This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/f6cf44-66d3-4f0b-8132-d53811fbd7b0/1/rhstuAH1RjeoFX9aBL9o13FXeo8.roa File: rhstuAH1RjeoFX9aBL9o13FXeo8.roa (raw, json) Hash identifier: V/dFIE6DEQQYxzvLKa9DV5po5slChYjT93vla6o5qEc= Subject key identifier: AE:1B:2D:B8:01:F5:46:37:A8:15:7F:5A:04:BF:68:D7:71:57:7A:8F Certificate issuer: /CN=43ca7f3f65d2947af94f398bb3c7c9c320019084 Certificate serial: 019B7E386FF3047B047DE2BA26F73A8FEC45 Authority key identifier: 43:CA:7F:3F:65:D2:94:7A:F9:4F:39:8B:B3:C7:C9:C3:20:01:90:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q8p_P2XSlHr5TzmLs8fJwyABkIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/f6cf44-66d3-4f0b-8132-d53811fbd7b0/1/rhstuAH1RjeoFX9aBL9o13FXeo8.roa Signing time: Fri 02 Jan 2026 10:19:46 +0000 ROA not before: Fri 02 Jan 2026 10:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42093 IP address blocks: 146.19.214.0/24 maxlen: 24 178.251.24.0/21 maxlen: 21 185.10.156.0/22 maxlen: 24 185.10.158.0/24 maxlen: 24 185.218.224.0/24 maxlen: 24 195.22.100.0/22 maxlen: 22 195.253.241.0/24 maxlen: 24 2a00:1938::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/f6cf44-66d3-4f0b-8132-d53811fbd7b0/1/Q8p_P2XSlHr5TzmLs8fJwyABkIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/58/f6cf44-66d3-4f0b-8132-d53811fbd7b0/1/Q8p_P2XSlHr5TzmLs8fJwyABkIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Q8p_P2XSlHr5TzmLs8fJwyABkIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:6f:f3:04:7b:04:7d:e2:ba:26:f7:3a:8f:ec:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43ca7f3f65d2947af94f398bb3c7c9c320019084 Validity Not Before: Jan 2 10:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae1b2db801f54637a8157f5a04bf68d771577a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:9e:6b:00:a3:8b:a4:93:d1:fd:41:56:bc: f3:c9:cd:fd:0a:f7:bc:80:77:29:bc:7d:f4:ac:71: e1:c4:e4:03:ff:1c:97:6a:ea:5b:6c:01:1e:13:a1: 34:9c:4c:17:cf:40:3d:83:2d:c4:3d:10:99:a6:96: 97:53:00:a2:c4:e7:77:6e:f7:6a:25:45:63:f2:3f: fb:c8:3a:e8:cd:84:af:0f:52:3e:aa:0b:e3:1d:4c: 70:a5:61:f7:27:5a:d3:01:c5:6c:e9:0b:a0:36:a3: f2:7b:be:1d:14:83:41:c0:a7:23:67:41:95:d9:32: 6e:fd:7a:b8:74:69:6b:3f:90:f2:04:b3:2a:66:a0: 58:02:73:8e:b2:bc:b0:da:ab:5a:bd:32:23:12:1f: 04:ff:51:1c:ea:11:48:55:79:7e:8a:fe:bd:f1:11: bf:23:65:31:1e:0b:a8:f4:60:03:51:41:5f:b3:ba: c4:42:ff:79:d0:fd:4e:14:89:77:74:a5:43:87:16: 42:30:90:1f:6d:2d:8a:23:70:bd:be:dc:89:3b:d5: 68:ff:bd:dd:87:ab:e7:54:fe:92:78:62:d7:ba:86: 72:c7:51:71:a1:61:3f:86:82:04:19:39:85:e1:75: 0d:ec:66:30:3e:66:28:96:c7:07:e1:63:2d:c4:4c: 81:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:1B:2D:B8:01:F5:46:37:A8:15:7F:5A:04:BF:68:D7:71:57:7A:8F X509v3 Authority Key Identifier: keyid:43:CA:7F:3F:65:D2:94:7A:F9:4F:39:8B:B3:C7:C9:C3:20:01:90:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8p_P2XSlHr5TzmLs8fJwyABkIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f6cf44-66d3-4f0b-8132-d53811fbd7b0/1/rhstuAH1RjeoFX9aBL9o13FXeo8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f6cf44-66d3-4f0b-8132-d53811fbd7b0/1/Q8p_P2XSlHr5TzmLs8fJwyABkIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.214.0/24 