This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/hdGGuUW7w7lu19dOukQNCJdWtzY.roa File: hdGGuUW7w7lu19dOukQNCJdWtzY.roa (raw, json) Hash identifier: 6vH3xdgt47fTM5+WjM7MrmGzDZai/lOYV54DW8UACVg= Subject key identifier: 85:D1:86:B9:45:BB:C3:B9:6E:D7:D7:4E:BA:44:0D:08:97:56:B7:36 Certificate issuer: /CN=bf8d081c96fa7d0fc2a9d32aedd50c23a61c6f11 Certificate serial: 019BE9BF59D3F1D879949CE79C1EEA5D3363 Authority key identifier: BF:8D:08:1C:96:FA:7D:0F:C2:A9:D3:2A:ED:D5:0C:23:A6:1C:6F:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/hdGGuUW7w7lu19dOukQNCJdWtzY.roa Signing time: Fri 23 Jan 2026 07:26:30 +0000 ROA not before: Fri 23 Jan 2026 07:26:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208344 IP address blocks: 46.183.17.0/24 maxlen: 24 194.110.221.0/24 maxlen: 24 2a01:ff00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.crl rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft rsync://rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e9:bf:59:d3:f1:d8:79:94:9c:e7:9c:1e:ea:5d:33:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf8d081c96fa7d0fc2a9d32aedd50c23a61c6f11 Validity Not Before: Jan 23 07:26:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85d186b945bbc3b96ed7d74eba440d089756b736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8a:49:32:c9:b2:4f:8c:01:81:38:47:cc:a8: c9:e4:46:b8:34:d7:e9:74:c2:f2:df:2d:b1:07:ae: f7:16:88:fc:6d:5b:85:f4:aa:7c:c3:9b:2c:f3:b6: 4b:52:92:e9:9b:b7:35:5e:21:20:18:ff:b4:88:91: 76:13:ed:1b:be:40:6b:3a:ba:db:11:7c:44:a7:4d: af:1e:33:5a:e2:f6:ef:77:4a:c7:dc:ce:89:c7:9a: 90:0f:4d:4e:bb:f4:ba:8f:3a:5d:46:39:80:04:9b: 0b:b4:2d:87:5d:80:f6:35:3f:82:a8:8c:71:7f:8c: 0a:19:d1:16:65:cd:6f:cf:a5:95:ab:b0:f6:68:ec: 99:ae:7a:41:0f:49:ce:c5:5e:fb:78:2b:ff:65:73: 46:a0:66:cf:31:d5:13:57:1f:cf:35:43:92:d8:b1: 1f:fe:cb:03:3e:c7:4c:cb:90:f3:db:7c:99:4f:36: cd:00:7e:b3:58:d8:d7:e7:3e:2f:72:42:28:ce:c2: 84:d8:fd:b7:09:c1:d6:9d:4d:b0:00:11:15:e8:ac: 7f:9f:6d:1c:cb:da:73:03:b3:4a:7e:b5:ee:71:1e: b4:a2:7c:38:fc:10:57:47:48:99:c1:37:fb:85:3e: 22:36:10:cf:5f:70:7b:fb:db:97:2a:05:b9:8c:cc: 72:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D1:86:B9:45:BB:C3:B9:6E:D7:D7:4E:BA:44:0D:08:97:56:B7:36 X509v3 Authority Key Identifier: keyid:BF:8D:08:1C:96:FA:7D:0F:C2:A9:D3:2A:ED:D5:0C:23:A6:1C:6F:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/hdGGuUW7w7lu19dOukQNCJdWtzY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.183.17.0/24 194.110.221.0/24 IPv6: 2a01:ff00::/29 Signature Algorithm: sha256WithRSAEncryption 