This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/HJaqxqktn6jSURWfLmaFrTGw4k0.roa File: HJaqxqktn6jSURWfLmaFrTGw4k0.roa (raw, json) Hash identifier: nCPkWfg8fjBLOL82SkTcjqLkB+FTPueLRpgWHpz5rHo= Subject key identifier: 1C:96:AA:C6:A9:2D:9F:A8:D2:51:15:9F:2E:66:85:AD:31:B0:E2:4D Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91 Certificate serial: 019B7EA67E048FE2F06D57AE872F35F93E64 Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/HJaqxqktn6jSURWfLmaFrTGw4k0.roa Signing time: Fri 02 Jan 2026 12:19:59 +0000 ROA not before: Fri 02 Jan 2026 12:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43260 IP address blocks: 185.85.72.0/24 maxlen: 24 185.85.73.0/24 maxlen: 24 185.85.74.0/24 maxlen: 24 185.85.75.0/24 maxlen: 24 185.160.28.0/24 maxlen: 24 185.160.29.0/24 maxlen: 24 185.160.30.0/24 maxlen: 24 185.160.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.mft rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:7e:04:8f:e2:f0:6d:57:ae:87:2f:35:f9:3e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91 Validity Not Before: Jan 2 12:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c96aac6a92d9fa8d251159f2e6685ad31b0e24d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d5:2d:35:32:a2:7a:44:2d:7d:a1:77:18:5d: fe:21:81:45:80:79:6e:f1:91:40:e3:75:38:eb:d8: 2a:7b:e9:a9:c3:6c:46:67:ca:d7:a2:1c:a1:6e:a3: 51:b2:12:1c:dc:cc:a7:ac:4b:20:fd:62:b7:bb:f1: cc:fd:9f:37:af:4d:d2:ea:7c:4b:cf:a7:36:e5:62: b4:5b:5c:29:4e:7d:56:17:23:6f:99:0a:de:1c:75: 9f:07:08:05:64:ef:dd:9d:4b:2c:3a:a2:67:2e:55: a4:d8:86:9b:9f:15:74:e0:29:5e:28:ba:7d:1c:9f: 71:11:f9:3e:48:1d:12:2a:3d:04:19:f4:36:2e:f6: f2:cd:fc:56:ca:f3:d9:0e:a9:67:28:9a:5a:48:c3: fd:ee:fd:9e:b8:18:9d:dc:cb:76:9c:03:f8:be:56: 83:f1:9c:e7:58:7d:a1:77:ad:a2:8e:9d:49:30:96: d1:d7:1c:ae:30:ab:67:7c:46:73:57:a0:03:82:bd: 84:4d:da:cb:02:77:09:c6:08:33:2c:ce:a6:2f:58: c2:7e:4a:15:e7:a5:7a:6f:7c:a6:c2:9d:ec:ea:66: 6f:60:b3:d7:99:f4:de:db:b3:59:a0:92:ab:4c:4f: 67:66:77:4e:23:57:60:06:32:90:fb:9e:0a:90:70: a1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:96:AA:C6:A9:2D:9F:A8:D2:51:15:9F:2E:66:85:AD:31:B0:E2:4D X509v3 Authority Key Identifier: keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/HJaqxqktn6jSURWfLmaFrTGw4k0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.85.72.0/22 185.160.28.