This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/hRQCi57thYOlY1i0Di_3OEU8RbI.roa File: hRQCi57thYOlY1i0Di_3OEU8RbI.roa (raw, json) Hash identifier: CiJ/s78ir+15MqFOT5aaVIhr5Aw/xJZZ/G08VuU4cSs= Subject key identifier: 85:14:02:8B:9E:ED:85:83:A5:63:58:B4:0E:2F:F7:38:45:3C:45:B2 Certificate issuer: /CN=ac6cc8603353d732e4b1ccba7eaca0b6cee4c4cf Certificate serial: 019B7F83FD9E7D72A5306599953580535307 Authority key identifier: AC:6C:C8:60:33:53:D7:32:E4:B1:CC:BA:7E:AC:A0:B6:CE:E4:C4:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rGzIYDNT1zLkscy6fqygts7kxM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/hRQCi57thYOlY1i0Di_3OEU8RbI.roa Signing time: Fri 02 Jan 2026 16:21:55 +0000 ROA not before: Fri 02 Jan 2026 16:21:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50629 IP address blocks: 185.223.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/rGzIYDNT1zLkscy6fqygts7kxM8.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/rGzIYDNT1zLkscy6fqygts7kxM8.mft rsync://rpki.ripe.net/repository/DEFAULT/rGzIYDNT1zLkscy6fqygts7kxM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:fd:9e:7d:72:a5:30:65:99:95:35:80:53:53:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac6cc8603353d732e4b1ccba7eaca0b6cee4c4cf Validity Not Before: Jan 2 16:21:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8514028b9eed8583a56358b40e2ff738453c45b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:82:26:25:66:04:ed:6d:02:a4:6b:ce:0c:41: bd:b6:44:a4:12:88:d6:8c:8c:e2:6e:8b:c3:a5:d6: 55:4f:2e:69:b5:4d:51:08:66:f0:85:61:c2:5f:1e: e8:53:af:fc:d7:a9:c6:b8:b7:bb:93:92:a1:f3:64: ce:da:ce:25:59:28:3e:f2:0f:12:e3:21:98:d4:3d: 45:37:f4:0e:28:da:a7:fd:65:7f:c4:33:28:4d:ca: 46:d5:e2:4f:85:7b:26:b1:51:9b:61:52:34:fa:3c: 39:90:6d:ce:f2:f1:bf:bc:3c:da:69:42:fb:5d:32: 99:f0:84:1a:6d:1c:0d:26:90:1a:1c:d6:25:ea:3c: 30:f3:db:c2:2a:6f:f2:59:29:42:2e:32:6a:ab:35: af:2e:73:31:f6:5c:52:93:bb:7e:61:fe:f4:be:94: b8:68:27:d3:6a:f5:dc:3d:50:f0:7a:3c:2c:d3:a1: 18:62:7a:81:c2:29:1e:0d:46:6b:72:33:94:78:8d: ee:ab:2d:13:2c:e6:6e:4a:26:c9:e0:20:3d:1a:73: 9a:87:ed:49:e1:37:8f:77:8f:88:83:be:b6:92:52: da:1a:d6:2f:50:38:f5:b4:27:2d:2a:5c:26:18:22: d1:60:40:c0:cd:62:67:83:cc:e8:9a:4b:24:40:4f: d3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:14:02:8B:9E:ED:85:83:A5:63:58:B4:0E:2F:F7:38:45:3C:45:B2 X509v3 Authority Key Identifier: keyid:AC:6C:C8:60:33:53:D7:32:E4:B1:CC:BA:7E:AC:A0:B6:CE:E4:C4:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rGzIYDNT1zLkscy6fqygts7kxM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/hRQCi57thYOlY1i0Di_3OEU8RbI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b34642-c7ec-4d47-9d6f-271a155eeb92/1/rGzIYDNT1zLkscy6fqygts7kxM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.223.144.