This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/0hxpuIK8Xk-q0BTmptbEA31tBQM.roa File: 0hxpuIK8Xk-q0BTmptbEA31tBQM.roa (raw, json) Hash identifier: F/+sSqgxCKBUwr4EismpQjVJRCU5s8RFO6y5G1id7CM= Subject key identifier: D2:1C:69:B8:82:BC:5E:4F:AA:D0:14:E6:A6:D6:C4:03:7D:6D:05:03 Certificate issuer: /CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d Certificate serial: 019B7910F921BA8371CC090842DB565EF714 Authority key identifier: 1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/0hxpuIK8Xk-q0BTmptbEA31tBQM.roa Signing time: Thu 01 Jan 2026 10:18:33 +0000 ROA not before: Thu 01 Jan 2026 10:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212492 IP address blocks: 185.61.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/HJe0gj08nhIexkmCHgDwp5rrm40.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/HJe0gj08nhIexkmCHgDwp5rrm40.mft rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:f9:21:ba:83:71:cc:09:08:42:db:56:5e:f7:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d Validity Not Before: Jan 1 10:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d21c69b882bc5e4faad014e6a6d6c4037d6d0503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3b:75:ed:cb:f2:cc:09:f9:e1:26:76:e8:05: f1:8d:7e:c2:05:85:ea:60:67:0d:09:95:10:e5:36: 6e:cb:94:95:5d:0d:7b:08:8b:d6:79:5c:0e:e9:dc: 40:24:dc:4a:4d:b1:5a:6a:fb:83:ab:f4:df:6f:fe: 1a:94:2f:5b:af:a1:34:c1:fa:7c:79:d8:dd:93:58: 99:66:bd:70:2b:6a:72:d1:98:5b:2e:78:4f:10:c4: 9b:88:92:7e:8a:be:a6:54:a4:ac:54:8c:2a:db:e6: 10:a9:dd:f6:47:b7:77:87:5f:6a:36:e1:1f:d9:d1: ac:a7:05:05:a7:1b:6b:27:71:ff:64:fe:75:57:b1: 9f:44:a2:ba:7d:1c:c0:66:c1:8a:7a:88:10:87:37: 22:82:76:0b:d9:67:73:ce:1d:d3:1e:bb:2d:af:4f: 29:4a:a7:1a:e8:24:15:3b:78:6b:a4:f6:ef:1c:0a: 04:16:b0:d0:4b:9c:22:fc:85:76:46:82:81:c6:f8: 34:82:f3:e1:93:fd:f8:40:b9:ae:e7:a1:08:c4:60: ad:31:8f:38:b4:b1:0f:2f:a7:f1:8e:5e:ac:63:da: dc:9b:4f:55:f4:bb:97:e6:1d:c9:eb:1f:95:93:cc: e9:02:65:c5:fb:74:4f:cc:5d:4d:48:26:5e:86:bc: 3e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1C:69:B8:82:BC:5E:4F:AA:D0:14:E6:A6:D6:C4:03:7D:6D:05:03 X509v3 Authority Key Identifier: keyid:1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/0hxpuIK8Xk-q0BTmptbEA31tBQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/HJe0gj08nhIexkmCHgDwp5rrm40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.61.58.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:cc:da:08:0e:fa:22:03:26:e4:f4:fc:13:5a:b7:f7:86:1f: 52:a1:ea:3c:8b:f4:0d:2e:fe:e2:31:b2:40:56:a7:21:1e:ea: 1d:f4:aa:1a:2b:f5:2f:f8:d1:4e:14:a1:b3:1e:4a:9f:e8:60: cd:42:07:b2:fc:04:65:72:23:d6:60:6f:0f:65:4e:46:ae:81: 33:08:56:3e:80:21:56:48:96:1c:b7:f5:85:f6:80:26:38:2f: e9:ab:f2:70:a1:4b:13:79:c8:69:6b:02:51:be:e7:22:0c:20: 83:40:0e:d3:7f:a0:42:88:ad:db:08:3a:e4:25:d3:a0:10:99: 58:53:f6:9a:a1:af:cc:34:3c:ca:2e:04:69:9c:e9:89:8d:7b: cf:c5:f1:7c:86:fc:fe:99:d4:80:5c:f9:1a:cb:c5:08:28:ed: 90:ff:80:01:d3:62:17:1b:a5:49:69:36:5d:d3:37:0d:b0:cc: cc:5c:34:01:a0:c1:93:88:1f:a6:e0:13:f5:d9:66:65:41:ad: af:ab:a5:da:81:22:fb:0a:84:18:53:c1:ac:ad:36:d7:cf:fc: dc:f3:b5:bf:70:70:de:cb:49:53:bc:07:78:bf:59:84:8c:47: 63:4b:e2:c4:b8:5b:d1:9c:88:17:90:c7:6f:de:5e:cf:33:73: b4:86:db:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EPkhuoNxzAkIQttWXvcUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTdiNDgyM2QzYzllMTIxZWM2NDk4MjFlMDBmMGE3OWFl YjliOGQwHhcNMjYwMTAxMTAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjFjNjliODgyYmM1ZTRmYWFkMDE0ZTZhNmQ2YzQwMzdkNmQwNTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzt17cvyzAn54SZ26AXxjX7CBYXq YGcNCZUQ5TZuy5SVXQ17CIvWeVwO6dxAJNxKTbFaavuDq/Tfb/4alC9br6E0wfp8 edjdk1iZZr1wK2py0ZhbLnhPEMSbiJJ+ir6mVKSsVIwq2+YQqd32R7d3h19qNuEf 2dGspwUFpxtrJ3H/ZP51V7GfRKK6fRzAZsGKeogQhzcignYL2Wdzzh3THrstr08p Sqca6CQVO3hrpPbvHAoEFrDQS5wi/IV2RoKBxvg0gvPhk/34QLmu56EIxGCtMY84 tLEPL6fxjl6sY9rcm09V9LuX5h3J6x+Vk8zpAmXF+3RPzF1NSCZehrw+NQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNIcabiCvF5PqtAU5qbWxAN9bQUDMB8GA1UdIwQY MBaAFByXtII9PJ4SHsZJgh4A8Kea65uNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEplMGdqMDhuaElleGttQ0hnRHdwNXJybTQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8xNTY0MWEtNjYxNC00NWU0LWEyYTkt OWI5Y2Q4OTY1OWUwLzEvMGh4cHVJSzhYay1xMEJUbXB0YkVBMzF0QlFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8xNTY0MWEtNjYxNC00NWU0LWEyYTktOWI5Y2Q4OTY1OWUw LzEvSEplMGdqMDhuaElleGttQ0hnRHdwNXJybTQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT06MA0G CSqGSIb3DQEBCwUAA4IBAQBMzNoIDvoiAybk9PwTWrf3hh9Soeo8i/QNLv7iMbJA VqchHuod9KoaK/Uv+NFOFKGzHkqf6GDNQgey/ARlciPWYG8PZU5GroEzCFY+gCFW SJYct/WF9oAmOC/pq/JwoUsTechpawJRvuciDCCDQA7Tf6BCiK3bCDrkJdOgEJlY U/aaoa/MNDzKLgRpnOmJjXvPxfF8hvz+mdSAXPkay8UIKO2Q/4AB02IXG6VJaTZd 0zcNsMzMXDQBoMGTiB+m4BP12WZlQa2vq6XagSL7CoQYU8GsrTbXz/zc87W/cHDe y0lTvAd4v1mEjEdjS+LEuFvRnIgXkMdv3l7PM3O0htv7 -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:38 2026 by rpki-client