This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a41794-d619-4c74-824d-31d7010a7256/1/H_QluTcmBXymBQ4nPpf21yCtfgs.roa File: H_QluTcmBXymBQ4nPpf21yCtfgs.roa (raw, json) Hash identifier: uEZOVXv78aiCLR9+dOv0TDG+ndJ8sKw5tweYmG3KtMQ= Subject key identifier: 1F:F4:25:B9:37:26:05:7C:A6:05:0E:27:3E:97:F6:D7:20:AD:7E:0B Certificate issuer: /CN=acfb02432688674260c6d012a597d70bcd5149c4 Certificate serial: 019B77C6C3A69D7E02A6CB63DC69FA0FEC3E Authority key identifier: AC:FB:02:43:26:88:67:42:60:C6:D0:12:A5:97:D7:0B:CD:51:49:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPsCQyaIZ0JgxtASpZfXC81RScQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a41794-d619-4c74-824d-31d7010a7256/1/H_QluTcmBXymBQ4nPpf21yCtfgs.roa Signing time: Thu 01 Jan 2026 04:17:53 +0000 ROA not before: Thu 01 Jan 2026 04:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48638 IP address blocks: 89.106.240.0/21 maxlen: 24 91.194.86.0/23 maxlen: 24 94.143.184.0/21 maxlen: 24 185.43.152.0/22 maxlen: 24 185.59.168.0/22 maxlen: 24 195.28.164.0/23 maxlen: 24 2a02:4a00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/a41794-d619-4c74-824d-31d7010a7256/1/rPsCQyaIZ0JgxtASpZfXC81RScQ.crl rsync://rpki.ripe.net/repository/DEFAULT/80/a41794-d619-4c74-824d-31d7010a7256/1/rPsCQyaIZ0JgxtASpZfXC81RScQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rPsCQyaIZ0JgxtASpZfXC81RScQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:c3:a6:9d:7e:02:a6:cb:63:dc:69:fa:0f:ec:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acfb02432688674260c6d012a597d70bcd5149c4 Validity Not Before: Jan 1 04:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ff425b93726057ca6050e273e97f6d720ad7e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:77:f5:cf:ad:d8:24:89:92:6d:79:a6:9f:12: 59:0c:a8:90:b0:f8:96:6d:a8:3e:63:b1:ba:86:83: f2:c5:68:96:ee:5d:e2:64:b7:d2:1e:19:35:29:1b: 3f:01:3e:5f:0a:0f:56:45:bd:9a:b1:9c:7b:f7:12: 3f:f7:b8:f3:9e:f7:33:41:28:6f:34:f5:82:ee:08: 68:37:50:ee:0b:4a:bc:78:a9:da:dc:82:d2:1f:bb: 78:79:c8:b1:df:af:4f:0c:8c:a3:4e:f9:f9:59:38: 9b:e0:7c:b1:85:9e:ac:c3:6e:76:8a:db:df:92:d8: b8:34:a3:f6:2b:1c:66:ca:84:1b:80:22:31:de:8e: 51:fc:fb:9c:d7:a3:a3:4c:82:f2:db:a6:f0:63:92: 26:de:a4:05:7b:ff:64:9f:5e:71:58:48:eb:57:1b: 38:9c:d6:da:d5:0b:e5:e8:5d:0a:36:4e:f6:b3:96: c4:e5:8a:8a:f8:90:8c:b1:4b:7f:de:93:98:e2:80: 30:3a:80:e7:d8:ef:12:3a:17:d2:55:a1:a8:99:c1: 9b:2a:d8:a1:86:61:33:ff:d6:89:f2:de:8f:09:07: d6:25:ad:37:c6:f7:40:d3:49:01:29:0c:7e:20:ea: f4:78:79:bd:35:68:38:79:d1:16:d2:88:16:70:7f: 50:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F4:25:B9:37:26:05:7C:A6:05:0E:27:3E:97:F6:D7:20:AD:7E:0B X509v3 Authority Key Identifier: keyid:AC:FB:02:43:26:88:67:42:60:C6:D0:12:A5:97:D7:0B:CD:51:49:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPsCQyaIZ0JgxtASpZfXC81RScQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a41794-d619-4c74-824d-31d7010a7256/1/H_QluTcmBXymBQ4nPpf21yCtfgs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a41794-d619-4c74-824d-31d7010a7256/1/rPsCQyaIZ0JgxtASpZfXC81RScQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.106.240.0/21 