This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/RHLFI0WIkcoxPB1kgL13NUw9Uhg.roa File: RHLFI0WIkcoxPB1kgL13NUw9Uhg.roa (raw, json) Hash identifier: wG3CzCC6NTqC8LK8AAHM8aeSYhL3RSu1rtkFhvs3qUE= Subject key identifier: 44:72:C5:23:45:88:91:CA:31:3C:1D:64:80:BD:77:35:4C:3D:52:18 Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa Certificate serial: 019B76EB2601DBE4DA88CA99694C71284139 Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/RHLFI0WIkcoxPB1kgL13NUw9Uhg.roa Signing time: Thu 01 Jan 2026 00:18:00 +0000 ROA not before: Thu 01 Jan 2026 00:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22427 IP address blocks: 185.255.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.mft rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:26:01:db:e4:da:88:ca:99:69:4c:71:28:41:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa Validity Not Before: Jan 1 00:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4472c523458891ca313c1d6480bd77354c3d5218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:97:63:ca:65:03:2a:41:22:77:41:73:07:24: d5:92:4b:55:f4:64:7e:40:cb:d2:90:6b:b0:58:c9: 84:b6:3f:11:75:0a:d9:b8:4d:1e:62:cb:23:e4:ed: 40:29:1c:df:b9:65:55:a5:00:0b:49:8c:65:ec:85: bd:a9:54:4e:56:78:3b:e9:9c:fc:bb:d5:15:d4:44: e7:e2:59:3a:67:92:65:3d:f8:16:be:71:1e:c2:42: 24:a2:e8:44:59:21:fa:58:ab:a1:ec:7b:15:86:d6: e8:38:e8:77:7c:66:23:ed:97:f9:b6:37:47:d9:07: d2:eb:56:a5:de:96:e4:0e:e5:a0:58:5c:55:ff:4c: 35:2c:8a:93:0b:3e:b6:21:66:92:fa:43:c7:2b:7e: 03:76:54:85:c7:27:88:2d:9f:64:1e:fb:fc:91:dc: 94:b9:f5:64:18:21:d8:bd:dd:41:ee:c4:53:6e:8f: 96:5c:8c:dd:6a:b6:cf:f6:2b:7a:54:e1:6b:d1:bf: d9:ad:70:6a:ac:45:28:72:85:a1:b5:d7:e4:59:f9: 0c:26:d9:4b:c9:2f:8a:43:3e:97:7d:ea:53:59:c7: 24:01:fc:59:ef:65:5d:d7:65:84:1e:97:42:6b:03: 2a:1d:64:18:25:2b:cb:c2:ba:cf:49:08:b6:88:66: 12:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:72:C5:23:45:88:91:CA:31:3C:1D:64:80:BD:77:35:4C:3D:52:18 X509v3 Authority Key Identifier: keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/RHLFI0WIkcoxPB1kgL13NUw9Uhg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.196.0/24 Signature Algorithm: sha256WithRSAEncryption 34:4c:60:e7:9f:f6:2b:8f:a7:99:db:4d:1f:ef:59:e3:32:85: 2c:b1:87:b3:cd:bf:c4:0e:bf:c4:8f:00:e2:96:07:05:de:53: ba:e5:17:36:01:ec:8e:ad:86:65:47:5e:36:84:26:dc:48:21: 60:bc:bc:5e:0a:00:bb:43:91:d3:58:f3:06:91:61:c3:10:92: 5b:e9:73:66:bb:5c:2c:f5:c0:5c:c4:fd:b2:bc:a7:40:55:d5: a7:10:ed:95:df:6a:85:ef:b5:84:2b:6f:ef:71:d7:4a:81:62: 21:ad:e9:a5:94:be:cc:59:0c:38:26:22:cb:b1:40:4d:09:c1: ce:df:08:57:0a:7e:77:74:f5:11:b6:93:44:24:a4:e3:e4:31: e4:6d:69:aa:7a:53:97:e4:ca:ac:71:95:56:5d:04:b1:dc:c1: 75:82:56:4f:75:5e:d3:a3:c8:a7:27:4f:bd:1c:79:94:0d:ce: 33:51:91:4b:cf:53:59:22:1c:8f:fa:67:bd:73:a8:b7:5c:7a: e7:0d:6c:88:8e:e0:d6:14:fa:c0:1e:b1:f0:dc:a1:1c:19:ee: f2:46:50:b5:00:08:ef:be:1d:83:84:58:a2:ea:52:8f:95:e4: 91:48:a4:83:16:ca:d2:99:a5:a2:29:38:17:4d:80:41:0f:fa: 8f:94:8f:c4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26yYB2+TaiMqZaUxxKEE5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4MDZkYTVhNTkyNTEyNzVjZWIxODY5NGUxNzQxNTM1MmFl ZGQ2YWEwHhcNMjYwMTAxMDAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDcyYzUyMzQ1ODg5MWNhMzEzYzFkNjQ4MGJkNzczNTRjM2Q1MjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJdjymUDKkEid0FzByTVkktV9GR+ QMvSkGuwWMmEtj8RdQrZuE0eYssj5O1AKRzfuWVVpQALSYxl7IW9qVROVng76Zz8 u9UV1ETn4lk6Z5JlPfgWvnEewkIkouhEWSH6WKuh7HsVhtboOOh3fGYj7Zf5tjdH 2QfS61al3pbkDuWgWFxV/0w1LIqTCz62IWaS+kPHK34DdlSFxyeILZ9kHvv8kdyU ufVkGCHYvd1B7sRTbo+WXIzdarbP9it6VOFr0b/ZrXBqrEUocoWhtdfkWfkMJtlL yS+KQz6XfepTWcckAfxZ72Vd12WEHpdCawMqHWQYJSvLwrrPSQi2iGYS6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFERyxSNFiJHKMTwdZIC9dzVMPVIYMB8GA1UdIwQY MBaAFFgG2lpZJRJ1zrGGlOF0FTUq7daqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0FiYVdsa2xFblhPc1lhVTRYUVZOU3J0MXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi81ZGYxMTktYjFkZi00Y2ViLWJkNGYt Zjc5Y2NjM2Y0ZWFmLzEvUkhMRkkwV0lrY294UEIxa2dMMTNOVXc5VWhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi81ZGYxMTktYjFkZi00Y2ViLWJkNGYtZjc5Y2NjM2Y0ZWFm LzEvV0FiYVdsa2xFblhPc1lhVTRYUVZOU3J0MXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf/EMA0G CSqGSIb3DQEBCwUAA4IBAQA0TGDnn/Yrj6eZ200f71njMoUssYezzb/EDr/EjwDi lgcF3lO65Rc2AeyOrYZlR142hCbcSCFgvLxeCgC7Q5HTWPMGkWHDEJJb6XNmu1ws 9cBcxP2yvKdAVdWnEO2V32qF77WEK2/vcddKgWIhremllL7MWQw4JiLLsUBNCcHO 3whXCn53dPURtpNEJKTj5DHkbWmqelOX5MqscZVWXQSx3MF1glZPdV7To8inJ0+9 HHmUDc4zUZFLz1NZIhyP+me9c6i3XHrnDWyIjuDWFPrAHrHw3KEcGe7yRlC1AAjv vh2DhFii6lKPleSRSKSDFsrSmaWiKTgXTYBBD/qPlI/E -----END CERTIFICATE-----Generated at Mon Jan 19 23:20:28 2026 by rpki-client