This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/a2f211-8618-43c3-9117-7aeee3ad7436/1/H8HSputPSN9Cls2-aaHKk-qMV3c.roa File: H8HSputPSN9Cls2-aaHKk-qMV3c.roa (raw, json) Hash identifier: BonRmDJ9cgpRsYMcsSITVW9rPDB5KlfByqpBGb76lfA= Subject key identifier: 1F:C1:D2:A6:EB:4F:48:DF:42:96:CD:BE:69:A1:CA:93:EA:8C:57:77 Certificate issuer: /CN=215c52ef97e3d55798efe83474d2030082b9b3a2 Certificate serial: 019B7BA50172ADF363E82030CD3850EF782A Authority key identifier: 21:5C:52:EF:97:E3:D5:57:98:EF:E8:34:74:D2:03:00:82:B9:B3:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVxS75fj1VeY7-g0dNIDAIK5s6I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/a2f211-8618-43c3-9117-7aeee3ad7436/1/H8HSputPSN9Cls2-aaHKk-qMV3c.roa Signing time: Thu 01 Jan 2026 22:19:29 +0000 ROA not before: Thu 01 Jan 2026 22:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16354 IP address blocks: 195.160.182.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/a2f211-8618-43c3-9117-7aeee3ad7436/1/IVxS75fj1VeY7-g0dNIDAIK5s6I.crl rsync://rpki.ripe.net/repository/DEFAULT/79/a2f211-8618-43c3-9117-7aeee3ad7436/1/IVxS75fj1VeY7-g0dNIDAIK5s6I.mft rsync://rpki.ripe.net/repository/DEFAULT/IVxS75fj1VeY7-g0dNIDAIK5s6I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:01:72:ad:f3:63:e8:20:30:cd:38:50:ef:78:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=215c52ef97e3d55798efe83474d2030082b9b3a2 Validity Not Before: Jan 1 22:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1fc1d2a6eb4f48df4296cdbe69a1ca93ea8c5777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fc:75:74:22:f3:65:78:19:cf:c7:b3:58:97: 2e:96:92:0a:b6:6e:c0:45:35:44:82:fb:b3:4e:f6: 32:2c:6a:47:48:db:e0:05:30:a0:bd:50:1b:e4:f3: 0e:87:c1:10:e2:67:c1:61:e2:ab:50:42:45:94:55: 83:92:c3:96:1a:4c:ea:4f:10:07:45:48:e7:04:52: ab:3c:0f:c4:7a:5a:19:a1:e7:a3:3d:8b:7f:43:51: 92:ce:5e:0a:e9:42:e8:fd:42:8d:5e:2e:46:18:72: 84:e7:d2:11:6b:0e:3c:84:18:6a:eb:f0:ba:68:c1: dd:51:5c:1c:36:8e:62:37:f8:20:e0:b9:a6:62:1e: 39:7c:06:9a:49:99:0b:ce:78:75:88:fd:81:c6:0a: c8:69:94:58:dc:ba:64:3c:5d:19:70:b0:b2:d9:0a: da:4d:94:ae:18:f3:fe:de:0e:00:11:14:54:82:f0: a3:4f:5e:69:4d:97:00:c0:f8:10:2a:dc:05:d3:1d: 15:90:ce:5a:12:27:86:11:d0:72:b4:17:b8:e2:d6: 50:cb:40:48:92:3c:e1:01:06:f0:b2:6e:f9:f2:e1: b1:51:5c:81:bf:75:87:d2:c0:b9:b8:40:3f:a2:c1: 84:40:b3:47:2b:5a:f8:25:fe:2a:1d:36:5a:37:f4: a7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C1:D2:A6:EB:4F:48:DF:42:96:CD:BE:69:A1:CA:93:EA:8C:57:77 X509v3 Authority Key Identifier: keyid:21:5C:52:EF:97:E3:D5:57:98:EF:E8:34:74:D2:03:00:82:B9:B3:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVxS75fj1VeY7-g0dNIDAIK5s6I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/a2f211-8618-43c3-9117-7aeee3ad7436/1/H8HSputPSN9Cls2-aaHKk-qMV3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/a2f211-8618-43c3-9117-7aeee3ad7436/1/IVxS75fj1VeY7-g0dNIDAIK5s6I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.160.182.