This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/70bffe-b4f3-449e-81ed-549ee6d30fb6/1/hnOMcA3FLHrspCaukH2G2BOpT8A.roa File: hnOMcA3FLHrspCaukH2G2BOpT8A.roa (raw, json) Hash identifier: lcUqSg3j84OiYjox0KKVZ3oU4xCrQOPVs8tFQBrKuF4= Subject key identifier: 86:73:8C:70:0D:C5:2C:7A:EC:A4:26:AE:90:7D:86:D8:13:A9:4F:C0 Certificate issuer: /CN=b6f3db35659133315d2fcf93058dce350a4cb17a Certificate serial: 019B7E3893D6B07EAB5DA5C5EE9A2CC8711A Authority key identifier: B6:F3:DB:35:65:91:33:31:5D:2F:CF:93:05:8D:CE:35:0A:4C:B1:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tvPbNWWRMzFdL8-TBY3ONQpMsXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/70bffe-b4f3-449e-81ed-549ee6d30fb6/1/hnOMcA3FLHrspCaukH2G2BOpT8A.roa Signing time: Fri 02 Jan 2026 10:19:55 +0000 ROA not before: Fri 02 Jan 2026 10:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204461 IP address blocks: 194.44.105.0/24 maxlen: 24 213.174.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/70bffe-b4f3-449e-81ed-549ee6d30fb6/1/tvPbNWWRMzFdL8-TBY3ONQpMsXo.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/70bffe-b4f3-449e-81ed-549ee6d30fb6/1/tvPbNWWRMzFdL8-TBY3ONQpMsXo.mft rsync://rpki.ripe.net/repository/DEFAULT/tvPbNWWRMzFdL8-TBY3ONQpMsXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:93:d6:b0:7e:ab:5d:a5:c5:ee:9a:2c:c8:71:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6f3db35659133315d2fcf93058dce350a4cb17a Validity Not Before: Jan 2 10:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86738c700dc52c7aeca426ae907d86d813a94fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c2:bd:0d:01:c4:20:29:3b:2e:3c:30:73:56: d8:4c:2b:51:bb:97:2c:a9:4e:94:6e:57:70:7d:76: 8d:c5:ad:17:7f:6e:4a:ef:9e:a9:fa:33:44:1d:61: ca:f6:84:24:ba:06:23:70:e1:f9:5d:bb:2b:3a:d0: e8:e0:a5:59:e9:b9:20:3a:a3:92:f1:14:0d:4a:26: 01:3c:37:7d:da:58:c1:e8:be:c7:42:e0:a0:b2:88: 07:40:89:8b:ff:34:14:16:4f:c0:38:39:cb:15:70: 05:4e:ef:16:e5:b8:30:e0:ea:13:a8:f7:f9:04:c6: db:f2:e0:dc:27:2d:f8:34:61:c4:c6:49:f2:43:c9: e3:e7:3b:1f:a3:63:21:7b:3a:76:b1:b2:63:7d:f4: 48:79:ca:6a:bb:60:2b:7d:27:16:ff:00:74:d6:71: ef:88:fa:f9:48:74:2d:3a:b6:39:1f:df:22:6d:96: 16:ea:70:cd:5a:23:47:d2:66:38:b6:4c:d1:17:b6: 8c:82:73:af:79:6a:e8:0b:86:b7:11:37:ba:fd:3b: 13:a7:34:dd:05:5f:15:f5:ce:2a:56:ce:6a:59:8d: f4:79:5d:a2:6a:63:0a:7d:8d:e2:a0:25:3e:44:5b: 7c:97:7f:9e:32:dd:ff:cf:42:ae:ab:6f:5f:85:32: 10:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:73:8C:70:0D:C5:2C:7A:EC:A4:26:AE:90:7D:86:D8:13:A9:4F:C0 X509v3 Authority Key Identifier: keyid:B6:F3:DB:35:65:91:33:31:5D:2F:CF:93:05:8D:CE:35:0A:4C:B1:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tvPbNWWRMzFdL8-TBY3ONQpMsXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/70bffe-b4f3-449e-81ed-549ee6d30fb6/1/hnOMcA3FLHrspCaukH2G2BOpT8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/70bffe-b4f3-449e-81ed-549ee6d30fb6/1/tvPbNWWRMzFdL8-TBY3ONQpMsXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.44.105.0/24 