This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/hckySekDjcPjJjmCb8xV-0niibA.roa File: hckySekDjcPjJjmCb8xV-0niibA.roa (raw, json) Hash identifier: rABvuPwZ4k/dR/LQvlCJNpnmkfZ6RaaAKF1LFAoY6XM= Subject key identifier: 85:C9:32:49:E9:03:8D:C3:E3:26:39:82:6F:CC:55:FB:49:E2:89:B0 Certificate issuer: /CN=b443914a48e5dae5a756b1e3b8fbe437ee0d8b0c Certificate serial: 019B77C69CD9F7504E8CC3F5288444EDE885 Authority key identifier: B4:43:91:4A:48:E5:DA:E5:A7:56:B1:E3:B8:FB:E4:37:EE:0D:8B:0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEORSkjl2uWnVrHjuPvkN-4Niww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/hckySekDjcPjJjmCb8xV-0niibA.roa Signing time: Thu 01 Jan 2026 04:17:43 +0000 ROA not before: Thu 01 Jan 2026 04:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 193.109.126.0/24 maxlen: 24 195.22.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/tEORSkjl2uWnVrHjuPvkN-4Niww.crl rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/tEORSkjl2uWnVrHjuPvkN-4Niww.mft rsync://rpki.ripe.net/repository/DEFAULT/tEORSkjl2uWnVrHjuPvkN-4Niww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:9c:d9:f7:50:4e:8c:c3:f5:28:84:44:ed:e8:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b443914a48e5dae5a756b1e3b8fbe437ee0d8b0c Validity Not Before: Jan 1 04:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85c93249e9038dc3e32639826fcc55fb49e289b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b9:78:e4:ba:26:40:ca:31:13:09:d6:54:d3: ba:e8:63:fb:1c:70:b1:ab:f4:b1:b0:44:5b:fa:53: 0f:69:5b:87:65:31:15:88:61:ea:fa:7f:5c:bc:6b: 9b:33:25:5a:52:a9:0a:38:bf:cc:1a:2a:f8:27:1d: 5d:52:8f:12:fc:ee:5a:ed:71:7f:25:e4:9a:e2:03: 95:e0:2e:7e:4e:16:6f:ca:3b:90:b2:f1:c6:a0:fa: 60:60:e7:59:b1:b0:90:98:00:4b:e4:22:53:0b:0b: f0:9e:6b:56:db:b3:2d:63:b4:a0:8f:c5:48:07:38: 41:24:e8:4c:89:50:aa:af:f8:83:d5:0f:97:7b:0b: 05:de:24:e8:9b:57:55:40:89:19:10:60:4f:6f:d4: f0:31:20:63:18:37:3b:da:fc:73:98:2a:8f:53:76: 75:35:8d:9b:ac:0f:28:28:38:1a:56:df:e9:c5:73: f2:ca:35:7d:31:9d:34:e5:64:56:96:5e:08:ef:9d: 32:66:9d:fe:a8:d8:92:76:b6:4d:e7:90:b1:19:bd: 5f:db:01:a8:a9:70:d3:01:7e:19:da:b9:3b:0c:55: 66:c0:65:f4:72:a0:29:dc:10:75:f9:75:2d:c2:4e: 56:7a:e4:30:72:b2:01:c3:3d:d4:21:be:ce:47:1e: 5c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C9:32:49:E9:03:8D:C3:E3:26:39:82:6F:CC:55:FB:49:E2:89:B0 X509v3 Authority Key Identifier: keyid:B4:43:91:4A:48:E5:DA:E5:A7:56:B1:E3:B8:FB:E4:37:EE:0D:8B:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEORSkjl2uWnVrHjuPvkN-4Niww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/hckySekDjcPjJjmCb8xV-0niibA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/6920d2-a7a6-41a5-96e0-314ef746d8a6/1/tEORSkjl2uWnVrHjuPvkN-4Niww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.109.126.0/24 