This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hGh_pnwjXPGz6kKbiYO6eVDyiKw.roa File: hGh_pnwjXPGz6kKbiYO6eVDyiKw.roa (raw, json) Hash identifier: BN/BrQXFwPLJ2v9QvhS2ynxFHLMi6jcsbvWSYmiqqn8= Subject key identifier: 84:68:7F:A6:7C:23:5C:F1:B3:EA:42:9B:89:83:BA:79:50:F2:88:AC Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA5420C5F4927C60B17C71B031829D3 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hGh_pnwjXPGz6kKbiYO6eVDyiKw.roa Signing time: Thu 01 Jan 2026 22:19:46 +0000 ROA not before: Thu 01 Jan 2026 22:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 11172 IP address blocks: 45.84.217.0/24 maxlen: 24 2a0f:15c1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:42:0c:5f:49:27:c6:0b:17:c7:1b:03:18:29:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84687fa67c235cf1b3ea429b8983ba7950f288ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7e:8a:a2:5d:26:ef:62:f5:78:c7:89:d9:25: 17:8a:21:6f:ec:af:a1:34:a1:83:28:0a:a6:9a:ab: 02:4c:da:b8:10:61:ce:c6:77:fe:9b:bb:02:cd:35: 97:ea:98:ef:45:55:06:3a:c5:49:1f:7d:e2:a6:38: f3:7c:e8:e9:ef:2a:02:f3:78:77:84:de:f9:f6:64: 78:a5:4f:3a:ec:79:6c:b9:fd:6d:bc:90:cf:12:ef: f4:e4:2b:8d:61:a2:c8:28:62:6f:a6:ff:77:73:4b: 36:bc:fc:93:79:2e:47:b7:2e:91:35:bb:3f:a8:03: 58:10:83:44:b8:29:07:76:6a:ed:0a:19:14:bb:87: f6:79:09:21:95:8e:af:5c:91:d6:77:f0:47:bc:b6: ba:91:4b:62:b0:f6:7d:ba:2b:ab:99:22:5f:3b:00: ee:90:e8:ec:b1:d9:70:f9:ce:b9:da:4d:f5:8e:36: a0:35:be:96:7e:9b:8c:52:49:a9:1f:24:9d:20:dd: 22:d9:40:85:ba:a3:27:41:8d:5e:15:e5:da:77:41: 3e:f2:39:ff:41:75:05:5f:7d:2d:42:e1:e2:d9:16: f6:c3:12:16:f3:cd:76:41:b3:72:93:6b:3d:06:b2: 80:6a:f9:a8:ba:cb:dc:b9:37:9b:3b:3d:d8:90:dc: 9b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:68:7F:A6:7C:23:5C:F1:B3:EA:42:9B:89:83:BA:79:50:F2:88:AC X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hGh_pnwjXPGz6kKbiYO6eVDyiKw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.217.0/24 IPv6: 2a0f:15c1::/32 Signature Algorithm: sha256WithRSAEncryption 05:e7:ab:fd:79:6a:ed:d6:a2:61:06:c9:94:24:04:58:07:f7: 97:12:c2:7f:ae:bd:f6:0e:ff:1b:5d:58:9e:f1:b2:90:ed:c0: bb:92:d0:6b:5d:a1:b7:46:c7:e2:14:d5:1c:c5:d3:69:31:fc: 50:b8:24:eb:87:3f:1f:18:de:25:a6:9b:81:aa:c5:24:d6:b9: 6d:18:3c:44:0d:00:56:04:0f:4d:71:2f:0a:8a:09:c7:f7:9b: 65:73:01:37:a6:e3:f9:cf:24:6e:79:ef:52:df:fe:45:4b:22: d0:4c:47:5f:04:15:24:76:0b:d8:23:ac:ab:7f:dd:3d:ff:0f: 8b:5e:8a:f1:00:4f:e5:b4:33:63:3d:37:7a:8e:28:b6:b2:38: 4f:38:88:f7:df:06:12:bf:ea:4e:c8:23:19:02:a0:09:0f:59: 29:2a:7f:fc:ff:c4:da:42:45:f3:c8:8d:b2:78:6c:0a:55:ce: 68:c8:15:26:e5:05:69:17:f6:b7:db:16:b7:fe:58:53:c4:ce: a0:1f:9a:11:c8:e4:5d:f6:d2:9d:d3:d5:32:77:73:c9:2a:48: 3e:89:07:ed:0b:02:bf:38:fc:4a:9c:27:e9:92:b8:bb:3e:87: cc:75:cb:f6:27:83:20:ad:1b:09:bc:c9:31:18:d3:37:86:f4: 31:85:96:d0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pUIMX0knxgsXxxsDGCnTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDY4N2ZhNjdjMjM1Y2YxYjNlYTQyOWI4OTgzYmE3OTUwZjI4OGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1X6Kol0m72L1eMeJ2SUXiiFv7K+h NKGDKAqmmqsCTNq4EGHOxnf+m7sCzTWX6pjvRVUGOsVJH33ipjjzfOjp7yoC83h3 hN759mR4pU867Hlsuf1tvJDPEu/05CuNYaLIKGJvpv93c0s2vPyTeS5Hty6RNbs/ qANYEINEuCkHdmrtChkUu4f2eQkhlY6vXJHWd/BHvLa6kUtisPZ9uiurmSJfOwDu kOjssdlw+c652k31jjagNb6WfpuMUkmpHySdIN0i2UCFuqMnQY1eFeXad0E+8jn/ QXUFX30tQuHi2Rb2wxIW8812QbNyk2s9BrKAavmousvcuTebOz3YkNyb7QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIRof6Z8I1zxs+pCm4mDunlQ8oisMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvaEdoX3Bud2pYUEd6NmtLYmlZTzZlVkR5aUt3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVTZMA0E AgACMAcDBQAqDxXBMA0GCSqGSIb3DQEBCwUAA4IBAQAF56v9eWrt1qJhBsmUJARY B/eXEsJ/rr32Dv8bXVie8bKQ7cC7ktBrXaG3RsfiFNUcxdNpMfxQuCTrhz8fGN4l ppuBqsUk1rltGDxEDQBWBA9NcS8KignH95tlcwE3puP5zyRuee9S3/5FSyLQTEdf BBUkdgvYI6yrf909/w+LXorxAE/ltDNjPTd6jii2sjhPOIj33wYSv+pOyCMZAqAJ D1kpKn/8/8TaQkXzyI2yeGwKVc5oyBUm5QVpF/a32xa3/lhTxM6gH5oRyORd9tKd 09Uyd3PJKkg+iQftCwK/OPxKnCfpkri7PofMdcv2J4MgrRsJvMkxGNM3hvQxhZbQ -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:07 2026 by rpki-client