This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/3663ba-a80d-4108-8708-0b15d97ad561/1/1hrgzjhdA5Y-F7fISIbwYJa2IVc.roa File: 1hrgzjhdA5Y-F7fISIbwYJa2IVc.roa (raw, json) Hash identifier: 8PAttc7ZrtZswXRaiAtTSylop3DYOKrwU34TygYkrxs= Subject key identifier: D6:1A:E0:CE:38:5D:03:96:3E:17:B7:C8:48:86:F0:60:96:B6:21:57 Certificate issuer: /CN=996b229cbf3667ace277b16005c39072d0673fcf Certificate serial: 019B79EC4328378D696982FF535FA3773175 Authority key identifier: 99:6B:22:9C:BF:36:67:AC:E2:77:B1:60:05:C3:90:72:D0:67:3F:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWsinL82Z6zid7FgBcOQctBnP88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/3663ba-a80d-4108-8708-0b15d97ad561/1/1hrgzjhdA5Y-F7fISIbwYJa2IVc.roa Signing time: Thu 01 Jan 2026 14:18:05 +0000 ROA not before: Thu 01 Jan 2026 14:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203608 IP address blocks: 185.125.52.0/22 maxlen: 24 2a06:b840::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/3663ba-a80d-4108-8708-0b15d97ad561/1/mWsinL82Z6zid7FgBcOQctBnP88.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/3663ba-a80d-4108-8708-0b15d97ad561/1/mWsinL82Z6zid7FgBcOQctBnP88.mft rsync://rpki.ripe.net/repository/DEFAULT/mWsinL82Z6zid7FgBcOQctBnP88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:43:28:37:8d:69:69:82:ff:53:5f:a3:77:31:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996b229cbf3667ace277b16005c39072d0673fcf Validity Not Before: Jan 1 14:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d61ae0ce385d03963e17b7c84886f06096b62157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ec:a2:4e:69:fd:50:5e:08:a3:64:ca:14:b0: 93:ad:57:45:67:0c:65:6b:f4:ad:a2:97:ad:83:7e: 27:c1:1b:10:d1:54:8e:41:7a:69:01:23:85:16:7e: 08:74:44:a6:61:8e:68:dc:65:47:e4:9d:cb:f4:ed: 74:fd:11:0d:fb:48:df:7d:7d:c9:ae:0c:01:8c:f9: f3:77:1b:f7:56:b2:e0:b5:cc:71:d2:0d:7e:2c:1a: fb:b6:da:9c:ba:b7:7c:cc:ae:4d:bf:55:1b:f4:b9: 8a:b3:9e:f8:44:3d:dd:85:46:cb:07:93:f7:b3:24: ef:83:44:0b:0b:fb:9e:a8:86:26:9d:a0:cc:09:9e: f8:46:e5:d8:11:57:a8:81:cc:2b:cf:20:44:ca:69: 2d:26:27:10:ab:ae:43:7e:c4:8c:cd:74:ca:26:ca: 58:83:4a:af:2f:f6:22:61:e1:29:ec:8e:b4:05:d8: 48:dd:29:47:b4:1e:17:96:00:9a:dd:d0:68:69:74: 4c:27:4a:67:7f:7f:60:49:5b:65:51:78:e9:b4:52: 3c:91:86:86:17:41:e3:ec:d8:af:f2:aa:2a:f4:4f: 68:52:cd:8e:8d:47:4c:07:6a:53:7b:c0:aa:87:dc: e1:82:65:ea:08:9f:12:b1:28:94:56:e6:99:c3:4f: a7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1A:E0:CE:38:5D:03:96:3E:17:B7:C8:48:86:F0:60:96:B6:21:57 X509v3 Authority Key Identifier: keyid:99:6B:22:9C:BF:36:67:AC:E2:77:B1:60:05:C3:90:72:D0:67:3F:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWsinL82Z6zid7FgBcOQctBnP88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/3663ba-a80d-4108-8708-0b15d97ad561/1/1hrgzjhdA5Y-F7fISIbwYJa2IVc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/3663ba-a80d-4108-8708-0b15d97ad561/1/mWsinL82Z6zid7FgBcOQctBnP88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.125.52.0/22 