This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/hjwqR_BvVV3igv-VRSRakB0C0gY.roa File: hjwqR_BvVV3igv-VRSRakB0C0gY.roa (raw, json) Hash identifier: dGn15gWRk4S5nvTCswCYk4PnSEMzXrTWJmJ53SFUgxE= Subject key identifier: 86:3C:2A:47:F0:6F:55:5D:E2:82:FF:95:45:24:5A:90:1D:02:D2:06 Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Certificate serial: 019B7AC95C1F96E0FD03E610C634E2551EB5 Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/hjwqR_BvVV3igv-VRSRakB0C0gY.roa Signing time: Thu 01 Jan 2026 18:19:35 +0000 ROA not before: Thu 01 Jan 2026 18:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 10010 IP address blocks: 94.74.184.0/24 maxlen: 24 94.74.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.mft rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 11:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:5c:1f:96:e0:fd:03:e6:10:c6:34:e2:55:1e:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Validity Not Before: Jan 1 18:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=863c2a47f06f555de282ff9545245a901d02d206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0a:c9:cb:c2:36:37:81:47:31:f6:99:f4:d7: b3:87:a9:0e:f7:37:5c:53:5d:ef:2c:ed:65:a8:dd: 9d:9b:fb:5d:d5:2e:37:e4:b0:2f:83:c5:5b:a0:7d: 0c:4f:b5:a4:c0:0f:91:4b:36:ca:b7:01:5f:ed:06: ef:e5:00:1d:14:4e:2a:b6:58:65:69:2d:65:36:d9: b4:2b:bf:63:5b:23:ac:29:3f:13:96:3a:9c:2e:be: 08:bf:2b:31:a0:2a:b7:38:a7:d2:28:dc:0a:80:f0: 5e:e3:56:e3:8c:09:77:89:45:7a:79:da:23:c0:f3: 61:63:b7:5d:3a:5c:1d:d0:65:0e:86:e7:22:d2:66: e3:b9:02:f0:9a:bc:0b:76:da:b4:c5:67:5e:37:dd: 6e:8d:8b:ec:bf:92:de:ca:86:84:be:70:c2:dc:83: b7:92:d5:95:bc:c1:e7:e9:65:5f:eb:e4:0f:74:da: 20:81:b9:f9:39:65:d2:4f:6b:e4:29:da:a0:fd:9c: 9f:94:d0:7e:3d:d9:b0:cb:cf:93:c7:ad:3a:de:0d: 85:52:7a:c6:d2:e2:98:ed:dc:52:61:ed:ed:fe:98: 27:dd:d1:ba:be:91:f7:53:d3:e8:1a:50:b7:7a:88: e0:40:a3:5f:5e:5c:c1:85:23:44:59:82:6a:15:fc: 46:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3C:2A:47:F0:6F:55:5D:E2:82:FF:95:45:24:5A:90:1D:02:D2:06 X509v3 Authority Key Identifier: keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/hjwqR_BvVV3igv-VRSRakB0C0gY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.74.184.0/23 Signature Algorithm: sha256WithRSAEncryption 05:4c:cb:b3:0f:9f:ca:14:2d:c2:2c:82:d9:8e:99:9d:d1:24: 36:3f:90:69:1d:db:0d:8d:f0:d8:cf:53:67:45:a4:a2:6e:7b: f1:ba:08:91:1e:1c:83:1e:56:90:1c:83:7b:97:c6:b8:6c:70: b2:1b:03:b4:35:28:2c:29:4d:38:fb:42:ae:d7:7c:89:22:b4: 90:0e:a6:95:94:1f:66:76:ad:50:d6:ec:4f:98:75:f3:00:54: 1e:33:0d:07:48:95:f3:65:28:f9:ca:65:59:b3:a3:16:a2:c9: 04:4b:f1:fa:72:3b:dd:48:65:18:d5:79:c9:cd:ec:53:a7:8c: 47:d4:d3:60:ec:8a:59:ca:0c:6a:f8:36:d9:12:86:46:55:0f: c3:fe:75:90:2e:f4:ff:ce:76:f0:2e:ba:94:82:2a:97:42:6a: 7e:47:94:9c:59:2a:e1:fd:6e:0f:9c:fe:77:a0:67:a2:55:2e: 4b:fc:1b:e1:a1:1f:00:c7:0b:bf:67:66:69:8a:44:8a:be:b4: 23:a8:65:ae:47:e8:dc:f4:51:26:5a:98:50:35:cd:3d:37:4d: cf:75:8c:02:7a:08:ab:b6:56:4a:ff:92:3b:ad:92:54:47:c0: 07:e8:57:15:9e:86:24:6d:48:0f:4e:28:f5:6f:d6:68:49:3a: 92:91:35:41 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yVwfluD9A+YQxjTiVR61MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx ZjQ1ZjcwHhcNMjYwMTAxMTgxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjNjMmE0N2YwNmY1NTVkZTI4MmZmOTU0NTI0NWE5MDFkMDJkMjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxArJy8I2N4FHMfaZ9Nezh6kO9zdc U13vLO1lqN2dm/td1S435LAvg8VboH0MT7WkwA+RSzbKtwFf7Qbv5QAdFE4qtlhl aS1lNtm0K79jWyOsKT8TljqcLr4IvysxoCq3OKfSKNwKgPBe41bjjAl3iUV6edoj wPNhY7ddOlwd0GUOhuci0mbjuQLwmrwLdtq0xWdeN91ujYvsv5LeyoaEvnDC3IO3 ktWVvMHn6WVf6+QPdNoggbn5OWXST2vkKdqg/ZyflNB+Pdmwy8+Tx6063g2FUnrG 0uKY7dxSYe3t/pgn3dG6vpH3U9PoGlC3eojgQKNfXlzBhSNEWYJqFfxGwQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIY8Kkfwb1Vd4oL/lUUkWpAdAtIGMB8GA1UdIwQY MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt NDk2ZjhlYmIyZDYxLzEvaGp3cVJfQnZWVjNpZ3YtVlJTUmFrQjBDMGdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBXkq4MA0G CSqGSIb3DQEBCwUAA4IBAQAFTMuzD5/KFC3CLILZjpmd0SQ2P5BpHdsNjfDYz1Nn RaSibnvxugiRHhyDHlaQHIN7l8a4bHCyGwO0NSgsKU04+0Ku13yJIrSQDqaVlB9m dq1Q1uxPmHXzAFQeMw0HSJXzZSj5ymVZs6MWoskES/H6cjvdSGUY1XnJzexTp4xH 1NNg7IpZygxq+DbZEoZGVQ/D/nWQLvT/znbwLrqUgiqXQmp+R5ScWSrh/W4PnP53 oGeiVS5L/BvhoR8Axwu/Z2ZpikSKvrQjqGWuR+jc9FEmWphQNc09N03PdYwCegir tlZK/5I7rZJUR8AH6FcVnoYkbUgPTij1b9ZoSTqSkTVB -----END CERTIFICATE-----Generated at Wed Jan 21 19:34:52 2026 by rpki-client