This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/H3r1aN7CswMR2gknJhGSZx6ZbDs.roa File: H3r1aN7CswMR2gknJhGSZx6ZbDs.roa (raw, json) Hash identifier: vf+0uJjK2GLA1FakwX8bnQ2csOuaD3Let+wSdJOGjVE= Subject key identifier: 1F:7A:F5:68:DE:C2:B3:03:11:DA:09:27:26:11:92:67:1E:99:6C:3B Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c Certificate serial: 019B7AC78849F18F46582521C40AEEA8A9EB Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/H3r1aN7CswMR2gknJhGSZx6ZbDs.roa Signing time: Thu 01 Jan 2026 18:17:35 +0000 ROA not before: Thu 01 Jan 2026 18:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12722 IP address blocks: 45.8.156.0/24 maxlen: 24 45.85.64.0/24 maxlen: 24 45.85.67.0/24 maxlen: 24 45.144.38.0/24 maxlen: 24 45.145.3.0/24 maxlen: 24 85.8.187.0/24 maxlen: 24 185.21.140.0/24 maxlen: 24 194.32.250.0/24 maxlen: 24 194.61.234.0/24 maxlen: 24 194.61.235.0/24 maxlen: 24 213.139.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.mft rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:88:49:f1:8f:46:58:25:21:c4:0a:ee:a8:a9:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c Validity Not Before: Jan 1 18:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f7af568dec2b30311da0927261192671e996c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:c4:f7:f4:e6:b3:72:10:23:2b:f9:4a:10: d2:34:19:ea:9a:b2:08:0e:29:94:d4:cf:d7:da:68: 54:0c:7c:37:9d:36:ed:09:4d:1b:97:9b:51:10:45: 44:97:27:38:86:09:a0:cf:e1:07:54:50:69:2e:5a: 26:d1:80:2a:56:f9:b5:b1:93:a4:89:03:32:69:b0: a5:2b:03:b4:62:08:63:ae:5d:50:da:53:ff:db:2e: 4c:cc:a8:31:ef:5a:0f:2f:89:70:65:b7:f1:18:b9: b7:bf:1c:eb:d8:40:70:5e:5a:bd:b8:14:bc:e1:1f: 57:aa:70:66:6b:6f:25:35:e2:81:8d:ae:4d:1c:d1: a7:b6:86:44:e0:9e:04:d7:b2:48:59:51:9a:57:be: 54:fd:bb:68:21:4e:f7:db:33:7c:7c:fa:10:e2:4e: 5c:f8:63:e1:65:f5:41:58:b6:ad:82:5a:15:b9:6b: 2c:04:9d:e7:01:0d:54:0d:10:3a:1a:2a:d9:16:0e: bb:34:a2:2c:76:a1:06:1f:04:ff:ac:ad:86:65:75: d9:93:b6:a5:1e:74:63:31:f9:d8:e8:13:c6:d1:47: 32:26:c6:e1:2f:2c:3e:b2:64:10:cb:84:dc:82:ec: 7e:23:14:12:74:8b:a2:24:50:5d:95:96:11:f4:c0: 83:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:7A:F5:68:DE:C2:B3:03:11:DA:09:27:26:11:92:67:1E:99:6C:3B X509v3 Authority Key Identifier: keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/H3r1aN7CswMR2gknJhGSZx6ZbDs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.156.0/24 45.85.64.0/24 45.85.67.0/24 45.144.38.0/24 45.145.3.0/24 85.8.187.0/24 185.21.140.0/24 194.32.250.0/24 194.61.234.0/23 213.139.231.