This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b97590-6c93-4ead-8e58-26d1f94d9867/1/hiqnGKYGj-WhG8_O9GaEv4rC0GY.roa File: hiqnGKYGj-WhG8_O9GaEv4rC0GY.roa (raw, json) Hash identifier: 15L8jWjWJZXBu2em4tCUMNmqfpGGdBu7LQHu48MUm7s= Subject key identifier: 86:2A:A7:18:A6:06:8F:E5:A1:1B:CF:CE:F4:66:84:BF:8A:C2:D0:66 Certificate issuer: /CN=7e3987d5ee9c893d471e44985664397191103f7d Certificate serial: 019C08E2D8998C443EE96E47577D56FC35F1 Authority key identifier: 7E:39:87:D5:EE:9C:89:3D:47:1E:44:98:56:64:39:71:91:10:3F:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fjmH1e6ciT1HHkSYVmQ5cZEQP30.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b97590-6c93-4ead-8e58-26d1f94d9867/1/hiqnGKYGj-WhG8_O9GaEv4rC0GY.roa Signing time: Thu 29 Jan 2026 08:33:30 +0000 ROA not before: Thu 29 Jan 2026 08:33:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210804 IP address blocks: 178.212.73.0/24 maxlen: 24 2a11:e780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b97590-6c93-4ead-8e58-26d1f94d9867/1/fjmH1e6ciT1HHkSYVmQ5cZEQP30.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/b97590-6c93-4ead-8e58-26d1f94d9867/1/fjmH1e6ciT1HHkSYVmQ5cZEQP30.mft rsync://rpki.ripe.net/repository/DEFAULT/fjmH1e6ciT1HHkSYVmQ5cZEQP30.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:08:e2:d8:99:8c:44:3e:e9:6e:47:57:7d:56:fc:35:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e3987d5ee9c893d471e44985664397191103f7d Validity Not Before: Jan 29 08:33:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=862aa718a6068fe5a11bcfcef46684bf8ac2d066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b9:17:c0:b8:32:1f:34:87:05:e0:af:1e:41: 5e:b1:b3:9b:c6:66:63:05:63:3b:94:3d:b0:da:26: b2:db:a5:33:36:12:8f:5b:b1:b1:76:95:48:8e:a7: 38:09:57:07:14:a0:f2:ca:17:10:13:14:81:a7:37: dd:cf:56:d3:28:25:4f:a7:2e:05:4e:6f:47:65:4b: bc:e6:34:55:88:40:09:f3:7d:78:68:e0:74:ee:0a: da:89:ac:1e:31:3b:72:31:77:e5:0c:ef:6e:33:3f: d4:04:91:58:e7:ad:ba:51:ae:d7:1c:6e:65:7e:1e: 95:cc:40:b8:4f:b8:df:10:f4:3d:3f:b4:d5:13:a9: 5e:5e:9b:b2:f1:d5:b8:9a:21:6b:25:60:70:ab:c4: 34:2f:d1:1a:24:8c:8a:66:f6:ae:96:01:36:82:cc: 5f:29:d3:52:7c:1f:b5:f5:69:21:bb:fa:ff:91:f8: e7:ca:0b:f4:ea:ea:69:7a:d8:2d:5c:e2:83:02:c2: f9:6f:95:12:6f:74:dc:aa:93:ae:6b:ab:c0:06:98: 9b:10:46:0d:d0:fa:3f:db:ea:7e:dd:4e:a1:e7:ac: d7:b2:b8:bf:d1:e4:fe:47:14:82:eb:ab:e0:a0:51: 41:5b:f0:eb:88:32:bd:6d:e7:2a:a0:55:95:d8:78: 96:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2A:A7:18:A6:06:8F:E5:A1:1B:CF:CE:F4:66:84:BF:8A:C2:D0:66 X509v3 Authority Key Identifier: keyid:7E:39:87:D5:EE:9C:89:3D:47:1E:44:98:56:64:39:71:91:10:3F:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fjmH1e6ciT1HHkSYVmQ5cZEQP30.