This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Hij1fEGXM5JL0YmysS4-doWuhRM.roa File: Hij1fEGXM5JL0YmysS4-doWuhRM.roa (raw, json) Hash identifier: xKVLLn9s2nrAAh+M1Y474nyyVJ50izRQ7WA2bXxk6kY= Subject key identifier: 1E:28:F5:7C:41:97:33:92:4B:D1:89:B2:B1:2E:3E:76:85:AE:85:13 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37CF1EDBB19CD0567E26C3580B1D68 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Hij1fEGXM5JL0YmysS4-doWuhRM.roa Signing time: Fri 02 Jan 2026 10:19:05 +0000 ROA not before: Fri 02 Jan 2026 10:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 262287 IP address blocks: 14.102.60.0/24 maxlen: 24 81.95.48.0/24 maxlen: 24 81.95.49.0/24 maxlen: 24 92.51.236.0/24 maxlen: 24 92.51.237.0/24 maxlen: 24 103.125.76.0/24 maxlen: 24 192.140.222.0/24 maxlen: 24 192.140.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:cf:1e:db:b1:9c:d0:56:7e:26:c3:58:0b:1d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e28f57c419733924bd189b2b12e3e7685ae8513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f9:16:ca:f4:b6:a2:60:38:9a:69:eb:86:05: 89:29:87:22:39:8c:c7:85:57:8c:8d:86:3b:f2:a6: 7a:e6:8a:aa:fe:5c:e0:20:87:fa:ec:fd:0f:91:38: 2b:10:23:13:d5:e9:d8:2c:3b:ed:48:b1:28:47:a9: 23:4a:75:34:9e:8a:e5:24:ba:fd:68:94:71:08:c5: d4:b7:26:b6:48:f7:e3:4d:85:8e:17:23:ce:5b:3d: 58:b0:c7:8b:b0:42:4c:b0:ad:59:dd:05:b2:e5:2a: 70:ea:59:ec:fe:8b:10:bf:cf:6d:2e:e8:89:b0:c9: 6d:67:a2:f6:2f:4b:3c:ce:05:64:62:ff:02:f2:f4: 99:5f:47:60:42:89:4a:2f:cd:41:10:ba:79:6a:e1: 99:b3:ab:42:47:3a:5e:14:0b:58:49:52:cd:ef:77: d7:5d:35:43:bf:a9:a1:72:c6:6d:60:ca:6f:9f:4b: d6:9a:cd:a1:47:44:72:7e:dc:0a:17:77:cb:b3:8b: cc:fb:49:d4:2d:dd:ce:7a:64:ab:a8:72:ac:c0:a7: 5c:21:15:2c:eb:5e:d7:16:8c:e8:2f:7c:b1:b3:e1: 7d:aa:ed:46:54:f0:11:3c:fb:bb:77:22:75:2a:57: 8e:1c:d9:26:a5:e2:23:f9:ff:52:c7:91:e8:28:49: aa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:28:F5:7C:41:97:33:92:4B:D1:89:B2:B1:2E:3E:76:85:AE:85:13 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/Hij1fEGXM5JL0YmysS4-doWuhRM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.102.60.0/24 81.95.48.0/23 92.51.236.0/23 103.125.76.0/24 192.140.222.0/23 Signature Algorithm: sha256WithRSAEncryption be:fa:4e:03:92:3d:5c:e3:8e:39:1d:bf:5e:99:21:a2:2f:7a: 3b:d6:f6:b5:e6:30:94:8f:d9:f7:47:50:1b:9a:10:2b:6c:26: 8e:ab:d2:1a:dc:e5:b2:c0:73:a4:42:55:70:30:29:45:12:2c: f8:ff:83:60:3e:fd:ea:a9:a6:e3:fc:5c:52:f7:ab:37:e7:84: 33:cc:3e:1c:66:b6:1b:20:86:94:09:04:3a:55:b5:84:e7:90: 32:95:6f:33:6a:1d:62:43:da:c4:56:c8:d2:a3:5c:98:b6:8c: c1:a4:32:b3:47:82:f1:de:ee:0f:5d:ac:34:0c:92:b3:74:87: ad:5d:65:c5:bc:87:25:33:02:19:20:b2:1e:6c:fb:f0:15:0f: 21:c8:06:94:8f:10:9d:6e:e7:d0:0d:f2:10:c1:22:a9:24:d1: f7:3f:fa:2c:71:8c:9f:80:67:99:c4:8c:65:29:5a:5a:fd:0f: 32:c0:df:71:23:af:82:f1:ad:d3:90:66:70:3a:e2:9a:ba:98: 4c:2d:3e:3d:a2:f5:05:36:55:e1:88:08:8f:e0:e4:85:ae:b4: 18:72:88:b7:2f:f0:d5:60:08:7b:4b:c8:4d:d0:7d:59:73:19: a1:03:fe:76:cc:a8:aa:44:3d:e9:c1:fa:e6:9a:9c:f2:5d:4a: 72:d6:0d:6e -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt+N88e27Gc0FZ+JsNYCx1oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTI4ZjU3YzQxOTczMzkyNGJkMTg5YjJiMTJlM2U3Njg1YWU4NTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/kWyvS2omA4mmnrhgWJKYciOYzH hVeMjYY78qZ65oqq/lzgIIf67P0PkTgrECMT1enYLDvtSLEoR6kjSnU0norlJLr9 aJRxCMXUtya2SPfjTYWOFyPOWz1YsMeLsEJMsK1Z3QWy5Spw6lns/osQv89tLuiJ sMltZ6L2L0s8zgVkYv8C8vSZX0dgQolKL81BELp5auGZs6tCRzpeFAtYSVLN73fX XTVDv6mhcsZtYMpvn0vWms2hR0RyftwKF3fLs4vM+0nULd3OemSrqHKswKdcIRUs 617XFozoL3yxs+F9qu1GVPARPPu7dyJ1KleOHNkmpeIj+f9Sx5HoKEmqJwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFB4o9XxBlzOSS9GJsrEuPnaFroUTMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvSGlqMWZFR1hNNUpMMFlteXNTNC1kb1d1aFJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQADmY8AwQB UV8wAwQBXDPsAwQAZ31MAwQBwIzeMA0GCSqGSIb3DQEBCwUAA4IBAQC++k4Dkj1c 4445Hb9emSGiL3o71va15jCUj9n3R1AbmhArbCaOq9Ia3OWywHOkQlVwMClFEiz4 /4NgPv3qqabj/FxS96s354QzzD4cZrYbIIaUCQQ6VbWE55AylW8zah1iQ9rEVsjS o1yYtozBpDKzR4Lx3u4PXaw0DJKzdIetXWXFvIclMwIZILIebPvwFQ8hyAaUjxCd bufQDfIQwSKpJNH3P/oscYyfgGeZxIxlKVpa/Q8ywN9xI6+C8a3TkGZwOuKauphM LT49ovUFNlXhiAiP4OSFrrQYcoi3L/DVYAh7S8hN0H1ZcxmhA/52zKiqRD3pwfrm mpzyXUpy1g1u -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:07 2026 by rpki-client