This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/Hg7FFkwE8yXJl08E_ktt9ELIBZg.roa File: Hg7FFkwE8yXJl08E_ktt9ELIBZg.roa (raw, json) Hash identifier: bXAxOlQo0gVYasg+nSIjGnTcnFXXM9TtQMRuyplYwDs= Subject key identifier: 1E:0E:C5:16:4C:04:F3:25:C9:97:4F:04:FE:4B:6D:F4:42:C8:05:98 Certificate issuer: /CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02 Certificate serial: 019B931EA9920A7FBA97179BEE7F35BCF811 Authority key identifier: 8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/Hg7FFkwE8yXJl08E_ktt9ELIBZg.roa Signing time: Tue 06 Jan 2026 11:43:38 +0000 ROA not before: Tue 06 Jan 2026 11:43:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 5.102.39.0/24 maxlen: 24 195.222.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.mft rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:93:1e:a9:92:0a:7f:ba:97:17:9b:ee:7f:35:bc:f8:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bdf76c54b9e6935c30a9b4c9ba9309ac470ec02 Validity Not Before: Jan 6 11:43:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e0ec5164c04f325c9974f04fe4b6df442c80598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:8a:e7:48:b8:ac:0b:a2:26:83:d2:4d:07: b0:39:5d:cd:11:81:f9:3e:76:d4:79:7e:5a:4f:32: ef:11:cf:63:a8:3d:71:4f:aa:c7:74:5c:e1:8a:12: fa:6b:57:27:1a:d9:f5:8b:62:98:a0:79:f2:c8:e7: 0c:fe:a4:4e:36:b4:5f:ae:f5:7e:04:41:57:cd:ca: 53:43:7b:20:c1:f3:a8:41:51:0c:85:09:3d:16:78: 96:fa:c4:70:1c:01:2b:0b:4c:bb:d4:1f:6d:3c:9c: 1c:d0:4d:45:7d:38:ef:83:eb:d7:d2:f1:7b:d7:52: 6b:61:00:78:ac:76:59:12:1c:79:ad:d6:f5:9b:13: e9:5a:71:61:5e:76:db:8d:47:ec:fc:36:0c:e7:4d: 27:7a:99:69:fa:73:8d:09:3a:0d:c7:50:6c:60:33: cf:bf:19:e8:f2:db:99:a3:ba:9b:3d:ab:de:60:90: 34:43:88:c5:da:6c:f5:ac:62:56:a2:fb:62:6d:0a: 3b:47:cd:41:bb:52:a5:93:19:f3:ae:3c:10:cf:45: 4d:42:bb:dc:e4:5d:1f:f3:62:fc:06:2c:7b:19:6e: 56:95:9b:91:08:0c:5e:a8:f8:2e:da:5e:b2:40:0f: 9e:0a:b2:b1:e4:b1:16:b2:ba:4e:c8:2c:3f:2e:9c: c2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0E:C5:16:4C:04:F3:25:C9:97:4F:04:FE:4B:6D:F4:42:C8:05:98 X509v3 Authority Key Identifier: keyid:8B:DF:76:C5:4B:9E:69:35:C3:0A:9B:4C:9B:A9:30:9A:C4:70:EC:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i992xUueaTXDCptMm6kwmsRw7AI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/Hg7FFkwE8yXJl08E_ktt9ELIBZg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/21519e-b8dc-4240-aa78-8d218665027d/1/i992xUueaTXDCptMm6kwmsRw7AI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.102.39.0/24 195.222.127.0/24 Signature Algorithm: