This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/hPDJ7bwWMVeeA66R-Nm66UMAI3I.roa File: hPDJ7bwWMVeeA66R-Nm66UMAI3I.roa (raw, json) Hash identifier: S6FoRCGZ+2A7ou0QqZgDgmiPo527/Z9rU6I1qlBMQXY= Subject key identifier: 84:F0:C9:ED:BC:16:31:57:9E:03:AE:91:F8:D9:BA:E9:43:00:23:72 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019B7B35EC11E460BEF19E18A89813F911A6 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/hPDJ7bwWMVeeA66R-Nm66UMAI3I.roa Signing time: Thu 01 Jan 2026 20:18:09 +0000 ROA not before: Thu 01 Jan 2026 20:18:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207279 IP address blocks: 45.143.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ec:11:e4:60:be:f1:9e:18:a8:98:13:f9:11:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Jan 1 20:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84f0c9edbc1631579e03ae91f8d9bae943002372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5e:9b:6b:fa:f5:21:ea:df:5f:66:33:21:15: 82:42:94:48:65:8d:1e:df:77:8e:66:0a:ba:76:8f: d8:4c:33:b0:43:2c:75:33:bb:a8:06:d2:0e:e5:c4: a8:e6:ac:7f:1e:07:9a:47:85:d8:9d:49:56:79:95: 3a:52:09:16:17:a4:2b:e8:a6:8e:6d:27:02:92:e8: 21:a7:09:5d:77:de:5e:65:df:0e:d2:4d:24:d7:16: d9:29:87:5a:03:b6:f4:c3:aa:0a:4e:7b:95:3b:de: 7c:dd:0a:98:78:e8:7a:33:8a:e4:a3:d5:f1:7c:b9: ad:e4:d2:80:b4:d9:3b:02:20:a8:ee:34:a1:be:e5: e3:e9:4b:1e:27:02:51:52:ab:37:12:2d:eb:53:3e: eb:35:a2:88:9d:ce:5c:16:79:fb:43:44:e2:62:48: 67:10:e9:e3:25:f7:5a:2b:72:17:bb:d2:5d:f0:2b: 93:95:84:56:d0:12:0c:4e:07:a1:30:10:07:4e:f6: 6c:93:e0:b7:73:80:9d:b6:f7:23:34:d4:7f:78:ad: ad:32:d1:35:93:a7:14:07:81:3c:cd:c2:9e:de:28: d2:83:a8:84:37:83:11:4b:5b:e9:bd:a1:44:80:03: 15:92:0d:69:80:24:50:4f:a8:3d:23:ed:92:73:72: 57:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F0:C9:ED:BC:16:31:57:9E:03:AE:91:F8:D9:BA:E9:43:00:23:72 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/hPDJ7bwWMVeeA66R-Nm66UMAI3I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.99.0/24 Signature Algorithm: sha256WithRSAEncryption 67:8e:15:19:f7:2a:44:bc:a7:76:e6:c7:13:ba:e4:7e:38:65: ce:28:10:1e:5f:49:e9:92:e2:c1:c3:4b:a9:59:95:cb:b1:45: eb:31:8b:31:1d:3d:d4:c2:c4:2d:44:6e:ad:eb:c3:95:b5:f1: f8:9a:16:87:fe:e2:a8:fd:75:f6:39:ee:8b:2e:8e:04:c9:84: ea:3b:40:68:04:73:99:ee:81:de:04:fc:e8:55:e9:3e:38:c3: 6e:b3:c1:b8:68:ac:71:d7:5a:82:0d:b4:ec:9a:4b:84:53:85: f3:3c:2b:26:53:93:1e:f7:a0:6e:02:09:2a:f7:ba:87:fb:ae: 90:a0:cf:29:0f:27:73:c4:45:8c:2a:d0:34:a2:14:0a:16:ef: 0d:06:1f:3c:68:43:50:49:6a:ad:4d:fe:21:6e:b0:1f:0b:27: 29:bb:dc:0d:3c:b2:38:c0:5d:e1:16:15:1a:53:c3:ae:44:6c: 31:40:c4:bb:70:b0:a1:69:a9:30:2b:ea:fb:af:87:04:6e:c9: d7:09:b3:e6:82:ef:05:de:36:9f:57:1d:f3:d1:39:f0:65:98: 55:eb:64:e6:7a:e0:2f:4a:ea:34:71:4b:13:16:fd:40:fe:f3: a6:ec:9c:e0:9d:cb:36:98:c9:d4:d2:e2:9e:ee:3c:59:9e:8d: 77:b6:ec:0b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NewR5GC+8Z4YqJgT+RGmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjYwMTAxMjAxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGYwYzllZGJjMTYzMTU3OWUwM2FlOTFmOGQ5YmFlOTQzMDAyMzcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0l6ba/r1IerfX2YzIRWCQpRIZY0e 33eOZgq6do/YTDOwQyx1M7uoBtIO5cSo5qx/HgeaR4XYnUlWeZU6UgkWF6Qr6KaO bScCkughpwldd95eZd8O0k0k1xbZKYdaA7b0w6oKTnuVO9583QqYeOh6M4rko9Xx fLmt5NKAtNk7AiCo7jShvuXj6UseJwJRUqs3Ei3rUz7rNaKInc5cFnn7Q0TiYkhn EOnjJfdaK3IXu9Jd8CuTlYRW0BIMTgehMBAHTvZsk+C3c4CdtvcjNNR/eK2tMtE1 k6cUB4E8zcKe3ijSg6iEN4MRS1vpvaFEgAMVkg1pgCRQT6g9I+2Sc3JXRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFITwye28FjFXngOukfjZuulDACNyMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvaFBESjdid1dNVmVlQTY2Ui1ObTY2VU1BSTNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY9jMA0G CSqGSIb3DQEBCwUAA4IBAQBnjhUZ9ypEvKd25scTuuR+OGXOKBAeX0npkuLBw0up WZXLsUXrMYsxHT3UwsQtRG6t68OVtfH4mhaH/uKo/XX2Oe6LLo4EyYTqO0BoBHOZ 7oHeBPzoVek+OMNus8G4aKxx11qCDbTsmkuEU4XzPCsmU5Me96BuAgkq97qH+66Q oM8pDydzxEWMKtA0ohQKFu8NBh88aENQSWqtTf4hbrAfCycpu9wNPLI4wF3hFhUa U8OuRGwxQMS7cLChaakwK+r7r4cEbsnXCbPmgu8F3jafVx3z0TnwZZhV62TmeuAv Suo0cUsTFv1A/vOm7Jzgncs2mMnU0uKe7jxZno13tuwL -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:51 2026 by rpki-client