This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/0Hde166TZ8cOeYRDZBvGcnkowsw.roa File: 0Hde166TZ8cOeYRDZBvGcnkowsw.roa (raw, json) Hash identifier: qHe/Fb1SXZPDfsFybAYuKlH/X0tukUHCuNBNiEKAWfI= Subject key identifier: D0:77:5E:D7:AE:93:67:C7:0E:79:84:43:64:1B:C6:72:79:28:C2:CC Certificate issuer: /CN=1b12120c351c14eec22109f603249fcdac1d3321 Certificate serial: 019B7F15368DC68E0C4FF55B6FF35C0EF524 Authority key identifier: 1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/0Hde166TZ8cOeYRDZBvGcnkowsw.roa Signing time: Fri 02 Jan 2026 14:20:55 +0000 ROA not before: Fri 02 Jan 2026 14:20:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215242 IP address blocks: 185.7.241.0/24 maxlen: 24 185.7.242.0/24 maxlen: 24 185.7.243.0/24 maxlen: 24 2a14:db80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.mft rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:36:8d:c6:8e:0c:4f:f5:5b:6f:f3:5c:0e:f5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b12120c351c14eec22109f603249fcdac1d3321 Validity Not Before: Jan 2 14:20:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0775ed7ae9367c70e798443641bc6727928c2cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:36:50:45:7e:c5:82:4f:39:70:ac:cf:89:d2: ef:68:46:62:ea:cf:dd:14:78:f4:f7:88:f1:7e:85: 1d:72:b7:15:e2:a9:3a:43:03:99:e6:a6:3e:13:ff: 26:76:2b:70:b6:47:4c:68:81:d9:c2:47:38:82:14: b3:3e:ff:6b:41:e8:69:10:b5:b4:ae:23:59:40:c6: af:8c:f3:a4:4d:da:c0:f1:03:a9:de:4d:26:af:fb: 70:63:fe:8a:9b:32:36:69:14:8e:f0:1f:64:72:58: 06:32:62:59:6e:89:25:a9:66:35:f0:dd:01:f3:5c: 4e:fd:1c:be:c0:2c:42:cd:29:04:3b:a3:f6:6a:23: f8:a9:6c:a6:73:b9:e6:98:0a:a0:d0:10:27:43:84: 23:8a:0c:00:0d:51:0b:5d:5a:fd:7e:9a:98:55:27: 3d:f2:da:ed:aa:7c:69:98:43:e8:91:0a:ae:6c:b5: 0a:5e:d6:cd:bd:d2:17:84:e8:e0:fa:45:9c:73:1b: 28:6a:c8:93:a1:d9:7a:cf:a6:fd:48:7d:75:c9:19: 16:3c:fb:18:8d:3b:6e:46:86:e9:32:0b:37:c5:cc: fb:b0:23:5f:8c:ae:2d:73:a9:ab:76:f1:ec:2c:a5: 02:c8:f8:ef:82:b9:b1:f8:7c:9f:06:08:27:c8:8c: 9a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:77:5E:D7:AE:93:67:C7:0E:79:84:43:64:1B:C6:72:79:28:C2:CC X509v3 Authority Key Identifier: keyid:1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/0Hde166TZ8cOeYRDZBvGcnkowsw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.7.241.0-185.7.243.255 IPv6: 2a14:db80:5::/48 Signature Algorithm: sha256WithRSAEncryption 01:39:2a:0f:82:14:41:71:1c:17:d9:46:65:b5:55:38:69:ad: 5c:e0:e9:7e:2c:2e:8a:b5:2c:13:ef:bd:d4:bf:77:26:93:5e: 