This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/htEsk8is-3HwvISfO35xc7PdVM0.roa File: htEsk8is-3HwvISfO35xc7PdVM0.roa (raw, json) Hash identifier: uHKztBgJ/wsTm8pbbSDKTc7meGtHJJGVbbj9VG266W0= Subject key identifier: 86:D1:2C:93:C8:AC:FB:71:F0:BC:84:9F:3B:7E:71:73:B3:DD:54:CD Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Certificate serial: 019B7D5CC06FABAB8BB649663822B223218B Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/htEsk8is-3HwvISfO35xc7PdVM0.roa Signing time: Fri 02 Jan 2026 06:19:49 +0000 ROA not before: Fri 02 Jan 2026 06:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15020 IP address blocks: 37.46.197.0/24 maxlen: 24 94.185.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.mft rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:c0:6f:ab:ab:8b:b6:49:66:38:22:b2:23:21:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2 Validity Not Before: Jan 2 06:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86d12c93c8acfb71f0bc849f3b7e7173b3dd54cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:8b:fd:de:dc:b2:da:35:f8:36:c5:18:23: 71:a5:38:a8:04:6a:61:f4:3f:e6:fd:09:f0:12:1e: 82:f2:92:6f:c2:16:7c:8e:a6:43:42:2d:69:b1:c8: 90:07:21:98:c6:6e:82:a7:47:2d:10:59:04:47:cc: 71:2a:e4:53:79:cc:0e:03:4b:88:80:84:cc:3c:a7: e8:b6:d8:7f:b7:fc:cc:69:a1:2f:84:9b:f8:31:87: 56:0f:95:50:a7:97:62:ce:44:2f:e4:8d:1f:5a:86: 9a:cd:d2:c1:b3:70:48:aa:4f:52:e0:bf:59:76:ae: 6a:6f:59:1e:1a:6c:c9:48:e7:09:01:c6:f9:4c:9f: 2d:7d:20:81:aa:fd:06:01:53:fa:43:4a:b1:03:aa: 2e:e6:76:3d:49:56:31:05:88:76:0c:da:6f:0c:3f: c1:23:24:ee:52:56:6c:a3:3d:26:32:b2:cf:10:28: 07:60:d5:d9:c3:24:fa:2a:4f:d9:ac:b4:e9:df:62: eb:ee:80:ae:73:a1:06:6f:cc:aa:b2:2f:5a:53:1c: 29:fa:27:5c:bf:c2:a6:d2:68:7c:8c:eb:77:7b:1a: 26:c2:7b:0c:c4:f8:05:db:32:55:f0:22:41:9a:3f: 15:c9:bc:32:35:0b:3b:79:de:01:4b:e8:b6:b7:c5: 7a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D1:2C:93:C8:AC:FB:71:F0:BC:84:9F:3B:7E:71:73:B3:DD:54:CD X509v3 Authority Key Identifier: keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/htEsk8is-3HwvISfO35xc7PdVM0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.46.197.0/24 94.185.86.0/24 Signature Algorithm: sha256WithRSAEncryption 76:9c:89:b7:cd:9b:02:fd:78:98:d8:27:14:ed:8b:b6:b6:7d: fc:15:be:c9:34:a1:64:48:b2:04:c8:75:5b:21:11:17:fa:8d: 01:13:b6:c1:81:42:e0:34:2d:87:2f:8f:c0:72:ad:65:29:86: 29:93:f9:14:ac:ef:6a:4f:87:77:f4:5b:ec:5d:90:35:fc:e9: d6:4c:be:5e:71:28:7f:fb:8d:82:4f:4d:1e:23:f9:6f:d9:c9: 84:49:4d:a3:f4:7a:cf:b1:3d:1c:4b:b9:16:30:fa:61:3a:1c: c1:2d:08:07:23:c7:44:8b:5b:04:af:0e:48:e9:30:6c:41:57: b2:7a:57:5b:84:88:6a:d8:f1:a4:21:b6:a0:be:52:19:ff:84: 43:09:e9:18:ca:ce:37:38:e7:5f:78:66:83:e2:33:cf:7c:24: f6:0b:91:2f:57:ab:d2:af:05:84:fe:6f:c1:cf:fc:bd:3e:4a: 78:ca:1c:f6:7b:ab:01:a0:b0:76:e9:c5:0d:fb:b6:54:04:39: 71:91:11:e1:68:c1:b9:65:73:fa:a0:8e:fd:b0:b1:fa:e2:78: b4:5f:8f:c4:cd:3a:be:53:c4:ca:0b:ce:df:cb:18:e3:fe:23: d4:1e:6a:6e:10:f3:25:29:ae:1f:c6:8e:1f:c2:f4:ab:61:c2: a4:02:1e:3a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XMBvq6uLtklmOCKyIyGLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZGM5YzIxOGI1MTBjMDdiYzY2NTliMDlmYmQzMmFmZTY4 YWJmZDIwHhcNMjYwMTAyMDYxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmQxMmM5M2M4YWNmYjcxZjBiYzg0OWYzYjdlNzE3M2IzZGQ1NGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqyL/d7csto1+DbFGCNxpTioBGph 9D/m/QnwEh6C8pJvwhZ8jqZDQi1psciQByGYxm6Cp0ctEFkER8xxKuRTecwOA0uI gITMPKfotth/t/zMaaEvhJv4MYdWD5VQp5dizkQv5I0fWoaazdLBs3BIqk9S4L9Z dq5qb1keGmzJSOcJAcb5TJ8tfSCBqv0GAVP6Q0qxA6ou5nY9SVYxBYh2DNpvDD/B IyTuUlZsoz0mMrLPECgHYNXZwyT6Kk/ZrLTp32Lr7oCuc6EGb8yqsi9aUxwp+idc v8Km0mh8jOt3exomwnsMxPgF2zJV8CJBmj8VybwyNQs7ed4BS+i2t8V6NwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIbRLJPIrPtx8LyEnzt+cXOz3VTNMB8GA1UdIwQY MBaAFFLcnCGLUQwHvGZZsJ+9Mq/mir/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYt NTJmOTdiMjc3ZDFmLzEvaHRFc2s4aXMtM0h3dklTZk8zNXhjN1BkVk0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYtNTJmOTdiMjc3ZDFm LzEvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAJS7FAwQA XrlWMA0GCSqGSIb3DQEBCwUAA4IBAQB2nIm3zZsC/XiY2CcU7Yu2tn38Fb7JNKFk SLIEyHVbIREX+o0BE7bBgULgNC2HL4/Acq1lKYYpk/kUrO9qT4d39FvsXZA1/OnW TL5ecSh/+42CT00eI/lv2cmESU2j9HrPsT0cS7kWMPphOhzBLQgHI8dEi1sErw5I 6TBsQVeyeldbhIhq2PGkIbagvlIZ/4RDCekYys43OOdfeGaD4jPPfCT2C5EvV6vS rwWE/m/Bz/y9Pkp4yhz2e6sBoLB26cUN+7ZUBDlxkRHhaMG5ZXP6oI79sLH64ni0 X4/EzTq+U8TKC87fyxjj/iPUHmpuEPMlKa4fxo4fwvSrYcKkAh46 -----END CERTIFICATE-----Generated at Sun Jan 25 14:33:15 2026 by rpki-client