This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8533c3-29e0-4506-b00d-36c87396923a/1/_hM3H1qZ9X2c4qZvxbmxIdT7K78.roa File: _hM3H1qZ9X2c4qZvxbmxIdT7K78.roa (raw, json) Hash identifier: OwXX274c7WiCLwDlzUWHfVwNDY75hqlVdtdPyNCFPX0= Subject key identifier: FE:13:37:1F:5A:99:F5:7D:9C:E2:A6:6F:C5:B9:B1:21:D4:FB:2B:BF Certificate issuer: /CN=d32277ea304b2844a78689b3aa0d9219e3366773 Certificate serial: 019B7CEDCF0FAF6E6252ED070981FE4BEEB5 Authority key identifier: D3:22:77:EA:30:4B:28:44:A7:86:89:B3:AA:0D:92:19:E3:36:67:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0yJ36jBLKESnhomzqg2SGeM2Z3M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8533c3-29e0-4506-b00d-36c87396923a/1/_hM3H1qZ9X2c4qZvxbmxIdT7K78.roa Signing time: Fri 02 Jan 2026 04:18:38 +0000 ROA not before: Fri 02 Jan 2026 04:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205103 IP address blocks: 185.230.68.0/22 maxlen: 24 2a0c:500::/30 maxlen: 31 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/8533c3-29e0-4506-b00d-36c87396923a/1/0yJ36jBLKESnhomzqg2SGeM2Z3M.crl rsync://rpki.ripe.net/repository/DEFAULT/17/8533c3-29e0-4506-b00d-36c87396923a/1/0yJ36jBLKESnhomzqg2SGeM2Z3M.mft rsync://rpki.ripe.net/repository/DEFAULT/0yJ36jBLKESnhomzqg2SGeM2Z3M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:cf:0f:af:6e:62:52:ed:07:09:81:fe:4b:ee:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d32277ea304b2844a78689b3aa0d9219e3366773 Validity Not Before: Jan 2 04:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe13371f5a99f57d9ce2a66fc5b9b121d4fb2bbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ea:49:9d:1d:ca:e4:d8:6e:1e:71:bb:ec:90: b5:bd:58:e7:5c:33:15:5d:a2:5f:48:8c:05:a2:31: fc:2a:69:9a:e6:0b:77:a4:fc:37:ef:6e:31:16:b2: e9:57:23:35:7d:df:a0:fd:44:0a:97:9a:c9:48:f4: 37:25:46:63:43:be:1b:97:c4:d1:11:c9:e4:79:81: 5c:d6:d6:7c:4e:6f:17:60:f6:2f:8d:54:e2:ec:02: 8d:03:42:c1:35:23:b8:1a:c0:70:39:6b:ca:18:9c: da:f7:1a:00:96:33:c1:68:cb:e0:02:08:eb:9d:36: 2f:2b:7e:36:29:c7:9d:5a:9c:a6:2d:48:3d:56:2b: e8:e3:47:3a:1b:0a:ca:ca:91:e6:39:19:bc:14:b7: c7:7f:8b:74:d8:81:c8:53:bb:4d:21:87:de:98:aa: f4:43:9d:d9:f6:d6:da:4c:4b:d6:82:38:ad:62:e7: 0b:a0:bc:4d:c9:2a:1f:81:ec:7d:12:07:fb:05:74: db:b7:0f:6e:99:90:77:00:85:a1:51:7c:20:44:62: 36:38:cb:45:45:a2:c5:4a:e8:d5:13:b5:64:bb:cb: 5f:07:40:1a:cc:15:0b:15:36:97:c3:2b:4d:26:9d: 1e:1e:5f:14:75:77:53:40:53:a4:c3:28:15:89:2e: c5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:13:37:1F:5A:99:F5:7D:9C:E2:A6:6F:C5:B9:B1:21:D4:FB:2B:BF X509v3 Authority Key Identifier: keyid:D3:22:77:EA:30:4B:28:44:A7:86:89:B3:AA:0D:92:19:E3:36:67:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0yJ36jBLKESnhomzqg2SGeM2Z3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8533c3-29e0-4506-b00d-36c87396923a/1/_hM3H1qZ9X2c4qZvxbmxIdT7K78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8533c3-29e0-4506-b00d-36c87396923a/1/0yJ36jBLKESnhomzqg2SGeM2Z3M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.68.0/22 