93:84:4e:ee:28:30:f9:eb:fe:c1:44:63:1e:d6:37:38:9d:02: eb:b5:c7:f0:44:d3:83:0c:c3:50:4a:b8:84:58:68:49:fe:21: c6:f6:fc:f7:bc:f9:6b:8b:38:6e:b2:c2:05:a9:9d:1e:cc:7e: 3b:b5:41:22:97:8e:4f:b0:72:74:fc:ee:f0:f1:cb:11:78:a0: c8:3a:4b:95:1a:0f:e1:54:35:20:c7:19:c6:56:8e:1f:0f:56: e7:0e:52:9c:03:60:d2:0c:81:ca:87:3f:5a:46:f5:2c:79:34: 3b:0f:3e:9e:16:82:3d:74:9b:d7:18:aa:84:68:7b:6d:40:20: ab:d4:4b:95:f7:83:12:38:27:fe:76:c0:bf:b8:7c:39:0f:9e: 6e:50:b8:fb:76:0d:66:66:80:3b:70:3a:05:4f:15:f6:db:b8: dd:25:77:ed:31:a4:20:a9:eb:0f:7a:53:36:ac:fc:88:b8:5c: 91:12:d3:ab:0c:af:3d:f8:de:9d:41:9a:f3:89:c0:bf:fc:44: c8:58:01:5f:c7:8b:6e:3a:9f:6c:ec:f6:a2:b5:52:d2:1f:af: 4c:10:ac:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt/FTaNxo4MT/Vbb/NcDvUkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMTIxMjBjMzUxYzE0ZWVjMjIxMDlmNjAzMjQ5ZmNkYWMx ZDMzMjEwHhcNMjYwMTAyMTQyMDU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDc3NWVkN2FlOTM2N2M3MGU3OTg0NDM2NDFiYzY3Mjc5MjhjMmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljZQRX7Fgk85cKzPidLvaEZi6s/d FHj094jxfoUdcrcV4qk6QwOZ5qY+E/8mditwtkdMaIHZwkc4ghSzPv9rQehpELW0 riNZQMavjPOkTdrA8QOp3k0mr/twY/6KmzI2aRSO8B9kclgGMmJZboklqWY18N0B 81xO/Ry+wCxCzSkEO6P2aiP4qWymc7nmmAqg0BAnQ4QjigwADVELXVr9fpqYVSc9 8trtqnxpmEPokQqubLUKXtbNvdIXhOjg+kWccxsoasiTodl6z6b9SH11yRkWPPsY jTtuRobpMgs3xcz7sCNfjK4tc6mrdvHsLKUCyPjvgrmx+HyfBggnyIyajQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNB3Xteuk2fHDnmEQ2QbxnJ5KMLMMB8GA1UdIwQY MBaAFBsSEgw1HBTuwiEJ9gMkn82sHTMhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3hJU0REVWNGTzdDSVFuMkF5U2Z6YXdkTXlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8zZGFmN2YtMzAxZC00MjNlLTk0NmUt NDNkZjQ3ZDVhMWU3LzEvMEhkZTE2NlRaOGNPZVlSRFpCdkdjbmtvd3N3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8zZGFmN2YtMzAxZC00MjNlLTk0NmUtNDNkZjQ3ZDVhMWU3 LzEvR3hJU0REVWNGTzdDSVFuMkF5U2Z6YXdkTXlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAUBAIAATAOMAwDBAC5B/ED BAK5B/AwDwQCAAIwCQMHACoU24AABTANBgkqhkiG9w0BAQsFAAOCAQEAATkqD4IU QXEcF9lGZbVVOGmtXODpfiwuirUsE++91L93JpNek4RO7igw+ev+wURjHtY3OJ0C 67XH8ETTgwzDUEq4hFhoSf4hxvb897z5a4s4brLCBamdHsx+O7VBIpeOT7BydPzu 8PHLEXigyDpLlRoP4VQ1IMcZxlaOHw9W5w5SnANg0gyByoc/Wkb1LHk0Ow8+nhaC PXSb1xiqhGh7bUAgq9RLlfeDEjgn/nbAv7h8OQ+eblC4+3YNZmaAO3A6BU8V9tu4 3SV37TGkIKnrD3pTNqz8iLhckRLTqwyvPfjenUGa84nAv/xEyFgBX8eLbjqfbOz2 orVS0h+vTBCsAg== -----END CERTIFICATE-----Generated at Mon Jan 26 05:32:13 2026 by rpki-client