This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ccbd44-63b3-4105-b39d-1a5559fdd4df/1/h02F20m-HtlrYP1IvxDBcCyL25o.roa File: h02F20m-HtlrYP1IvxDBcCyL25o.roa (raw, json) Hash identifier: aEq2H+PemeJ+vZCbIyEhHoWK4ZLPYe1mqTH4CSucVMs= Subject key identifier: 87:4D:85:DB:49:BE:1E:D9:6B:60:FD:48:BF:10:C1:70:2C:8B:DB:9A Certificate issuer: /CN=a60ad4b15e5c1cfec0afb1f818a76a08f186386d Certificate serial: 019B797EA9F75207FA78BA91EC7F9CEBB532 Authority key identifier: A6:0A:D4:B1:5E:5C:1C:FE:C0:AF:B1:F8:18:A7:6A:08:F1:86:38:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgrUsV5cHP7Ar7H4GKdqCPGGOG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ccbd44-63b3-4105-b39d-1a5559fdd4df/1/h02F20m-HtlrYP1IvxDBcCyL25o.roa Signing time: Thu 01 Jan 2026 12:18:22 +0000 ROA not before: Thu 01 Jan 2026 12:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29684 IP address blocks: 185.84.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/ccbd44-63b3-4105-b39d-1a5559fdd4df/1/pgrUsV5cHP7Ar7H4GKdqCPGGOG0.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/ccbd44-63b3-4105-b39d-1a5559fdd4df/1/pgrUsV5cHP7Ar7H4GKdqCPGGOG0.mft rsync://rpki.ripe.net/repository/DEFAULT/pgrUsV5cHP7Ar7H4GKdqCPGGOG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 21:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:a9:f7:52:07:fa:78:ba:91:ec:7f:9c:eb:b5:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a60ad4b15e5c1cfec0afb1f818a76a08f186386d Validity Not Before: Jan 1 12:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=874d85db49be1ed96b60fd48bf10c1702c8bdb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:70:c9:1b:dd:23:c4:5d:7d:d3:39:0c:48:5e: 8f:23:38:4e:51:32:65:39:05:9a:49:23:31:f4:fe: c8:15:6c:a0:e2:18:e9:53:17:fa:77:a4:a0:c3:a5: f2:62:f3:94:ca:cd:a3:4d:d4:cc:75:d7:9c:44:ea: 13:8a:99:1d:f9:47:d9:8f:b0:42:cc:0e:a6:cd:ba: d6:bd:f7:41:b1:15:f9:83:ed:ef:dd:81:a1:c4:2b: 12:79:1f:97:a2:27:15:63:4d:e6:c0:ae:ed:be:70: 9c:05:11:30:3b:5d:e1:5a:ea:b9:72:de:cc:6f:57: ae:f5:9d:67:70:ea:a7:11:42:98:28:d9:46:d4:e1: 43:20:d0:cd:64:88:59:ef:ff:d0:ff:e6:0b:f7:ba: 93:9b:90:e5:c4:13:1b:18:f6:f1:15:17:d4:c9:e1: 32:66:b9:25:18:41:7c:5b:f0:90:e3:da:d7:51:4a: 37:38:5c:7a:1d:f5:fb:4c:7a:85:70:9b:81:a7:c7: 44:78:8e:c4:fd:a0:bd:94:d6:36:7a:fa:92:01:17: 8a:6e:e3:9a:81:26:6e:bc:03:91:b9:da:f9:a2:f7: c0:cf:0f:9a:c5:1f:d6:3c:8b:7a:ca:a8:6e:e6:9a: 7f:b8:94:83:6f:d8:7f:0e:db:5f:62:d3:45:80:43: 9e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4D:85:DB:49:BE:1E:D9:6B:60:FD:48:BF:10:C1:70:2C:8B:DB:9A X509v3 Authority Key Identifier: keyid:A6:0A:D4:B1:5E:5C:1C:FE:C0:AF:B1:F8:18:A7:6A:08:F1:86:38:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgrUsV5cHP7Ar7H4GKdqCPGGOG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ccbd44-63b3-4105-b39d-1a5559fdd4df/1/h02F20m-HtlrYP1IvxDBcCyL25o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ccbd44-63b3-4105-b39d-1a5559fdd4df/1/pgrUsV5cHP7Ar7H4GKdqCPGGOG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.84.165.