This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ct-hvSYAGgJYQgWpcVS57UTwiFQ.roa File: ct-hvSYAGgJYQgWpcVS57UTwiFQ.roa (raw, json) Hash identifier: Fz00XukS0DO1yb0vkCcz/BGyiWR/DEM5RINQKePQ61k= Subject key identifier: 72:DF:A1:BD:26:00:1A:02:58:42:05:A9:71:54:B9:ED:44:F0:88:54 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC6677CE07DA56D06066704247187D Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ct-hvSYAGgJYQgWpcVS57UTwiFQ.roa Signing time: Thu 01 Jan 2026 14:18:14 +0000 ROA not before: Thu 01 Jan 2026 14:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58061 IP address blocks: 185.176.93.0/24 maxlen: 24 185.176.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 16:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:66:77:ce:07:da:56:d0:60:66:70:42:47:18:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72dfa1bd26001a02584205a97154b9ed44f08854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ef:3c:61:82:81:50:0e:e2:bb:ba:23:1b:8c: 31:0c:c0:cd:f5:5f:5c:fc:cc:9f:0d:f5:eb:3b:14: 59:ec:a5:e1:e6:97:5f:6b:68:bc:5d:d7:2a:17:56: 64:22:23:0b:55:89:3e:7b:80:2f:7e:4f:e7:96:1a: 9a:bd:37:bd:8d:c1:dc:3a:5e:a3:bc:02:ec:ef:56: 6a:ba:ff:b1:67:f2:94:62:6c:e8:93:1d:38:f4:e3: c1:ef:80:e4:d5:84:10:39:0f:d3:2f:d1:81:92:25: 24:a7:af:f4:54:65:9e:44:ff:0a:99:40:63:91:1a: cf:5e:7c:d4:7e:4c:a7:fd:56:bc:07:87:5f:20:2e: 0b:4d:72:ac:f8:a0:07:c7:26:25:ae:c5:c6:3f:5e: 5f:06:97:34:44:70:32:85:22:4f:49:06:1d:98:85: 24:ab:db:69:22:69:87:49:4e:73:49:b6:03:8a:b5: fb:3c:97:49:10:9a:61:03:39:b6:ef:fe:03:6d:b5: 53:7b:43:1a:6e:28:82:7b:9f:2f:d6:32:4c:ca:d9: 1c:8d:1d:88:2e:2b:33:2c:77:35:fb:7d:cf:40:f4: 9e:63:24:65:09:f7:a4:17:f2:fa:22:e5:cc:65:13: b4:d5:64:af:98:f7:3f:59:41:7b:e0:e1:ee:47:eb: d9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DF:A1:BD:26:00:1A:02:58:42:05:A9:71:54:B9:ED:44:F0:88:54 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ct-hvSYAGgJYQgWpcVS57UTwiFQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.176.93.0/24 185.176.95.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:d9:3e:95:de:80:8b:cc:cb:00:fd:3a:85:fa:00:14:5d:7c: cb:85:b1:cd:22:01:2a:19:a5:b1:63:c9:18:cf:9e:31:aa:e0: 92:26:e5:0d:e9:f6:6d:2e:22:de:b8:3a:d6:2f:72:16:84:c5: 55:eb:86:e7:5a:0e:20:e9:a7:fa:fb:7a:d9:c1:9b:77:83:4a: 6f:3a:16:a9:ec:01:59:02:40:8d:33:33:1b:2b:5e:59:a2:d5: 77:15:f5:90:ee:3d:e0:cf:3e:33:57:a7:30:a8:08:64:5a:cb: a5:32:ee:ed:44:4b:e0:d1:f7:7d:2d:d4:e0:53:64:a0:2f:0d: bf:1f:37:7c:99:51:8e:b4:3f:69:5f:0d:88:bd:0d:3d:f8:1f: 4f:61:43:1e:8f:33:8e:d0:65:e0:5f:a0:15:48:e3:69:9e:d9: a0:d1:fb:80:e3:79:3a:44:1b:e7:4e:da:f2:9a:88:2c:d4:bb: dc:2a:15:64:d7:eb:e8:15:bb:f5:96:49:46:8d:1d:e0:7c:68: fc:4b:f7:63:0b:06:b2:e1:c6:91:52:40:0c:79:cd:42:42:78: 05:17:0f:e0:9a:0d:a4:9d:80:23:46:fd:3f:93:ce:03:d6:36: eb:3e:64:ab:49:1b:62:71:59:b9:92:0d:cf:31:f2:06:d1:df: 4b:1f:df:a0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57GZ3zgfaVtBgZnBCRxh9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmRmYTFiZDI2MDAxYTAyNTg0MjA1YTk3MTU0YjllZDQ0ZjA4ODU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAou88YYKBUA7iu7ojG4wxDMDN9V9c /MyfDfXrOxRZ7KXh5pdfa2i8XdcqF1ZkIiMLVYk+e4Avfk/nlhqavTe9jcHcOl6j vALs71Zquv+xZ/KUYmzokx049OPB74Dk1YQQOQ/TL9GBkiUkp6/0VGWeRP8KmUBj kRrPXnzUfkyn/Va8B4dfIC4LTXKs+KAHxyYlrsXGP15fBpc0RHAyhSJPSQYdmIUk q9tpImmHSU5zSbYDirX7PJdJEJphAzm27/4DbbVTe0MabiiCe58v1jJMytkcjR2I LiszLHc1+33PQPSeYyRlCfekF/L6IuXMZRO01WSvmPc/WUF74OHuR+vZiQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHLfob0mABoCWEIFqXFUue1E8IhUMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvY3QtaHZTWUFHZ0pZUWdXcGNWUzU3VVR3aUZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAubBdAwQA ubBfMA0GCSqGSIb3DQEBCwUAA4IBAQCO2T6V3oCLzMsA/TqF+gAUXXzLhbHNIgEq GaWxY8kYz54xquCSJuUN6fZtLiLeuDrWL3IWhMVV64bnWg4g6af6+3rZwZt3g0pv Ohap7AFZAkCNMzMbK15ZotV3FfWQ7j3gzz4zV6cwqAhkWsulMu7tREvg0fd9LdTg U2SgLw2/Hzd8mVGOtD9pXw2IvQ09+B9PYUMejzOO0GXgX6AVSONpntmg0fuA43k6 RBvnTtrymogs1LvcKhVk1+voFbv1lklGjR3gfGj8S/djCway4caRUkAMec1CQngF Fw/gmg2knYAjRv0/k84D1jbrPmSrSRticVm5kg3PMfIG0d9LH9+g -----END CERTIFICATE-----Generated at Thu Jan 22 21:38:28 2026 by rpki-client