This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/h1o3bXxvRbQ7S4dxypgO58cC3Qo.roa File: h1o3bXxvRbQ7S4dxypgO58cC3Qo.roa (raw, json) Hash identifier: oJ/WKinJTQucsbv9/MhIQmZJikDgqhcaJReTCYd19W4= Subject key identifier: 87:5A:37:6D:7C:6F:45:B4:3B:4B:87:71:CA:98:0E:E7:C7:02:DD:0A Certificate issuer: /CN=072b1eb6100c0ca5644437058d42f4fd72233681 Certificate serial: 019B7B366F16BCB47FAD9D55807882278283 Authority key identifier: 07:2B:1E:B6:10:0C:0C:A5:64:44:37:05:8D:42:F4:FD:72:23:36:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BysethAMDKVkRDcFjUL0_XIjNoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/h1o3bXxvRbQ7S4dxypgO58cC3Qo.roa Signing time: Thu 01 Jan 2026 20:18:43 +0000 ROA not before: Thu 01 Jan 2026 20:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60781 IP address blocks: 185.28.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.crl rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.mft rsync://rpki.ripe.net/repository/DEFAULT/BysethAMDKVkRDcFjUL0_XIjNoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:6f:16:bc:b4:7f:ad:9d:55:80:78:82:27:82:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=072b1eb6100c0ca5644437058d42f4fd72233681 Validity Not Before: Jan 1 20:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=875a376d7c6f45b43b4b8771ca980ee7c702dd0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3b:12:b7:92:32:91:82:6f:aa:0f:f1:50:42: 6d:12:da:bb:2f:63:7d:45:98:72:14:c8:f8:b9:0d: 1b:f7:8c:66:e0:da:d8:af:2b:96:fe:1a:68:1b:54: 5d:ba:62:f8:aa:86:f4:23:57:06:30:a6:bb:c0:d8: 64:49:8d:9a:eb:74:99:c6:f1:39:27:12:96:18:bc: d1:3c:e3:37:3f:93:ef:75:67:4a:ab:21:c8:b6:30: 89:de:71:3b:22:fb:98:1f:2b:6a:11:67:df:89:10: aa:f5:6f:83:dd:a0:8d:bf:0d:c9:13:7e:5e:d0:d0: 60:21:e8:92:fa:d4:f3:3e:1a:23:9b:09:af:aa:15: 0a:52:95:5b:4f:93:c3:81:cd:d1:92:37:3c:7b:24: 4a:1b:60:ea:2a:a4:b2:81:e4:eb:67:56:fd:14:50: f7:54:2a:a8:c6:82:40:c8:66:54:21:4c:0c:bd:63: e8:0c:16:15:b6:f9:5c:6b:b1:5b:bc:cd:22:8b:d9: 22:90:72:a8:4b:24:d6:bf:8c:26:21:a0:17:0f:82: ae:90:14:b6:06:bc:35:5a:d9:37:ed:11:74:62:19: 9d:6b:47:e7:60:a5:1c:37:70:57:66:d2:9b:02:07: 15:65:9d:3e:c2:7f:a3:5a:57:e0:1d:ac:5c:1f:56: ad:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5A:37:6D:7C:6F:45:B4:3B:4B:87:71:CA:98:0E:E7:C7:02:DD:0A X509v3 Authority Key Identifier: keyid:07:2B:1E:B6:10:0C:0C:A5:64:44:37:05:8D:42:F4:FD:72:23:36:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BysethAMDKVkRDcFjUL0_XIjNoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/h1o3bXxvRbQ7S4dxypgO58cC3Qo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.28.68.0/24 