This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/V1HErl2JVbjT136XwGDVBe5B8q0.roa File: V1HErl2JVbjT136XwGDVBe5B8q0.roa (raw, json) Hash identifier: 0IOhqRYRA3j3IZg7O69Z3jrw0I2aO88PvmtQESn76TE= Subject key identifier: 57:51:C4:AE:5D:89:55:B8:D3:D7:7E:97:C0:60:D5:05:EE:41:F2:AD Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2 Certificate serial: 019B79108D64D784D9030F51217D15D5572B Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/V1HErl2JVbjT136XwGDVBe5B8q0.roa Signing time: Thu 01 Jan 2026 10:18:06 +0000 ROA not before: Thu 01 Jan 2026 10:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16047 IP address blocks: 37.60.176.0/21 maxlen: 21 185.220.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.mft rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:8d:64:d7:84:d9:03:0f:51:21:7d:15:d5:57:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2 Validity Not Before: Jan 1 10:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5751c4ae5d8955b8d3d77e97c060d505ee41f2ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:09:51:6d:45:f0:d0:27:a1:bc:31:72:5b:40: fe:e7:36:bb:a5:bc:a4:02:db:69:06:5a:32:f3:28: 1d:ef:fd:2c:59:01:bf:a1:92:88:c8:19:6f:a7:8f: 6d:4f:49:f1:25:bb:2d:49:d1:0e:9d:26:c5:7b:5b: 6a:cb:59:d3:3b:d0:b9:cf:56:d7:30:76:07:b8:98: 35:00:31:d3:eb:74:ee:86:23:28:24:f1:83:ac:c3: 56:4e:44:61:a3:57:0f:a4:84:70:bd:69:e2:33:60: 9a:fe:03:1b:20:a7:fe:45:8c:5f:a4:36:3e:6e:4b: 21:5e:60:30:fb:85:39:95:19:47:63:4d:03:26:a7: 2c:b8:80:63:c0:93:73:f0:68:5a:7b:65:2e:7e:06: e6:aa:41:31:25:e2:c6:d0:53:15:20:ba:d4:8b:07: 3e:76:9c:e8:21:d9:93:a0:94:ff:0e:2a:14:f6:28: 4c:15:2e:a1:aa:7e:90:ff:7e:cd:6a:3e:f3:03:f2: 81:1c:51:76:1d:c4:31:41:e8:8e:cb:1e:62:17:d4: d8:be:6a:6e:8c:ec:07:b3:cd:d6:7b:21:40:e1:26: 2b:e5:85:d5:6a:4c:81:97:8e:16:80:db:fe:bc:15: 8d:cf:36:27:91:6d:e3:a9:ed:56:33:48:32:e5:a3: 86:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:51:C4:AE:5D:89:55:B8:D3:D7:7E:97:C0:60:D5:05:EE:41:F2:AD X509v3 Authority Key Identifier: keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/V1HErl2JVbjT136XwGDVBe5B8q0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.60.176.0/21 185.220.40.0/22 Signature Algorithm: sha256WithRSAEncryption 63:4b:e7:a3:6e:74:09:85:82:9b:7b:14:dc:31:7d:29:98:20: ec:88:5a:23:79:c5:88:d8:63:ad:59:bd:6b:51:47:aa:2e:8e: 80:5a:05:52:0e:c0:32:e2:0c:51:e0:23:07:b3:8e:05:e7:0c: 86:b4:0c:0f:bb:90:3c:3d:98:3d:bc:a7:10:14:0b:87:85:24: 5e:ac:07:c2:2c:5e:f0:03:e2:28:1c:95:85:9a:5e:66:99:33: ab:38:7f:48:a5:19:cb:06:7e:97:c1:fe:ea:ec:7b:c1:32:21: c0:55:06:fb:61:77:c8:9b:01:29:fd:90:60:8b:b3:dd:eb:da: a0:c0:9d:d0:1e:7d:bf:b0:e0:a1:0d:1b:09:de:e6:0e:6a:16: 7d:68:de:74:fd:37:0d:76:3a:ac:8b:d9:22:c4:1d:39:72:94: 54:29:05:cb:6b:0a:33:35:73:a6:b9:f3:87:0b:4a:a1:ee:05: a1:d0:b4:8e:a6:4e:3f:86:80:81:a2:d7:04:d7:69:d1:07:af: 97:a0:d4:a4:53:28:d5:64:dc:3e:79:38:27:b8:ae:92:50:aa: 5c:c0:5a:9c:6b:88:0e:d4:97:7f:9b:9c:25:e3:8a:7e:f2:52: 50:95:ed:e0:56:90:2a:f5:fb:69:8a:12:cb:1e:2c:62:46:ac: 46:56:39:ba -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EI1k14TZAw9RIX0V1VcrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ZmFlYzRiOGQ5OTJkZDZiOWNkODlhODQ4OWQzYzNhNjUy YWVjZDIwHhcNMjYwMTAxMTAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzUxYzRhZTVkODk1NWI4ZDNkNzdlOTdjMDYwZDUwNWVlNDFmMmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtglRbUXw0CehvDFyW0D+5za7pbyk AttpBloy8ygd7/0sWQG/oZKIyBlvp49tT0nxJbstSdEOnSbFe1tqy1nTO9C5z1bX MHYHuJg1ADHT63TuhiMoJPGDrMNWTkRho1cPpIRwvWniM2Ca/gMbIKf+RYxfpDY+ bkshXmAw+4U5lRlHY00DJqcsuIBjwJNz8Ghae2UufgbmqkExJeLG0FMVILrUiwc+ dpzoIdmToJT/DioU9ihMFS6hqn6Q/37Naj7zA/KBHFF2HcQxQeiOyx5iF9TYvmpu jOwHs83WeyFA4SYr5YXVakyBl44WgNv+vBWNzzYnkW3jqe1WM0gy5aOGIQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFdRxK5diVW409d+l8Bg1QXuQfKtMB8GA1UdIwQY MBaAFLX67EuNmS3Wuc2JqEidPDplKuzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjkt NDI0M2RlY2FkMzYwLzEvVjFIRXJsMkpWYmpUMTM2WHdHRFZCZTVCOHEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjktNDI0M2RlY2FkMzYw LzEvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDJTywAwQC udwoMA0GCSqGSIb3DQEBCwUAA4IBAQBjS+ejbnQJhYKbexTcMX0pmCDsiFojecWI 2GOtWb1rUUeqLo6AWgVSDsAy4gxR4CMHs44F5wyGtAwPu5A8PZg9vKcQFAuHhSRe rAfCLF7wA+IoHJWFml5mmTOrOH9IpRnLBn6Xwf7q7HvBMiHAVQb7YXfImwEp/ZBg i7Pd69qgwJ3QHn2/sOChDRsJ3uYOahZ9aN50/TcNdjqsi9kixB05cpRUKQXLawoz NXOmufOHC0qh7gWh0LSOpk4/hoCBotcE12nRB6+XoNSkUyjVZNw+eTgnuK6SUKpc wFqca4gO1Jd/m5wl44p+8lJQle3gVpAq9ftpihLLHixiRqxGVjm6 -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:32 2026 by rpki-client