This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/hzuKIdZ3gIbCkZehkpdrWevAxmw.roa File: hzuKIdZ3gIbCkZehkpdrWevAxmw.roa (raw, json) Hash identifier: D1viKAayX1t1nvkkRSxzUa3YxX4UEEikcKEBzJm9yww= Subject key identifier: 87:3B:8A:21:D6:77:80:86:C2:91:97:A1:92:97:6B:59:EB:C0:C6:6C Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430 Certificate serial: 019B7FF19971A93C76837D836C92D5E00DD7 Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/hzuKIdZ3gIbCkZehkpdrWevAxmw.roa Signing time: Fri 02 Jan 2026 18:21:38 +0000 ROA not before: Fri 02 Jan 2026 18:21:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211557 IP address blocks: 212.16.87.0/24 maxlen: 24 212.16.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:99:71:a9:3c:76:83:7d:83:6c:92:d5:e0:0d:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430 Validity Not Before: Jan 2 18:21:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=873b8a21d6778086c29197a192976b59ebc0c66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:48:4d:bd:3e:23:b3:16:d5:6a:cf:ce:e6:4c: fa:0e:0d:7a:52:aa:14:3b:21:74:50:41:a8:c2:10: 48:2b:81:89:a8:d5:c4:31:d8:9e:8d:5f:64:eb:55: 86:48:b4:0d:ce:29:6c:4e:29:57:0e:39:73:29:0c: a5:14:30:f6:4e:72:2f:87:58:75:ba:5d:fe:89:72: ed:8c:04:3e:ee:cc:16:2a:85:d5:68:a3:bf:02:37: 05:99:92:29:6a:ec:d8:7c:f4:c9:8d:91:b8:03:e6: 37:b9:11:95:08:7a:d5:0e:fe:6a:e2:62:4c:07:7d: a3:f5:82:cc:23:a4:2d:24:f3:f7:78:65:ff:af:b4: b9:08:7e:2d:32:ca:c1:11:87:af:f5:19:1c:9f:0a: 4e:74:c5:d3:27:1c:34:2c:6e:c8:ed:10:40:46:c4: c4:34:38:21:4e:ee:a9:39:e1:67:31:43:5b:bc:f6: c3:4a:92:11:b0:bc:c6:e3:1f:fa:9c:12:b7:e6:07: c0:e1:39:26:b3:85:98:16:a7:79:a2:95:81:6e:d2: 5d:9d:fe:e4:c7:66:0f:7e:89:dc:09:01:a3:8a:1b: 20:1c:4b:a1:6e:16:99:dc:a5:6a:30:54:46:5e:f6: 16:be:c6:41:63:c0:96:35:72:9d:21:d2:c2:41:04: 67:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3B:8A:21:D6:77:80:86:C2:91:97:A1:92:97:6B:59:EB:C0:C6:6C X509v3 Authority Key Identifier: keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/hzuKIdZ3gIbCkZehkpdrWevAxmw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.16.87.0/24 212.16.94.0/24 Signature Algorithm: sha256WithRSAEncryption 31:16:93:04:64:14:39:14:c3:ca:34:67:5c:9f:8d:e9:6a:84: 5f:c0:67:7d:42:4b:98:c1:7a:ab:05:6f:08:46:e4:33:4d:8d: 82:64:be:4b:a6:9a:bc:51:77:ef:08:f5:c1:1a:3a:35:17:0b: 72:c2:98:cc:a1:94:87:d8:d0:94:84:05:79:e0:08:55:fd:50: c0:88:29:03:99:db:96:37:52:62:bc:96:48:e5:a7:2d:e0:e6: 7d:8e:70:26:8d:ed:45:5a:44:61:35:98:02:91:c1:51:bd:14: 75:0a:af:72:27:03:91:60:0b:c0:3b:92:0a:d5:b3:d9:bb:da: 55:08:c2:5d:73:66:15:8a:a5:2e:e9:f8:5f:9f:2c:9c:7e:8b: 43:65:03:c0:df:ce:8f:21:89:d0:aa:d3:41:e0:8a:d0:e3:10: 94:de:4d:d0:b4:8e:bd:7b:41:20:9c:4a:b5:c3:8d:3b:19:4d: 3c:c3:31:0c:f2:81:d4:c8:1f:12:c0:86:ae:15:fe:3e:0e:9a: 68:42:66:e2:c9:2c:75:06:95:4e:38:48:b2:8a:03:01:55:ee: 91:17:a5:b4:cc:82:b6:bd:05:17:47:a5:c1:b0:82:f7:b3:f1: d7:30:38:52:46:75:14:15:7b:3e:70:03:7f:70:0e:2a:b0:30: 8f:b3:ff:87 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/8ZlxqTx2g32DbJLV4A3XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj NWY0MzAwHhcNMjYwMTAyMTgyMTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzNiOGEyMWQ2Nzc4MDg2YzI5MTk3YTE5Mjk3NmI1OWViYzBjNjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0hNvT4jsxbVas/O5kz6Dg16UqoU OyF0UEGowhBIK4GJqNXEMdiejV9k61WGSLQNzilsTilXDjlzKQylFDD2TnIvh1h1 ul3+iXLtjAQ+7swWKoXVaKO/AjcFmZIpauzYfPTJjZG4A+Y3uRGVCHrVDv5q4mJM B32j9YLMI6QtJPP3eGX/r7S5CH4tMsrBEYev9RkcnwpOdMXTJxw0LG7I7RBARsTE NDghTu6pOeFnMUNbvPbDSpIRsLzG4x/6nBK35gfA4Tkms4WYFqd5opWBbtJdnf7k x2YPfoncCQGjihsgHEuhbhaZ3KVqMFRGXvYWvsZBY8CWNXKdIdLCQQRncwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIc7iiHWd4CGwpGXoZKXa1nrwMZsMB8GA1UdIwQY MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt MmEwOWNjNTNhODA1LzEvaHp1S0lkWjNnSWJDa1plaGtwZHJXZXZBeG13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1 LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1BBXAwQA 1BBeMA0GCSqGSIb3DQEBCwUAA4IBAQAxFpMEZBQ5FMPKNGdcn43paoRfwGd9QkuY wXqrBW8IRuQzTY2CZL5Lppq8UXfvCPXBGjo1FwtywpjMoZSH2NCUhAV54AhV/VDA iCkDmduWN1JivJZI5act4OZ9jnAmje1FWkRhNZgCkcFRvRR1Cq9yJwORYAvAO5IK 1bPZu9pVCMJdc2YViqUu6fhfnyycfotDZQPA386PIYnQqtNB4IrQ4xCU3k3QtI69 e0EgnEq1w407GU08wzEM8oHUyB8SwIauFf4+DppoQmbiySx1BpVOOEiyigMBVe6R F6W0zIK2vQUXR6XBsIL3s/HXMDhSRnUUFXs+cAN/cA4qsDCPs/+H -----END CERTIFICATE-----Generated at Wed Jan 21 04:03:07 2026 by rpki-client