This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/hAyoLpCra0kpXCEB9YIPKEmLRzU.roa File: hAyoLpCra0kpXCEB9YIPKEmLRzU.roa (raw, json) Hash identifier: L8pQSdo6sZNnsGCjKX/I+wB7KeoUwSik66sYCeRu7Vs= Subject key identifier: 84:0C:A8:2E:90:AB:6B:49:29:5C:21:01:F5:82:0F:28:49:8B:47:35 Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d Certificate serial: 019C04AA86FB6AD2CFC0E4A29046C87B5656 Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/hAyoLpCra0kpXCEB9YIPKEmLRzU.roa Signing time: Wed 28 Jan 2026 12:53:30 +0000 ROA not before: Wed 28 Jan 2026 12:53:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47543 IP address blocks: 194.26.148.0/24 maxlen: 24 2001:678:1c8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:04:aa:86:fb:6a:d2:cf:c0:e4:a2:90:46:c8:7b:56:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d Validity Not Before: Jan 28 12:53:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=840ca82e90ab6b49295c2101f5820f28498b4735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:62:69:09:e3:d1:05:76:b6:69:80:23:ad: 79:3c:3a:44:11:a9:af:9a:ff:5b:a0:ac:0d:d0:cb: f2:2d:2d:bc:a2:a5:45:97:8a:6b:c5:b6:44:f3:a5: 3c:77:f4:24:d3:e1:70:bc:17:a4:10:42:b6:ca:cb: 3c:29:7e:2d:36:80:1c:0b:2b:85:fd:ca:26:5c:cd: 4e:a8:d5:ae:12:f8:d1:cb:8b:47:ee:a4:e3:c3:6b: ee:ee:ee:7f:9b:df:93:de:9e:58:e8:48:e0:9f:0a: 28:e0:7c:c6:91:5f:85:14:cd:51:1a:1a:8e:7f:f9: b3:95:ef:b2:16:be:63:6e:f4:b2:38:8e:1a:fc:2a: 6a:fe:45:26:de:8a:80:83:99:68:4b:60:4b:32:f2: 2e:ce:8b:e1:b7:3a:92:d6:18:89:aa:61:66:36:4b: b0:e1:b8:3f:66:d5:46:ad:52:7d:04:ce:59:24:0a: b5:a1:ad:00:89:77:53:13:6a:ba:ea:18:93:17:21: fa:1a:f2:1d:09:f4:ab:61:df:81:2c:ce:bf:b2:4b: d5:50:67:dc:8a:a3:d9:af:a8:c6:5a:a2:61:ee:d2: 37:aa:53:b7:36:94:95:8f:3a:bc:07:20:b7:41:4d: 4a:f4:75:0f:18:09:e3:b7:82:1c:60:e6:59:1b:f3: 96:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0C:A8:2E:90:AB:6B:49:29:5C:21:01:F5:82:0F:28:49:8B:47:35 X509v3 Authority Key Identifier: keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/hAyoLpCra0kpXCEB9YIPKEmLRzU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.26.148.0/24 IPv6: 2001:678:1c8::/48 Signature Algorithm: sha256WithRSAEncryption a8:6e:60:76:fd:fd:1f:e5:e9:68:1c:b4:06:72:d4:74:01:cb: 1a:d3:51:d3:b9:31:99:b9:03:3b:60:b3:c1:0c:a0:c7:a7:04: 93:1a:b1:e9:09:db:e3:45:c8:89:04:94:f1:7f:33:bd:0c:81: 98:1e:8b:ce:32:9f:9d:7b:6b:c2:b4:84:be:be:e1:91:fc:15: bc:08:35:0a:88:a2:0b:59:f5:d0:a9:65:80:d9:19:0c:84:8f: fa:f1:2d:2a:ea:44:d5:6a:e4:bc:9d:43:31:3c:99:ca:20:17: 29:bf:ac:fc:26:48:b2:1a:53:1f:bb:d6:ee:c9:2d:fa:be:c5: 6b:77:25:22:91:28:b1:67:0d:d7:35:47:2c:e0:b0:ad:ab:8d: 7b:5f:11:0d:4e:7d:33:3c:f4:d3:73:92:fb:52:ec:92:26:cf: 55:8b:5a:d3:28:2d:7d:dc:ed:c7:86:f4:e3:ea:2e:5c:fb:43: 07:de:17:af:63:8f:7e:7d:88:58:86:57:3e:bd:70:56:3d:8c: be:5a:5d:dc:b0:23:d0:23:86:f5:b3:e5:67:5e:f7:db:7d:10: 07:23:5c:7d:6f:c4:ae:4a:b5:d1:ea:6a:77:9b:3e:55:90:c6: 35:36:c9:b6:c7:c3:4a:3d:5a:22:6c:82:3b:2c:6f:f7:ba:e9: b9:de:50:d3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZwEqob7atLPwOSikEbIe1ZWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDhlMDMzZGViNjRhYzQyNDNjNzJjZTg5OWQ1MzgyMmRm Njk5NmQwHhcNMjYwMTI4MTI1MzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDBjYTgyZTkwYWI2YjQ5Mjk1YzIxMDFmNTgyMGYyODQ5OGI0NzM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rNiaQnj0QV2tmmAI615PDpEEamv mv9boKwN0MvyLS28oqVFl4prxbZE86U8d/Qk0+FwvBekEEK2yss8KX4tNoAcCyuF /comXM1OqNWuEvjRy4tH7qTjw2vu7u5/m9+T3p5Y6Ejgnwoo4HzGkV+FFM1RGhqO f/mzle+yFr5jbvSyOI4a/Cpq/kUm3oqAg5loS2BLMvIuzovhtzqS1hiJqmFmNkuw 4bg/ZtVGrVJ9BM5ZJAq1oa0AiXdTE2q66hiTFyH6GvIdCfSrYd+BLM6/skvVUGfc iqPZr6jGWqJh7tI3qlO3NpSVjzq8ByC3QU1K9HUPGAnjt4IcYOZZG/OWXwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIQMqC6Qq2tJKVwhAfWCDyhJi0c1MB8GA1UdIwQY MBaAFDpI4DPetkrEJDxyzomdU4It9pltMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEt YzUzMjFkYzllNjRiLzEvaEF5b0xwQ3JhMGtwWENFQjlZSVBLRW1MUnpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEtYzUzMjFkYzllNjRi LzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwhqUMA8E AgACMAkDBwAgAQZ4AcgwDQYJKoZIhvcNAQELBQADggEBAKhuYHb9/R/l6WgctAZy 1HQByxrTUdO5MZm5Aztgs8EMoMenBJMasekJ2+NFyIkElPF/M70MgZgei84yn517 a8K0hL6+4ZH8FbwINQqIogtZ9dCpZYDZGQyEj/rxLSrqRNVq5LydQzE8mcogFym/ rPwmSLIaUx+71u7JLfq+xWt3JSKRKLFnDdc1RyzgsK2rjXtfEQ1OfTM89NNzkvtS 7JImz1WLWtMoLX3c7ceG9OPqLlz7QwfeF69jj359iFiGVz69cFY9jL5aXdywI9Aj hvWz5Wde99t9EAcjXH1vxK5KtdHqanebPlWQxjU2ybbHw0o9WiJsgjssb/e66bne UNM= -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:58 2026 by rpki-client