This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/hKSSu2G6xdGNtuk4KP9e-c-JuWM.roa File: hKSSu2G6xdGNtuk4KP9e-c-JuWM.roa (raw, json) Hash identifier: 8+i8iJBk47mdia5rlvNl4a1wcChvvNLCljBmtQLLZ/8= Subject key identifier: 84:A4:92:BB:61:BA:C5:D1:8D:B6:E9:38:28:FF:5E:F9:CF:89:B9:63 Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe Certificate serial: 019B7D5B2C255C621F70A82BDABBDD08BD2A Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/hKSSu2G6xdGNtuk4KP9e-c-JuWM.roa Signing time: Fri 02 Jan 2026 06:18:05 +0000 ROA not before: Fri 02 Jan 2026 06:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214515 IP address blocks: 109.122.244.0/24 maxlen: 24 109.122.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.mft rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 08:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:2c:25:5c:62:1f:70:a8:2b:da:bb:dd:08:bd:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe Validity Not Before: Jan 2 06:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84a492bb61bac5d18db6e93828ff5ef9cf89b963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fc:c0:0e:71:e6:b5:87:43:e1:10:b7:40:80: 93:8a:a0:28:5e:c8:c0:91:2c:1a:c8:3a:1d:20:25: b9:37:a4:35:07:bf:c2:74:1d:b0:25:e8:85:a6:37: 93:60:69:dd:ea:cd:a4:6b:49:88:23:54:9c:1a:a6: d9:da:c9:50:b5:3d:b4:8b:0b:da:f2:72:f8:48:f2: 5c:c3:7a:26:97:d0:75:cb:31:69:0d:a0:b0:f5:35: 6d:e6:5f:89:b5:d6:94:cb:44:2f:4f:a6:c1:fd:e8: 25:4a:36:09:68:1d:c2:f1:3f:e9:56:34:41:69:ee: c1:e9:2d:77:e7:13:ce:8e:98:7f:da:ec:70:2e:cf: 04:c0:f6:8e:5f:ad:e3:e5:86:94:ba:f4:34:22:4b: 68:b6:75:a8:a8:bf:13:c7:b3:3e:a9:0a:e2:ef:01: dd:6f:5b:59:5d:09:98:b9:87:e0:ed:a6:2b:70:b7: 43:90:8e:31:01:d3:88:3e:b5:3d:69:6a:09:34:57: e9:2a:fa:54:0b:be:24:43:ed:fa:e7:c7:bc:95:43: 93:43:50:8c:63:5e:9c:8f:8d:6d:0a:d1:1a:24:2c: db:08:86:d2:58:cd:4a:4b:67:66:79:ec:db:25:e3: 0f:88:1f:53:e6:6d:0a:97:03:be:49:fb:a7:56:61: 18:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A4:92:BB:61:BA:C5:D1:8D:B6:E9:38:28:FF:5E:F9:CF:89:B9:63 X509v3 Authority Key Identifier: keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/hKSSu2G6xdGNtuk4KP9e-c-JuWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.122.244.0/24 109.122.253.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:2c:04:12:91:ca:da:c9:bd:5e:c0:f4:23:b4:a8:d0:c3:c8: 4f:ec:33:5e:bc:ec:cb:2b:cd:26:48:95:6e:8f:74:6b:6f:cd: b2:b4:f7:28:bf:bf:02:ed:1e:85:0b:a7:fa:85:13:1a:b7:3e: e2:35:df:9d:50:cf:86:dc:e7:f4:00:a6:36:15:64:8e:03:5f: ac:46:0a:d1:4e:9a:42:2c:a1:31:26:8d:c4:96:80:b6:76:c3: 62:a9:45:3e:f4:57:08:b1:68:9b:47:97:50:1e:7f:fb:8f:ae: 09:7b:ef:ae:bc:95:9c:01:16:e4:c6:7e:4c:01:cf:96:fb:31: fd:e2:26:84:2a:97:06:4c:66:9d:ae:16:8c:5c:a3:9d:19:83: b9:ed:13:48:ce:dc:ee:84:a5:7b:62:dd:48:fc:71:54:45:93: a3:7e:8c:23:0d:bb:67:b9:85:ac:11:38:cd:e2:64:6a:43:61: 2b:9d:a7:20:0f:6e:f2:6c:5a:92:1c:d8:8c:d8:0e:24:34:fe: 11:ba:22:7d:d9:de:9b:16:5d:71:1d:f3:c3:13:03:38:cf:83: f2:6e:cf:08:a6:c5:94:2c:de:5e:4c:c3:2b:31:10:4d:65:84: d7:58:68:63:4b:41:09:f9:f8:9b:ed:8a:83:7b:8e:e1:a2:bf: b8:d2:ca:74 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9WywlXGIfcKgr2rvdCL0qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz MjdlYmUwHhcNMjYwMTAyMDYxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGE0OTJiYjYxYmFjNWQxOGRiNmU5MzgyOGZmNWVmOWNmODliOTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/zADnHmtYdD4RC3QICTiqAoXsjA kSwayDodICW5N6Q1B7/CdB2wJeiFpjeTYGnd6s2ka0mII1ScGqbZ2slQtT20iwva 8nL4SPJcw3oml9B1yzFpDaCw9TVt5l+JtdaUy0QvT6bB/eglSjYJaB3C8T/pVjRB ae7B6S135xPOjph/2uxwLs8EwPaOX63j5YaUuvQ0IktotnWoqL8Tx7M+qQri7wHd b1tZXQmYuYfg7aYrcLdDkI4xAdOIPrU9aWoJNFfpKvpUC74kQ+3658e8lUOTQ1CM Y16cj41tCtEaJCzbCIbSWM1KS2dmeezbJeMPiB9T5m0KlwO+SfunVmEYIwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFISkkrthusXRjbbpOCj/XvnPibljMB8GA1UdIwQY MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt M2RmYTUxMGQ2YjE2LzEvaEtTU3UyRzZ4ZEdOdHVrNEtQOWUtYy1KdVdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2 LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbXr0AwQA bXr9MA0GCSqGSIb3DQEBCwUAA4IBAQBdLAQSkcrayb1ewPQjtKjQw8hP7DNevOzL K80mSJVuj3Rrb82ytPcov78C7R6FC6f6hRMatz7iNd+dUM+G3Of0AKY2FWSOA1+s RgrRTppCLKExJo3EloC2dsNiqUU+9FcIsWibR5dQHn/7j64Je++uvJWcARbkxn5M Ac+W+zH94iaEKpcGTGadrhaMXKOdGYO57RNIztzuhKV7Yt1I/HFURZOjfowjDbtn uYWsETjN4mRqQ2ErnacgD27ybFqSHNiM2A4kNP4RuiJ92d6bFl1xHfPDEwM4z4Py bs8IpsWULN5eTMMrMRBNZYTXWGhjS0EJ+fib7YqDe47hor+40sp0 -----END CERTIFICATE-----Generated at Sun Jan 25 19:17:45 2026 by rpki-client