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:17:63:ff:0a:c5:28:96:60:77:1f:d3:12:d9:43:cf:9c:f1: 6f:79:d4:b8:58:90:44:63:eb:b7:a3:62:51:81:5a:6b:53:11: 6c:78:e6:ba:32:bf:3a:28:af:d5:2f:be:13:9a:c4:ce:ad:53: 0d:51:f1:cd:0f:b4:59:59:20:a1:55:ee:33:19:7a:ef:7b:f5: be:f5:d3:a5:39:99:41:78:cc:a3:dc:27:32:e4:49:12:67:fe: a4:ac:59:e4:eb:69:c5:b5:2e:23:0b:3c:d7:93:b9:1f:e7:ee: a7:3c:d4:8d:9f:7a:e6:4e:52:ea:79:4d:b4:ec:ca:80:9c:b7: f7:42:12:ef:77:6d:6d:2f:88:18:6c:e3:89:01:88:22:ce:89: e3:d8:ac:b0:c9:fe:d5:0e:e2:67:1c:64:29:c5:61:45:f4:77: 22:34:9a:46:32:ae:d5:33:07:69:bb:df:e0:98:91:28:e7:31: 14:ee:80:67:b8:2a:e6:0a:21:99:a3:32:58:df:be:58:aa:b0: 30:91:cc:37:27:f9:05:a9:9c:a3:1f:38:ae:e7:73:0d:e2:42: 12:b2:22:3c:5b:a3:db:4e:82:fd:3a:93:c2:aa:d2:30:98:8d: 6d:c4:87:f4:e4:e7:b0:2c:35:e8:8b:6b:d6:eb:76:33:8e:fa: 37:e1:99:83 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pQFyrfNj6CAwzThQ73gqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxNWM1MmVmOTdlM2Q1NTc5OGVmZTgzNDc0ZDIwMzAwODJi OWIzYTIwHhcNMjYwMTAxMjIxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmMxZDJhNmViNGY0OGRmNDI5NmNkYmU2OWExY2E5M2VhOGM1Nzc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfx1dCLzZXgZz8ezWJculpIKtm7A RTVEgvuzTvYyLGpHSNvgBTCgvVAb5PMOh8EQ4mfBYeKrUEJFlFWDksOWGkzqTxAH RUjnBFKrPA/EeloZoeejPYt/Q1GSzl4K6ULo/UKNXi5GGHKE59IRaw48hBhq6/C6 aMHdUVwcNo5iN/gg4LmmYh45fAaaSZkLznh1iP2BxgrIaZRY3LpkPF0ZcLCy2Qra TZSuGPP+3g4AERRUgvCjT15pTZcAwPgQKtwF0x0VkM5aEieGEdBytBe44tZQy0BI kjzhAQbwsm758uGxUVyBv3WH0sC5uEA/osGEQLNHK1r4Jf4qHTZaN/SnrwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB/B0qbrT0jfQpbNvmmhypPqjFd3MB8GA1UdIwQY MBaAFCFcUu+X49VXmO/oNHTSAwCCubOiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVZ4Uzc1ZmoxVmVZNy1nMGROSURBSUs1czZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9hMmYyMTEtODYxOC00M2MzLTkxMTct N2FlZWUzYWQ3NDM2LzEvSDhIU3B1dFBTTjlDbHMyLWFhSEtrLXFNVjNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9hMmYyMTEtODYxOC00M2MzLTkxMTctN2FlZWUzYWQ3NDM2 LzEvSVZ4Uzc1ZmoxVmVZNy1nMGROSURBSUs1czZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBw6C2MA0G CSqGSIb3DQEBCwUAA4IBAQBNF2P/CsUolmB3H9MS2UPPnPFvedS4WJBEY+u3o2JR gVprUxFseOa6Mr86KK/VL74TmsTOrVMNUfHND7RZWSChVe4zGXrve/W+9dOlOZlB eMyj3Ccy5EkSZ/6krFnk62nFtS4jCzzXk7kf5+6nPNSNn3rmTlLqeU207MqAnLf3 QhLvd21tL4gYbOOJAYgizonj2Kywyf7VDuJnHGQpxWFF9HciNJpGMq7VMwdpu9/g mJEo5zEU7oBnuCrmCiGZozJY375YqrAwkcw3J/kFqZyjHziu53MN4kISsiI8W6Pb ToL9OpPCqtIwmI1txIf05OewLDXoi2vW63Yzjvo34ZmD -----END CERTIFICATE-----Generated at Thu Jan 29 13:05:57 2026 by rpki-client