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:2e:72:2b:e9:18:90:04:68:df:c7:6b:e3:ef:22:d8:c1:b3: e4:10:2e:f0:ad:8e:57:64:dd:38:3e:cb:4f:d1:be:7f:ec:52: eb:12:2e:94:6a:fa:22:75:6e:c0:0e:48:3f:54:94:f8:09:98: 9d:26:2d:c6:7c:b1:43:06:b9:02:23:d7:ce:7d:96:e5:2c:7b: fc:2d:8a:ee:f9:72:87:90:82:05:ff:cb:57:f6:8d:af:4e:63: f6:53:9b:e8:8b:2b:59:27:76:cb:82:ec:ff:f1:58:21:c5:0c: 9e:7e:a6:47:f8:ba:8f:f2:22:b6:f9:20:c4:1a:ea:8a:3e:b2: 48:0e:88:b1:25:8d:1a:eb:54:a3:4e:5c:3b:7b:c5:f7:85:d7: 6d:b5:f8:a6:4f:8f:16:0e:3e:ce:32:dd:a4:67:54:09:4a:66: 8e:f0:f2:67:03:ed:b0:b3:0d:a3:c3:e9:b4:29:c8:c2:59:1e: 28:ad:69:f1:e1:1b:34:5b:6c:72:3b:87:15:5e:b7:7e:b1:0d: 10:2a:c3:5d:72:0c:bd:19:8d:0b:00:78:2a:89:c8:d7:25:2c: a4:f1:6f:94:56:38:5f:b8:ca:dd:eb:35:90:0f:7a:6f:ce:34: 9d:b0:42:15:aa:bb:c3:56:ef:a6:98:cb:d3:02:a6:7d:cf:c8: e6:97:53:41 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZt6x4hJ8Y9GWCUhxAruqKnrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjJlMWMyYTUzMTUzMzRiNjZkODBmNzhkNWI1MGI0MmU0 ODBiOWMwHhcNMjYwMTAxMTgxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjdhZjU2OGRlYzJiMzAzMTFkYTA5MjcyNjExOTI2NzFlOTk2YzNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgfE9/Tms3IQIyv5ShDSNBnqmrII DimU1M/X2mhUDHw3nTbtCU0bl5tREEVElyc4hgmgz+EHVFBpLlom0YAqVvm1sZOk iQMyabClKwO0Yghjrl1Q2lP/2y5MzKgx71oPL4lwZbfxGLm3vxzr2EBwXlq9uBS8 4R9XqnBma28lNeKBja5NHNGntoZE4J4E17JIWVGaV75U/btoIU732zN8fPoQ4k5c +GPhZfVBWLatgloVuWssBJ3nAQ1UDRA6GirZFg67NKIsdqEGHwT/rK2GZXXZk7al HnRjMfnY6BPG0UcyJsbhLyw+smQQy4Tcgux+IxQSdIuiJFBdlZYR9MCDfwIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFB969WjewrMDEdoJJyYRkmcemWw7MB8GA1UdIwQY MBaAFGIi4cKlMVM0tm2A941bULQuSAucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEt NTczNzAxYzg0ODMzLzEvSDNyMWFON0Nzd01SMmdrbkpoR1NaeDZaYkRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS85OTliOTctYzczMS00MTkyLTg1ZjEtNTczNzAxYzg0ODMz LzEvWWlMaHdxVXhVelMyYllEM2pWdFF0QzVJQzV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQALQicAwQA LVVAAwQALVVDAwQALZAmAwQALZEDAwQAVQi7AwQAuRWMAwQAwiD6AwQBwj3qAwQA 1YvnMA0GCSqGSIb3DQEBCwUAA4IBAQBLLnIr6RiQBGjfx2vj7yLYwbPkEC7wrY5X ZN04PstP0b5/7FLrEi6UavoidW7ADkg/VJT4CZidJi3GfLFDBrkCI9fOfZblLHv8 LYru+XKHkIIF/8tX9o2vTmP2U5voiytZJ3bLguz/8VghxQyefqZH+LqP8iK2+SDE GuqKPrJIDoixJY0a61SjTlw7e8X3hddttfimT48WDj7OMt2kZ1QJSmaO8PJnA+2w sw2jw+m0KcjCWR4orWnx4Rs0W2xyO4cVXrd+sQ0QKsNdcgy9GY0LAHgqicjXJSyk 8W+UVjhfuMrd6zWQD3pvzjSdsEIVqrvDVu+mmMvTAqZ9z8jml1NB -----END CERTIFICATE-----Generated at Mon Jan 19 20:36:29 2026 by rpki-client