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:b9:10:c9:6e:14:44:9c:18:c7:c0:63:4c:ae:1f:49:54:22: e5:b9:99:fe:40:82:17:22:90:1e:cb:10:d4:33:74:12:e3:55: 6a:9c:b6:fa:36:05:46:b0:be:67:19:92:6e:89:09:d1:89:7a: 67:4a:39:07:fc:f5:69:78:3a:21:4c:5c:76:1f:d4:f6:c9:67: bf:5e:35:f1:78:97:59:cb:c4:90:a3:49:9c:e1:79:93:0f:2b: 6e:f0:5b:1f:4c:81:50:0a:bc:a9:28:39:07:c8:88:41:97:fb: 2f:3e:25:10:8f:0a:da:3b:18:c9:e5:43:13:57:10:40:cd:4b: ec:28:5d:2d:08:75:ad:4d:43:f1:41:f3:17:3d:40:e9:f1:65: 2a:a8:c6:fd:ad:e1:9b:2b:b0:18:37:18:9e:59:5c:a1:1f:5b: 44:d3:f5:bf:48:33:04:17:d5:f4:80:49:ba:f2:b6:ff:bd:b6: 89:d9:a3:c7:fc:cc:e2:5c:89:0c:d6:32:42:2b:f5:3f:73:ea: ae:66:53:ee:34:40:b0:46:fe:ac:3c:3b:f1:09:73:d0:06:35: e2:95:cd:29:03:00:15:83:a1:4b:a2:d4:1b:a4:81:74:2f:4a: d4:4d:ed:db:27:dd:77:77:b2:44:6d:f8:16:3f:49:37:87:3f: 96:92:8a:49 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g/2efXKlMGWZlTWAU1MHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNmNjODYwMzM1M2Q3MzJlNGIxY2NiYTdlYWNhMGI2Y2Vl NGM0Y2YwHhcNMjYwMTAyMTYyMTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTE0MDI4YjllZWQ4NTgzYTU2MzU4YjQwZTJmZjczODQ1M2M0NWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYImJWYE7W0CpGvODEG9tkSkEojW jIzibovDpdZVTy5ptU1RCGbwhWHCXx7oU6/816nGuLe7k5Kh82TO2s4lWSg+8g8S 4yGY1D1FN/QOKNqn/WV/xDMoTcpG1eJPhXsmsVGbYVI0+jw5kG3O8vG/vDzaaUL7 XTKZ8IQabRwNJpAaHNYl6jww89vCKm/yWSlCLjJqqzWvLnMx9lxSk7t+Yf70vpS4 aCfTavXcPVDwejws06EYYnqBwikeDUZrcjOUeI3uqy0TLOZuSibJ4CA9GnOah+1J 4TePd4+Ig762klLaGtYvUDj1tCctKlwmGCLRYEDAzWJng8zomkskQE/T4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIUUAoue7YWDpWNYtA4v9zhFPEWyMB8GA1UdIwQY MBaAFKxsyGAzU9cy5LHMun6soLbO5MTPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckd6SVlETlQxekxrc2N5NmZxeWd0czdreE04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iMzQ2NDItYzdlYy00ZDQ3LTlkNmYt MjcxYTE1NWVlYjkyLzEvaFJRQ2k1N3RoWU9sWTFpMERpXzNPRVU4UmJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9iMzQ2NDItYzdlYy00ZDQ3LTlkNmYtMjcxYTE1NWVlYjky LzEvckd6SVlETlQxekxrc2N5NmZxeWd0czdreE04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCud+QMA0G CSqGSIb3DQEBCwUAA4IBAQBKuRDJbhREnBjHwGNMrh9JVCLluZn+QIIXIpAeyxDU M3QS41VqnLb6NgVGsL5nGZJuiQnRiXpnSjkH/PVpeDohTFx2H9T2yWe/XjXxeJdZ y8SQo0mc4XmTDytu8FsfTIFQCrypKDkHyIhBl/svPiUQjwraOxjJ5UMTVxBAzUvs KF0tCHWtTUPxQfMXPUDp8WUqqMb9reGbK7AYNxieWVyhH1tE0/W/SDMEF9X0gEm6 8rb/vbaJ2aPH/MziXIkM1jJCK/U/c+quZlPuNECwRv6sPDvxCXPQBjXilc0pAwAV g6FLotQbpIF0L0rUTe3bJ913d7JEbfgWP0k3hz+WkopJ -----END CERTIFICATE-----Generated at Mon Jan 26 15:58:17 2026 by rpki-client