This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e9694-c285-4ccf-943b-c2b7cff0661c/1/1-hcdN0H8sYbxU2FJ2TIpbt1wrcs.roa File: 1-hcdN0H8sYbxU2FJ2TIpbt1wrcs.roa (raw, json) Hash identifier: +oHH/wDqJPdzoao+MeKrBaUm4lv6BOEi7Q0L1v4HB8k= Subject key identifier: FA:17:1D:37:41:FC:B1:86:F1:53:61:49:D9:32:29:6E:DD:70:AD:CB Certificate issuer: /CN=a184409e5c183bbcc31535f4c7eee4782cd67be3 Certificate serial: 019B7CED01C485C26102D9C6983E16240698 Authority key identifier: A1:84:40:9E:5C:18:3B:BC:C3:15:35:F4:C7:EE:E4:78:2C:D6:7B:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYRAnlwYO7zDFTX0x-7keCzWe-M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e9694-c285-4ccf-943b-c2b7cff0661c/1/1-hcdN0H8sYbxU2FJ2TIpbt1wrcs.roa Signing time: Fri 02 Jan 2026 04:17:45 +0000 ROA not before: Fri 02 Jan 2026 04:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203216 IP address blocks: 185.137.88.0/22 maxlen: 24 185.137.88.0/24 maxlen: 24 185.137.89.0/24 maxlen: 24 185.137.90.0/24 maxlen: 24 185.137.91.0/24 maxlen: 24 2a07:3300::/29 maxlen: 48 2a07:3300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e9694-c285-4ccf-943b-c2b7cff0661c/1/oYRAnlwYO7zDFTX0x-7keCzWe-M.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/1e9694-c285-4ccf-943b-c2b7cff0661c/1/oYRAnlwYO7zDFTX0x-7keCzWe-M.mft rsync://rpki.ripe.net/repository/DEFAULT/oYRAnlwYO7zDFTX0x-7keCzWe-M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:01:c4:85:c2:61:02:d9:c6:98:3e:16:24:06:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a184409e5c183bbcc31535f4c7eee4782cd67be3 Validity Not Before: Jan 2 04:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa171d3741fcb186f1536149d932296edd70adcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:bd:61:c7:74:b9:f7:94:21:0f:83:25:8f: c6:46:40:4a:f6:3e:9b:2c:16:b6:18:03:fa:ba:a9: 9e:46:c2:84:85:e7:0a:9b:a6:f7:d5:9b:96:9b:a6: d6:3d:d5:2c:8a:43:42:e5:b9:63:76:83:ce:1e:00: 69:7a:d1:46:01:6c:ad:d9:21:fc:c5:00:c4:5b:6b: 6a:93:48:d2:68:8c:7b:49:34:19:80:1f:00:68:ff: 29:ef:05:41:b5:6d:9d:9d:90:1d:5d:a3:bc:23:da: 62:8d:20:f3:a5:31:0d:2c:40:40:39:7a:13:af:1c: a5:0f:ae:d1:33:c2:06:bf:cf:0f:ea:a6:04:61:b6: d6:c1:e2:a0:64:99:01:c0:8c:2f:ce:08:d3:37:0c: 9d:65:80:f5:26:ff:fb:51:ca:17:0e:e2:f2:25:d5: a0:d6:cb:ae:6b:13:aa:1a:39:e3:e6:5c:5d:82:5b: 3e:d6:7c:dd:0e:ef:b3:46:2c:af:8c:2f:ee:04:02: dc:fc:fa:47:3b:2b:c6:06:f6:9b:a3:07:26:d0:45: 34:57:f7:08:32:3e:0b:76:84:96:0a:05:12:0d:ab: b9:03:a3:dc:58:9d:0f:24:94:f7:fd:34:64:17:da: 25:c5:fe:2d:a3:22:5d:11:50:34:ee:33:8c:9b:84: a4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:17:1D:37:41:FC:B1:86:F1:53:61:49:D9:32:29:6E:DD:70:AD:CB X509v3 Authority Key Identifier: