This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/HTNIDhfSROtaHMuo_vWuWis3hqY.roa File: HTNIDhfSROtaHMuo_vWuWis3hqY.roa (raw, json) Hash identifier: RQQdIjVdjQlrkYAZGuleXhNiBkw7L08DLK2ngoHAF8E= Subject key identifier: 1D:33:48:0E:17:D2:44:EB:5A:1C:CB:A8:FE:F5:AE:5A:2B:37:86:A6 Certificate issuer: /CN=20c5ee02d2e05861dd906fe06b3844f04d378c73 Certificate serial: 019BC59647C83C6BC5DB926BE41EDC0B225F Authority key identifier: 20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/HTNIDhfSROtaHMuo_vWuWis3hqY.roa Signing time: Fri 16 Jan 2026 06:55:18 +0000 ROA not before: Fri 16 Jan 2026 06:55:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35594 IP address blocks: 195.137.160.0/24 maxlen: 24 2a0a:7d80:3::/48 maxlen: 48 2a0a:7d80:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.mft rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c5:96:47:c8:3c:6b:c5:db:92:6b:e4:1e:dc:0b:22:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20c5ee02d2e05861dd906fe06b3844f04d378c73 Validity Not Before: Jan 16 06:55:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d33480e17d244eb5a1ccba8fef5ae5a2b3786a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:1c:e2:cd:1d:89:f9:85:4a:e3:57:bc:dc:3a: 77:6d:40:ae:47:4a:9a:9f:13:10:15:6b:da:1d:4a: f9:00:aa:83:bd:d7:59:9e:7a:1a:19:e4:a1:79:11: 7d:54:64:26:9e:3b:fe:bf:79:49:27:6c:53:14:ec: 13:aa:7b:6f:b2:57:d6:b7:59:96:5d:71:6f:a8:a5: ef:4a:35:ea:bd:c4:60:d2:64:da:7c:23:58:3c:d0: 38:70:8f:1e:00:46:cd:ad:9e:7b:73:ec:5c:cb:77: 96:81:87:9f:f2:e1:0b:d8:2b:2f:07:ec:af:ba:46: 42:bb:1e:2e:d2:06:e3:dd:27:06:4f:5c:85:4e:87: 84:2b:10:f8:0c:e4:e8:4a:89:85:04:c9:f1:31:a9: ee:31:e8:fe:bc:0e:93:2a:18:33:d7:12:23:48:97: 88:d5:f7:32:a7:bc:2d:dc:e5:fd:2c:c3:cd:36:6d: 9d:b3:c4:99:62:64:42:07:fd:e5:f3:44:5f:d7:91: b2:00:e4:41:32:75:b0:b0:3d:c8:4d:78:b1:ed:41: fb:44:5a:12:6d:a2:29:4a:31:14:4d:bb:9c:89:a6: 27:80:69:74:b8:b6:13:a3:51:0c:ba:12:7f:f6:2e: 8b:9c:ae:05:c3:75:63:65:ef:41:aa:46:6a:70:ae: 6f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:33:48:0E:17:D2:44:EB:5A:1C:CB:A8:FE:F5:AE:5A:2B:37:86:A6 X509v3 Authority Key Identifier: keyid:20:C5:EE:02:D2:E0:58:61:DD:90:6F:E0:6B:38:44:F0:4D:37:8C:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMXuAtLgWGHdkG_gazhE8E03jHM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/HTNIDhfSROtaHMuo_vWuWis3hqY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/979296-ef7a-4bac-8c15-67771359a2b3/1/IMXuAtLgWGHdkG_gazhE8E03jHM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.137.160.0/24 IPv6: 