This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/hb1tf1cv2DqeNoOeMed75lCHkr0.roa File: hb1tf1cv2DqeNoOeMed75lCHkr0.roa (raw, json) Hash identifier: 2osj3Tca5M4y8jWIziarmiD4CXLpdYxZP6w7GJCWBu8= Subject key identifier: 85:BD:6D:7F:57:2F:D8:3A:9E:36:83:9E:31:E7:7B:E6:50:87:92:BD Certificate issuer: /CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb Certificate serial: 019B7C7F7DEAB8E2E2738CBFFB9E5179A54E Authority key identifier: 53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/hb1tf1cv2DqeNoOeMed75lCHkr0.roa Signing time: Fri 02 Jan 2026 02:18:08 +0000 ROA not before: Fri 02 Jan 2026 02:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204621 IP address blocks: 93.95.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:7d:ea:b8:e2:e2:73:8c:bf:fb:9e:51:79:a5:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb Validity Not Before: Jan 2 02:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85bd6d7f572fd83a9e36839e31e77be6508792bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:6a:2a:96:8f:1e:17:ca:26:de:0f:08:a2: d5:70:0f:d0:da:c2:1e:af:53:42:c6:d6:f8:7d:ea: bc:93:62:70:54:17:c5:36:2f:c1:38:64:bb:ee:e2: f7:fc:e2:d8:e5:28:3d:9f:6c:08:79:d1:88:9f:dd: 9d:e7:9b:fc:6c:7a:07:ba:cb:52:a5:3f:cb:39:f6: ab:96:d9:f4:b9:71:39:3c:6d:8d:c0:6d:a9:2b:fd: b6:e7:c2:e8:f7:56:49:f7:3d:06:11:51:fa:9d:71: 34:58:c5:c2:05:ec:4c:3c:fb:f1:de:2e:7e:0a:d5: 29:ac:0d:9e:2e:ec:2f:50:a8:a2:e0:98:06:3b:01: fe:c4:b8:1d:e1:8d:69:64:fc:79:5a:99:99:6d:35: aa:d6:53:af:eb:f9:d2:60:7b:01:f2:ce:ec:6e:bf: b2:d9:6d:fa:51:ab:71:e6:8e:4d:92:99:18:90:97: 20:51:c4:a1:c2:ae:4f:b2:7d:1c:b4:69:8e:44:4b: 23:03:f2:fd:10:cc:9b:45:be:0e:ae:af:06:a5:60: 6c:21:3d:67:a3:b9:da:ed:df:c4:26:96:35:bc:04: 71:4a:33:2c:7d:d7:19:34:b6:12:6c:32:8d:40:98: 0d:14:3a:fe:6d:d4:e6:0c:0a:fe:de:ae:8f:ed:9a: 04:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BD:6D:7F:57:2F:D8:3A:9E:36:83:9E:31:E7:7B:E6:50:87:92:BD X509v3 Authority Key Identifier: keyid:53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/hb1tf1cv2DqeNoOeMed75lCHkr0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.95.212.0/24 Signature Algorithm: sha256WithRSAEncryption 48:b9:fb:09:9e:7c:47:76:9e:0e:7f:e6:91:5b:73:98:d9:d7: f8:07:ea:1e:d8:5e:15:f5:25:75:9a:22:55:7f:94:ba:fa:4b: 55:9b:ac:14:93:ed:88:2a:07:e9:20:e1:d6:c0:c6:4d:1f:96: fd:72:92:9c:19:e2:dc:59:80:96:e5:2a:1a:cc:47:15:62:fa: d4:96:9f:49:54:c0:b0:71:cf:33:f4:29:4d:54:f3:09:56:ed: 5c:08:d8:50:92:a1:16:fb:c6:a8:be:70:cb:9f:0d:e5:18:da: eb:a3:99:25:3e:5c:95:ec:00:da:a0:83:2a:7b:3d:44:24:a1: 8f:47:c6:8a:e6:2d:48:47:4c:be:2d:4e:f4:6c:1c:a9:6e:35: 7e:26:29:22:9d:b9:13:fe:28:02:67:96:50:02:af:89:76:04: af:be:b8:be:e6:70:53:03:83:26:6b:e4:02:ac:56:29:ab:12: f3:cb:24:99:92:7e:82:53:6f:f8:83:fb:2f:59:03:47:1b:1b: ed:cc:22:04:9b:2d:fe:21:c8:23:89:ea:fe:d0:8a:b7:10:77: 03:67:3b:1f:55:06:2f:0d:4f:ae:8f:4b:d8:46:cc:c0:55:f9: ec:dd:88:57:9b:96:41:75:58:fe:76:7f:2b:1f:a9:75:37:01: de:7e:19:69 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f33quOLic4y/+55ReaVOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNTUwNDBhZTkyNzg2YmYxNzI3YjZiNGVjYzEwOTNiOGE3 NDAxZWIwHhcNMjYwMTAyMDIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWJkNmQ3ZjU3MmZkODNhOWUzNjgzOWUzMWU3N2JlNjUwODc5MmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+hqKpaPHhfKJt4PCKLVcA/Q2sIe r1NCxtb4feq8k2JwVBfFNi/BOGS77uL3/OLY5Sg9n2wIedGIn92d55v8bHoHustS pT/LOfarltn0uXE5PG2NwG2pK/2258Lo91ZJ9z0GEVH6nXE0WMXCBexMPPvx3i5+ CtUprA2eLuwvUKii4JgGOwH+xLgd4Y1pZPx5WpmZbTWq1lOv6/nSYHsB8s7sbr+y 2W36Uatx5o5NkpkYkJcgUcShwq5Psn0ctGmOREsjA/L9EMybRb4Orq8GpWBsIT1n o7na7d/EJpY1vARxSjMsfdcZNLYSbDKNQJgNFDr+bdTmDAr+3q6P7ZoELwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIW9bX9XL9g6njaDnjHne+ZQh5K9MB8GA1UdIwQY MBaAFFNVBArpJ4a/Fye2tOzBCTuKdAHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTFVRUN1a25ocjhYSjdhMDdNRUpPNHAwQWVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9hZjU2NTctYzhiMi00ODU1LTgyYTct MWRkNTdlM2YzZDk3LzEvaGIxdGYxY3YyRHFlTm9PZU1lZDc1bENIa3IwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC9hZjU2NTctYzhiMi00ODU1LTgyYTctMWRkNTdlM2YzZDk3 LzEvVTFVRUN1a25ocjhYSjdhMDdNRUpPNHAwQWVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXV/UMA0G CSqGSIb3DQEBCwUAA4IBAQBIufsJnnxHdp4Of+aRW3OY2df4B+oe2F4V9SV1miJV f5S6+ktVm6wUk+2IKgfpIOHWwMZNH5b9cpKcGeLcWYCW5SoazEcVYvrUlp9JVMCw cc8z9ClNVPMJVu1cCNhQkqEW+8aovnDLnw3lGNrro5klPlyV7ADaoIMqez1EJKGP R8aK5i1IR0y+LU70bBypbjV+JikinbkT/igCZ5ZQAq+JdgSvvri+5nBTA4Mma+QC rFYpqxLzyySZkn6CU2/4g/svWQNHGxvtzCIEmy3+Icgjier+0Iq3EHcDZzsfVQYv DU+uj0vYRszAVfns3YhXm5ZBdVj+dn8rH6l1NwHefhlp -----END CERTIFICATE-----Generated at Mon Feb 9 21:00:30 2026 by rpki-client