This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hPPUJEU66HUzBCdsMKPjv4y6kCw.roa File: hPPUJEU66HUzBCdsMKPjv4y6kCw.roa (raw, json) Hash identifier: ZcjMLqy1z7bp5wMo9CeMXm4svFAsNX9iyFgfU+2xru4= Subject key identifier: 84:F3:D4:24:45:3A:E8:75:33:04:27:6C:30:A3:E3:BF:8C:BA:90:2C Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26 Certificate serial: 019B7C8080E0DEB710833F1997299C46A92E Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hPPUJEU66HUzBCdsMKPjv4y6kCw.roa Signing time: Fri 02 Jan 2026 02:19:14 +0000 ROA not before: Fri 02 Jan 2026 02:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206150 IP address blocks: 185.76.61.0/24 maxlen: 24 185.76.63.0/24 maxlen: 24 188.74.129.0/24 maxlen: 24 188.119.180.0/24 maxlen: 24 188.119.182.0/23 maxlen: 24 188.119.182.0/24 maxlen: 24 188.119.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.mft rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:80:e0:de:b7:10:83:3f:19:97:29:9c:46:a9:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26 Validity Not Before: Jan 2 02:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84f3d424453ae8753304276c30a3e3bf8cba902c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ae:7c:8f:53:91:58:9d:e1:26:a8:77:c6:1c: 94:a1:b9:17:37:12:7e:c7:de:c6:c3:34:30:73:2c: bd:d4:6b:e5:8a:14:23:dc:7b:eb:d5:8f:ca:8f:6e: e8:7e:54:25:d1:71:d4:44:58:81:93:a1:a8:74:38: f3:52:aa:78:bc:f4:8b:d9:44:04:16:5a:06:4f:a2: bc:89:41:f8:33:18:5b:3c:62:c6:f9:fd:29:9e:b1: f2:a9:7a:2a:54:d0:30:5f:54:64:b7:89:e2:b5:44: d8:8d:0d:fb:85:73:fe:8e:37:42:b4:ee:c3:cc:da: 69:71:3b:4f:c2:7c:ad:e3:8e:0a:86:b0:ad:d0:46: 4a:8d:be:5f:2d:46:26:e8:5b:4a:06:13:4a:37:92: 62:40:be:b9:eb:a2:b3:6d:df:21:cb:d1:1a:5e:fd: 51:77:2e:1f:54:0c:28:cc:68:39:34:b6:5b:de:0a: 42:b3:6b:96:76:56:89:96:79:78:c6:1a:72:03:4a: c2:42:9f:e0:0e:67:99:89:b2:cc:24:a6:6c:e9:ae: 51:77:cd:08:43:61:09:f1:b1:c9:e7:ba:da:a9:1d: da:ec:c8:7b:69:95:f3:35:43:46:b8:5c:44:91:fa: 1a:96:d9:f0:aa:df:74:b3:ff:63:fe:45:5d:3f:f8: 41:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F3:D4:24:45:3A:E8:75:33:04:27:6C:30:A3:E3:BF:8C:BA:90:2C X509v3 Authority Key Identifier: keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/hPPUJEU66HUzBCdsMKPjv4y6kCw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.76.61.0/24 185.76.63.0/24 188.74.129.0/24 188.119.180.0/24 188.119.182.