This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/hjtitcU8d-FLJ62seFiGxMChEI0.roa File: hjtitcU8d-FLJ62seFiGxMChEI0.roa (raw, json) Hash identifier: zPnqOgCOOliYSlkJeU3JzTfIehQxkqyATNcPPm5JpBo= Subject key identifier: 86:3B:62:B5:C5:3C:77:E1:4B:27:AD:AC:78:58:86:C4:C0:A1:10:8D Certificate issuer: /CN=580ad42c64c4f55fece78b2427071fe6684c20c9 Certificate serial: 019B78A372D1002881145B5225A36AADBB33 Authority key identifier: 58:0A:D4:2C:64:C4:F5:5F:EC:E7:8B:24:27:07:1F:E6:68:4C:20:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WArULGTE9V_s54skJwcf5mhMIMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/hjtitcU8d-FLJ62seFiGxMChEI0.roa Signing time: Thu 01 Jan 2026 08:18:56 +0000 ROA not before: Thu 01 Jan 2026 08:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31239 IP address blocks: 195.225.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/WArULGTE9V_s54skJwcf5mhMIMk.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/WArULGTE9V_s54skJwcf5mhMIMk.mft rsync://rpki.ripe.net/repository/DEFAULT/WArULGTE9V_s54skJwcf5mhMIMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:72:d1:00:28:81:14:5b:52:25:a3:6a:ad:bb:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=580ad42c64c4f55fece78b2427071fe6684c20c9 Validity Not Before: Jan 1 08:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=863b62b5c53c77e14b27adac785886c4c0a1108d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:41:2b:04:48:4d:ca:42:d1:be:88:29:a5:b8: 64:38:db:32:4b:13:ca:b0:46:00:e9:59:86:17:3e: 28:c7:43:f2:21:29:d0:a2:51:11:e8:1a:1d:37:ab: c5:c1:59:aa:3e:ce:84:b6:16:5c:46:f9:fd:cd:f6: 73:70:8d:d0:c2:fb:0a:c7:00:b7:05:2e:8d:b5:4b: dd:03:28:7e:3c:18:93:5d:c9:d9:d9:88:20:ce:32: 15:fd:90:b6:1c:42:96:1b:64:2f:df:28:b6:15:dd: c0:26:74:cc:25:a7:87:1e:0b:42:44:d5:e4:7b:1c: 01:dc:87:7a:3f:90:6b:a6:74:1d:b6:3b:45:f2:c1: 4f:15:9f:da:cc:95:15:55:cf:e4:0e:4a:88:f6:cc: 0a:e0:32:3f:ed:bd:b2:e7:de:2a:6e:44:2e:7c:73: 92:d4:cc:58:56:8c:50:96:af:a0:77:b1:0b:11:19: a0:f1:f7:75:a3:d4:09:d3:6b:f1:43:0a:e5:f1:bb: aa:55:d9:1f:90:69:f4:fd:88:2a:d9:46:ed:da:8c: e1:d5:ce:38:14:f1:4c:c9:f0:51:57:1c:c2:46:bd: 98:33:e9:27:99:40:c3:99:f8:48:ad:f4:93:fe:e7: 5d:f1:8d:d8:3d:b7:e9:6a:16:85:a9:35:1e:80:c1: 00:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3B:62:B5:C5:3C:77:E1:4B:27:AD:AC:78:58:86:C4:C0:A1:10:8D X509v3 Authority Key Identifier: keyid:58:0A:D4:2C:64:C4:F5:5F:EC:E7:8B:24:27:07:1F:E6:68:4C:20:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WArULGTE9V_s54skJwcf5mhMIMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/hjtitcU8d-FLJ62seFiGxMChEI0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/8cb34d-94e7-4e57-98b1-7369a4257014/1/WArULGTE9V_s54skJwcf5mhMIMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.225.236.0/22 