213.174.20.0/24 Signature Algorithm: sha256WithRSAEncryption 21:64:8a:c7:87:98:ad:91:a5:01:69:18:61:3b:99:cc:e8:6e: f8:5d:a1:77:08:97:d6:e1:50:c7:8f:be:37:09:0e:82:65:bf: 49:73:3e:9b:1b:c0:27:bb:16:41:d8:df:7b:68:89:63:ce:17: 91:71:17:3f:39:ac:9c:83:4d:df:fc:41:b9:d6:2b:30:88:74: dd:1c:2a:9e:a2:8c:c2:e4:9d:48:4f:d5:75:4a:64:a8:79:47: 5b:3f:5c:99:63:df:a8:46:e8:d2:1f:9e:c4:71:48:a5:88:18: 3b:12:1a:42:34:ca:b4:e5:3e:39:71:f6:49:c1:45:18:63:22: 14:da:7d:ec:4c:19:d0:f6:8b:04:9e:17:6a:74:e9:93:b0:3e: e4:63:ae:06:5a:35:ba:e0:b5:2b:3b:a2:2d:1a:02:b0:63:2d: 66:cf:9b:da:dd:cb:f8:6a:1f:0a:a2:5b:ea:19:53:e6:d4:fe: fe:2b:88:1c:97:de:01:42:58:5f:e7:d2:8e:e5:24:4b:ef:9b: 2c:9f:e1:2b:49:61:9e:49:79:c0:37:e9:12:14:cb:3e:65:d6: 0e:08:8d:3f:52:10:0f:8e:c4:77:62:53:77:c8:d0:83:5b:2a: 5d:81:e9:ab:24:d5:d5:d4:9c:9b:f3:11:62:7e:18:09:2f:c7: 98:9e:63:45 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OJPWsH6rXaXF7posyHEaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2ZjNkYjM1NjU5MTMzMzE1ZDJmY2Y5MzA1OGRjZTM1MGE0 Y2IxN2EwHhcNMjYwMTAyMTAxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjczOGM3MDBkYzUyYzdhZWNhNDI2YWU5MDdkODZkODEzYTk0ZmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMK9DQHEICk7Ljwwc1bYTCtRu5cs qU6UbldwfXaNxa0Xf25K756p+jNEHWHK9oQkugYjcOH5XbsrOtDo4KVZ6bkgOqOS 8RQNSiYBPDd92ljB6L7HQuCgsogHQImL/zQUFk/AODnLFXAFTu8W5bgw4OoTqPf5 BMbb8uDcJy34NGHExknyQ8nj5zsfo2Mhezp2sbJjffRIecpqu2ArfScW/wB01nHv iPr5SHQtOrY5H98ibZYW6nDNWiNH0mY4tkzRF7aMgnOveWroC4a3ETe6/TsTpzTd BV8V9c4qVs5qWY30eV2iamMKfY3ioCU+RFt8l3+eMt3/z0Kuq29fhTIQpQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIZzjHANxSx67KQmrpB9htgTqU/AMB8GA1UdIwQY MBaAFLbz2zVlkTMxXS/PkwWNzjUKTLF6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHZQYk5XV1JNekZkTDgtVEJZM09OUXBNc1hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC83MGJmZmUtYjRmMy00NDllLTgxZWQt NTQ5ZWU2ZDMwZmI2LzEvaG5PTWNBM0ZMSHJzcENhdWtIMkcyQk9wVDhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC83MGJmZmUtYjRmMy00NDllLTgxZWQtNTQ5ZWU2ZDMwZmI2 LzEvdHZQYk5XV1JNekZkTDgtVEJZM09OUXBNc1hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwixpAwQA 1a4UMA0GCSqGSIb3DQEBCwUAA4IBAQAhZIrHh5itkaUBaRhhO5nM6G74XaF3CJfW 4VDHj743CQ6CZb9Jcz6bG8AnuxZB2N97aIljzheRcRc/Oaycg03f/EG51iswiHTd HCqeoozC5J1IT9V1SmSoeUdbP1yZY9+oRujSH57EcUiliBg7EhpCNMq05T45cfZJ wUUYYyIU2n3sTBnQ9osEnhdqdOmTsD7kY64GWjW64LUrO6ItGgKwYy1mz5va3cv4 ah8KolvqGVPm1P7+K4gcl94BQlhf59KO5SRL75ssn+ErSWGeSXnAN+kSFMs+ZdYO CI0/UhAPjsR3YlN3yNCDWypdgemrJNXV1Jyb8xFifhgJL8eYnmNF -----END CERTIFICATE-----Generated at Sun Jan 25 21:57:42 2026 by rpki-client