This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/hhZvUo8-UPHJUQKhfVe0xnQIQsE.roa File: hhZvUo8-UPHJUQKhfVe0xnQIQsE.roa (raw, json) Hash identifier: h/tWCPKeuH8rGnGxAbdxQ1WNxHp4CqwywcjdSN99hzI= Subject key identifier: 86:16:6F:52:8F:3E:50:F1:C9:51:02:A1:7D:57:B4:C6:74:08:42:C1 Certificate issuer: /CN=b0e25bcc5530b6f46f3d11cb8113f219a46dfdab Certificate serial: 019B7B35AF906791F0611528D12F70AE6D05 Authority key identifier: B0:E2:5B:CC:55:30:B6:F4:6F:3D:11:CB:81:13:F2:19:A4:6D:FD:AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/hhZvUo8-UPHJUQKhfVe0xnQIQsE.roa Signing time: Thu 01 Jan 2026 20:17:54 +0000 ROA not before: Thu 01 Jan 2026 20:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208869 IP address blocks: 185.248.146.0/24 maxlen: 24 2a12:6bc0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/sOJbzFUwtvRvPRHLgRPyGaRt_as.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/sOJbzFUwtvRvPRHLgRPyGaRt_as.mft rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:af:90:67:91:f0:61:15:28:d1:2f:70:ae:6d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0e25bcc5530b6f46f3d11cb8113f219a46dfdab Validity Not Before: Jan 1 20:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86166f528f3e50f1c95102a17d57b4c6740842c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:97:c7:2f:6c:56:85:a5:b6:d2:92:ca:c4: a8:af:55:e7:a2:cd:9c:6f:92:aa:d7:02:b3:c5:6b: 44:33:ea:35:87:b3:93:06:e4:b8:46:4d:30:2c:ce: 64:1b:5f:5c:c0:1b:89:09:e4:fd:ec:bc:7c:7e:de: fa:fc:55:18:8b:ea:cd:db:87:43:f5:c1:02:9b:c7: b9:b0:7d:54:c4:1e:72:39:72:ea:08:e7:95:f0:2c: fb:24:eb:62:ea:8f:a2:a8:53:f4:9f:be:f9:45:fe: 1d:52:19:ea:cd:23:06:c4:b5:db:44:24:d2:3e:dc: 1d:7e:72:4b:7c:dd:ba:2b:4c:5e:0e:5e:ea:df:ee: 0d:ae:b0:60:c1:49:57:af:eb:bd:56:db:9e:98:19: f8:f4:40:1e:20:59:e9:f3:79:e7:5f:a6:23:62:7f: 11:50:41:57:81:81:ae:fe:05:8a:78:ad:06:66:f9: da:b3:bc:fc:4d:26:14:20:56:4d:66:41:6b:1f:30: 87:f9:95:c6:da:30:2e:2a:04:90:7e:5c:11:b8:95: 34:2a:d1:84:6a:d3:d0:8f:10:b5:a4:60:be:a6:09: 78:4c:04:5a:9c:b0:0f:a7:7a:b8:90:72:98:6f:d9: ca:9d:3d:e9:bb:5c:a8:51:d8:6e:a8:b4:b7:ca:24: bc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:16:6F:52:8F:3E:50:F1:C9:51:02:A1:7D:57:B4:C6:74:08:42:C1 X509v3 Authority Key Identifier: keyid:B0:E2:5B:CC:55:30:B6:F4:6F:3D:11:CB:81:13:F2:19:A4:6D:FD:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sOJbzFUwtvRvPRHLgRPyGaRt_as.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/hhZvUo8-UPHJUQKhfVe0xnQIQsE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/3830c8-802f-4846-b6e5-1aadaba80072/1/sOJbzFUwtvRvPRHLgRPyGaRt_as.