sha256WithRSAEncryption 66:cb:5e:db:41:d7:af:c6:21:2f:76:b1:5c:aa:fc:b8:9a:33: 54:a2:d8:ee:f0:6a:d2:cd:b4:20:56:ce:b2:cb:ab:74:dd:4b: 18:0b:88:18:98:70:18:db:fb:12:f6:e7:e2:35:16:90:63:ba: 65:ef:83:79:30:f0:10:62:41:8c:f8:c0:3a:50:f6:ac:21:fd: 32:22:25:b8:aa:a8:a9:41:d4:9a:1a:30:a1:7a:73:59:ce:bd: 90:23:74:72:86:d0:03:f6:0f:c0:79:c8:71:2f:ad:9b:78:ea: ba:f9:f0:58:2a:34:90:3f:44:5e:c0:5c:4e:c4:fa:4b:38:38: 60:b2:36:ff:fb:04:cf:ba:3f:83:7b:19:1e:70:a0:c0:e7:24: f4:f9:df:c6:50:35:5d:c3:f8:d1:41:cd:bd:37:74:0b:71:0c: 4d:dc:3c:55:27:0e:91:fa:62:15:f0:06:55:ea:79:8a:c3:cb: 6e:21:47:21:3b:ba:d2:02:38:82:d3:f4:fa:7b:eb:23:4f:71: 88:f9:eb:f4:c1:c1:9a:a8:1a:5b:d4:44:08:21:78:6f:92:17: ee:8b:6d:9f:50:9b:2f:e6:e5:01:ea:4a:dd:72:41:47:2b:42: db:cf:14:0e:1f:51:29:97:94:fe:a3:6e:f2:86:af:26:5a:ff: 14:47:f2:95 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZuTHqmSCn+6lxeb7n81vPgRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiZGY3NmM1NGI5ZTY5MzVjMzBhOWI0YzliYTkzMDlhYzQ3 MGVjMDIwHhcNMjYwMTA2MTE0MzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTBlYzUxNjRjMDRmMzI1Yzk5NzRmMDRmZTRiNmRmNDQyYzgwNTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGaK50i4rAuiJoPSTQewOV3NEYH5 PnbUeX5aTzLvEc9jqD1xT6rHdFzhihL6a1cnGtn1i2KYoHnyyOcM/qRONrRfrvV+ BEFXzcpTQ3sgwfOoQVEMhQk9FniW+sRwHAErC0y71B9tPJwc0E1FfTjvg+vX0vF7 11JrYQB4rHZZEhx5rdb1mxPpWnFhXnbbjUfs/DYM500neplp+nONCToNx1BsYDPP vxno8tuZo7qbPaveYJA0Q4jF2mz1rGJWovtibQo7R81Bu1KlkxnzrjwQz0VNQrvc 5F0f82L8Bix7GW5WlZuRCAxeqPgu2l6yQA+eCrKx5LEWsrpOyCw/LpzCGQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFB4OxRZMBPMlyZdPBP5LbfRCyAWYMB8GA1UdIwQY MBaAFIvfdsVLnmk1wwqbTJupMJrEcOwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTk5MnhVdWVhVFhEQ3B0TW02a3dtc1J3N0FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yMTUxOWUtYjhkYy00MjQwLWFhNzgt OGQyMTg2NjUwMjdkLzEvSGc3RkZrd0U4eVhKbDA4RV9rdHQ5RUxJQlpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8yMTUxOWUtYjhkYy00MjQwLWFhNzgtOGQyMTg2NjUwMjdk LzEvaTk5MnhVdWVhVFhEQ3B0TW02a3dtc1J3N0FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABWYnAwQA w95/MA0GCSqGSIb3DQEBCwUAA4IBAQBmy17bQdevxiEvdrFcqvy4mjNUotju8GrS zbQgVs6yy6t03UsYC4gYmHAY2/sS9ufiNRaQY7pl74N5MPAQYkGM+MA6UPasIf0y IiW4qqipQdSaGjChenNZzr2QI3RyhtAD9g/AechxL62beOq6+fBYKjSQP0RewFxO xPpLODhgsjb/+wTPuj+DexkecKDA5yT0+d/GUDVdw/jRQc29N3QLcQxN3DxVJw6R +mIV8AZV6nmKw8tuIUchO7rSAjiC0/T6e+sjT3GI+ev0wcGaqBpb1EQIIXhvkhfu i22fUJsv5uUB6krdckFHK0LbzxQOH1Epl5T+o27yhq8mWv8UR/KV -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:10 2026 by rpki-client