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:05:44:73:24:0c:61:8f:12:d8:18:bd:23:51:68:58:43:c1: a4:9d:5e:ce:8f:3b:de:af:02:fb:96:90:b1:1d:f6:08:a8:87: 2f:4d:cc:84:9a:f7:b3:42:d5:be:1e:88:ef:88:2a:a4:44:4e: ab:25:28:46:68:f9:b2:38:c8:35:13:46:ed:e3:87:a8:ea:3a: 84:e2:93:0b:77:24:ac:7e:30:b8:e6:30:9d:7b:d2:cf:ca:dc: 8c:8f:d8:73:d5:5d:b0:3f:24:19:40:23:da:85:1d:fb:e6:37: 0f:13:7e:b9:3f:b7:b1:19:a8:03:cc:80:c8:49:d2:31:a0:b3: f2:4c:3d:aa:9a:c2:56:65:7b:99:de:e1:ac:5f:5c:ae:81:e2: be:69:a6:31:2b:af:16:1a:e7:9e:4d:ce:ca:4e:ea:e4:36:7b: 16:7b:6d:fe:fe:0d:cd:c7:71:1e:21:26:af:5c:75:b1:a8:cd: 88:9c:51:e7:b9:dc:19:67:d5:40:33:20:c2:06:80:15:2b:07: 1a:09:f8:e3:4f:e5:cd:30:00:a1:f8:6b:d5:0e:22:ab:52:e0: 39:a2:b0:b7:90:5a:d3:f9:97:9f:be:23:5a:4e:01:bc:26:d5: 6b:c7:bc:59:ea:a7:72:d7:f8:0c:4c:79:45:bc:03:8b:51:55: 43:87:ec:bf -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pn4Ej+LwbVeuhy81+T5kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZTAxM2VjOGE1YzU2ZGYyNDFhOWIyNTYzZDExMWY4ZTU0 M2JmOTEwHhcNMjYwMTAyMTIxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzk2YWFjNmE5MmQ5ZmE4ZDI1MTE1OWYyZTY2ODVhZDMxYjBlMjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NUtNTKiekQtfaF3GF3+IYFFgHlu 8ZFA43U469gqe+mpw2xGZ8rXohyhbqNRshIc3MynrEsg/WK3u/HM/Z83r03S6nxL z6c25WK0W1wpTn1WFyNvmQreHHWfBwgFZO/dnUssOqJnLlWk2IabnxV04CleKLp9 HJ9xEfk+SB0SKj0EGfQ2LvbyzfxWyvPZDqlnKJpaSMP97v2euBid3Mt2nAP4vlaD 8ZznWH2hd62ijp1JMJbR1xyuMKtnfEZzV6ADgr2ETdrLAncJxggzLM6mL1jCfkoV 56V6b3ymwp3s6mZvYLPXmfTe27NZoJKrTE9nZndOI1dgBjKQ+54KkHCh7QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFByWqsapLZ+o0lEVny5mha0xsOJNMB8GA1UdIwQY MBaAFNHgE+yKXFbfJBqbJWPREfjlQ7+RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGVBVDdJcGNWdDhrR3BzbFk5RVItT1ZEdjVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9lNDFlZjQtZGMxZS00NDY5LWJkMmQt NDQwNTI4YzFlNDllLzEvSEphcXhxa3RuNmpTVVJXZkxtYUZyVEd3NGswLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9lNDFlZjQtZGMxZS00NDY5LWJkMmQtNDQwNTI4YzFlNDll LzEvMGVBVDdJcGNWdDhrR3BzbFk5RVItT1ZEdjVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuVVIAwQC uaAcMA0GCSqGSIb3DQEBCwUAA4IBAQBdBURzJAxhjxLYGL0jUWhYQ8GknV7Ojzve rwL7lpCxHfYIqIcvTcyEmvezQtW+HojviCqkRE6rJShGaPmyOMg1E0bt44eo6jqE 4pMLdySsfjC45jCde9LPytyMj9hz1V2wPyQZQCPahR375jcPE365P7exGagDzIDI SdIxoLPyTD2qmsJWZXuZ3uGsX1yugeK+aaYxK68WGueeTc7KTurkNnsWe23+/g3N x3EeISavXHWxqM2InFHnudwZZ9VAMyDCBoAVKwcaCfjjT+XNMACh+GvVDiKrUuA5 orC3kFrT+ZefviNaTgG8JtVrx7xZ6qdy1/gMTHlFvAOLUVVDh+y/ -----END CERTIFICATE-----Generated at Mon Jan 19 16:53:18 2026 by rpki-client