This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/hRI7RDa7PGK-ctecQ63wDq0HUqI.roa File: hRI7RDa7PGK-ctecQ63wDq0HUqI.roa (raw, json) Hash identifier: tUVamYyn9duDeEqDyKxRIvl+qRN9U3COd67wexVVyLs= Subject key identifier: 85:12:3B:44:36:BB:3C:62:BE:72:D7:9C:43:AD:F0:0E:AD:07:52:A2 Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9 Certificate serial: 019B76EADB08F5084DC5AE80C041A5CFD7C3 Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/hRI7RDa7PGK-ctecQ63wDq0HUqI.roa Signing time: Thu 01 Jan 2026 00:17:41 +0000 ROA not before: Thu 01 Jan 2026 00:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206600 IP address blocks: 195.244.159.0/24 maxlen: 24 212.70.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.mft rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:db:08:f5:08:4d:c5:ae:80:c0:41:a5:cf:d7:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9 Validity Not Before: Jan 1 00:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85123b4436bb3c62be72d79c43adf00ead0752a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:05:93:c1:9a:39:d2:14:97:5d:79:ce:d1: 8a:61:c9:4e:12:bc:d0:bd:c5:f9:73:70:72:af:50: 42:cf:e6:b5:b4:a3:e8:18:a4:73:27:63:22:46:2b: ab:a5:ef:dd:ab:b6:31:6e:ca:46:fe:57:5b:4c:1c: 44:0f:ab:6f:0a:f3:a5:83:32:a7:75:b5:22:bd:60: ee:ea:8b:66:e9:68:a6:4f:0e:d6:bd:d9:82:eb:18: 3e:35:30:7c:98:3b:ee:36:c7:3a:70:39:5c:34:8c: 1d:35:e3:6e:13:3b:eb:cd:d7:f8:af:4b:8f:63:40: 3b:03:88:ca:6c:62:5f:bd:fe:aa:5a:53:56:82:05: 2d:4b:49:f0:ad:4c:d8:bb:8f:6f:15:02:40:fe:30: 07:4f:20:9b:f4:a9:cc:78:df:51:3c:fd:64:d7:f7: 98:33:d6:4a:e9:59:03:9d:c4:54:fa:f8:e9:a7:07: 78:d9:25:2b:a5:ce:6c:6b:7e:35:68:bf:6f:72:d2: 33:29:39:71:ca:34:0f:df:4d:6e:d9:66:8b:b7:45: f9:ea:f2:a5:78:70:1f:75:b5:d8:5f:9e:5f:6c:31: fa:13:c0:82:3c:56:96:ef:05:f4:80:33:e9:a3:77: 8f:2b:a0:16:b0:9b:e3:83:f5:dc:a0:dc:57:53:5d: 1b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:12:3B:44:36:BB:3C:62:BE:72:D7:9C:43:AD:F0:0E:AD:07:52:A2 X509v3 Authority Key Identifier: keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/hRI7RDa7PGK-ctecQ63wDq0HUqI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.244.159.0/24 212.70.164.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ff:c1:bb:b3:cc:c9:cc:33:41:04:08:41:71:60:84:5c:72: dc:af:72:a4:79:44:38:76:64:c5:65:d8:43:28:1f:40:2f:df: 21:7a:9b:a3:8d:51:07:14:bd:fd:dc:b0:a0:36:d2:c2:22:7a: 32:43:11:b3:86:78:97:60:31:68:e8:ba:af:da:1a:f3:69:fa: fb:fc:1f:b0:50:50:b0:98:c3:2a:12:22:e5:7c:ed:4d:1a:f5: 22:09:ff:a6:a4:3c:7c:4f:54:2f:12:46:76:f0:f7:75:12:5e: 60:67:f0:a8:2a:d1:ef:9e:7a:d3:3b:3f:e9:f1:c8:db:36:b4: 5e:3d:5d:c8:e0:c5:59:d2:1d:ce:b1:d0:a3:df:bf:dd:a3:9e: 9d:d8:21:ee:22:9d:3a:29:5a:a2:2a:cb:97:e8:b7:2c:ad:37: e9:60:8c:d7:9f:0b:c0:ab:da:06:af:e4:e4:43:87:04:68:19: d6:76:9b:6b:c7:d9:23:b6:3e:02:0d:0e:fd:e2:03:26:16:41: da:aa:47:a6:78:1e:a2:96:b0:26:15:3e:35:3f:85:c9:1b:2e: 99:a2:a2:3b:46:1b:ef:da:90:86:e5:1d:74:2c:95:d5:2d:c3: 95:47:e5:30:94:34:b6:ad:6d:7e:f2:6b:ba:b2:5f:8b:98:a8: 98:fd:1c:1a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26tsI9QhNxa6AwEGlz9fDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmNjk4ZWViMmU0OWZjYjVmOWM2NWE5OTg1N2FmMjljZTA2 NjQxZDkwHhcNMjYwMTAxMDAxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTEyM2I0NDM2YmIzYzYyYmU3MmQ3OWM0M2FkZjAwZWFkMDc1MmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5gFk8GaOdIUl115ztGKYclOErzQ vcX5c3Byr1BCz+a1tKPoGKRzJ2MiRiurpe/dq7YxbspG/ldbTBxED6tvCvOlgzKn dbUivWDu6otm6WimTw7WvdmC6xg+NTB8mDvuNsc6cDlcNIwdNeNuEzvrzdf4r0uP Y0A7A4jKbGJfvf6qWlNWggUtS0nwrUzYu49vFQJA/jAHTyCb9KnMeN9RPP1k1/eY M9ZK6VkDncRU+vjppwd42SUrpc5sa341aL9vctIzKTlxyjQP301u2WaLt0X56vKl eHAfdbXYX55fbDH6E8CCPFaW7wX0gDPpo3ePK6AWsJvjg/XcoNxXU10bRQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIUSO0Q2uzxivnLXnEOt8A6tB1KiMB8GA1UdIwQY MBaAFP9pjusuSfy1+cZamYV68pzgZkHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzJtTzZ5NUpfTFg1eGxxWmhYcnluT0JtUWRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNGQ3NWQtOTUzYS00MDM2LTk4Mzkt NTdjZDY4ZDljYjRlLzEvaFJJN1JEYTdQR0stY3RlY1E2M3dEcTBIVXFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNGQ3NWQtOTUzYS00MDM2LTk4MzktNTdjZDY4ZDljYjRl LzEvXzJtTzZ5NUpfTFg1eGxxWmhYcnluT0JtUWRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw/SfAwQA 1EakMA0GCSqGSIb3DQEBCwUAA4IBAQBT/8G7s8zJzDNBBAhBcWCEXHLcr3KkeUQ4 dmTFZdhDKB9AL98hepujjVEHFL393LCgNtLCInoyQxGzhniXYDFo6Lqv2hrzafr7 /B+wUFCwmMMqEiLlfO1NGvUiCf+mpDx8T1QvEkZ28Pd1El5gZ/CoKtHvnnrTOz/p 8cjbNrRePV3I4MVZ0h3OsdCj37/do56d2CHuIp06KVqiKsuX6LcsrTfpYIzXnwvA q9oGr+TkQ4cEaBnWdptrx9kjtj4CDQ794gMmFkHaqkemeB6ilrAmFT41P4XJGy6Z oqI7Rhvv2pCG5R10LJXVLcOVR+UwlDS2rW1+8mu6sl+LmKiY/Rwa -----END CERTIFICATE-----Generated at Tue Jan 27 09:55:34 2026 by rpki-client