Signature Algorithm: sha256WithRSAEncryption 11:34:3c:68:66:69:31:34:6d:30:3a:1c:4b:11:78:74:ee:8f: 27:f8:53:b9:8b:67:fa:93:11:8c:9f:7d:33:4f:e0:60:57:d6: 7a:ed:f0:07:1b:6e:f3:4b:d6:c5:1a:ea:89:b0:94:11:c5:e0: d2:94:75:22:02:d7:28:0c:dd:db:07:68:e4:e7:3b:4b:82:04: 80:08:d1:9b:f1:3f:bc:c7:3a:1c:11:40:e6:5a:6a:03:31:2f: f3:b5:8a:cb:15:ad:3d:53:eb:8d:0a:6e:32:99:7a:7d:6d:24: 80:f6:66:34:f0:5d:5f:27:2c:34:3f:6c:1f:7d:fa:cd:74:c3: 10:6d:17:87:7c:9e:5d:3c:7d:d0:c5:ce:d6:58:2d:85:6c:dc: 65:eb:a8:a6:00:b3:01:72:77:4d:97:97:b7:b1:91:26:e0:69: 4c:eb:06:09:cd:67:62:62:82:20:75:00:a1:73:14:03:fa:8c: 11:9c:85:88:8f:f4:c0:25:16:40:dd:a0:10:26:90:7b:03:49: 85:05:65:b0:c0:88:42:0e:c4:0a:09:a9:cd:42:2c:50:3c:a5: 06:02:bc:af:26:f3:5a:2e:06:67:d3:22:8b:cf:2a:06:f4:e0: 46:cf:9a:7b:f5:3f:99:b1:b2:52:aa:6a:93:58:ca:85:84:3f: cc:b2:71:19 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o3LRACiBFFtSJaNqrbszMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4MGFkNDJjNjRjNGY1NWZlY2U3OGIyNDI3MDcxZmU2Njg0 YzIwYzkwHhcNMjYwMTAxMDgxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjNiNjJiNWM1M2M3N2UxNGIyN2FkYWM3ODU4ODZjNGMwYTExMDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20ErBEhNykLRvogppbhkONsySxPK sEYA6VmGFz4ox0PyISnQolER6BodN6vFwVmqPs6EthZcRvn9zfZzcI3QwvsKxwC3 BS6NtUvdAyh+PBiTXcnZ2YggzjIV/ZC2HEKWG2Qv3yi2Fd3AJnTMJaeHHgtCRNXk exwB3Id6P5BrpnQdtjtF8sFPFZ/azJUVVc/kDkqI9swK4DI/7b2y594qbkQufHOS 1MxYVoxQlq+gd7ELERmg8fd1o9QJ02vxQwrl8buqVdkfkGn0/Ygq2Ubt2ozh1c44 FPFMyfBRVxzCRr2YM+knmUDDmfhIrfST/udd8Y3YPbfpahaFqTUegMEAcwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIY7YrXFPHfhSyetrHhYhsTAoRCNMB8GA1UdIwQY MBaAFFgK1CxkxPVf7OeLJCcHH+ZoTCDJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0FyVUxHVEU5Vl9zNTRza0p3Y2Y1bWhNSU1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS84Y2IzNGQtOTRlNy00ZTU3LTk4YjEt NzM2OWE0MjU3MDE0LzEvaGp0aXRjVThkLUZMSjYyc2VGaUd4TUNoRUkwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS84Y2IzNGQtOTRlNy00ZTU3LTk4YjEtNzM2OWE0MjU3MDE0 LzEvV0FyVUxHVEU5Vl9zNTRza0p3Y2Y1bWhNSU1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw+HsMA0G CSqGSIb3DQEBCwUAA4IBAQARNDxoZmkxNG0wOhxLEXh07o8n+FO5i2f6kxGMn30z T+BgV9Z67fAHG27zS9bFGuqJsJQRxeDSlHUiAtcoDN3bB2jk5ztLggSACNGb8T+8 xzocEUDmWmoDMS/ztYrLFa09U+uNCm4ymXp9bSSA9mY08F1fJyw0P2wfffrNdMMQ bReHfJ5dPH3Qxc7WWC2FbNxl66imALMBcndNl5e3sZEm4GlM6wYJzWdiYoIgdQCh cxQD+owRnIWIj/TAJRZA3aAQJpB7A0mFBWWwwIhCDsQKCanNQixQPKUGAryvJvNa LgZn0yKLzyoG9OBGz5p79T+ZsbJSqmqTWMqFhD/MsnEZ -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:04 2026 by rpki-client