This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1d2359-2c4a-41b6-a1b6-55e4c92a5d50/1/h4-lyNbmhBm-KugKTQkiHt5LRM8.roa File: h4-lyNbmhBm-KugKTQkiHt5LRM8.roa (raw, json) Hash identifier: Ok+4+JLkto4cQeBc0AplqkJV6J8J1cpNrnKlwegFWS4= Subject key identifier: 87:8F:A5:C8:D6:E6:84:19:BE:2A:E8:0A:4D:09:22:1E:DE:4B:44:CF Certificate issuer: /CN=87c48fc5c2eb2c74a242a47bd321577e8f1e6a71 Certificate serial: 019AFE8EC6E27722A63819618EAB90182D9C Authority key identifier: 87:C4:8F:C5:C2:EB:2C:74:A2:42:A4:7B:D3:21:57:7E:8F:1E:6A:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8SPxcLrLHSiQqR70yFXfo8eanE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2359-2c4a-41b6-a1b6-55e4c92a5d50/1/h4-lyNbmhBm-KugKTQkiHt5LRM8.roa Signing time: Mon 08 Dec 2025 15:22:41 +0000 ROA not before: Mon 08 Dec 2025 15:22:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44559 IP address blocks: 195.238.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2359-2c4a-41b6-a1b6-55e4c92a5d50/1/h8SPxcLrLHSiQqR70yFXfo8eanE.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2359-2c4a-41b6-a1b6-55e4c92a5d50/1/h8SPxcLrLHSiQqR70yFXfo8eanE.mft rsync://rpki.ripe.net/repository/DEFAULT/h8SPxcLrLHSiQqR70yFXfo8eanE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fe:8e:c6:e2:77:22:a6:38:19:61:8e:ab:90:18:2d:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87c48fc5c2eb2c74a242a47bd321577e8f1e6a71 Validity Not Before: Dec 8 15:22:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=878fa5c8d6e68419be2ae80a4d09221ede4b44cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7f:82:92:6b:c1:fc:c4:94:e0:72:5d:9d:1a: 13:a2:32:2c:9b:d9:47:25:03:ce:1d:a9:2d:b9:3b: f2:9b:40:f9:5e:f5:7f:1a:bc:69:e7:89:93:dd:fe: 60:f0:68:14:27:7b:60:41:33:a8:3c:6e:8e:2a:b4: 16:a8:de:5f:e4:bb:eb:43:6a:52:3c:30:42:61:a8: 5a:51:8c:47:c4:57:1b:c0:99:3f:db:85:ae:5e:8c: 18:69:43:1d:19:a5:be:26:7d:f8:f0:ac:f3:5f:0d: 38:39:2c:43:8d:be:0f:c5:ac:9b:4a:43:a6:fa:53: 79:7f:00:ab:f6:30:88:24:c5:97:fb:6e:f1:b1:c7: 3a:3a:37:5c:da:54:08:1c:db:de:c1:9b:07:89:f9: b4:c0:87:7f:96:23:7f:c6:d9:e9:5a:0c:17:c3:d1: 9f:c4:7b:5f:4c:8d:e2:25:b2:93:54:89:04:c1:1a: f7:cc:1e:03:45:2c:3e:0b:f1:9b:9d:89:7f:6d:ee: 72:d0:f6:b6:13:b4:39:95:f9:1b:1e:6c:1b:dc:35: 51:28:86:70:e4:97:1f:d1:86:e8:1d:c8:a4:a2:a2: 59:5f:d8:3e:80:a1:35:a1:1e:61:fc:5e:de:62:0b: 36:82:c2:91:cf:63:75:17:2f:d7:c0:dc:5e:53:9a: 6e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8F:A5:C8:D6:E6:84:19:BE:2A:E8:0A:4D:09:22:1E:DE:4B:44:CF X509v3 Authority Key Identifier: keyid:87:C4:8F:C5:C2:EB:2C:74:A2:42:A4:7B:D3:21:57:7E:8F:1E:6A:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8SPxcLrLHSiQqR70yFXfo8eanE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2359-2c4a-41b6-a1b6-55e4c92a5d50/1/h4-lyNbmhBm-KugKTQkiHt5LRM8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1d2359-2c4a-41b6-a1b6-55e4c92a5d50/1/h8SPxcLrLHSiQqR70yFXfo8eanE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.238.230.