IPv6: 2a0c:500::/30 Signature Algorithm: sha256WithRSAEncryption b7:29:dd:40:77:07:9c:7e:d7:37:2b:7e:07:cd:46:59:12:f3: 25:48:04:0a:5c:58:0e:00:7f:85:30:be:1e:01:a0:12:bb:99: 2d:fe:65:18:7e:2c:d7:fb:22:5b:0a:93:8f:f5:0d:8f:34:cb: 8f:eb:9f:c7:b2:7d:56:b3:df:9d:5d:cf:b8:36:9a:e9:1c:5b: 00:f4:31:4f:df:63:f0:3c:b2:cc:ee:aa:93:93:db:bc:f3:51: 7d:68:11:95:10:09:e5:d5:74:dc:56:02:b5:a9:54:1f:c8:ab: 0f:49:9d:5a:99:d7:99:b4:84:73:11:df:50:cc:04:dd:d5:7a: 20:c6:e1:47:41:4e:98:e5:53:52:9e:06:af:66:a1:ba:9d:34: 10:cf:4e:cf:ee:32:32:85:b2:e2:1b:53:4f:12:f5:c8:15:db: 56:f8:21:29:f5:8e:c7:b7:4c:7b:4e:ad:fb:ea:2c:e3:46:18: 9c:3d:49:0f:88:27:6a:42:3c:f6:ed:24:47:42:d2:72:da:33: 2d:17:f3:6d:cc:01:2c:b5:ce:57:20:26:4c:65:5e:10:36:22: 0f:d2:3b:75:bf:62:d9:a0:40:e6:aa:32:b4:60:71:fb:81:34: 57:b5:21:65:01:ef:81:83:22:44:b7:60:26:c9:5e:a1:52:7e: dd:ac:2e:31 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87c8Pr25iUu0HCYH+S+61MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzMjI3N2VhMzA0YjI4NDRhNzg2ODliM2FhMGQ5MjE5ZTMz NjY3NzMwHhcNMjYwMTAyMDQxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTEzMzcxZjVhOTlmNTdkOWNlMmE2NmZjNWI5YjEyMWQ0ZmIyYmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOpJnR3K5NhuHnG77JC1vVjnXDMV XaJfSIwFojH8Kmma5gt3pPw3724xFrLpVyM1fd+g/UQKl5rJSPQ3JUZjQ74bl8TR EcnkeYFc1tZ8Tm8XYPYvjVTi7AKNA0LBNSO4GsBwOWvKGJza9xoAljPBaMvgAgjr nTYvK342KcedWpymLUg9Vivo40c6GwrKypHmORm8FLfHf4t02IHIU7tNIYfemKr0 Q53Z9tbaTEvWgjitYucLoLxNySofgex9Egf7BXTbtw9umZB3AIWhUXwgRGI2OMtF RaLFSujVE7Vku8tfB0AazBULFTaXwytNJp0eHl8UdXdTQFOkwygViS7FHwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFP4TNx9amfV9nOKmb8W5sSHU+yu/MB8GA1UdIwQY MBaAFNMid+owSyhEp4aJs6oNkhnjNmdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHlKMzZqQkxLRVNuaG9tenFnMlNHZU0yWjNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84NTMzYzMtMjllMC00NTA2LWIwMGQt MzZjODczOTY5MjNhLzEvX2hNM0gxcVo5WDJjNHFadnhibXhJZFQ3Szc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy84NTMzYzMtMjllMC00NTA2LWIwMGQtMzZjODczOTY5MjNh LzEvMHlKMzZqQkxLRVNuaG9tenFnMlNHZU0yWjNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueZEMA0E AgACMAcDBQIqDAUAMA0GCSqGSIb3DQEBCwUAA4IBAQC3Kd1Adwecftc3K34HzUZZ EvMlSAQKXFgOAH+FML4eAaASu5kt/mUYfizX+yJbCpOP9Q2PNMuP65/Hsn1Ws9+d Xc+4NprpHFsA9DFP32PwPLLM7qqTk9u881F9aBGVEAnl1XTcVgK1qVQfyKsPSZ1a mdeZtIRzEd9QzATd1XogxuFHQU6Y5VNSngavZqG6nTQQz07P7jIyhbLiG1NPEvXI FdtW+CEp9Y7Ht0x7Tq376izjRhicPUkPiCdqQjz27SRHQtJy2jMtF/NtzAEstc5X ICZMZV4QNiIP0jt1v2LZoEDmqjK0YHH7gTRXtSFlAe+BgyJEt2AmyV6hUn7drC4x -----END CERTIFICATE-----Generated at Sun Jan 25 21:58:34 2026 by rpki-client