This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hVvaJxzqGnfO759JM93KwndQXbk.roa File: hVvaJxzqGnfO759JM93KwndQXbk.roa (raw, json) Hash identifier: an3wPpvhJt1GP8FeXiWPdWlBbeFNPdRjxlGGPFGoMI4= Subject key identifier: 85:5B:DA:27:1C:EA:1A:77:CE:EF:9F:49:33:DD:CA:C2:77:50:5D:B9 Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Certificate serial: 019B7B35FC9B3FA3B3BD5FE58425C2F329C3 Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hVvaJxzqGnfO759JM93KwndQXbk.roa Signing time: Thu 01 Jan 2026 20:18:14 +0000 ROA not before: Thu 01 Jan 2026 20:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43278 IP address blocks: 152.89.199.0/24 maxlen: 24 185.207.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:fc:9b:3f:a3:b3:bd:5f:e5:84:25:c2:f3:29:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Validity Not Before: Jan 1 20:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=855bda271cea1a77ceef9f4933ddcac277505db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bd:93:8d:a9:d8:15:62:7c:65:c2:f3:ba:76: 44:c8:ef:c0:1c:99:5b:08:57:f4:96:20:86:02:7d: 9c:73:f6:d6:3f:98:49:f9:a0:7a:23:69:25:23:05: 6a:02:90:d7:a3:4d:96:ce:3e:b9:ad:6d:a9:db:18: 49:43:fd:2c:05:cb:a4:60:59:f0:cf:80:c9:06:cc: 2e:df:58:a9:56:4d:a3:1c:56:55:01:8e:53:01:ad: 82:52:48:28:a5:ea:af:d3:ff:60:ea:3c:23:9b:7d: df:15:f4:84:09:9c:2d:d4:fd:63:f5:7c:90:28:18: 1d:8f:e9:3a:15:6f:30:90:6e:8c:45:3d:31:c2:66: ca:ac:0f:ff:51:0e:4f:cb:4b:b4:e6:94:51:61:9d: 5a:82:af:60:03:21:6e:0e:59:1b:0e:1b:ab:1a:66: 72:d4:c5:f0:65:22:c2:39:fa:94:ec:15:28:74:3d: 86:2e:ce:29:03:12:c6:f8:cb:62:1d:8b:3b:87:a9: b2:ea:f4:12:3b:4e:24:07:33:c7:2e:7a:84:d8:6f: 18:00:65:e3:27:fa:4c:3f:9e:ac:4e:2c:88:5b:0d: df:64:7e:9c:b3:3d:91:9d:cf:35:4e:fe:20:6e:a5: 0b:1a:5a:85:f5:0d:85:6c:70:d0:10:c7:db:d7:3f: b2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5B:DA:27:1C:EA:1A:77:CE:EF:9F:49:33:DD:CA:C2:77:50:5D:B9 X509v3 Authority Key Identifier: keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/hVvaJxzqGnfO759JM93KwndQXbk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.89.199.0/24 185.207.214.0/24 Signature Algorithm: sha256WithRSAEncryption 25:78:1a:04:05:9f:4d:4d:83:1f:5b:54:93:13:e0:2e:4a:2d: 38:6e:74:d3:0d:6a:b9:86:6d:0d:b7:6f:03:ab:a3:c6:e8:4b: c0:30:0a:ee:79:8f:d6:ab:49:0c:1b:49:ad:c2:b4:58:71:bd: a4:d0:51:f2:2e:6a:50:b8:f7:b1:7c:3d:34:3d:d0:53:d1:93: 86:5e:17:17:b7:6d:75:86:67:78:82:b2:50:63:0a:75:2b:a4: c0:a4:04:bf:12:ff:25:23:15:14:e7:ab:94:1d:2f:89:76:4e: 7d:0f:f7:0c:de:a3:0b:ff:a0:14:53:46:8f:42:ad:2e:14:a4: 65:69:54:b6:a7:63:01:c7:fa:ba:34:07:1d:c8:e9:b7:32:c6: 34:41:bf:b5:c4:62:38:9c:5a:f5:2f:cd:31:6c:fc:41:e8:62: 5f:77:5d:b1:88:13:37:f1:26:51:d7:c2:4e:74:3e:6f:23:e6: b0:53:aa:ec:98:73:57:ab:ab:c8:54:9e:5a:c0:38:e6:1a:b1: 33:dc:74:2e:76:63:3b:ce:2c:ad:33:82:65:f9:e0:23:a3:d6: df:7a:22:9b:05:97:ef:80:af:e3:cb:5d:e2:1b:a6:d8:4c:60: aa:9b:34:c0:da:62:af:13:22:ab:07:fa:65:86:6a:ff:0d:6b: e1:98:9f:74 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NfybP6OzvV/lhCXC8ynDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw N2VlNTYwHhcNMjYwMTAxMjAxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTViZGEyNzFjZWExYTc3Y2VlZjlmNDkzM2RkY2FjMjc3NTA1ZGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5L2TjanYFWJ8ZcLzunZEyO/AHJlb CFf0liCGAn2cc/bWP5hJ+aB6I2klIwVqApDXo02Wzj65rW2p2xhJQ/0sBcukYFnw z4DJBswu31ipVk2jHFZVAY5TAa2CUkgopeqv0/9g6jwjm33fFfSECZwt1P1j9XyQ KBgdj+k6FW8wkG6MRT0xwmbKrA//UQ5Py0u05pRRYZ1agq9gAyFuDlkbDhurGmZy 1MXwZSLCOfqU7BUodD2GLs4pAxLG+MtiHYs7h6my6vQSO04kBzPHLnqE2G8YAGXj J/pMP56sTiyIWw3fZH6csz2Rnc81Tv4gbqULGlqF9Q2FbHDQEMfb1z+yRwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIVb2icc6hp3zu+fSTPdysJ3UF25MB8GA1UdIwQY MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt OGJmYmRkNDVjYjYyLzEvaFZ2YUp4enFHbmZPNzU5Sk05M0t3bmRRWGJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAmFnHAwQA uc/WMA0GCSqGSIb3DQEBCwUAA4IBAQAleBoEBZ9NTYMfW1STE+AuSi04bnTTDWq5 hm0Nt28Dq6PG6EvAMArueY/Wq0kMG0mtwrRYcb2k0FHyLmpQuPexfD00PdBT0ZOG XhcXt211hmd4grJQYwp1K6TApAS/Ev8lIxUU56uUHS+Jdk59D/cM3qML/6AUU0aP Qq0uFKRlaVS2p2MBx/q6NAcdyOm3MsY0Qb+1xGI4nFr1L80xbPxB6GJfd12xiBM3 8SZR18JOdD5vI+awU6rsmHNXq6vIVJ5awDjmGrEz3HQudmM7ziytM4Jl+eAjo9bf eiKbBZfvgK/jy13iG6bYTGCqmzTA2mKvEyKrB/plhmr/DWvhmJ90 -----END CERTIFICATE-----Generated at Thu Jan 15 13:19:23 2026 by rpki-client