91.194.86.0/23 94.143.184.0/21 185.43.152.0/22 185.59.168.0/22 195.28.164.0/23 IPv6: 2a02:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 6a:5f:74:18:d4:53:ca:70:e1:62:47:b1:89:51:80:d9:84:13: ae:50:de:e2:fb:f9:45:ed:60:6e:7c:86:f8:ac:64:b8:f8:e3: d0:5e:6b:b2:b0:dc:b2:e7:68:5b:fc:1c:b0:34:13:33:79:5b: 3b:28:7e:54:1f:71:c1:11:47:98:13:3f:ec:83:a5:7a:db:5b: 3e:b0:91:74:c7:73:a8:3f:9d:7b:5d:b7:3e:db:ca:0c:4b:11: 4a:c2:f8:88:da:00:33:5c:c5:b6:34:a0:53:65:c2:17:34:b0: 05:cf:6a:d6:0c:a0:8a:7a:c2:ec:0d:af:d1:7f:15:51:42:5f: f8:9f:9a:b1:59:37:52:d3:0d:02:6b:06:77:50:b1:18:7b:15: 15:c8:c6:a9:4f:a5:fd:26:65:b1:1e:ca:51:ce:44:66:94:38: d2:e5:d4:c8:dd:2e:b0:d9:e1:3a:aa:d4:9d:13:3e:34:40:91: ae:2e:b8:02:f1:f7:07:af:a4:71:0a:a8:5a:65:e5:04:96:8e: cd:9e:00:d6:f5:67:70:0d:70:33:8e:0b:c0:45:ec:20:77:4e: ea:7f:3e:b2:8e:11:ae:bb:0a:d1:70:8a:5a:02:0f:7d:e5:5a: 6d:d3:22:de:26:cc:b4:f4:5b:51:23:b1:cb:33:86:1b:94:e5: 0a:79:47:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt3xsOmnX4Cpstj3Gn6D+w+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjZmIwMjQzMjY4ODY3NDI2MGM2ZDAxMmE1OTdkNzBiY2Q1 MTQ5YzQwHhcNMjYwMTAxMDQxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmY0MjViOTM3MjYwNTdjYTYwNTBlMjczZTk3ZjZkNzIwYWQ3ZTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3f1z63YJImSbXmmnxJZDKiQsPiW bag+Y7G6hoPyxWiW7l3iZLfSHhk1KRs/AT5fCg9WRb2asZx79xI/97jznvczQShv NPWC7ghoN1DuC0q8eKna3ILSH7t4ecix369PDIyjTvn5WTib4HyxhZ6sw252itvf kti4NKP2KxxmyoQbgCIx3o5R/Puc16OjTILy26bwY5Im3qQFe/9kn15xWEjrVxs4 nNba1Qvl6F0KNk72s5bE5YqK+JCMsUt/3pOY4oAwOoDn2O8SOhfSVaGomcGbKtih hmEz/9aJ8t6PCQfWJa03xvdA00kBKQx+IOr0eHm9NWg4edEW0ogWcH9QCwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFB/0Jbk3JgV8pgUOJz6X9tcgrX4LMB8GA1UdIwQY MBaAFKz7AkMmiGdCYMbQEqWX1wvNUUnEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclBzQ1F5YUlaMEpneHRBU3BaZlhDODFSU2NRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9hNDE3OTQtZDYxOS00Yzc0LTgyNGQt MzFkNzAxMGE3MjU2LzEvSF9RbHVUY21CWHltQlE0blBwZjIxeUN0ZmdzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9hNDE3OTQtZDYxOS00Yzc0LTgyNGQtMzFkNzAxMGE3MjU2 LzEvclBzQ1F5YUlaMEpneHRBU3BaZlhDODFSU2NRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQDWWrwAwQB W8JWAwQDXo+4AwQCuSuYAwQCuTuoAwQBwxykMA0EAgACMAcDBQAqAkoAMA0GCSqG SIb3DQEBCwUAA4IBAQBqX3QY1FPKcOFiR7GJUYDZhBOuUN7i+/lF7WBufIb4rGS4 +OPQXmuysNyy52hb/BywNBMzeVs7KH5UH3HBEUeYEz/sg6V621s+sJF0x3OoP517 Xbc+28oMSxFKwviI2gAzXMW2NKBTZcIXNLAFz2rWDKCKesLsDa/RfxVRQl/4n5qx WTdS0w0CawZ3ULEYexUVyMapT6X9JmWxHspRzkRmlDjS5dTI3S6w2eE6qtSdEz40 QJGuLrgC8fcHr6RxCqhaZeUElo7NngDW9WdwDXAzjgvARewgd07qfz6yjhGuuwrR cIpaAg995Vpt0yLeJsy09FtRI7HLM4YblOUKeUe0 -----END CERTIFICATE-----Generated at Tue Jan 27 04:24:28 2026 by rpki-client