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.248.146.0/24 IPv6: 2a12:6bc0::/29 Signature Algorithm: sha256WithRSAEncryption 8f:39:df:e5:de:3e:6a:97:ec:49:73:86:99:eb:c7:15:43:d1: b7:db:a3:0e:0f:27:19:68:d6:21:d9:dc:94:79:53:e5:74:35: 4c:50:5d:ac:b7:63:9e:a0:58:e3:07:85:88:aa:84:90:72:d4: b3:3c:43:79:47:2a:cd:a2:91:67:28:15:4e:54:09:2f:8a:82: 68:12:e7:c4:fc:28:4b:c6:cd:ff:16:3a:ff:b9:09:d7:18:3a: c1:5b:66:da:f8:c2:29:e6:6d:4f:b4:54:6f:12:c4:c1:1b:a3: 78:7c:50:8c:8a:76:b0:f0:58:cf:65:dc:13:0d:b0:89:77:16: 83:4b:f3:fc:3c:1b:90:66:7e:c6:d8:9d:f1:e5:e7:76:38:fd: f6:fc:35:db:ed:51:bd:86:c0:3c:04:32:08:e0:d8:a1:68:11: 30:70:c2:d5:d6:19:dd:5f:f6:fc:0e:10:02:46:8b:24:96:bc: dc:9c:b5:53:da:c8:9d:2d:38:a6:8f:4e:5a:9a:ed:03:c2:a5: 3b:ea:da:3f:5b:cd:3f:e7:f1:fa:ff:82:35:a8:2d:5b:72:87: 4f:21:ac:6d:cc:e5:8d:b0:f0:08:2a:c5:b3:78:ff:64:86:8c: 01:d3:95:e4:a9:1a:7d:a3:34:cd:b1:c0:b2:c2:96:84:77:4f: dc:b0:cc:79 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7Na+QZ5HwYRUo0S9wrm0FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZTI1YmNjNTUzMGI2ZjQ2ZjNkMTFjYjgxMTNmMjE5YTQ2 ZGZkYWIwHhcNMjYwMTAxMjAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjE2NmY1MjhmM2U1MGYxYzk1MTAyYTE3ZDU3YjRjNjc0MDg0MmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGmXxy9sVoWlttKSysSor1Xnos2c b5Kq1wKzxWtEM+o1h7OTBuS4Rk0wLM5kG19cwBuJCeT97Lx8ft76/FUYi+rN24dD 9cECm8e5sH1UxB5yOXLqCOeV8Cz7JOti6o+iqFP0n775Rf4dUhnqzSMGxLXbRCTS PtwdfnJLfN26K0xeDl7q3+4NrrBgwUlXr+u9VtuemBn49EAeIFnp83nnX6YjYn8R UEFXgYGu/gWKeK0GZvnas7z8TSYUIFZNZkFrHzCH+ZXG2jAuKgSQflwRuJU0KtGE atPQjxC1pGC+pgl4TARanLAPp3q4kHKYb9nKnT3pu1yoUdhuqLS3yiS8MwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIYWb1KPPlDxyVECoX1XtMZ0CELBMB8GA1UdIwQY MBaAFLDiW8xVMLb0bz0Ry4ET8hmkbf2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc09KYnpGVXd0dlJ2UFJITGdSUHlHYVJ0X2FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8zODMwYzgtODAyZi00ODQ2LWI2ZTUt MWFhZGFiYTgwMDcyLzEvaGhadlVvOC1VUEhKVVFLaGZWZTB4blFJUXNFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8zODMwYzgtODAyZi00ODQ2LWI2ZTUtMWFhZGFiYTgwMDcy LzEvc09KYnpGVXd0dlJ2UFJITGdSUHlHYVJ0X2FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufiSMA0E AgACMAcDBQMqEmvAMA0GCSqGSIb3DQEBCwUAA4IBAQCPOd/l3j5ql+xJc4aZ68cV Q9G326MODycZaNYh2dyUeVPldDVMUF2st2OeoFjjB4WIqoSQctSzPEN5RyrNopFn KBVOVAkvioJoEufE/ChLxs3/Fjr/uQnXGDrBW2ba+MIp5m1PtFRvEsTBG6N4fFCM inaw8FjPZdwTDbCJdxaDS/P8PBuQZn7G2J3x5ed2OP32/DXb7VG9hsA8BDII4Nih aBEwcMLV1hndX/b8DhACRosklrzcnLVT2sidLTimj05amu0DwqU76to/W80/5/H6 /4I1qC1bcodPIaxtzOWNsPAIKsWzeP9khowB05XkqRp9ozTNscCywpaEd0/csMx5 -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:16 2026 by rpki-client