178.251.24.0/21 185.10.156.0/22 185.218.224.0/24 195.22.100.0/22 195.253.241.0/24 IPv6: 2a00:1938::/32 Signature Algorithm: sha256WithRSAEncryption 89:05:ba:02:76:3e:b0:1a:45:3e:23:fa:2a:19:ad:f6:54:3a: 45:b0:1a:39:b3:c9:fa:bb:86:36:c1:ed:ba:40:a9:bd:15:39: 7f:4b:2b:2a:aa:96:14:b9:0a:ea:29:a1:57:9a:eb:29:23:93: e6:16:fd:d2:c0:fc:33:e4:fb:0c:f3:a2:a3:53:34:8a:44:33: 1f:a5:7c:8e:4f:6e:07:cf:75:cc:e8:a9:26:dd:ae:17:fb:96: 99:03:35:d3:de:96:d4:0e:55:49:8e:5e:c6:2b:d8:9a:8f:b0: e5:b2:58:26:81:7a:a0:79:ff:15:64:a1:b1:30:bc:e1:7c:5a: 5e:9f:cd:57:91:d6:ac:67:ec:e0:06:98:d0:60:d3:d0:bb:23: 56:36:03:9b:e3:84:99:7e:aa:b7:f4:f2:ca:a4:05:e3:d3:f8: b7:cb:a7:e4:e7:9e:52:62:94:ba:bb:a4:82:90:79:61:a3:91: fe:d9:cd:c3:18:c1:85:4d:63:77:53:7a:5e:60:75:30:ad:ee: a5:ba:b1:ab:fc:ca:f4:08:f9:9c:73:01:5e:11:f0:1b:1a:18: f0:ab:8a:59:90:11:0c:47:50:b4:cf:e9:28:d4:5f:8c:57:ec: 30:82:26:e2:b5:4d:ab:94:e9:05:f2:43:d5:aa:7a:0b:53:a3: 3e:3e:2b:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt+OG/zBHsEfeK6Jvc6j+xFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzY2E3ZjNmNjVkMjk0N2FmOTRmMzk4YmIzYzdjOWMzMjAw MTkwODQwHhcNMjYwMTAyMTAxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTFiMmRiODAxZjU0NjM3YTgxNTdmNWEwNGJmNjhkNzcxNTc3YThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gmeawCji6ST0f1BVrzzyc39Cve8 gHcpvH30rHHhxOQD/xyXaupbbAEeE6E0nEwXz0A9gy3EPRCZppaXUwCixOd3bvdq JUVj8j/7yDrozYSvD1I+qgvjHUxwpWH3J1rTAcVs6QugNqPye74dFINBwKcjZ0GV 2TJu/Xq4dGlrP5DyBLMqZqBYAnOOsryw2qtavTIjEh8E/1Ec6hFIVXl+iv698RG/ I2UxHguo9GADUUFfs7rEQv950P1OFIl3dKVDhxZCMJAfbS2KI3C9vtyJO9Vo/73d h6vnVP6SeGLXuoZyx1FxoWE/hoIEGTmF4XUN7GYwPmYolscH4WMtxEyBaQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFK4bLbgB9UY3qBV/WgS/aNdxV3qPMB8GA1UdIwQY MBaAFEPKfz9l0pR6+U85i7PHycMgAZCEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUThwX1AyWFNsSHI1VHptTHM4Zkp3eUFCa0lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9mNmNmNDQtNjZkMy00ZjBiLTgxMzIt ZDUzODExZmJkN2IwLzEvcmhzdHVBSDFSamVvRlg5YUJMOW8xM0ZYZW84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9mNmNmNDQtNjZkMy00ZjBiLTgxMzItZDUzODExZmJkN2Iw LzEvUThwX1AyWFNsSHI1VHptTHM4Zkp3eUFCa0lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAkhPWAwQD svsYAwQCuQqcAwQAudrgAwQCwxZkAwQAw/3xMA0EAgACMAcDBQAqABk4MA0GCSqG SIb3DQEBCwUAA4IBAQCJBboCdj6wGkU+I/oqGa32VDpFsBo5s8n6u4Y2we26QKm9 FTl/SysqqpYUuQrqKaFXmuspI5PmFv3SwPwz5PsM86KjUzSKRDMfpXyOT24Hz3XM 6Kkm3a4X+5aZAzXT3pbUDlVJjl7GK9iaj7DlslgmgXqgef8VZKGxMLzhfFpen81X kdasZ+zgBpjQYNPQuyNWNgOb44SZfqq39PLKpAXj0/i3y6fk555SYpS6u6SCkHlh o5H+2c3DGMGFTWN3U3peYHUwre6lurGr/Mr0CPmccwFeEfAbGhjwq4pZkBEMR1C0 z+ko1F+MV+wwgibitU2rlOkF8kPVqnoLU6M+PitX -----END CERTIFICATE-----Generated at Mon Jan 26 01:42:26 2026 by rpki-client