This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/hKslTlGWTrYnNFRq7nm02w7iSks.roa File: hKslTlGWTrYnNFRq7nm02w7iSks.roa (raw, json) Hash identifier: hx/Lg8Qct01wevwfLicpLCIZWwNva1xX/icDKHDKOOo= Subject key identifier: 84:AB:25:4E:51:96:4E:B6:27:34:54:6A:EE:79:B4:DB:0E:E2:4A:4B Certificate issuer: /CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c Certificate serial: 019B7AC8B4CE89A47F775BE638901D89A0F0 Authority key identifier: 0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/hKslTlGWTrYnNFRq7nm02w7iSks.roa Signing time: Thu 01 Jan 2026 18:18:52 +0000 ROA not before: Thu 01 Jan 2026 18:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6724 IP address blocks: 185.127.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.mft rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:b4:ce:89:a4:7f:77:5b:e6:38:90:1d:89:a0:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c Validity Not Before: Jan 1 18:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84ab254e51964eb62734546aee79b4db0ee24a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7a:df:ec:55:72:1f:60:07:f2:08:d7:84:b8: db:2e:ed:6a:15:05:ca:f9:52:39:b7:bc:8b:ea:0c: 28:ff:3c:4c:23:ef:67:f6:6e:c6:f2:67:7b:d8:87: e2:a4:34:12:fc:a3:90:81:3f:dc:e2:5d:21:e8:b4: c0:39:fc:9f:77:cd:56:36:45:0c:8b:69:7f:8e:f1: 5e:97:bc:3d:a6:05:91:9f:2f:52:c6:85:cc:66:05: a4:f0:01:bb:8f:70:49:e0:ea:8a:1a:95:6c:33:ad: 28:6e:4b:42:85:c0:37:1c:04:f0:80:c9:d4:f7:e4: f6:e6:1c:54:9a:91:89:97:ea:7c:d2:06:67:5a:bb: 66:9e:28:c0:e7:67:97:85:63:41:24:92:06:71:ff: dd:74:a9:68:bc:e7:9e:6b:65:ff:4a:55:9b:c4:4c: 82:4e:8d:39:40:a1:7a:ff:f5:95:6c:b9:38:3d:08: 8d:4f:4a:ad:e6:56:7c:c8:7a:21:58:95:10:6d:4d: d2:ab:16:ab:8e:7f:1b:46:3c:48:ba:95:78:80:d3: bf:23:11:68:b7:75:61:89:93:2d:c6:90:43:e6:9e: 49:3a:18:52:80:8b:56:e1:c4:24:ee:e4:a2:54:3d: f8:5f:60:3b:bd:27:2f:1b:38:c9:78:79:aa:18:ae: a7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AB:25:4E:51:96:4E:B6:27:34:54:6A:EE:79:B4:DB:0E:E2:4A:4B X509v3 Authority Key Identifier: keyid:0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/hKslTlGWTrYnNFRq7nm02w7iSks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.127.30.0/24 Signature Algorithm: sha256WithRSAEncryption 63:85:77:ee:cd:8c:08:73:bb:0e:5c:51:40:0b:6a:6a:ba:28: bc:87:b1:e8:5f:e8:20:0c:4d:7a:1a:f6:cf:36:5a:72:d7:9d: a2:3a:67:30:7f:f4:19:05:ad:f8:90:ce:54:4d:ba:97:08:fc: b1:da:fc:eb:f9:c2:db:de:49:e1:ca:de:c0:31:85:4b:13:68: 1c:f1:dc:43:a9:44:d0:13:fc:77:fe:d3:d7:b5:1d:73:dd:9e: 30:e0:19:60:13:29:8a:c4:f5:9a:91:3a:be:1d:17:82:2f:ca: c1:61:60:b3:c4:db:23:7c:e6:cb:ff:76:a1:6e:f1:63:29:27: e1:ce:1f:87:4a:55:0e:d5:8c:ca:eb:aa:0c:c4:55:3e:fb:bf: 3e:9e:30:fd:a5:0e:56:06:d1:30:de:b1:06:93:2c:ff:6d:16: 24:7c:ee:d8:da:cd:02:c3:ad:25:10:f8:8a:bc:1f:10:b3:4b: d8:9e:a2:2d:e8:cf:8f:b2:cc:e2:eb:a7:b5:a8:6a:fb:88:68: 11:5d:2e:46:19:3b:cd:0c:c1:4c:8f:88:bd:44:c5:e1:ac:46: 45:9b:a4:99:12:fc:32:fa:ea:9a:8c:3f:c6:cc:12:7b:5d:6e: fa:a2:5e:cd:a9:55:ba:91:1c:fc:da:b6:2b:a4:d2:e2:da:09: fa:93:ec:6f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yLTOiaR/d1vmOJAdiaDwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMGIwZGNiNmFkMGNhODE2ZDJiZDIwNGUxM2YxZWFmMTEw NDI3NGMwHhcNMjYwMTAxMTgxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGFiMjU0ZTUxOTY0ZWI2MjczNDU0NmFlZTc5YjRkYjBlZTI0YTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3rf7FVyH2AH8gjXhLjbLu1qFQXK +VI5t7yL6gwo/zxMI+9n9m7G8md72IfipDQS/KOQgT/c4l0h6LTAOfyfd81WNkUM i2l/jvFel7w9pgWRny9SxoXMZgWk8AG7j3BJ4OqKGpVsM60obktChcA3HATwgMnU 9+T25hxUmpGJl+p80gZnWrtmnijA52eXhWNBJJIGcf/ddKlovOeea2X/SlWbxEyC To05QKF6//WVbLk4PQiNT0qt5lZ8yHohWJUQbU3Sqxarjn8bRjxIupV4gNO/IxFo t3VhiZMtxpBD5p5JOhhSgItW4cQk7uSiVD34X2A7vScvGzjJeHmqGK6nAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFISrJU5Rlk62JzRUau55tNsO4kpLMB8GA1UdIwQY MBaAFA4LDctq0MqBbSvSBOE/Hq8RBCdMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGdzTnkyclF5b0Z0SzlJRTRUOGVyeEVFSjB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mMTlkMDYtYzdmYS00MGU1LWI4MTMt N2ZlMzk1MWE3MzViLzEvaEtzbFRsR1dUclluTkZScTdubTAydzdpU2tzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9mMTlkMDYtYzdmYS00MGU1LWI4MTMtN2ZlMzk1MWE3MzVi LzEvRGdzTnkyclF5b0Z0SzlJRTRUOGVyeEVFSjB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuX8eMA0G CSqGSIb3DQEBCwUAA4IBAQBjhXfuzYwIc7sOXFFAC2pquii8h7HoX+ggDE16GvbP Nlpy152iOmcwf/QZBa34kM5UTbqXCPyx2vzr+cLb3knhyt7AMYVLE2gc8dxDqUTQ E/x3/tPXtR1z3Z4w4BlgEymKxPWakTq+HReCL8rBYWCzxNsjfObL/3ahbvFjKSfh zh+HSlUO1YzK66oMxFU++78+njD9pQ5WBtEw3rEGkyz/bRYkfO7Y2s0Cw60lEPiK vB8Qs0vYnqIt6M+Psszi66e1qGr7iGgRXS5GGTvNDMFMj4i9RMXhrEZFm6SZEvwy +uqajD/GzBJ7XW76ol7NqVW6kRz82rYrpNLi2gn6k+xv -----END CERTIFICATE-----Generated at Sun Jan 25 12:23:01 2026 by rpki-client