This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/65fa3c-0175-4cee-9930-59cfd453dd17/1/he8kJ9DCXibthyRw5bWWfdO-zeI.roa File: he8kJ9DCXibthyRw5bWWfdO-zeI.roa (raw, json) Hash identifier: CB90W0F1vwsIT9jZbtFWr7qRy3OvwRqYaZVqidxtkOU= Subject key identifier: 85:EF:24:27:D0:C2:5E:26:ED:87:24:70:E5:B5:96:7D:D3:BE:CD:E2 Certificate issuer: /CN=d1e5eb7536620b5857d1bf590183d650ca23227f Certificate serial: 019B791077BE1ECA727AE27EED906F6C0943 Authority key identifier: D1:E5:EB:75:36:62:0B:58:57:D1:BF:59:01:83:D6:50:CA:23:22:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eXrdTZiC1hX0b9ZAYPWUMojIn8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/65fa3c-0175-4cee-9930-59cfd453dd17/1/he8kJ9DCXibthyRw5bWWfdO-zeI.roa Signing time: Thu 01 Jan 2026 10:18:00 +0000 ROA not before: Thu 01 Jan 2026 10:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56869 IP address blocks: 91.228.136.0/22 maxlen: 22 193.168.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/65fa3c-0175-4cee-9930-59cfd453dd17/1/0eXrdTZiC1hX0b9ZAYPWUMojIn8.crl rsync://rpki.ripe.net/repository/DEFAULT/37/65fa3c-0175-4cee-9930-59cfd453dd17/1/0eXrdTZiC1hX0b9ZAYPWUMojIn8.mft rsync://rpki.ripe.net/repository/DEFAULT/0eXrdTZiC1hX0b9ZAYPWUMojIn8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:77:be:1e:ca:72:7a:e2:7e:ed:90:6f:6c:09:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1e5eb7536620b5857d1bf590183d650ca23227f Validity Not Before: Jan 1 10:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85ef2427d0c25e26ed872470e5b5967dd3becde2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:54:f2:bf:b4:c6:7a:33:db:77:78:96:62:4a: 5a:5b:e8:02:ad:c3:2c:88:5d:ee:90:d4:dd:aa:a9: 7c:77:54:b0:c7:0f:c4:36:30:33:b6:4d:d6:15:43: d7:13:69:56:b7:57:0e:fa:de:20:4e:cd:ee:e7:33: a4:a0:52:6d:4f:f0:fb:db:a9:60:4c:b9:67:aa:20: 5f:2d:61:eb:ad:33:6f:75:ff:e9:a2:29:00:5e:36: d0:23:a9:6a:c0:ac:f3:71:bb:5a:2a:c6:da:63:19: 61:84:e5:c7:f8:e7:31:a8:10:2f:08:fc:11:10:2a: a3:8c:20:28:98:5f:69:45:91:0d:95:53:c7:ef:61: 0a:44:82:ae:fe:b3:a8:ae:dc:8e:ce:78:5e:65:4f: 32:4c:a9:e1:75:52:79:80:d6:19:eb:9d:1f:bc:84: 78:ff:22:bb:98:ef:90:30:95:5c:2a:2c:bb:5c:f5: 55:95:77:1f:95:96:07:3f:26:2a:c7:76:1e:57:65: 3c:52:de:70:25:b1:63:63:72:ac:db:54:2c:40:d3: c2:9b:d5:47:bf:89:32:37:13:08:e0:12:97:2c:07: 2a:e5:fd:63:95:39:4f:12:69:e5:1f:31:0c:6b:e2: c0:eb:a8:5d:29:cd:2b:da:ef:e9:09:25:60:a4:5b: cd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:EF:24:27:D0:C2:5E:26:ED:87:24:70:E5:B5:96:7D:D3:BE:CD:E2 X509v3 Authority Key Identifier: keyid:D1:E5:EB:75:36:62:0B:58:57:D1:BF:59:01:83:D6:50:CA:23:22:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eXrdTZiC1hX0b9ZAYPWUMojIn8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/65fa3c-0175-4cee-9930-59cfd453dd17/1/he8kJ9DCXibthyRw5bWWfdO-zeI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/65fa3c-0175-4cee-9930-59cfd453dd17/1/0eXrdTZiC1hX0b9ZAYPWUMojIn8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.136.0/22 193.168.240.