IPv6: 2a06:b840::/29 Signature Algorithm: sha256WithRSAEncryption 3a:b7:39:01:42:74:86:6f:30:58:31:3a:6f:8f:a5:c0:e0:3e: 66:0a:e2:cd:e9:08:f6:c5:6d:db:0c:e6:0b:cb:2b:64:a3:06: 6c:54:33:46:6f:f1:ba:c9:1c:f0:64:5a:c0:db:84:93:3c:c9: 25:51:74:00:ca:19:3d:8d:1b:b7:ba:55:5d:83:61:b7:37:58: 8e:b5:1f:bc:ad:9d:d2:82:07:22:68:9b:f7:76:03:77:4b:89: 88:06:bb:3b:a4:ff:a9:ef:60:11:4a:70:cf:26:bd:6c:80:43: 1e:8c:3c:59:b6:e6:79:ee:f4:bb:e8:0b:7c:a9:9e:a2:9f:c5: 0a:a1:66:ad:d7:d4:d3:35:ab:95:e8:15:14:01:53:af:77:7a: 2b:8b:a2:5a:4c:f7:d1:06:7b:cb:13:39:94:d7:e9:8b:e4:b0: 18:7e:97:4f:52:d6:64:13:c5:8b:68:a6:d5:d4:5c:46:8d:15: a3:01:72:54:d6:b3:0b:f0:45:ed:35:38:c9:1e:05:9d:a0:9a: ef:87:29:09:63:d4:12:a6:73:22:90:8b:e8:af:b9:6e:0d:e0: 1c:8e:bd:f8:d3:5f:93:b3:03:17:16:6c:d4:16:b4:8d:34:ce: d3:b0:a8:34:60:e3:7e:d7:1b:87:80:7c:6e:ff:4a:bc:77:5f: 60:ee:41:5a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57EMoN41paYL/U1+jdzF1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5NmIyMjljYmYzNjY3YWNlMjc3YjE2MDA1YzM5MDcyZDA2 NzNmY2YwHhcNMjYwMTAxMTQxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjFhZTBjZTM4NWQwMzk2M2UxN2I3Yzg0ODg2ZjA2MDk2YjYyMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuyiTmn9UF4Io2TKFLCTrVdFZwxl a/Stopetg34nwRsQ0VSOQXppASOFFn4IdESmYY5o3GVH5J3L9O10/REN+0jffX3J rgwBjPnzdxv3VrLgtcxx0g1+LBr7ttqcurd8zK5Nv1Ub9LmKs574RD3dhUbLB5P3 syTvg0QLC/ueqIYmnaDMCZ74RuXYEVeogcwrzyBEymktJicQq65DfsSMzXTKJspY g0qvL/YiYeEp7I60BdhI3SlHtB4XlgCa3dBoaXRMJ0pnf39gSVtlUXjptFI8kYaG F0Hj7Niv8qoq9E9oUs2OjUdMB2pTe8Cqh9zhgmXqCJ8SsSiUVuaZw0+nDwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNYa4M44XQOWPhe3yEiG8GCWtiFXMB8GA1UdIwQY MBaAFJlrIpy/Nmes4nexYAXDkHLQZz/PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVdzaW5MODJaNnppZDdGZ0JjT1FjdEJuUDg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8zNjYzYmEtYTgwZC00MTA4LTg3MDgt MGIxNWQ5N2FkNTYxLzEvMWhyZ3pqaGRBNVktRjdmSVNJYndZSmEySVZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8zNjYzYmEtYTgwZC00MTA4LTg3MDgtMGIxNWQ5N2FkNTYx LzEvbVdzaW5MODJaNnppZDdGZ0JjT1FjdEJuUDg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuX00MA0E AgACMAcDBQMqBrhAMA0GCSqGSIb3DQEBCwUAA4IBAQA6tzkBQnSGbzBYMTpvj6XA 4D5mCuLN6Qj2xW3bDOYLyytkowZsVDNGb/G6yRzwZFrA24STPMklUXQAyhk9jRu3 ulVdg2G3N1iOtR+8rZ3SggciaJv3dgN3S4mIBrs7pP+p72ARSnDPJr1sgEMejDxZ tuZ57vS76At8qZ6in8UKoWat19TTNauV6BUUAVOvd3ori6JaTPfRBnvLEzmU1+mL 5LAYfpdPUtZkE8WLaKbV1FxGjRWjAXJU1rML8EXtNTjJHgWdoJrvhykJY9QSpnMi kIvor7luDeAcjr3401+TswMXFmzUFrSNNM7TsKg0YON+1xuHgHxu/0q8d19g7kFa -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:32 2026 by rpki-client