This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/hcsvWgXQpRuMWY3WmGaGm9cGJ4A.roa File: hcsvWgXQpRuMWY3WmGaGm9cGJ4A.roa (raw, json) Hash identifier: dkGLaaklnk5lHe0yhu52I503lMVuY0bbx3ehGkFXyqY= Subject key identifier: 85:CB:2F:5A:05:D0:A5:1B:8C:59:8D:D6:98:66:86:9B:D7:06:27:80 Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c Certificate serial: 019B78A337519396687001B7E23A50C16EF6 Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/hcsvWgXQpRuMWY3WmGaGm9cGJ4A.roa Signing time: Thu 01 Jan 2026 08:18:40 +0000 ROA not before: Thu 01 Jan 2026 08:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1239 IP address blocks: 185.164.64.0/23 maxlen: 23 2a0f:4cc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.mft rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:37:51:93:96:68:70:01:b7:e2:3a:50:c1:6e:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c Validity Not Before: Jan 1 08:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85cb2f5a05d0a51b8c598dd69866869bd7062780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:c9:85:a2:6a:5c:f2:8d:7e:fa:8b:25:99: 23:ec:be:6b:5d:6c:b3:8f:5d:03:5d:57:00:07:ed: 26:09:00:10:41:c2:27:d7:c9:45:89:6c:47:c4:cb: db:4d:be:01:94:89:b3:52:71:b5:4d:af:bf:24:06: fa:16:aa:dc:62:a0:54:57:4f:f1:0c:47:ef:59:cc: 27:f0:8b:2e:80:36:07:0d:75:14:61:6f:67:be:9d: 98:7e:87:ef:e3:91:d7:91:d0:c3:d1:25:91:e7:0f: 34:88:8a:53:84:cb:30:a1:f2:84:da:bf:f6:fe:d7: 50:c4:34:bc:65:c8:fa:11:94:59:81:f1:71:f2:40: 5e:cb:3f:6d:6c:84:ce:dd:59:5f:75:88:bf:34:3c: 29:1a:0f:8f:7f:e9:46:ef:20:db:e2:14:3b:90:69: 38:4b:1c:48:85:5d:15:dc:d2:c6:21:59:47:50:4e: c3:42:c2:95:20:fa:76:e3:49:5b:02:53:60:ed:60: d6:e9:2f:d0:1b:f8:da:fe:5a:6f:1e:a2:ea:c3:4c: 63:aa:7e:43:33:76:8f:71:44:8d:b6:d3:2c:f8:fd: f8:4c:bd:11:3a:7d:35:e4:09:1f:93:f3:3e:5d:f4: 22:e4:c2:60:e9:23:41:67:99:ec:1e:4f:af:01:1e: cf:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CB:2F:5A:05:D0:A5:1B:8C:59:8D:D6:98:66:86:9B:D7:06:27:80 X509v3 Authority Key Identifier: keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/hcsvWgXQpRuMWY3WmGaGm9cGJ4A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.164.64.0/23 IPv6: 2a0f:4cc0::/29 Signature Algorithm: sha256WithRSAEncryption 55:03:4a:83:29:bd:95:66:79:4d:fe:39:65:9d:54:0c:d1:fa: 0f:d1:fa:1c:8e:25:8d:77:4d:ac:70:ef:30:b9:93:8d:d0:c6: b0:c8:41:33:bc:5c:23:84:8e:45:62:f1:3c:f4:af:ca:8a:37: 26:5e:94:32:60:0e:67:b1:99:50:96:ea:37:7f:bd:15:46:1b: 9b:41:52:b1:e3:81:d7:b9:a2:5b:67:99:5b:0b:cf:d0:fb:14: 47:e3:50:52:3c:72:f0:48:96:b4:50:22:09:a8:df:44:b7:79: d2:39:36:3b:7d:20:95:3b:94:05:4d:9c:a4:99:53:65:ad:1c: 51:e7:38:38:2d:ae:5a:cd:13:73:6d:b1:91:a8:df:34:c3:f9: 70:ba:aa:44:7a:b8:05:22:1d:7b:aa:7f:fb:0f:96:9a:af:46: 37:18:f4:6e:70:5f:8f:7d:e5:9a:20:3f:83:55:98:1f:bd:a5: c4:9e:6f:1d:3d:10:88:57:9d:2e:32:08:78:83:9a:30:ff:83: 64:42:ee:ef:34:62:10:da:48:88:16:69:4c:4a:b8:dd:54:01: 0a:96:4d:af:04:26:77:13:90:b8:70:b5:c4:97:66:34:11:ff: 99:4c:24:6c:14:22:24:75:e6:f5:e0:76:3d:6a:ab:68:e2:87: 9f:a6:b1:14 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ozdRk5ZocAG34jpQwW72MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNDQ2ZGE3YTcwYmNlNzczZWMyYmMxNjU1YWFlMzBjM2Mx ODQxMmMwHhcNMjYwMTAxMDgxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWNiMmY1YTA1ZDBhNTFiOGM1OThkZDY5ODY2ODY5YmQ3MDYyNzgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8DJhaJqXPKNfvqLJZkj7L5rXWyz j10DXVcAB+0mCQAQQcIn18lFiWxHxMvbTb4BlImzUnG1Ta+/JAb6FqrcYqBUV0/x DEfvWcwn8IsugDYHDXUUYW9nvp2Yfofv45HXkdDD0SWR5w80iIpThMswofKE2r/2 /tdQxDS8Zcj6EZRZgfFx8kBeyz9tbITO3VlfdYi/NDwpGg+Pf+lG7yDb4hQ7kGk4 SxxIhV0V3NLGIVlHUE7DQsKVIPp240lbAlNg7WDW6S/QG/ja/lpvHqLqw0xjqn5D M3aPcUSNttMs+P34TL0ROn015Akfk/M+XfQi5MJg6SNBZ5nsHk+vAR7PcQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIXLL1oF0KUbjFmN1phmhpvXBieAMB8GA1UdIwQY MBaAFCNEbaenC853PsK8FlWq4ww8GEEsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTBSdHA2Y0x6bmMtd3J3V1ZhcmpERHdZUVN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mMzU0OWYtMThmNy00OGIwLTkwMWQt MjVjYzlkNmNmYmI5LzEvaGNzdldnWFFwUnVNV1kzV21HYUdtOWNHSjRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9mMzU0OWYtMThmNy00OGIwLTkwMWQtMjVjYzlkNmNmYmI5 LzEvSTBSdHA2Y0x6bmMtd3J3V1ZhcmpERHdZUVN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuaRAMA0E AgACMAcDBQMqD0zAMA0GCSqGSIb3DQEBCwUAA4IBAQBVA0qDKb2VZnlN/jllnVQM 0foP0focjiWNd02scO8wuZON0MawyEEzvFwjhI5FYvE89K/KijcmXpQyYA5nsZlQ luo3f70VRhubQVKx44HXuaJbZ5lbC8/Q+xRH41BSPHLwSJa0UCIJqN9Et3nSOTY7 fSCVO5QFTZykmVNlrRxR5zg4La5azRNzbbGRqN80w/lwuqpEergFIh17qn/7D5aa r0Y3GPRucF+PfeWaID+DVZgfvaXEnm8dPRCIV50uMgh4g5ow/4NkQu7vNGIQ2kiI FmlMSrjdVAEKlk2vBCZ3E5C4cLXEl2Y0Ef+ZTCRsFCIkdeb14HY9aqto4oefprEU -----END CERTIFICATE-----Generated at Wed Jan 21 10:28:38 2026 by rpki-client