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:81:17:08:b5:f2:a9:bc:a9:89:9f:bf:bb:95:5e:bb:d2:3a: eb:81:bb:9d:ec:3d:a7:25:ea:74:92:7b:24:e1:6a:6c:09:11: 01:57:be:31:c9:82:52:ac:34:3c:b4:48:a5:b5:62:b6:23:c9: 59:6a:7d:03:25:19:7a:8f:09:02:aa:1b:2d:07:e5:8f:a2:fa: 58:66:d3:57:87:24:fb:f3:7b:0d:c1:82:48:80:69:aa:76:8e: 21:d4:a3:96:1a:54:8d:ee:cf:dc:68:01:3a:18:18:9d:be:92: 65:47:c1:dd:18:8e:26:80:46:9a:38:77:c9:25:12:2f:d4:29: 78:eb:0c:f9:d5:2d:33:aa:65:d1:c3:4e:a3:c5:4e:74:bf:90: 32:d8:3d:28:4a:fe:58:66:63:81:a0:08:fa:4b:0f:c0:7a:05: 1b:88:45:f5:79:73:27:34:c5:01:c3:ce:57:76:7a:32:8f:68: 22:16:cf:7e:da:f1:f8:59:77:64:7e:7f:13:6a:cb:e3:9f:3b: fc:2c:25:a5:53:bc:6a:3a:6c:41:df:c1:00:11:98:67:c4:14: 24:a4:bc:c6:24:92:c8:bb:67:02:48:09:f3:8b:29:5e:47:92: 96:8b:b8:21:da:89:bd:74:7e:d4:08:c8:f3:42:b3:b7:7d:ef: 67:8e:da:98 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt8gIDg3rcQgz8ZlymcRqkuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiMjMzZDc1NTA4YjRlODVjY2NmNDQzNDlhN2NiNzAzMTk4 ZDFkMjYwHhcNMjYwMTAyMDIxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGYzZDQyNDQ1M2FlODc1MzMwNDI3NmMzMGEzZTNiZjhjYmE5MDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4a58j1ORWJ3hJqh3xhyUobkXNxJ+ x97GwzQwcyy91GvlihQj3Hvr1Y/Kj27oflQl0XHURFiBk6GodDjzUqp4vPSL2UQE FloGT6K8iUH4MxhbPGLG+f0pnrHyqXoqVNAwX1Rkt4nitUTYjQ37hXP+jjdCtO7D zNppcTtPwnyt444KhrCt0EZKjb5fLUYm6FtKBhNKN5JiQL6566Kzbd8hy9EaXv1R dy4fVAwozGg5NLZb3gpCs2uWdlaJlnl4xhpyA0rCQp/gDmeZibLMJKZs6a5Rd80I Q2EJ8bHJ57raqR3a7Mh7aZXzNUNGuFxEkfoaltnwqt90s/9j/kVdP/hBGwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFITz1CRFOuh1MwQnbDCj47+MupAsMB8GA1UdIwQY MBaAFGsjPXVQi06FzM9ENJp8twMZjR0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEt ZmE5Y2I1MWNkMGYxLzEvaFBQVUpFVTY2SFV6QkNkc01LUGp2NHk2a0N3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC85ZDkxOTItMjczYy00Y2E5LWIyYmEtZmE5Y2I1MWNkMGYx LzEvYXlNOWRWQ0xUb1hNejBRMG1ueTNBeG1OSFNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAuUw9AwQA uUw/AwQAvEqBAwQAvHe0AwQBvHe2MA0GCSqGSIb3DQEBCwUAA4IBAQCegRcItfKp vKmJn7+7lV670jrrgbud7D2nJep0knsk4WpsCREBV74xyYJSrDQ8tEiltWK2I8lZ an0DJRl6jwkCqhstB+WPovpYZtNXhyT783sNwYJIgGmqdo4h1KOWGlSN7s/caAE6 GBidvpJlR8HdGI4mgEaaOHfJJRIv1Cl46wz51S0zqmXRw06jxU50v5Ay2D0oSv5Y ZmOBoAj6Sw/AegUbiEX1eXMnNMUBw85Xdnoyj2giFs9+2vH4WXdkfn8Tasvjnzv8 LCWlU7xqOmxB38EAEZhnxBQkpLzGJJLIu2cCSAnziyleR5KWi7gh2om9dH7UCMjz QrO3fe9njtqY -----END CERTIFICATE-----Generated at Mon Jan 19 20:35:05 2026 by rpki-client