Signature Algorithm: sha256WithRSAEncryption 24:aa:2b:d3:0f:d3:47:08:b2:50:63:22:2d:6a:90:61:f4:f3: ba:75:6d:c6:eb:62:c4:51:6e:e3:12:7a:f2:be:d7:79:40:1a: 1b:bd:6e:6c:c3:f6:2d:2e:ef:c9:94:dc:c7:a7:d8:3b:05:79: 6c:12:9b:12:b3:50:e5:1c:a9:2f:69:a6:e5:67:cd:e1:b5:48: 67:35:43:57:b9:d3:a6:b5:1f:28:39:b4:69:9d:ab:62:71:4a: 0e:63:78:63:f3:52:a2:96:e9:45:94:1b:97:05:48:4f:53:8b: 1e:07:ff:d1:9d:b0:d9:74:d1:21:66:ef:3a:0f:28:6f:7f:c7: 09:1e:26:f3:0c:09:88:00:40:01:03:a9:a0:fb:91:5f:5a:cf: 09:c5:75:8b:e8:02:6c:e2:43:04:75:c9:41:0a:8c:6a:15:b7: 99:b8:ff:eb:0d:ba:9d:29:79:26:bc:53:e5:3c:35:90:fa:b5: 94:63:1b:36:be:5a:a9:36:5d:49:8b:63:af:3d:f5:65:94:51: 80:ac:df:1f:d1:bf:e5:8d:41:95:31:51:3a:0f:87:6d:6c:50: be:af:e0:91:3f:b5:e2:d3:b6:27:4e:ac:6a:b4:64:05:73:22: fb:59:cd:30:1b:f1:94:4f:ae:0c:93:f2:26:d6:af:82:c9:6c: 5a:a4:e8:c5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nm8WvLR/rZ1VgHiCJ4KDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3MmIxZWI2MTAwYzBjYTU2NDQ0MzcwNThkNDJmNGZkNzIy MzM2ODEwHhcNMjYwMTAxMjAxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzVhMzc2ZDdjNmY0NWI0M2I0Yjg3NzFjYTk4MGVlN2M3MDJkZDBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4DsSt5IykYJvqg/xUEJtEtq7L2N9 RZhyFMj4uQ0b94xm4NrYryuW/hpoG1RdumL4qob0I1cGMKa7wNhkSY2a63SZxvE5 JxKWGLzRPOM3P5PvdWdKqyHItjCJ3nE7IvuYHytqEWffiRCq9W+D3aCNvw3JE35e 0NBgIeiS+tTzPhojmwmvqhUKUpVbT5PDgc3Rkjc8eyRKG2DqKqSygeTrZ1b9FFD3 VCqoxoJAyGZUIUwMvWPoDBYVtvlca7FbvM0ii9kikHKoSyTWv4wmIaAXD4KukBS2 Brw1Wtk37RF0Yhmda0fnYKUcN3BXZtKbAgcVZZ0+wn+jWlfgHaxcH1atiQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIdaN218b0W0O0uHccqYDufHAt0KMB8GA1UdIwQY MBaAFAcrHrYQDAylZEQ3BY1C9P1yIzaBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnlzZXRoQU1ES1ZrUkRjRmpVTDBfWElqTm9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mM2YyNzMtMzQyNC00NjUxLTlhMjEt MGUwN2U1YTY2ZDU5LzEvaDFvM2JYeHZSYlE3UzRkeHlwZ081OGNDM1FvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9mM2YyNzMtMzQyNC00NjUxLTlhMjEtMGUwN2U1YTY2ZDU5 LzEvQnlzZXRoQU1ES1ZrUkRjRmpVTDBfWElqTm9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRxEMA0G CSqGSIb3DQEBCwUAA4IBAQAkqivTD9NHCLJQYyItapBh9PO6dW3G62LEUW7jEnry vtd5QBobvW5sw/YtLu/JlNzHp9g7BXlsEpsSs1DlHKkvaablZ83htUhnNUNXudOm tR8oObRpnaticUoOY3hj81KilulFlBuXBUhPU4seB//RnbDZdNEhZu86Dyhvf8cJ HibzDAmIAEABA6mg+5FfWs8JxXWL6AJs4kMEdclBCoxqFbeZuP/rDbqdKXkmvFPl PDWQ+rWUYxs2vlqpNl1Ji2OvPfVllFGArN8f0b/ljUGVMVE6D4dtbFC+r+CRP7Xi 07YnTqxqtGQFcyL7Wc0wG/GUT64Mk/Im1q+CyWxapOjF -----END CERTIFICATE-----Generated at Mon Jan 19 16:52:08 2026 by rpki-client