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:25:d1:7a:b8:b8:17:e3:e7:09:0b:d4:c4:04:46:1f:8d:40: ee:c9:79:2b:0b:d3:c4:23:c5:be:92:9e:c2:b7:bb:fe:f7:fc: 56:54:98:d9:05:5e:74:8c:08:96:99:53:f5:0a:40:c5:b9:37: 19:42:22:cc:92:bf:0a:be:6c:a3:14:17:75:84:ad:bb:2a:40: 2b:5f:7a:bb:27:3b:17:0a:02:b2:ad:85:0f:d3:e4:93:6d:8b: f3:ee:b7:a3:59:11:c2:da:ea:6b:bc:4a:cf:2f:35:18:cb:b3: 08:60:6a:9d:21:31:76:9c:dd:3c:a1:52:d1:87:04:2d:70:f5: c8:cc:38:50:0a:ce:a7:de:ad:35:97:36:9f:11:17:5d:9f:af: 41:45:16:32:a7:4e:d3:93:04:9b:58:65:2f:77:3f:31:9d:d6: 0f:0a:01:ed:29:50:d7:df:5f:38:7c:f6:69:91:6f:1b:19:38: b1:fd:5b:d4:5a:f7:aa:33:e6:71:f1:d0:bd:a7:e7:01:1c:b2: a3:fa:c6:a0:8f:9c:c7:b9:97:0e:a4:67:1d:c3:21:49:ab:da: 8f:f2:e4:0b:4d:d6:24:5f:98:c3:4d:fe:3c:4c:ca:4f:b3:e1: 7a:91:47:d2:40:3b:3b:1c:ad:4a:43:38:0a:9a:d2:c0:27:c6: f9:ec:1d:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZr+jsbidyKmOBlhjquQGC2cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YzQ4ZmM1YzJlYjJjNzRhMjQyYTQ3YmQzMjE1NzdlOGYx ZTZhNzEwHhcNMjUxMjA4MTUyMjQxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzhmYTVjOGQ2ZTY4NDE5YmUyYWU4MGE0ZDA5MjIxZWRlNGI0NGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3H+CkmvB/MSU4HJdnRoTojIsm9lH JQPOHaktuTvym0D5XvV/Grxp54mT3f5g8GgUJ3tgQTOoPG6OKrQWqN5f5LvrQ2pS PDBCYahaUYxHxFcbwJk/24WuXowYaUMdGaW+Jn348KzzXw04OSxDjb4PxaybSkOm +lN5fwCr9jCIJMWX+27xscc6Ojdc2lQIHNvewZsHifm0wId/liN/xtnpWgwXw9Gf xHtfTI3iJbKTVIkEwRr3zB4DRSw+C/GbnYl/be5y0Pa2E7Q5lfkbHmwb3DVRKIZw 5Jcf0YboHcikoqJZX9g+gKE1oR5h/F7eYgs2gsKRz2N1Fy/XwNxeU5puDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIePpcjW5oQZviroCk0JIh7eS0TPMB8GA1UdIwQY MBaAFIfEj8XC6yx0okKke9MhV36PHmpxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDhTUHhjTHJMSFNpUXFSNzB5RlhmbzhlYW5FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZDIzNTktMmM0YS00MWI2LWExYjYt NTVlNGM5MmE1ZDUwLzEvaDQtbHlOYm1oQm0tS3VnS1RRa2lIdDVMUk04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi8xZDIzNTktMmM0YS00MWI2LWExYjYtNTVlNGM5MmE1ZDUw LzEvaDhTUHhjTHJMSFNpUXFSNzB5RlhmbzhlYW5FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+7mMA0G CSqGSIb3DQEBCwUAA4IBAQB+JdF6uLgX4+cJC9TEBEYfjUDuyXkrC9PEI8W+kp7C t7v+9/xWVJjZBV50jAiWmVP1CkDFuTcZQiLMkr8KvmyjFBd1hK27KkArX3q7JzsX CgKyrYUP0+STbYvz7rejWRHC2uprvErPLzUYy7MIYGqdITF2nN08oVLRhwQtcPXI zDhQCs6n3q01lzafERddn69BRRYyp07TkwSbWGUvdz8xndYPCgHtKVDX3184fPZp kW8bGTix/VvUWveqM+Zx8dC9p+cBHLKj+sagj5zHuZcOpGcdwyFJq9qP8uQLTdYk X5jDTf48TMpPs+F6kUfSQDs7HK1KQzgKmtLAJ8b57B17 -----END CERTIFICATE-----Generated at Fri Dec 26 17:18:16 2025 by rpki-client