2a0a:7d80:3::/48 2a0a:7d80:9::/48 Signature Algorithm: sha256WithRSAEncryption 53:ef:a4:97:02:7f:17:52:e1:ba:a5:77:3d:89:9b:fb:fb:ba: de:c9:3f:89:cd:bd:45:4e:96:e6:b1:5a:8c:9a:fb:60:87:78: 97:a1:fd:21:4c:2c:5b:ce:8e:f0:15:99:94:b6:ea:ce:a8:6e: 27:cf:79:54:22:4e:d8:65:72:8b:45:d6:17:4b:f7:ba:74:d6: 5d:8e:2e:3c:87:dc:47:3c:ce:bd:1b:0e:a9:e0:e0:bc:bb:95: 0c:91:1c:f5:af:90:36:46:0b:e2:8c:72:5c:6c:65:e5:39:8a: 95:c3:02:0b:10:27:41:b2:58:d8:2f:de:f3:d0:bd:22:02:94: dc:9a:f7:db:c7:19:5c:68:b8:b6:b0:ef:03:3c:8e:12:6f:fe: 51:64:45:89:42:c3:df:aa:51:33:cc:a7:46:ad:6a:69:a8:ab: e0:d3:ed:15:f9:2f:e3:18:c3:34:98:c5:b9:1d:88:3e:e9:6f: 29:14:c9:07:e0:7d:87:d5:a1:01:e7:6d:aa:57:8b:58:9a:38: ae:a4:45:7e:4d:ee:ba:dc:31:91:f6:65:36:1e:97:68:28:0a: 3e:fd:a5:59:f0:6c:85:7c:ec:a1:d6:c3:ee:6e:48:8a:01:de: cd:6b:aa:2b:72:b2:23:03:77:3d:78:e2:ff:05:9e:e5:f7:75: 95:d5:ae:29 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZvFlkfIPGvF25Jr5B7cCyJfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYzVlZTAyZDJlMDU4NjFkZDkwNmZlMDZiMzg0NGYwNGQz NzhjNzMwHhcNMjYwMTE2MDY1NTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDMzNDgwZTE3ZDI0NGViNWExY2NiYThmZWY1YWU1YTJiMzc4NmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8BzizR2J+YVK41e83Dp3bUCuR0qa nxMQFWvaHUr5AKqDvddZnnoaGeSheRF9VGQmnjv+v3lJJ2xTFOwTqntvslfWt1mW XXFvqKXvSjXqvcRg0mTafCNYPNA4cI8eAEbNrZ57c+xcy3eWgYef8uEL2CsvB+yv ukZCux4u0gbj3ScGT1yFToeEKxD4DOToSomFBMnxManuMej+vA6TKhgz1xIjSJeI 1fcyp7wt3OX9LMPNNm2ds8SZYmRCB/3l80Rf15GyAORBMnWwsD3ITXix7UH7RFoS baIpSjEUTbuciaYngGl0uLYTo1EMuhJ/9i6LnK4Fw3VjZe9BqkZqcK5vzQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFB0zSA4X0kTrWhzLqP71rlorN4amMB8GA1UdIwQY MBaAFCDF7gLS4Fhh3ZBv4Gs4RPBNN4xzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC85NzkyOTYtZWY3YS00YmFjLThjMTUt Njc3NzEzNTlhMmIzLzEvSFROSURoZlNST3RhSE11b192V3VXaXMzaHFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC85NzkyOTYtZWY3YS00YmFjLThjMTUtNjc3NzEzNTlhMmIz LzEvSU1YdUF0TGdXR0hka0dfZ2F6aEU4RTAzakhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAw4mgMBgE AgACMBIDBwAqCn2AAAMDBwAqCn2AAAkwDQYJKoZIhvcNAQELBQADggEBAFPvpJcC fxdS4bqldz2Jm/v7ut7JP4nNvUVOluaxWoya+2CHeJeh/SFMLFvOjvAVmZS26s6o bifPeVQiTthlcotF1hdL97p01l2OLjyH3Ec8zr0bDqng4Ly7lQyRHPWvkDZGC+KM clxsZeU5ipXDAgsQJ0GyWNgv3vPQvSIClNya99vHGVxouLaw7wM8jhJv/lFkRYlC w9+qUTPMp0atammoq+DT7RX5L+MYwzSYxbkdiD7pbykUyQfgfYfVoQHnbapXi1ia OK6kRX5N7rrcMZH2ZTYel2goCj79pVnwbIV87KHWw+5uSIoB3s1rqitysiMDdz14 4v8FnuX3dZXVrik= -----END CERTIFICATE-----Generated at Mon Jan 26 23:21:48 2026 by rpki-client