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b97590-6c93-4ead-8e58-26d1f94d9867/1/hiqnGKYGj-WhG8_O9GaEv4rC0GY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b97590-6c93-4ead-8e58-26d1f94d9867/1/fjmH1e6ciT1HHkSYVmQ5cZEQP30.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.212.73.0/24 IPv6: 2a11:e780::/29 Signature Algorithm: sha256WithRSAEncryption 4e:53:f6:22:63:47:9c:42:fc:5d:dc:2b:86:e5:2d:43:df:d7: 69:04:59:1b:e2:f4:82:49:fc:48:19:17:53:87:b8:b7:c2:96: b5:82:02:43:6d:38:62:14:f3:f7:2b:68:b3:9a:12:1b:9c:ad: c9:ea:b0:b5:dd:0a:60:32:58:cf:6f:07:7c:e2:65:db:37:ad: 9b:bc:4f:7a:5e:32:ba:f3:b5:7a:22:89:19:cd:f1:88:d9:1a: c5:55:ee:26:94:b2:5c:63:ba:a1:06:d4:49:36:6a:e3:80:33: 2c:64:06:1c:4e:58:23:58:36:76:37:fa:3b:8e:e0:2c:8d:a4: 3b:b0:54:2c:9e:47:ae:13:7e:cd:52:ce:81:c2:57:c3:0d:9f: f7:49:1d:bd:f4:a5:c8:f1:c7:a3:9d:ec:b4:a8:98:d6:5f:a9: 03:d7:26:23:01:5f:89:1d:24:66:ce:00:60:ed:db:da:cc:8e: a1:45:8f:50:a2:55:c9:02:41:0c:3b:50:29:eb:e6:5d:95:5d: 05:65:a1:bb:a1:46:79:ac:9e:d1:50:5d:c7:4c:4a:be:18:57: f9:65:0d:d7:ef:5e:44:ea:d2:5a:c4:23:5f:ec:c4:9f:bf:84: ea:97:b2:b3:4c:e4:09:f3:a4:73:92:15:c9:40:13:a0:0f:b0: 61:39:0a:a3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZwI4tiZjEQ+6W5HV31W/DXxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMzk4N2Q1ZWU5Yzg5M2Q0NzFlNDQ5ODU2NjQzOTcxOTEx MDNmN2QwHhcNMjYwMTI5MDgzMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjJhYTcxOGE2MDY4ZmU1YTExYmNmY2VmNDY2ODRiZjhhYzJkMDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLkXwLgyHzSHBeCvHkFesbObxmZj BWM7lD2w2iay26UzNhKPW7GxdpVIjqc4CVcHFKDyyhcQExSBpzfdz1bTKCVPpy4F Tm9HZUu85jRViEAJ8314aOB07graiaweMTtyMXflDO9uMz/UBJFY5626Ua7XHG5l fh6VzEC4T7jfEPQ9P7TVE6leXpuy8dW4miFrJWBwq8Q0L9EaJIyKZvaulgE2gsxf KdNSfB+19Wkhu/r/kfjnygv06uppetgtXOKDAsL5b5USb3TcqpOua6vABpibEEYN 0Po/2+p+3U6h56zXsri/0eT+RxSC66vgoFFBW/DriDK9becqoFWV2HiW1wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIYqpximBo/loRvPzvRmhL+KwtBmMB8GA1UdIwQY MBaAFH45h9XunIk9Rx5EmFZkOXGRED99MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmptSDFlNmNpVDFISGtTWVZtUTVjWkVRUDMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iOTc1OTAtNmM5My00ZWFkLThlNTgt MjZkMWY5NGQ5ODY3LzEvaGlxbkdLWUdqLVdoRzhfTzlHYUV2NHJDMEdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9iOTc1OTAtNmM5My00ZWFkLThlNTgtMjZkMWY5NGQ5ODY3 LzEvZmptSDFlNmNpVDFISGtTWVZtUTVjWkVRUDMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAstRJMA0E AgACMAcDBQMqEeeAMA0GCSqGSIb3DQEBCwUAA4IBAQBOU/YiY0ecQvxd3CuG5S1D 39dpBFkb4vSCSfxIGRdTh7i3wpa1ggJDbThiFPP3K2izmhIbnK3J6rC13QpgMljP bwd84mXbN62bvE96XjK687V6IokZzfGI2RrFVe4mlLJcY7qhBtRJNmrjgDMsZAYc TlgjWDZ2N/o7juAsjaQ7sFQsnkeuE37NUs6BwlfDDZ/3SR299KXI8cejney0qJjW X6kD1yYjAV+JHSRmzgBg7dvazI6hRY9QolXJAkEMO1Ap6+ZdlV0FZaG7oUZ5rJ7R UF3HTEq+GFf5ZQ3X715E6tJaxCNf7MSfv4Tql7KzTOQJ86RzkhXJQBOgD7BhOQqj -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:06 2026 by rpki-client