keyid:A1:84:40:9E:5C:18:3B:BC:C3:15:35:F4:C7:EE:E4:78:2C:D6:7B:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYRAnlwYO7zDFTX0x-7keCzWe-M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e9694-c285-4ccf-943b-c2b7cff0661c/1/1-hcdN0H8sYbxU2FJ2TIpbt1wrcs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e9694-c285-4ccf-943b-c2b7cff0661c/1/oYRAnlwYO7zDFTX0x-7keCzWe-M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.137.88.0/22 IPv6: 2a07:3300::/29 Signature Algorithm: sha256WithRSAEncryption 21:e2:85:ec:31:25:49:c6:dd:2b:13:ba:48:f5:42:02:f2:ae: 4b:44:68:cc:f8:d5:9d:ea:39:74:4b:9b:14:76:7d:db:77:0f: ba:3c:ca:26:27:be:96:ed:00:af:80:d2:28:02:b4:6c:bb:09: ff:e9:61:9f:28:56:f6:53:f1:45:95:ab:3d:90:01:0c:35:45: b8:c6:ff:5a:4d:81:6a:85:bd:13:d4:9e:d5:b0:dc:ae:84:a6: 32:db:83:3e:08:e8:f0:47:e1:5f:10:a6:72:d9:5b:7c:a8:93: 18:6d:33:7e:08:39:63:f0:97:55:70:bd:0d:fe:cc:7b:f6:91: b2:22:df:d6:d1:4b:c8:bb:0b:75:c1:36:06:59:f3:64:2e:aa: 1c:a4:27:54:17:e9:39:be:27:0e:a6:1a:39:09:8d:b4:bb:f2: 7c:3e:c4:04:e3:f7:85:56:b4:f6:93:ba:ae:85:79:23:48:7e: 2e:e8:7e:d3:76:dd:f9:71:07:c9:ae:17:f3:6f:be:90:c8:f3: 9c:8f:d6:02:76:86:73:8c:4a:7f:e4:b5:c5:af:3a:3d:5a:3d: 5d:23:b2:37:0c:ac:2b:9c:f8:aa:e8:6c:26:b0:eb:fe:97:f1: 23:a6:99:51:1e:4f:1f:74:77:72:42:71:5c:c5:30:16:26:29: 28:47:da:5c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt87QHEhcJhAtnGmD4WJAaYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExODQ0MDllNWMxODNiYmNjMzE1MzVmNGM3ZWVlNDc4MmNk NjdiZTMwHhcNMjYwMTAyMDQxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTE3MWQzNzQxZmNiMTg2ZjE1MzYxNDlkOTMyMjk2ZWRkNzBhZGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUq9Ycd0ufeUIQ+DJY/GRkBK9j6b LBa2GAP6uqmeRsKEhecKm6b31ZuWm6bWPdUsikNC5bljdoPOHgBpetFGAWyt2SH8 xQDEW2tqk0jSaIx7STQZgB8AaP8p7wVBtW2dnZAdXaO8I9pijSDzpTENLEBAOXoT rxylD67RM8IGv88P6qYEYbbWweKgZJkBwIwvzgjTNwydZYD1Jv/7UcoXDuLyJdWg 1suuaxOqGjnj5lxdgls+1nzdDu+zRiyvjC/uBALc/PpHOyvGBvabowcm0EU0V/cI Mj4LdoSWCgUSDau5A6PcWJ0PJJT3/TRkF9olxf4toyJdEVA07jOMm4Sk+QIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPoXHTdB/LGG8VNhSdkyKW7dcK3LMB8GA1UdIwQY MBaAFKGEQJ5cGDu8wxU19Mfu5Hgs1nvjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1lSQW5sd1lPN3pERlRYMHgtN2tlQ3pXZS1NLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8xZTk2OTQtYzI4NS00Y2NmLTk0M2It YzJiN2NmZjA2NjFjLzEvMS1oY2ROMEg4c1lieFUyRkoyVElwYnQxd3Jjcy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvM2EvMWU5Njk0LWMyODUtNGNjZi05NDNiLWMyYjdjZmYwNjYx Yy8xL29ZUkFubHdZTzd6REZUWDB4LTdrZUN6V2UtTS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEArmJWDAN BAIAAjAHAwUDKgczADANBgkqhkiG9w0BAQsFAAOCAQEAIeKF7DElScbdKxO6SPVC AvKuS0RozPjVneo5dEubFHZ923cPujzKJie+lu0Ar4DSKAK0bLsJ/+lhnyhW9lPx RZWrPZABDDVFuMb/Wk2BaoW9E9Se1bDcroSmMtuDPgjo8EfhXxCmctlbfKiTGG0z fgg5Y/CXVXC9Df7Me/aRsiLf1tFLyLsLdcE2BlnzZC6qHKQnVBfpOb4nDqYaOQmN tLvyfD7EBOP3hVa09pO6roV5I0h+Luh+03bd+XEHya4X82++kMjznI/WAnaGc4xK f+S1xa86PVo9XSOyNwysK5z4quhsJrDr/pfxI6aZUR5PH3R3ckJxXMUwFiYpKEfa XA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:58 2026 by rpki-client