04:6d:f7:ba:d6:18:7c:2d:f7:e9:3d:41:12:07:53:5d:80:0d: 77:9e:17:fb:6d:82:d9:18:fd:d3:5c:e7:b9:89:8a:dc:3f:5a: fd:70:42:79:e2:17:30:4e:f6:cd:a2:69:b4:98:5b:42:d0:1c: 77:df:b9:9c:e5:3e:8e:7c:a9:e8:ce:dd:88:f3:1f:0a:9f:b5: ad:07:84:bd:10:ba:48:84:65:b9:62:3a:4b:a0:90:90:db:66: 22:37:7e:85:4c:43:0b:80:16:27:d6:9a:df:71:9e:38:69:cd: 4b:ee:f7:20:e5:3e:ae:b5:7f:91:a4:39:ba:f3:55:b1:07:be: 6c:42:13:28:08:cf:16:30:d8:59:b9:87:ba:a6:05:72:5c:95: ca:82:c1:bb:50:05:ad:c5:53:8b:d8:b6:ba:73:3c:9a:3d:4b: 28:e3:10:6b:ac:a4:20:aa:f5:51:0e:c0:cc:15:af:50:53:f0: 6e:1f:c5:4f:8e:13:61:8f:b3:4a:69:66:21:15:7c:da:8b:00: fa:7b:5b:23:3f:67:24:b0:65:38:4f:df:ce:ed:98:1f:47:a2: ac:e9:97:d0:b0:58:c6:8c:99:fb:ba:7f:8b:5a:07:9d:53:4f: ad:92:65:63:41:5a:cc:f5:3b:c3:1a:99:7c:0d:55:2a:76:c4: 9e:dd:3b:86 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZvpv1nT8dh5lJznnB7qXTNjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmOGQwODFjOTZmYTdkMGZjMmE5ZDMyYWVkZDUwYzIzYTYx YzZmMTEwHhcNMjYwMTIzMDcyNjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWQxODZiOTQ1YmJjM2I5NmVkN2Q3NGViYTQ0MGQwODk3NTZiNzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIpJMsmyT4wBgThHzKjJ5Ea4NNfp dMLy3y2xB673Foj8bVuF9Kp8w5ss87ZLUpLpm7c1XiEgGP+0iJF2E+0bvkBrOrrb EXxEp02vHjNa4vbvd0rH3M6Jx5qQD01Ou/S6jzpdRjmABJsLtC2HXYD2NT+CqIxx f4wKGdEWZc1vz6WVq7D2aOyZrnpBD0nOxV77eCv/ZXNGoGbPMdUTVx/PNUOS2LEf /ssDPsdMy5Dz23yZTzbNAH6zWNjX5z4vckIozsKE2P23CcHWnU2wABEV6Kx/n20c y9pzA7NKfrXucR60onw4/BBXR0iZwTf7hT4iNhDPX3B7+9uXKgW5jMxy5QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFIXRhrlFu8O5btfXTrpEDQiXVrc2MB8GA1UdIwQY MBaAFL+NCByW+n0PwqnTKu3VDCOmHG8RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjQwSUhKYjZmUV9DcWRNcTdkVU1JNlljYnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni83ZjZmOTYtNjY0Yy00YzYxLWJkMjUt MDk3NGYwOTg3OWE5LzEvaGRHR3VVVzd3N2x1MTlkT3VrUU5DSmRXdHpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni83ZjZmOTYtNjY0Yy00YzYxLWJkMjUtMDk3NGYwOTg3OWE5 LzEvdjQwSUhKYjZmUV9DcWRNcTdkVU1JNlljYnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQALrcRAwQA wm7dMA0EAgACMAcDBQMqAf8AMA0GCSqGSIb3DQEBCwUAA4IBAQAEbfe61hh8Lffp PUESB1NdgA13nhf7bYLZGP3TXOe5iYrcP1r9cEJ54hcwTvbNomm0mFtC0Bx337mc 5T6OfKnozt2I8x8Kn7WtB4S9ELpIhGW5YjpLoJCQ22YiN36FTEMLgBYn1prfcZ44 ac1L7vcg5T6utX+RpDm681WxB75sQhMoCM8WMNhZuYe6pgVyXJXKgsG7UAWtxVOL 2La6czyaPUso4xBrrKQgqvVRDsDMFa9QU/BuH8VPjhNhj7NKaWYhFXzaiwD6e1sj P2cksGU4T9/O7ZgfR6Ks6ZfQsFjGjJn7un+LWgedU0+tkmVjQVrM9TvDGpl8DVUq dsSe3TuG -----END CERTIFICATE-----Generated at Tue Feb 10 00:08:21 2026 by rpki-client