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:9d:ec:3d:7e:b5:26:0d:d9:d4:e7:ce:d2:e6:51:6e:96:e4: f7:5b:b7:f5:7b:23:8d:2d:7a:45:42:29:91:59:91:cb:dd:bd: 29:8c:b2:24:b3:a3:84:9d:f9:06:1c:37:b9:81:75:61:c2:a0: d6:0a:5d:b1:f0:0a:8a:4c:99:7a:5e:cb:4d:6e:63:c0:b5:13: 20:ae:df:b7:a8:5f:b2:17:e5:07:9b:8f:e6:f9:7e:56:33:2b: 98:3f:93:4f:c0:5f:30:fb:cb:9b:10:98:ec:9a:63:31:3a:2d: 42:65:af:44:b4:f3:6a:bb:10:70:3a:7f:cb:a3:32:43:7d:53: 6d:96:d8:1f:56:43:24:bf:d5:39:58:5f:79:d7:36:86:d5:8b: 80:1b:22:42:4b:c6:68:9d:4e:88:ac:a1:4d:23:c8:83:1e:3f: 5e:b5:ad:b7:16:8f:3d:50:ab:de:6b:18:85:17:82:6a:6d:c4: bb:28:57:9f:5c:c9:98:77:1b:3f:5b:48:f2:58:a5:70:d2:2f: 4a:c4:dc:4f:bb:b1:7a:22:ca:5c:d6:df:ab:47:4b:1b:d2:f7: c6:47:98:59:32:8a:c2:f1:ac:61:65:af:00:c2:cb:f8:d4:33: f3:37:c3:97:71:b9:5e:79:9a:76:27:ab:85:62:50:8f:b2:a0: 4c:b3:8a:02 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fqn3Ugf6eLqR7H+c67UyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MGFkNGIxNWU1YzFjZmVjMGFmYjFmODE4YTc2YTA4ZjE4 NjM4NmQwHhcNMjYwMTAxMTIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzRkODVkYjQ5YmUxZWQ5NmI2MGZkNDhiZjEwYzE3MDJjOGJkYjlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3DJG90jxF190zkMSF6PIzhOUTJl OQWaSSMx9P7IFWyg4hjpUxf6d6Sgw6XyYvOUys2jTdTMddecROoTipkd+UfZj7BC zA6mzbrWvfdBsRX5g+3v3YGhxCsSeR+XoicVY03mwK7tvnCcBREwO13hWuq5ct7M b1eu9Z1ncOqnEUKYKNlG1OFDINDNZIhZ7//Q/+YL97qTm5DlxBMbGPbxFRfUyeEy ZrklGEF8W/CQ49rXUUo3OFx6HfX7THqFcJuBp8dEeI7E/aC9lNY2evqSAReKbuOa gSZuvAORudr5ovfAzw+axR/WPIt6yqhu5pp/uJSDb9h/DttfYtNFgEOeRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIdNhdtJvh7Za2D9SL8QwXAsi9uaMB8GA1UdIwQY MBaAFKYK1LFeXBz+wK+x+BinagjxhjhtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGdyVXNWNWNIUDdBcjdINEdLZHFDUEdHT0cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9jY2JkNDQtNjNiMy00MTA1LWIzOWQt MWE1NTU5ZmRkNGRmLzEvaDAyRjIwbS1IdGxyWVAxSXZ4REJjQ3lMMjVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9jY2JkNDQtNjNiMy00MTA1LWIzOWQtMWE1NTU5ZmRkNGRm LzEvcGdyVXNWNWNIUDdBcjdINEdLZHFDUEdHT0cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVSlMA0G CSqGSIb3DQEBCwUAA4IBAQA/new9frUmDdnU587S5lFuluT3W7f1eyONLXpFQimR WZHL3b0pjLIks6OEnfkGHDe5gXVhwqDWCl2x8AqKTJl6XstNbmPAtRMgrt+3qF+y F+UHm4/m+X5WMyuYP5NPwF8w+8ubEJjsmmMxOi1CZa9EtPNquxBwOn/LozJDfVNt ltgfVkMkv9U5WF951zaG1YuAGyJCS8ZonU6IrKFNI8iDHj9eta23Fo89UKveaxiF F4JqbcS7KFefXMmYdxs/W0jyWKVw0i9KxNxPu7F6Ispc1t+rR0sb0vfGR5hZMorC 8axhZa8Awsv41DPzN8OXcbleeZp2J6uFYlCPsqBMs4oC -----END CERTIFICATE-----Generated at Tue Jan 20 07:46:03 2026 by rpki-client