195.22.138.0/23 Signature Algorithm: sha256WithRSAEncryption 05:2a:f5:61:84:9b:8e:85:a0:cd:15:99:5a:b0:0a:a2:75:b9: 9d:fa:9a:3d:e9:08:39:d7:67:b3:1b:e0:a9:45:fb:fb:73:bb: 16:d2:f3:35:2f:a8:df:18:e8:50:99:1d:16:a6:62:05:d6:ee: 7d:0d:81:68:95:a6:2e:db:32:6c:f9:17:70:3b:bb:88:b1:e6: 3f:c0:bc:9e:84:5e:32:e2:fd:5d:16:d9:8e:23:6a:15:1b:d0: ea:01:32:7f:40:6e:68:e3:9f:c7:40:c6:13:5c:5a:a6:6a:6e: 26:5b:b1:6c:d0:ba:f3:58:c4:7e:21:9f:75:2a:6a:d3:56:3f: 36:74:1d:9f:44:e4:e2:80:a2:01:83:63:33:64:d1:1b:eb:d4: 69:5b:77:52:30:b2:73:1a:26:3a:50:97:92:98:34:0e:64:f3: c0:46:f8:ad:6e:6a:0b:52:57:52:7a:40:7c:93:f2:f4:f7:84: 81:ed:20:8b:ec:28:f6:b2:1c:b5:ad:b9:40:0b:91:58:10:d1: d0:7d:1b:46:f9:46:19:d9:30:16:c1:86:ae:62:99:2a:c8:9f: 1a:e5:de:9c:3b:98:26:09:bc:1b:2f:f2:8a:c2:2a:d3:73:ca: 11:18:47:bc:54:93:71:08:61:7b:e5:f6:28:fb:78:e3:e1:75: 55:a4:0c:64 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xpzZ91BOjMP1KIRE7eiFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NDM5MTRhNDhlNWRhZTVhNzU2YjFlM2I4ZmJlNDM3ZWUw ZDhiMGMwHhcNMjYwMTAxMDQxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWM5MzI0OWU5MDM4ZGMzZTMyNjM5ODI2ZmNjNTVmYjQ5ZTI4OWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7l45LomQMoxEwnWVNO66GP7HHCx q/SxsERb+lMPaVuHZTEViGHq+n9cvGubMyVaUqkKOL/MGir4Jx1dUo8S/O5a7XF/ JeSa4gOV4C5+ThZvyjuQsvHGoPpgYOdZsbCQmABL5CJTCwvwnmtW27MtY7Sgj8VI BzhBJOhMiVCqr/iD1Q+XewsF3iTom1dVQIkZEGBPb9TwMSBjGDc72vxzmCqPU3Z1 NY2brA8oKDgaVt/pxXPyyjV9MZ005WRWll4I750yZp3+qNiSdrZN55CxGb1f2wGo qXDTAX4Z2rk7DFVmwGX0cqAp3BB1+XUtwk5WeuQwcrIBwz3UIb7ORx5cwwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIXJMknpA43D4yY5gm/MVftJ4omwMB8GA1UdIwQY MBaAFLRDkUpI5drlp1ax47j75DfuDYsMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEVPUlNramwydVduVnJIanVQdmtOLTROaXd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC82OTIwZDItYTdhNi00MWE1LTk2ZTAt MzE0ZWY3NDZkOGE2LzEvaGNreVNla0RqY1BqSmptQ2I4eFYtMG5paWJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC82OTIwZDItYTdhNi00MWE1LTk2ZTAtMzE0ZWY3NDZkOGE2 LzEvdEVPUlNramwydVduVnJIanVQdmtOLTROaXd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwW1+AwQB wxaKMA0GCSqGSIb3DQEBCwUAA4IBAQAFKvVhhJuOhaDNFZlasAqidbmd+po96Qg5 12ezG+CpRfv7c7sW0vM1L6jfGOhQmR0WpmIF1u59DYFolaYu2zJs+RdwO7uIseY/ wLyehF4y4v1dFtmOI2oVG9DqATJ/QG5o45/HQMYTXFqmam4mW7Fs0LrzWMR+IZ91 KmrTVj82dB2fROTigKIBg2MzZNEb69RpW3dSMLJzGiY6UJeSmDQOZPPARvitbmoL UldSekB8k/L094SB7SCL7Cj2shy1rblAC5FYENHQfRtG+UYZ2TAWwYauYpkqyJ8a 5d6cO5gmCbwbL/KKwirTc8oRGEe8VJNxCGF75fYo+3jj4XVVpAxk -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:42 2026 by rpki-client