This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/h1p2BzAieyl1ApnxPEttQPuDtWU.roa File: h1p2BzAieyl1ApnxPEttQPuDtWU.roa (raw, json) Hash identifier: T9Vp6UskSb/GKkOMqcCRytqZocUe4Mj13FcfGtvSquU= Subject key identifier: 87:5A:76:07:30:22:7B:29:75:02:99:F1:3C:4B:6D:40:FB:83:B5:65 Certificate issuer: /CN=1fc5955940bbd7555df0a2e417379fc447ef0cdc Certificate serial: 019B7BA3A22FF0ECFD799FF637CD20A4F095 Authority key identifier: 1F:C5:95:59:40:BB:D7:55:5D:F0:A2:E4:17:37:9F:C4:47:EF:0C:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/h1p2BzAieyl1ApnxPEttQPuDtWU.roa Signing time: Thu 01 Jan 2026 22:18:00 +0000 ROA not before: Thu 01 Jan 2026 22:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 45.159.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/H8WVWUC711Vd8KLkFzefxEfvDNw.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/H8WVWUC711Vd8KLkFzefxEfvDNw.mft rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:a2:2f:f0:ec:fd:79:9f:f6:37:cd:20:a4:f0:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fc5955940bbd7555df0a2e417379fc447ef0cdc Validity Not Before: Jan 1 22:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=875a760730227b29750299f13c4b6d40fb83b565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:74:89:75:19:bf:76:ad:f1:a2:5e:c1:55:0e: 47:51:52:a7:b8:6b:9d:6b:01:3b:cd:9d:c1:e4:67: 14:b1:dd:88:64:f9:81:4c:ba:e3:da:c7:83:a0:b3: 7e:dc:10:f2:aa:85:39:13:be:5e:52:22:33:0e:17: 8d:1c:2d:35:c2:e0:9f:0c:7f:7b:b2:f6:0b:e4:6a: 75:87:27:d3:54:88:11:33:30:61:65:db:23:07:c7: 4d:21:66:9a:12:86:5d:e0:69:82:94:21:70:02:16: 72:e6:23:92:09:c8:1c:bf:5c:e1:ef:f4:51:31:a2: f1:19:7e:a3:10:a6:9b:de:fd:ae:bc:00:68:4e:90: 1c:95:f4:45:42:ed:eb:17:4a:e8:ce:dc:b4:79:5f: 78:a3:2e:cf:ca:ac:11:40:3e:ac:3a:a8:22:70:89: 67:2f:79:df:a9:f9:84:93:1f:8f:ef:97:77:9d:aa: ab:aa:73:65:ab:71:e7:95:06:8a:ff:d5:70:3b:aa: a4:25:15:fd:7b:c6:f3:c3:43:5e:be:b5:3d:16:77: 5d:cf:3a:9a:72:e1:7d:62:48:9b:28:a2:b7:b7:f0: 6e:96:4e:59:d6:72:ec:7b:5f:55:66:f0:f3:28:53: 64:32:22:79:50:dc:60:ce:ae:74:b3:0c:ad:02:d7: 63:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5A:76:07:30:22:7B:29:75:02:99:F1:3C:4B:6D:40:FB:83:B5:65 X509v3 Authority Key Identifier: keyid:1F:C5:95:59:40:BB:D7:55:5D:F0:A2:E4:17:37:9F:C4:47:EF:0C:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/h1p2BzAieyl1ApnxPEttQPuDtWU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/H8WVWUC711Vd8KLkFzefxEfvDNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.120.0/22 Signature Algorithm: