This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/He3WNkgL7nlF2HnV3BdHEQWrALs.roa File: He3WNkgL7nlF2HnV3BdHEQWrALs.roa (raw, json) Hash identifier: z1HcC+X1IG3bBYzg10cK+dY1EeC1ADljcmtSP53WeY8= Subject key identifier: 1D:ED:D6:36:48:0B:EE:79:45:D8:79:D5:DC:17:47:11:05:AB:00:BB Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A326195542A95265EA517A4147B984 Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/He3WNkgL7nlF2HnV3BdHEQWrALs.roa Signing time: Thu 01 Jan 2026 08:18:36 +0000 ROA not before: Thu 01 Jan 2026 08:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209643 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:26:19:55:42:a9:52:65:ea:51:7a:41:47:b9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1dedd636480bee7945d879d5dc17471105ab00bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:95:b9:31:0d:ed:e3:95:66:0b:18:11:62:c0: 6f:54:58:46:cd:64:5b:d3:8d:f3:e7:c7:af:1a:40: 0f:45:70:15:c6:aa:87:08:ec:5f:c3:7b:ba:02:fa: 28:2f:5a:45:e6:14:f3:4b:da:0c:06:8d:6c:2a:5f: db:e3:bd:22:aa:fa:89:47:8f:86:b6:68:62:64:96: 81:cc:d4:79:8b:24:82:45:4b:e2:bd:fb:51:61:c0: a4:35:b0:60:c1:df:bd:fd:2f:ec:4b:5d:d3:c8:0c: cd:4b:51:7e:a2:74:bf:c7:6e:69:38:5c:3b:14:5d: 3f:fa:12:7d:c5:a0:80:dd:2d:d5:41:1b:10:a0:ee: 31:1b:8b:8b:3a:a4:4b:e8:d2:4a:d7:94:08:b3:dc: 9c:12:23:5a:da:59:64:01:28:52:d4:87:2e:19:37: f8:da:52:ea:86:94:2a:73:59:61:43:3c:b0:27:93: 80:7e:c7:46:65:36:a6:5b:c2:a5:9d:c6:e5:13:b5: 61:08:18:11:5b:fb:7e:69:b0:e6:26:99:a5:ee:47: da:38:37:33:e7:e9:dc:f1:a0:25:a5:d6:28:74:85: ad:1e:5a:ab:de:b9:b0:18:2b:51:ff:7a:8b:a6:ef: cb:f4:31:67:e1:f6:ee:b2:eb:19:6b:98:3f:b3:21: 7c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:ED:D6:36:48:0B:EE:79:45:D8:79:D5:DC:17:47:11:05:AB:00:BB X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/He3WNkgL7nlF2HnV3BdHEQWrALs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb01::/32 Signature Algorithm: sha256WithRSAEncryption 7d:c6:6a:1c:1f:fb:b4:b2:11:e1:9b:ed:1a:a2:90:45:f3:1f: 1d:44:60:e3:be:6b:24:ad:04:c4:72:7c:6b:17:69:06:6e:36: d2:d1:92:8b:6e:d5:57:b2:97:3a:01:56:5b:7b:97:ba:2d:f8: 81:8f:26:4d:aa:7c:27:74:28:17:a6:d5:34:46:0e:33:4e:f8: 87:8b:1c:43:71:17:ba:90:11:5f:3b:2d:e5:4f:d9:8b:f0:5e: c2:51:0c:47:28:98:af:3f:52:53:f7:0f:c9:45:bd:d0:23:6e: 83:13:09:ba:8e:59:8d:b3:2e:dc:47:e6:5e:80:9e:58:58:f2: e7:66:90:60:5d:a3:c6:f0:15:00:e1:fd:83:2d:e1:37:ce:e3: f3:4f:81:70:b4:f9:8e:8e:da:b7:07:ca:c1:7f:e6:06:e6:95: 8e:08:72:ab:15:00:4b:bf:07:b3:6f:65:02:81:a2:55:8a:6e: 8b:6b:31:26:0e:15:0c:c9:9d:7c:c1:fc:61:30:e3:21:66:a1: 25:32:2c:de:8e:ed:8b:f1:e8:19:6d:72:c7:38:f3:c9:4b:0f: b9:cb:9b:ea:8f:55:e4:e0:d2:8b:9f:80:77:d7:f7:45:59:bd: 4b:8a:b4:81:68:94:69:e1:16:3c:ad:0a:7c:1b:dc:3d:fd:05: 25:64:c0:7e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4oyYZVUKpUmXqUXpBR7mEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZGVkZDYzNjQ4MGJlZTc5NDVkODc5ZDVkYzE3NDcxMTA1YWIwMGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZW5MQ3t45VmCxgRYsBvVFhGzWRb 043z58evGkAPRXAVxqqHCOxfw3u6AvooL1pF5hTzS9oMBo1sKl/b470iqvqJR4+G tmhiZJaBzNR5iySCRUvivftRYcCkNbBgwd+9/S/sS13TyAzNS1F+onS/x25pOFw7 FF0/+hJ9xaCA3S3VQRsQoO4xG4uLOqRL6NJK15QIs9ycEiNa2llkAShS1IcuGTf4 2lLqhpQqc1lhQzywJ5OAfsdGZTamW8KlncblE7VhCBgRW/t+abDmJpml7kfaODcz 5+nc8aAlpdYodIWtHlqr3rmwGCtR/3qLpu/L9DFn4fbususZa5g/syF81wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB3t1jZIC+55Rdh51dwXRxEFqwC7MB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvSGUzV05rZ0w3bmxGMkhuVjNCZEhFUVdyQUxzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbc3BMA0E AgACMAcDBQAqAfsBMA0GCSqGSIb3DQEBCwUAA4IBAQB9xmocH/u0shHhm+0aopBF 8x8dRGDjvmskrQTEcnxrF2kGbjbS0ZKLbtVXspc6AVZbe5e6LfiBjyZNqnwndCgX ptU0Rg4zTviHixxDcRe6kBFfOy3lT9mL8F7CUQxHKJivP1JT9w/JRb3QI26DEwm6 jlmNsy7cR+ZegJ5YWPLnZpBgXaPG8BUA4f2DLeE3zuPzT4FwtPmOjtq3B8rBf+YG 5pWOCHKrFQBLvwezb2UCgaJVim6LazEmDhUMyZ18wfxhMOMhZqElMizeju2L8egZ bXLHOPPJSw+5y5vqj1Xk4NKLn4B31/dFWb1LirSBaJRp4RY8rQp8G9w9/QUlZMB+ -----END CERTIFICATE-----Generated at Mon Jan 19 14:37:25 2026 by rpki-client