This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/h_hShADtBIzeK-Szx9l4bfm8jag.roa File: h_hShADtBIzeK-Szx9l4bfm8jag.roa (raw, json) Hash identifier: hsH1pDZZoflDWpuxdoPCV7EaJcM0R+/7hC4hgh317+4= Subject key identifier: 87:F8:52:84:00:ED:04:8C:DE:2B:E4:B3:C7:D9:78:6D:F9:BC:8D:A8 Certificate issuer: /CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2 Certificate serial: 019B7C12936F35E9082DB16ECA86B5A199E6 Authority key identifier: 86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/h_hShADtBIzeK-Szx9l4bfm8jag.roa Signing time: Fri 02 Jan 2026 00:19:10 +0000 ROA not before: Fri 02 Jan 2026 00:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39788 IP address blocks: 193.23.244.0/24 maxlen: 24 2001:678:558::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.mft rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:93:6f:35:e9:08:2d:b1:6e:ca:86:b5:a1:99:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2 Validity Not Before: Jan 2 00:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87f8528400ed048cde2be4b3c7d9786df9bc8da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4c:09:47:1d:5b:f7:f6:43:d7:16:37:56:61: 7c:98:2d:e3:ee:a3:86:fd:d6:c0:da:b3:24:19:9e: c0:5e:d8:4c:04:63:ea:0c:d9:4a:ff:22:42:b9:30: 84:da:58:96:05:24:e6:75:b1:ea:d6:ab:13:59:db: 7f:d6:bf:f4:e1:5c:4e:11:e9:f3:3b:cc:eb:b4:fb: 4e:a1:41:87:8e:70:03:06:4e:6e:6e:3f:de:24:b3: b0:f5:a3:d2:96:63:38:73:0e:a8:bd:89:6e:76:6f: 46:19:62:99:1a:b8:20:9c:e9:08:13:3d:21:c7:d5: f2:17:d0:20:60:21:dc:ae:37:b1:85:ac:bb:1e:ad: 6a:9f:15:94:b2:54:77:99:99:4c:6f:bc:f1:f1:f9: ad:cf:07:04:c8:86:8e:dc:78:e0:a7:22:23:ef:3e: 75:dc:01:78:70:37:33:85:30:74:92:2e:68:31:5d: 70:2a:00:3b:46:19:2f:82:ee:03:cd:6a:99:de:4d: 07:4b:24:68:0a:9a:ab:4d:97:25:75:a5:db:29:f7: 22:e8:5b:7e:c3:38:35:92:3b:1a:3f:84:f5:a7:40: f7:36:74:28:22:c7:14:03:ab:3a:49:a3:ed:0d:a5: 2e:0c:cc:3a:18:a7:56:e7:05:e6:56:a5:aa:2f:49: f1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F8:52:84:00:ED:04:8C:DE:2B:E4:B3:C7:D9:78:6D:F9:BC:8D:A8 X509v3 Authority Key Identifier: keyid:86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/h_hShADtBIzeK-Szx9l4bfm8jag.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.244.0/24 IPv6: 2001:678:558::/48 Signature Algorithm: sha256WithRSAEncryption 1b:27:01:f3:f6:2e:d2:37:6b:c7:74:e8:b6:64:f6:9d:ab:c9: 01:6f:20:d9:81:21:5f:c3:93:58:e0:22:4d:46:f6:25:f5:40: 3b:94:0e:d2:0f:5a:2d:8d:f6:d1:b6:56:4e:94:be:0b:52:85: d7:ec:a2:fd:93:8a:2c:f9:4b:e1:e7:70:44:2d:ac:c8:39:74: 4c:3a:03:d9:6d:a8:26:08:da:e8:d3:59:24:b2:77:79:dc:1f: ff:53:1d:79:b4:61:06:e5:f4:d6:53:ea:13:21:33:09:67:3d: 97:e2:cd:f6:13:01:25:24:42:e8:c5:03:68:af:25:6a:51:17: d9:62:82:11:8a:b5:40:b9:c3:b7:5d:cd:dd:8c:cd:59:66:85: 42:65:a6:bf:36:53:d8:67:39:a5:64:7c:37:fb:61:bb:24:38: 77:de:aa:07:04:95:06:58:a5:39:70:00:ab:89:98:6f:55:7b: c5:a8:c4:71:86:6e:ef:0b:cf:a7:b1:9a:60:5b:fa:17:84:a1: 5e:e8:af:ed:91:3d:64:00:58:25:5f:d6:8e:fc:5b:11:a8:2d: b5:1f:c5:c7:40:ed:57:d8:2e:5d:34:f5:04:d7:bb:d1:84:20: 65:94:2f:fc:41:48:24:dc:ce:f1:54:ba:60:b7:56:82:4b:27: 6e:70:c5:d0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EpNvNekILbFuyoa1oZnmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MGQ5ZjAxYTk4YjUxNGViZDNjMjcyM2Q3ZjdlYjQ0ODMy NmY1ZTIwHhcNMjYwMTAyMDAxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2Y4NTI4NDAwZWQwNDhjZGUyYmU0YjNjN2Q5Nzg2ZGY5YmM4ZGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEwJRx1b9/ZD1xY3VmF8mC3j7qOG /dbA2rMkGZ7AXthMBGPqDNlK/yJCuTCE2liWBSTmdbHq1qsTWdt/1r/04VxOEenz O8zrtPtOoUGHjnADBk5ubj/eJLOw9aPSlmM4cw6ovYludm9GGWKZGrggnOkIEz0h x9XyF9AgYCHcrjexhay7Hq1qnxWUslR3mZlMb7zx8fmtzwcEyIaO3HjgpyIj7z51 3AF4cDczhTB0ki5oMV1wKgA7Rhkvgu4DzWqZ3k0HSyRoCpqrTZcldaXbKfci6Ft+ wzg1kjsaP4T1p0D3NnQoIscUA6s6SaPtDaUuDMw6GKdW5wXmVqWqL0nxSQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIf4UoQA7QSM3ivks8fZeG35vI2oMB8GA1UdIwQY MBaAFIYNnwGpi1FOvTwnI9f360SDJvXiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGcyZkFhbUxVVTY5UENjajFfZnJSSU1tOWVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yM2JlYTYtOTAwMS00NDFkLTgzNjQt NjFjYjQzYzJkYjg1LzEvaF9oU2hBRHRCSXplSy1Teng5bDRiZm04amFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8yM2JlYTYtOTAwMS00NDFkLTgzNjQtNjFjYjQzYzJkYjg1 LzEvaGcyZkFhbUxVVTY5UENjajFfZnJSSU1tOWVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwRf0MA8E AgACMAkDBwAgAQZ4BVgwDQYJKoZIhvcNAQELBQADggEBABsnAfP2LtI3a8d06LZk 9p2ryQFvINmBIV/Dk1jgIk1G9iX1QDuUDtIPWi2N9tG2Vk6UvgtShdfsov2Tiiz5 S+HncEQtrMg5dEw6A9ltqCYI2ujTWSSyd3ncH/9THXm0YQbl9NZT6hMhMwlnPZfi zfYTASUkQujFA2ivJWpRF9lighGKtUC5w7ddzd2MzVlmhUJlpr82U9hnOaVkfDf7 YbskOHfeqgcElQZYpTlwAKuJmG9Ve8WoxHGGbu8Lz6exmmBb+heEoV7or+2RPWQA WCVf1o78WxGoLbUfxcdA7VfYLl009QTXu9GEIGWUL/xBSCTczvFUumC3VoJLJ25w xdA= -----END CERTIFICATE-----Generated at Mon Jan 26 07:51:51 2026 by rpki-client