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:51:97:f1:c5:a7:06:09:52:91:19:7b:bc:0c:ae:a7:32:d3: 58:43:b0:f4:da:bb:81:6e:e3:3f:f2:b5:a4:29:6f:ea:8a:22: c5:e0:29:39:e0:ff:2e:7c:bc:a9:cf:4a:81:69:e0:4c:8a:6c: 80:95:a5:a1:26:7d:d8:c2:aa:64:05:8a:4b:71:91:2e:07:e5: 77:52:6e:08:86:5c:5b:5d:a1:98:0d:7d:13:75:b7:a0:e1:72: db:3d:76:b8:75:52:39:64:f7:28:e0:e6:11:bf:9f:48:b5:07: e9:40:a6:31:79:d8:e9:06:c8:c7:57:ef:a9:42:d9:59:9e:c8: fb:02:8c:54:fc:92:e5:27:3c:d4:1b:7a:3b:10:d5:29:37:4f: 64:d6:a5:a2:82:65:53:42:1a:98:1d:52:6c:f3:d3:10:7b:4d: 28:b3:ad:f7:ad:18:19:4a:d6:d8:17:72:6f:2d:f0:d1:a8:16: 07:7e:a8:67:3b:6c:9e:68:c9:0d:34:9b:0b:df:ec:50:61:94: 1a:40:3b:5a:da:86:9b:a7:90:5a:2c:c0:92:62:c8:8b:75:37: cd:cc:1f:de:11:79:fb:f7:42:4c:da:d8:85:4f:09:db:9e:31: ab:06:f2:56:54:2a:07:00:54:74:b6:a7:33:8c:9e:4e:74:ab: 40:1b:9b:23 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EHe+HspyeuJ+7ZBvbAlDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZTVlYjc1MzY2MjBiNTg1N2QxYmY1OTAxODNkNjUwY2Ey MzIyN2YwHhcNMjYwMTAxMTAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWVmMjQyN2QwYzI1ZTI2ZWQ4NzI0NzBlNWI1OTY3ZGQzYmVjZGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lTyv7TGejPbd3iWYkpaW+gCrcMs iF3ukNTdqql8d1Swxw/ENjAztk3WFUPXE2lWt1cO+t4gTs3u5zOkoFJtT/D726lg TLlnqiBfLWHrrTNvdf/poikAXjbQI6lqwKzzcbtaKsbaYxlhhOXH+OcxqBAvCPwR ECqjjCAomF9pRZENlVPH72EKRIKu/rOortyOznheZU8yTKnhdVJ5gNYZ650fvIR4 /yK7mO+QMJVcKiy7XPVVlXcflZYHPyYqx3YeV2U8Ut5wJbFjY3Ks21QsQNPCm9VH v4kyNxMI4BKXLAcq5f1jlTlPEmnlHzEMa+LA66hdKc0r2u/pCSVgpFvNCwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIXvJCfQwl4m7YckcOW1ln3Tvs3iMB8GA1UdIwQY MBaAFNHl63U2YgtYV9G/WQGD1lDKIyJ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGVYcmRUWmlDMWhYMGI5WkFZUFdVTW9qSW44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy82NWZhM2MtMDE3NS00Y2VlLTk5MzAt NTljZmQ0NTNkZDE3LzEvaGU4a0o5RENYaWJ0aHlSdzViV1dmZE8temVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy82NWZhM2MtMDE3NS00Y2VlLTk5MzAtNTljZmQ0NTNkZDE3 LzEvMGVYcmRUWmlDMWhYMGI5WkFZUFdVTW9qSW44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW+SIAwQC wajwMA0GCSqGSIb3DQEBCwUAA4IBAQCLUZfxxacGCVKRGXu8DK6nMtNYQ7D02ruB buM/8rWkKW/qiiLF4Ck54P8ufLypz0qBaeBMimyAlaWhJn3YwqpkBYpLcZEuB+V3 Um4IhlxbXaGYDX0Tdbeg4XLbPXa4dVI5ZPco4OYRv59ItQfpQKYxedjpBsjHV++p QtlZnsj7AoxU/JLlJzzUG3o7ENUpN09k1qWigmVTQhqYHVJs89MQe00os633rRgZ StbYF3JvLfDRqBYHfqhnO2yeaMkNNJsL3+xQYZQaQDta2oabp5BaLMCSYsiLdTfN zB/eEXn790JM2tiFTwnbnjGrBvJWVCoHAFR0tqczjJ5OdKtAG5sj -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:44 2026 by rpki-client