This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ht30x3jhiz1hvZBV0VMbayzRKK4.roa File: ht30x3jhiz1hvZBV0VMbayzRKK4.roa (raw, json) Hash identifier: O7pA/LYdDet2mxhEU5yYj+mrcu9O7mMkBzOJ959zmpc= Subject key identifier: 86:DD:F4:C7:78:E1:8B:3D:61:BD:90:55:D1:53:1B:6B:2C:D1:28:AE Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b Certificate serial: 019B7C133A72C1806E681B1F18931C3129C1 Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ht30x3jhiz1hvZBV0VMbayzRKK4.roa Signing time: Fri 02 Jan 2026 00:19:53 +0000 ROA not before: Fri 02 Jan 2026 00:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62240 IP address blocks: 185.73.218.0/24 maxlen: 24 185.73.219.0/24 maxlen: 24 185.100.158.0/24 maxlen: 24 185.110.128.0/24 maxlen: 24 185.110.129.0/24 maxlen: 24 185.110.130.0/24 maxlen: 24 185.110.131.0/24 maxlen: 24 185.111.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.mft rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 13:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:3a:72:c1:80:6e:68:1b:1f:18:93:1c:31:29:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b Validity Not Before: Jan 2 00:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86ddf4c778e18b3d61bd9055d1531b6b2cd128ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:20:2c:4c:97:a1:f6:05:09:6f:e8:aa:9e:e6: 61:1b:e3:3a:9a:9a:4a:95:5d:96:a3:28:53:68:68: 3b:ec:b6:29:2f:94:c0:01:36:04:6c:d2:ec:00:87: 9b:b4:c8:e7:08:58:b3:28:a3:61:a8:e2:04:84:e3: 55:2b:52:10:29:13:4b:26:04:fc:90:cf:37:0f:09: 45:ad:19:7a:de:ee:8d:40:8a:10:5b:b5:6e:15:ab: 82:bf:13:9e:6f:34:ac:1a:03:b8:29:ff:40:8c:85: 98:f8:45:53:e7:46:ed:af:80:c2:d5:a9:5b:56:7e: 0a:26:aa:06:4a:d3:26:01:9f:91:c6:d8:e6:88:b6: b7:a3:c3:36:43:81:7d:33:6d:27:22:9e:45:2c:a6: b8:98:f1:4e:f3:20:a4:2a:6b:ac:4e:94:9b:4b:8c: e9:96:b0:d3:f8:90:7e:0f:ea:df:ab:b3:0d:97:fb: fc:ab:c7:e0:5b:d5:06:74:81:18:be:1f:cd:21:ee: de:8a:9b:04:62:c1:07:7b:9d:dd:91:86:ae:1d:ad: 67:aa:40:f6:81:a5:6d:c5:5b:3e:25:9e:64:29:8c: c3:70:91:d8:e8:f8:5d:e9:75:31:70:71:d5:44:e9: a2:43:58:33:8f:ff:5a:6f:94:8b:77:5e:d3:b8:8f: 5b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DD:F4:C7:78:E1:8B:3D:61:BD:90:55:D1:53:1B:6B:2C:D1:28:AE X509v3 Authority Key Identifier: keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ht30x3jhiz1hvZBV0VMbayzRKK4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.73.218.0/23 185.100.158.0/24 185.110.128.0/22 185.111.27.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:06:23:1c:51:9e:42:fa:f9:07:91:c5:42:16:95:d1:a2:8a: 8b:70:85:03:da:4f:fc:32:9c:fd:3c:f4:b9:ca:b5:5c:7d:68: 0f:4e:7f:66:4a:ac:ea:3c:a2:15:25:85:8d:f3:89:3f:33:0c: a4:4c:f8:de:d7:54:d7:34:6f:95:b3:88:6e:71:90:04:06:31: 63:95:30:fa:ef:f6:31:20:55:69:62:64:ba:b5:65:91:0d:9c: cf:03:05:54:2a:f1:9b:f2:a1:60:27:47:83:f9:6b:7a:5c:e7: 28:20:56:47:96:eb:3e:12:63:8d:56:de:80:4a:b3:b4:5e:88: 9b:10:e3:be:4e:87:89:f3:c5:37:96:89:97:30:eb:5d:c5:64: 15:48:24:22:77:a3:32:49:88:c0:35:07:17:18:da:f2:ff:ec: 5b:2f:c2:8f:c6:2e:37:47:fd:eb:4d:81:b9:66:04:10:0d:c0: e4:f5:4c:aa:6b:35:7c:57:50:d4:48:eb:ae:37:d7:26:0c:91: cb:6e:31:a2:50:db:50:ab:7a:1b:bb:11:49:7c:f0:bb:3d:4a: ad:db:e1:f2:47:d4:e5:22:5b:6f:0d:03:74:15:6a:a7:06:28: b3:17:95:85:fc:a5:0c:6c:08:4e:7b:fa:28:7c:86:7f:ab:eb: 5a:47:e2:51 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt8EzpywYBuaBsfGJMcMSnBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4 OWU4NWIwHhcNMjYwMTAyMDAxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmRkZjRjNzc4ZTE4YjNkNjFiZDkwNTVkMTUzMWI2YjJjZDEyOGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCAsTJeh9gUJb+iqnuZhG+M6mppK lV2WoyhTaGg77LYpL5TAATYEbNLsAIebtMjnCFizKKNhqOIEhONVK1IQKRNLJgT8 kM83DwlFrRl63u6NQIoQW7VuFauCvxOebzSsGgO4Kf9AjIWY+EVT50btr4DC1alb Vn4KJqoGStMmAZ+RxtjmiLa3o8M2Q4F9M20nIp5FLKa4mPFO8yCkKmusTpSbS4zp lrDT+JB+D+rfq7MNl/v8q8fgW9UGdIEYvh/NIe7eipsEYsEHe53dkYauHa1nqkD2 gaVtxVs+JZ5kKYzDcJHY6Phd6XUxcHHVROmiQ1gzj/9ab5SLd17TuI9b6QIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFIbd9Md44Ys9Yb2QVdFTG2ss0SiuMB8GA1UdIwQY MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt NmVlNTM0ZDkyZTUyLzEvaHQzMHgzamhpejFodlpCVjBWTWJheXpSS0s0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBuUnaAwQA uWSeAwQCuW6AAwQAuW8bMA0GCSqGSIb3DQEBCwUAA4IBAQCfBiMcUZ5C+vkHkcVC FpXRooqLcIUD2k/8Mpz9PPS5yrVcfWgPTn9mSqzqPKIVJYWN84k/MwykTPje11TX NG+Vs4hucZAEBjFjlTD67/YxIFVpYmS6tWWRDZzPAwVUKvGb8qFgJ0eD+Wt6XOco IFZHlus+EmONVt6ASrO0XoibEOO+ToeJ88U3lomXMOtdxWQVSCQid6MySYjANQcX GNry/+xbL8KPxi43R/3rTYG5ZgQQDcDk9UyqazV8V1DUSOuuN9cmDJHLbjGiUNtQ q3obuxFJfPC7PUqt2+HyR9TlIltvDQN0FWqnBiizF5WF/KUMbAhOe/oofIZ/q+ta R+JR -----END CERTIFICATE-----Generated at Tue Jan 20 19:51:19 2026 by rpki-client