This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/hDiZ0uFss4MMXCxxdCXd1OxN53k.roa File: hDiZ0uFss4MMXCxxdCXd1OxN53k.roa (raw, json) Hash identifier: OY/yLRwC6K7KydahNa9Of6fN59Hmv0Rip7HKQ/StQ+s= Subject key identifier: 84:38:99:D2:E1:6C:B3:83:0C:5C:2C:71:74:25:DD:D4:EC:4D:E7:79 Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f Certificate serial: 019B797F4439753AB96136636A96A51889FF Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/hDiZ0uFss4MMXCxxdCXd1OxN53k.roa Signing time: Thu 01 Jan 2026 12:19:02 +0000 ROA not before: Thu 01 Jan 2026 12:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48779 IP address blocks: 213.238.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.mft rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:44:39:75:3a:b9:61:36:63:6a:96:a5:18:89:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f Validity Not Before: Jan 1 12:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=843899d2e16cb3830c5c2c717425ddd4ec4de779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:32:34:d1:a0:87:3a:65:0f:e3:08:2f:86:06: 86:b7:f3:7f:be:a3:8c:d0:c0:56:b9:d6:1d:96:39: 23:6e:0a:a0:5c:8e:8b:8a:73:28:b9:d7:c6:af:99: 63:e1:74:f6:e9:9f:f5:44:33:99:01:98:1f:a6:55: 37:90:86:bb:e2:a5:52:10:8a:43:42:be:f5:f1:42: e7:5e:73:65:6d:cc:ae:28:85:a3:01:16:b2:47:cc: d3:59:d3:25:f8:91:d2:4d:e5:0f:49:e2:a0:74:a6: 51:79:0b:2f:6f:b9:e5:76:92:51:84:61:2f:ce:e2: ad:7b:d5:49:b8:3e:40:03:87:3b:51:18:e3:de:94: a0:af:3f:83:ec:f8:b3:1b:c7:e6:08:81:de:94:77: bf:d7:69:0c:5d:4c:68:ff:34:b5:66:81:d4:fb:0f: 6a:c7:c8:95:ec:a3:15:e1:e1:77:3a:f5:30:4d:4d: f5:a6:6c:f6:83:20:0f:6f:1c:3e:c8:12:ce:b2:2f: 3b:9f:3f:fb:ea:54:41:64:16:1c:0e:1d:68:97:10: 39:e4:c5:e3:15:f1:4c:5e:a1:1c:2b:26:16:f1:1e: fd:97:2f:07:0d:bf:51:eb:62:5e:78:65:b6:03:26: 13:8c:b6:06:6a:55:c5:cc:6b:52:13:79:35:4f:7b: a2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:38:99:D2:E1:6C:B3:83:0C:5C:2C:71:74:25:DD:D4:EC:4D:E7:79 X509v3 Authority Key Identifier: keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/hDiZ0uFss4MMXCxxdCXd1OxN53k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.238.160.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:d9:c3:12:e1:71:09:b6:7b:57:d4:dc:7c:65:ad:8c:5b:da: 5c:41:f8:b4:ad:83:a5:23:da:15:5d:a3:d2:0e:6b:99:cb:f1: 03:14:98:00:40:15:fd:4b:c4:e2:cc:06:0a:9c:df:f3:81:38: a4:22:ec:78:ad:2d:d1:67:d7:f6:53:f7:5d:e8:7b:ce:7b:32: 4a:d4:79:fd:c9:a3:d0:2d:2c:76:71:27:1a:1f:ce:f9:43:c6: dc:cd:0b:8a:30:8f:3b:4a:69:df:25:c8:8b:3c:be:df:e3:96: eb:8e:74:b4:9a:74:4e:6e:50:a9:b1:ea:5a:4a:ba:ac:ad:91: d9:b7:30:35:f4:e2:a9:06:1c:97:d3:3b:fa:b6:53:f5:2e:2b: 50:28:26:48:7f:48:2e:94:ec:44:68:08:1e:39:ea:f1:ab:16: 9a:b8:4b:6d:fd:79:6c:af:47:0f:85:4a:a1:e1:9e:38:f2:bb: c1:7e:86:db:b3:f1:ba:f7:08:f9:02:34:58:a5:67:ba:62:5e: 04:90:db:7a:78:ac:69:ec:14:ac:3d:fd:77:4c:bb:ad:c0:10: 7c:1a:69:05:e2:83:d4:a7:68:e8:aa:81:ea:77:82:c3:d3:18: 02:71:8f:dc:fa:ce:57:18:ae:5a:12:e3:f4:ce:c6:14:35:cb: dc:e3:5e:c3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5f0Q5dTq5YTZjapalGIn/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0Y2JkYTc4YjFkMWI2MTNkZjU2NWZmOTk3MDBiNmFlZTk0 MGRlM2YwHhcNMjYwMTAxMTIxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDM4OTlkMmUxNmNiMzgzMGM1YzJjNzE3NDI1ZGRkNGVjNGRlNzc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzI00aCHOmUP4wgvhgaGt/N/vqOM 0MBWudYdljkjbgqgXI6LinMoudfGr5lj4XT26Z/1RDOZAZgfplU3kIa74qVSEIpD Qr718ULnXnNlbcyuKIWjARayR8zTWdMl+JHSTeUPSeKgdKZReQsvb7nldpJRhGEv zuKte9VJuD5AA4c7URjj3pSgrz+D7PizG8fmCIHelHe/12kMXUxo/zS1ZoHU+w9q x8iV7KMV4eF3OvUwTU31pmz2gyAPbxw+yBLOsi87nz/76lRBZBYcDh1olxA55MXj FfFMXqEcKyYW8R79ly8HDb9R62JeeGW2AyYTjLYGalXFzGtSE3k1T3uihQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIQ4mdLhbLODDFwscXQl3dTsTed5MB8GA1UdIwQY MBaAFFTL2nix0bYT31Zf+ZcAtq7pQN4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYt Y2QzMTYxNWQwMWE5LzEvaERpWjB1RnNzNE1NWEN4eGRDWGQxT3hONTNrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC82ZDYxZDktMGJmNy00NGJiLWI4MGYtY2QzMTYxNWQwMWE5 LzEvVk12YWVMSFJ0aFBmVmxfNWx3QzJydWxBM2o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1e6gMA0G CSqGSIb3DQEBCwUAA4IBAQAv2cMS4XEJtntX1Nx8Za2MW9pcQfi0rYOlI9oVXaPS DmuZy/EDFJgAQBX9S8TizAYKnN/zgTikIux4rS3RZ9f2U/dd6HvOezJK1Hn9yaPQ LSx2cScaH875Q8bczQuKMI87SmnfJciLPL7f45brjnS0mnROblCpsepaSrqsrZHZ tzA19OKpBhyX0zv6tlP1LitQKCZIf0gulOxEaAgeOerxqxaauEtt/Xlsr0cPhUqh 4Z448rvBfobbs/G69wj5AjRYpWe6Yl4EkNt6eKxp7BSsPf13TLutwBB8GmkF4oPU p2joqoHqd4LD0xgCcY/c+s5XGK5aEuP0zsYUNcvc417D -----END CERTIFICATE-----Generated at Wed Jan 21 15:54:26 2026 by rpki-client