This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/H6bDPsYdkDSOvGFx3spz-MMnDK4.roa File: H6bDPsYdkDSOvGFx3spz-MMnDK4.roa (raw, json) Hash identifier: mfvYZ8p9rx/daITzESrQSVwMuiO4CItQd/VpNm+VYwU= Subject key identifier: 1F:A6:C3:3E:C6:1D:90:34:8E:BC:61:71:DE:CA:73:F8:C3:27:0C:AE Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019BDFC6235B0A4D4943E1600F676DCC2299 Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/H6bDPsYdkDSOvGFx3spz-MMnDK4.roa Signing time: Wed 21 Jan 2026 08:57:42 +0000 ROA not before: Wed 21 Jan 2026 08:57:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 31.56.125.0/24 maxlen: 24 31.57.190.0/24 maxlen: 24 31.57.191.0/24 maxlen: 24 31.57.221.0/24 maxlen: 24 31.58.131.0/24 maxlen: 24 31.58.138.0/24 maxlen: 24 31.58.139.0/24 maxlen: 24 31.59.59.0/24 maxlen: 24 31.59.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:df:c6:23:5b:0a:4d:49:43:e1:60:0f:67:6d:cc:22:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 21 08:57:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1fa6c33ec61d90348ebc6171deca73f8c3270cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:44:e3:4a:d7:1d:94:d3:29:c4:54:d9:44:c8: 06:b2:d9:40:06:67:89:c9:2a:88:bd:9b:8e:c9:d3: d4:26:67:a0:bd:81:3b:77:57:43:8b:44:0e:0b:0b: 7c:cc:66:67:ff:46:e1:c1:7c:70:50:98:5b:21:3d: 9f:cc:2a:7b:f4:6f:5d:f3:29:74:72:5b:f4:59:96: 64:9c:2c:87:5f:05:79:ea:ea:ff:bb:82:72:43:48: ea:6b:1a:34:76:9f:b2:cc:7b:56:30:06:77:1d:22: 30:a9:03:a0:9e:40:3a:89:05:73:a8:e8:2b:2a:f5: 99:d9:80:73:96:8b:d4:94:5f:69:49:17:14:ab:34: 70:37:09:47:e3:64:21:f3:51:cd:db:0f:69:85:dd: f9:82:86:e9:8e:6a:c5:e4:61:a3:45:d3:ba:bb:53: db:ef:aa:cd:6a:8c:53:81:7f:0a:75:59:18:c8:92: e8:50:86:eb:fc:fc:69:93:79:4c:4a:68:1c:c2:f5: 13:56:50:4b:1f:90:1d:92:6f:21:61:cd:20:ef:9a: 10:83:05:03:83:5b:12:71:6a:28:5b:01:91:b7:08: 01:5c:8e:09:f4:26:d7:56:da:4f:e2:0f:7b:61:d0: 11:ab:0c:0e:6e:98:d8:39:10:25:33:d0:1a:9b:53: f9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A6:C3:3E:C6:1D:90:34:8E:BC:61:71:DE:CA:73:F8:C3:27:0C:AE X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/H6bDPsYdkDSOvGFx3spz-MMnDK4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.125.0/24 31.57.190.0/23 31.57.221.0/24 31.58.131.0/24 31.58.138.0/23 31.59.59.0/24 31.59.208.0/24 Signature Algorithm: sha256WithRSAEncryption 64:1e:24:d0:13:79:ab:39:e2:81:2a:7b:b0:5b:20:d3:5d:d7: 3a:e2:81:5d:6f:6b:1e:81:11:9a:e7:2c:93:fb:fa:6a:c9:b0: aa:13:92:2e:51:54:99:94:75:1b:d9:8f:1b:01:b9:a8:3b:c4: b3:d2:38:c9:05:52:16:ba:1b:b8:0d:d6:32:0e:36:89:a6:5e: d7:61:8d:04:08:a2:f8:97:9e:84:c0:71:1d:04:7a:01:8e:c9: 9f:db:96:c7:92:13:29:c5:42:b3:6c:bd:54:e0:09:b4:bc:0a: ba:a3:66:88:b8:2e:fe:45:ff:ad:a9:f6:8a:2a:30:0a:2a:83: 0f:0c:a6:88:8c:83:9c:7a:7b:50:e1:dc:a9:63:eb:8a:61:57: 64:21:57:50:45:80:95:df:da:6e:83:8e:8e:28:c9:3e:e4:f6: cb:ff:6e:d6:5e:29:b8:a5:16:48:fe:8d:44:7f:44:2a:cf:6e: 28:1e:00:94:f1:59:84:69:b1:fe:07:18:c3:53:fd:70:ef:ad: cf:12:d8:0c:b6:17:90:fc:e2:1e:fa:f4:e1:6e:00:d9:d7:29: b2:4b:6e:e5:87:9f:25:e7:b8:46:cf:da:14:73:db:f5:8a:b3: 38:b5:21:6d:98:83:cd:f5:e1:b1:a9:e3:07:b3:41:fa:94:27: e0:0c:29:94 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZvfxiNbCk1JQ+FgD2dtzCKZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTIxMDg1NzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmE2YzMzZWM2MWQ5MDM0OGViYzYxNzFkZWNhNzNmOGMzMjcwY2FlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvETjStcdlNMpxFTZRMgGstlABmeJ ySqIvZuOydPUJmegvYE7d1dDi0QOCwt8zGZn/0bhwXxwUJhbIT2fzCp79G9d8yl0 clv0WZZknCyHXwV56ur/u4JyQ0jqaxo0dp+yzHtWMAZ3HSIwqQOgnkA6iQVzqOgr KvWZ2YBzlovUlF9pSRcUqzRwNwlH42Qh81HN2w9phd35gobpjmrF5GGjRdO6u1Pb 76rNaoxTgX8KdVkYyJLoUIbr/Pxpk3lMSmgcwvUTVlBLH5Adkm8hYc0g75oQgwUD g1sScWooWwGRtwgBXI4J9CbXVtpP4g97YdARqwwObpjYORAlM9Aam1P5DQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFB+mwz7GHZA0jrxhcd7Kc/jDJwyuMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvSDZiRFBzWWRrRFNPdkdGeDNzcHotTU1uREs0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAHzh9AwQB Hzm+AwQAHzndAwQAHzqDAwQBHzqKAwQAHzs7AwQAHzvQMA0GCSqGSIb3DQEBCwUA A4IBAQBkHiTQE3mrOeKBKnuwWyDTXdc64oFdb2segRGa5yyT+/pqybCqE5IuUVSZ lHUb2Y8bAbmoO8Sz0jjJBVIWuhu4DdYyDjaJpl7XYY0ECKL4l56EwHEdBHoBjsmf 25bHkhMpxUKzbL1U4Am0vAq6o2aIuC7+Rf+tqfaKKjAKKoMPDKaIjIOcentQ4dyp Y+uKYVdkIVdQRYCV39pug46OKMk+5PbL/27WXim4pRZI/o1Ef0Qqz24oHgCU8VmE abH+BxjDU/1w763PEtgMtheQ/OIe+vThbgDZ1ymyS27lh58l57hGz9oUc9v1irM4 tSFtmIPN9eGxqeMHs0H6lCfgDCmU -----END CERTIFICATE-----Generated at Thu Jan 22 00:45:13 2026 by rpki-client