sha256WithRSAEncryption 15:ef:63:8b:74:5b:68:65:e0:72:c2:88:09:76:37:2f:65:77: 5b:3c:f6:a4:18:e4:ab:2f:d4:38:4f:48:82:63:c3:21:d6:8d: 3b:22:7c:b5:ed:e9:41:6d:36:67:15:fd:d3:2c:95:63:96:ac: 2b:7d:ea:a6:c6:ec:79:27:d9:67:80:bd:4c:17:38:af:9a:00: 7f:6f:f2:68:80:37:ac:13:96:80:37:f2:a4:bd:89:04:03:70: 9b:99:b5:ee:d1:f5:5e:d1:60:dd:09:fa:5c:13:49:d3:4f:91: 27:b4:64:58:aa:4b:ba:85:ea:f3:83:08:cd:21:b1:7f:8d:ce: 5d:2e:fa:ed:06:75:20:a6:b2:15:50:21:15:7d:5c:49:0d:2f: a6:fe:ec:c0:f6:46:3b:3c:9b:b2:be:65:01:e6:1c:61:7c:13: 48:e5:f9:7e:13:9f:4c:ee:1e:57:1b:07:0c:77:f5:1e:b9:7f: 32:e6:31:2e:42:d4:24:c5:f6:70:38:f1:b9:43:19:da:41:61: 72:c1:06:1c:15:23:76:ff:d1:77:47:bb:7b:11:c2:44:a9:ae: a7:b0:ea:5b:14:53:91:83:f0:51:3d:57:e8:54:ec:73:4e:ba: 02:98:b6:a8:a4:30:00:39:21:9c:b6:70:c7:51:02:47:2f:26: cd:1b:f8:20 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o6Iv8Oz9eZ/2N80gpPCVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmYzU5NTU5NDBiYmQ3NTU1ZGYwYTJlNDE3Mzc5ZmM0NDdl ZjBjZGMwHhcNMjYwMTAxMjIxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzVhNzYwNzMwMjI3YjI5NzUwMjk5ZjEzYzRiNmQ0MGZiODNiNTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3SJdRm/dq3xol7BVQ5HUVKnuGud awE7zZ3B5GcUsd2IZPmBTLrj2seDoLN+3BDyqoU5E75eUiIzDheNHC01wuCfDH97 svYL5Gp1hyfTVIgRMzBhZdsjB8dNIWaaEoZd4GmClCFwAhZy5iOSCcgcv1zh7/RR MaLxGX6jEKab3v2uvABoTpAclfRFQu3rF0rozty0eV94oy7PyqwRQD6sOqgicIln L3nfqfmEkx+P75d3naqrqnNlq3HnlQaK/9VwO6qkJRX9e8bzw0NevrU9Fnddzzqa cuF9YkibKKK3t/Bulk5Z1nLse19VZvDzKFNkMiJ5UNxgzq50swytAtdjRwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIdadgcwInspdQKZ8TxLbUD7g7VlMB8GA1UdIwQY MBaAFB/FlVlAu9dVXfCi5Bc3n8RH7wzcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDhXVldVQzcxMVZkOEtMa0Z6ZWZ4RWZ2RE53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8xYzg4OTYtN2JlMi00MmNkLTkxMWYt MmZkYjdhYjY1ZDUyLzEvaDFwMkJ6QWlleWwxQXBueFBFdHRRUHVEdFdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC8xYzg4OTYtN2JlMi00MmNkLTkxMWYtMmZkYjdhYjY1ZDUy LzEvSDhXVldVQzcxMVZkOEtMa0Z6ZWZ4RWZ2RE53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ94MA0G CSqGSIb3DQEBCwUAA4IBAQAV72OLdFtoZeBywogJdjcvZXdbPPakGOSrL9Q4T0iC Y8Mh1o07Iny17elBbTZnFf3TLJVjlqwrfeqmxux5J9lngL1MFzivmgB/b/JogDes E5aAN/KkvYkEA3CbmbXu0fVe0WDdCfpcE0nTT5EntGRYqku6herzgwjNIbF/jc5d LvrtBnUgprIVUCEVfVxJDS+m/uzA9kY7PJuyvmUB5hxhfBNI5fl+E59M7h5XGwcM d/UeuX8y5jEuQtQkxfZwOPG5QxnaQWFywQYcFSN2/9F3R7t7EcJEqa6nsOpbFFOR g/BRPVfoVOxzTroCmLaopDAAOSGctnDHUQJHLybNG/gg -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:04 2026 by rpki-client