:32:fb:dd:c2:14:f4:91:ee:b1:78:f0:43: ba:70:3a:da:c0:ef:de:c7:52:6c:ef:b0:2e:28:5e: 47:7a:bc:e8:e6:24:2f:06:5d:1f:f3:35:f9:d7:c5: 5f:3d:34:8d:a3:4b:4a:8c:32:ac:8a:5a:c0:fe:48: 39:98:a8:e2:2c:e4:47:3d:2e:84:c1:5a:c8:48:63: 43:22:03:b1:ba:f4:33:e9:92:13:80:95:74:b2:ea: ae:03:2c:ab:c8:c0:ff:66:01:de:7d:54:e8:85:1f: 0f:a0:97:9f:6e:d6:e8:3a:47:f9:78:ac:87:50:2b: ad:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7C:53:3E:6B:CA:F7:34:A0:4D:C1:BF:FE:ED:D3:C0:83:E8:C1:49 X509v3 Authority Key Identifier: keyid:10:77:1D:D7:DE:A2:2E:35:FD:AF:19:B5:1B:83:9F:43:72:12:70:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHcd196iLjX9rxm1G4OfQ3IScLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/75148a-e40e-409f-8a0b-da851a715fa4/1/H3xTPmvK9zSgTcG__u3TwIPowUk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/75148a-e40e-409f-8a0b-da851a715fa4/1/EHcd196iLjX9rxm1G4OfQ3IScLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.146.134.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:58:e2:e1:81:88:9c:06:6a:f8:34:3b:91:08:15:be:f8:dc: 24:83:64:0b:aa:28:77:39:32:99:c8:3c:ab:da:c1:a2:ea:5a: 49:77:90:c6:2c:44:e8:f2:78:2a:9a:b7:b7:63:da:e6:19:4f: 99:61:4d:ef:12:a5:47:8a:9a:2b:0b:a0:4d:ce:ae:2c:df:ae: 9d:f3:95:42:5d:78:28:3c:46:c9:5c:16:5d:23:37:c2:40:52: 21:d0:82:de:12:8a:7d:93:61:a6:a7:96:51:1f:25:4b:5e:1c: 45:d6:9e:d1:9d:e9:24:36:b8:3a:0c:86:62:f6:69:b8:22:22: ec:8a:9d:e3:5c:23:7e:4e:3a:56:df:6c:dd:1c:de:1e:fb:bf: 71:fa:ef:eb:6f:8d:64:d6:39:c4:56:a0:17:6d:f5:75:34:b1: d7:5d:ae:41:bd:5b:b1:7a:46:c8:06:39:4d:4e:8f:5e:1a:ea: 38:3d:ec:06:1c:76:53:db:30:ca:f3:a2:ed:0b:69:c3:83:8a: 80:50:d0:4c:f0:00:d9:b4:ce:65:5b:a4:38:4a:32:7b:75:c0: 66:5a:12:28:c6:40:6c:d4:84:ec:d1:77:91:bb:59:d1:46:47: db:6c:09:24:6d:9f:ac:83:22:b7:eb:48:8b:60:5a:20:2f:f6: 5f:14:ed:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x+AxEK27O/5jH0gxe4AdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNzcxZGQ3ZGVhMjJlMzVmZGFmMTliNTFiODM5ZjQzNzIx MjcwYmEwHhcNMjYwMTAxMTgxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjdjNTMzZTZiY2FmNzM0YTA0ZGMxYmZmZWVkZDNjMDgzZThjMTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj/duhLJ0KgxQ6qiwiUrVNySqHIHt BAUR9c9LiLQV786GEK2rMyKaUgu48yV8bkZNRmpyfkXBLBbFe+v1mojdTyZR8F3L zoArKa9yBfqkRrerJQKgF+NkpkN3+4d+6WoSVg8L3SbG0RRaXOPdMwIoe4YAHoL9 S+D66/tvWMr5J6CNUhbJWH3/5lMy+93CFPSR7rF48EO6cDrawO/ex1Js77AuKF5H erzo5iQvBl0f8zX518VfPTSNo0tKjDKsilrA/kg5mKjiLORHPS6EwVrISGNDIgOx uvQz6ZITgJV0suquAyyryMD/ZgHefVTohR8PoJefbtboOkf5eKyHUCutYQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB98Uz5ryvc0oE3Bv/7t08CD6MFJMB8GA1UdIwQY MBaAFBB3Hdfeoi41/a8ZtRuDn0NyEnC6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUhjZDE5NmlMalg5cnhtMUc0T2ZRM0lTY0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy83NTE0OGEtZTQwZS00MDlmLThhMGIt ZGE4NTFhNzE1ZmE0LzEvSDN4VFBtdks5elNnVGNHX191M1R3SVBvd1VrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy83NTE0OGEtZTQwZS00MDlmLThhMGItZGE4NTFhNzE1ZmE0 LzEvRUhjZDE5NmlMalg5cnhtMUc0T2ZRM0lTY0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1JKGMA0G CSqGSIb3DQEBCwUAA4IBAQA+WOLhgYicBmr4NDuRCBW++Nwkg2QLqih3OTKZyDyr 2sGi6lpJd5DGLETo8ngqmre3Y9rmGU+ZYU3vEqVHiporC6BNzq4s366d85VCXXgo PEbJXBZdIzfCQFIh0ILeEop9k2Gmp5ZRHyVLXhxF1p7RnekkNrg6DIZi9mm4IiLs ip3jXCN+TjpW32zdHN4e+79x+u/rb41k1jnEVqAXbfV1NLHXXa5BvVuxekbIBjlN To9eGuo4PewGHHZT2zDK86LtC2nDg4qAUNBM8ADZtM5lW6Q4SjJ7dcBmWhIoxkBs 1ITs0XeRu1nRRkfbbAkkbZ+sgyK360iLYFogL/ZfFO32 -----END CERTIFICATE-----Generated at Mon Jan 26 14:11:50 2026 by rpki-client