This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HRoFh12q7ogyv4TOBxUkwxseUYU.roa File: HRoFh12q7ogyv4TOBxUkwxseUYU.roa (raw, json) Hash identifier: 2JOAJj8mpy6Z/fJqWYglb3HH6EpylGHjpW6uX6DWjnY= Subject key identifier: 1D:1A:05:87:5D:AA:EE:88:32:BF:84:CE:07:15:24:C3:1B:1E:51:85 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C137B98A52A190B325CC8FE9114D9CF Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HRoFh12q7ogyv4TOBxUkwxseUYU.roa Signing time: Fri 02 Jan 2026 00:20:10 +0000 ROA not before: Fri 02 Jan 2026 00:20:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137235 IP address blocks: 193.58.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:7b:98:a5:2a:19:0b:32:5c:c8:fe:91:14:d9:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d1a05875daaee8832bf84ce071524c31b1e5185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d3:f3:58:dc:96:e8:fa:66:92:d2:27:ae:84: 54:79:f6:79:45:45:86:2a:f3:63:c4:87:57:1a:34: 7f:da:57:fd:d4:56:33:0c:ef:7d:44:bb:97:bd:a4: 9f:24:e5:3c:cc:9e:30:49:4c:e6:b4:f6:78:e0:a1: 20:ca:d1:63:8c:59:4b:74:ed:a3:32:eb:46:06:3f: 3b:11:fe:f3:3e:25:bf:26:ea:bd:f8:f6:71:e9:36: e6:89:e3:b9:21:eb:bc:ea:42:ba:e8:7a:2e:52:05: 61:76:05:b8:09:eb:c6:c7:85:50:6a:d2:dd:bf:7a: 1b:ee:dd:1c:80:f0:68:8c:79:7e:83:f1:89:ef:1f: e1:84:90:3d:10:98:40:90:f5:91:91:6b:19:76:f2: c3:87:a5:96:0f:1d:c1:7a:08:37:13:d5:b7:9a:69: 88:2c:01:52:30:51:12:87:5b:81:47:03:9e:17:29: 45:1b:74:3d:0f:9c:65:9a:55:1b:71:ea:11:4c:6d: 6e:c2:8d:c8:d3:83:0b:3d:c0:ca:94:42:5b:cc:42: 8e:64:6a:59:e3:70:4c:0d:fb:93:1e:0e:d4:89:2c: 05:67:50:1a:28:ba:cc:ef:5d:7f:96:0e:68:51:42: b7:7e:19:93:7c:6e:e4:60:69:04:7b:f9:bf:85:8d: 0a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1A:05:87:5D:AA:EE:88:32:BF:84:CE:07:15:24:C3:1B:1E:51:85 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HRoFh12q7ogyv4TOBxUkwxseUYU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.146.0/24 Signature Algorithm: sha256WithRSAEncryption 88:64:88:cb:be:25:f1:5e:db:df:40:da:67:de:b2:84:ae:87: 47:b9:39:a6:52:1a:53:2b:49:50:bb:23:1c:30:db:4b:a3:19: 6d:2b:28:79:f2:be:d3:89:b6:83:3a:ad:8e:85:b0:e4:be:67: 40:49:56:9e:3b:b7:c9:fb:25:ef:d0:97:11:48:43:2b:df:de: 07:9c:32:56:1e:8f:43:dc:55:5d:53:28:ae:a6:27:ff:42:b3: cb:21:fd:f8:e8:db:ca:8c:79:bd:b2:94:75:eb:37:42:ad:3c: 5d:42:d4:b7:03:27:48:9f:42:d5:05:1d:a5:8e:db:af:8a:d3: d6:4d:20:cf:65:2b:9d:4f:c5:41:33:4e:09:1e:1f:d4:ab:fe: 64:f5:74:44:47:3e:b4:2c:ba:2e:07:24:96:a6:4a:93:50:ad: be:4b:9b:c8:2b:d9:90:4d:de:ce:32:9c:71:33:03:6a:1c:df: 29:d7:97:e2:38:b1:81:a2:0b:41:5e:c6:4f:ae:8c:a7:6b:71: 7f:17:74:70:a2:f3:e6:9c:c2:55:e9:e7:1b:d4:91:f7:cb:ab: 28:d9:a0:ca:60:34:65:ff:a2:c1:be:e0:f6:e6:66:83:05:12: 58:78:dd:bc:5d:cb:a3:db:f8:1b:84:18:7d:2e:30:71:10:51: 22:61:67:0c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E3uYpSoZCzJcyP6RFNnPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDFhMDU4NzVkYWFlZTg4MzJiZjg0Y2UwNzE1MjRjMzFiMWU1MTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldPzWNyW6PpmktInroRUefZ5RUWG KvNjxIdXGjR/2lf91FYzDO99RLuXvaSfJOU8zJ4wSUzmtPZ44KEgytFjjFlLdO2j MutGBj87Ef7zPiW/Juq9+PZx6TbmieO5Ieu86kK66HouUgVhdgW4CevGx4VQatLd v3ob7t0cgPBojHl+g/GJ7x/hhJA9EJhAkPWRkWsZdvLDh6WWDx3Begg3E9W3mmmI LAFSMFESh1uBRwOeFylFG3Q9D5xlmlUbceoRTG1uwo3I04MLPcDKlEJbzEKOZGpZ 43BMDfuTHg7UiSwFZ1AaKLrM711/lg5oUUK3fhmTfG7kYGkEe/m/hY0KTwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB0aBYddqu6IMr+EzgcVJMMbHlGFMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvSFJvRmgxMnE3b2d5djRUT0J4VWt3eHNlVVlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTqSMA0G CSqGSIb3DQEBCwUAA4IBAQCIZIjLviXxXtvfQNpn3rKErodHuTmmUhpTK0lQuyMc MNtLoxltKyh58r7TibaDOq2OhbDkvmdASVaeO7fJ+yXv0JcRSEMr394HnDJWHo9D 3FVdUyiupif/QrPLIf346NvKjHm9spR16zdCrTxdQtS3AydIn0LVBR2ljtuvitPW TSDPZSudT8VBM04JHh/Uq/5k9XRERz60LLouBySWpkqTUK2+S5vIK9mQTd7OMpxx MwNqHN8p15fiOLGBogtBXsZProyna3F/F3RwovPmnMJV6ecb1JH3y6so2aDKYDRl /6LBvuD25maDBRJYeN28Xcuj2/gbhBh9LjBxEFEiYWcM -----END CERTIFICATE-----Generated at Fri Jan 2 23:53:19 2026 by rpki-client