This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/59HvWrjKihKr9RdDPWkA9dnGxCc.roa File: 59HvWrjKihKr9RdDPWkA9dnGxCc.roa (raw, json) Hash identifier: MXCBO7VfqSGhC4hgg48aORNjhS44IB2miv5A3hBaQlg= Subject key identifier: E7:D1:EF:5A:B8:CA:8A:12:AB:F5:17:43:3D:69:00:F5:D9:C6:C4:27 Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Certificate serial: 019B79ECF5A3650B4F00D02ADC7D8A704EE2 Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/59HvWrjKihKr9RdDPWkA9dnGxCc.roa Signing time: Thu 01 Jan 2026 14:18:51 +0000 ROA not before: Thu 01 Jan 2026 14:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205403 IP address blocks: 145.14.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.mft rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:f5:a3:65:0b:4f:00:d0:2a:dc:7d:8a:70:4e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff Validity Not Before: Jan 1 14:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7d1ef5ab8ca8a12abf517433d6900f5d9c6c427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:da:53:56:00:e1:f6:7d:ed:f5:23:c5:88:f2: 09:ed:19:c2:38:11:76:52:af:f0:f4:3a:48:6d:d8: a2:35:3c:57:36:c9:73:84:54:74:11:33:5a:e1:07: 65:b7:38:13:36:dd:64:2a:f4:66:3e:c8:72:9c:fd: 8a:70:06:e9:ef:ce:e6:39:83:42:95:ee:ba:d9:4d: 20:98:6a:9b:d0:8a:f7:17:25:41:52:1f:f2:d2:fd: 89:ff:5b:54:ba:43:37:82:42:f5:fa:3a:49:74:fa: b5:1e:d6:67:ee:57:ec:02:d9:4f:af:d2:69:ab:c8: 88:3f:79:31:a2:44:65:ff:d8:68:26:50:b5:ab:d3: dd:5c:4a:e2:2b:e0:72:54:8f:5e:d2:8f:f2:dc:66: ed:3a:21:27:fe:38:a2:eb:0a:9d:3d:55:d2:3b:2b: ca:5d:4d:31:b1:e2:b0:96:51:71:28:3c:5a:33:72: fe:6d:6e:12:26:4e:2b:9d:6a:92:ab:85:02:e2:34: 7d:56:19:d3:cc:a7:c3:27:5a:4c:1d:50:a0:ad:a6: dd:a5:21:1d:30:68:f4:05:5e:63:97:e6:52:c7:d0: ac:0c:94:1a:ed:01:db:44:f2:e9:72:5d:ba:57:74: 19:06:98:ca:43:f2:f4:88:79:b5:25:02:89:ca:f7: 2c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D1:EF:5A:B8:CA:8A:12:AB:F5:17:43:3D:69:00:F5:D9:C6:C4:27 X509v3 Authority Key Identifier: keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/59HvWrjKihKr9RdDPWkA9dnGxCc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.14.6.0/24 Signature Algorithm: sha256WithRSAEncryption 57:1d:ee:92:11:80:80:27:c2:b2:b6:fa:d2:48:81:2c:50:53: b3:2f:88:c2:83:21:eb:5f:55:e7:5f:a8:4e:0e:a1:93:85:64: 6b:82:f6:d4:d0:c3:2a:71:7e:22:6b:93:21:c9:bc:c6:28:4b: 21:32:f1:1d:2e:dd:14:af:ac:48:c3:68:aa:c9:27:45:61:13: 3b:e5:19:24:ca:cf:0d:32:53:70:9b:2e:a6:fe:40:97:ec:35: a4:8d:5a:dd:23:43:6d:6b:aa:8f:8a:03:ca:aa:7a:70:ab:90: 18:77:f8:a8:08:45:0d:ed:58:a8:1d:96:fd:4c:ed:bd:26:09: eb:50:9f:b3:eb:44:1a:90:67:ad:d9:80:45:55:ec:88:63:70: 5b:58:32:c5:da:b4:c5:a7:bc:3a:3b:43:16:b7:06:ee:b4:95: b5:82:f7:ac:20:03:d8:08:3e:ef:b9:38:26:09:ff:7a:3c:75: ca:71:88:e9:10:83:87:85:c3:5f:22:ca:dc:9c:2e:01:f0:b5: 39:f9:a4:18:dd:2c:6b:3a:b4:59:10:90:9f:0b:d8:e8:ca:6a: ae:df:8a:45:7e:6d:da:33:44:5e:57:5c:c0:b3:eb:b8:c2:50: 37:6c:52:87:16:a2:5c:ff:63:17:c9:1b:18:14:38:9f:76:e6: 14:42:da:02 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57PWjZQtPANAq3H2KcE7iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2IwNmJmNDEzMDBkYzRkMzBmM2QwZTE4MGM5Yjk1ZDJi Y2RkZmYwHhcNMjYwMTAxMTQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2QxZWY1YWI4Y2E4YTEyYWJmNTE3NDMzZDY5MDBmNWQ5YzZjNDI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA39pTVgDh9n3t9SPFiPIJ7RnCOBF2 Uq/w9DpIbdiiNTxXNslzhFR0ETNa4QdltzgTNt1kKvRmPshynP2KcAbp787mOYNC le662U0gmGqb0Ir3FyVBUh/y0v2J/1tUukM3gkL1+jpJdPq1HtZn7lfsAtlPr9Jp q8iIP3kxokRl/9hoJlC1q9PdXEriK+ByVI9e0o/y3GbtOiEn/jii6wqdPVXSOyvK XU0xseKwllFxKDxaM3L+bW4SJk4rnWqSq4UC4jR9VhnTzKfDJ1pMHVCgrabdpSEd MGj0BV5jl+ZSx9CsDJQa7QHbRPLpcl26V3QZBpjKQ/L0iHm1JQKJyvcsbQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOfR71q4yooSq/UXQz1pAPXZxsQnMB8GA1UdIwQY MBaAFBx7Br9BMA3E0w89DhgMm5XSvN3/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAt MjRmZGRjNmQxNDdiLzEvNTlIdldyaktpaEtyOVJkRFBXa0E5ZG5HeENjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83MDJiMjgtZTE1OC00MGMwLTgzMzAtMjRmZGRjNmQxNDdi LzEvSEhzR3YwRXdEY1RURHowT0dBeWJsZEs4M2Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkQ4GMA0G CSqGSIb3DQEBCwUAA4IBAQBXHe6SEYCAJ8KytvrSSIEsUFOzL4jCgyHrX1XnX6hO DqGThWRrgvbU0MMqcX4ia5MhybzGKEshMvEdLt0Ur6xIw2iqySdFYRM75Rkkys8N MlNwmy6m/kCX7DWkjVrdI0Nta6qPigPKqnpwq5AYd/ioCEUN7VioHZb9TO29Jgnr UJ+z60QakGet2YBFVeyIY3BbWDLF2rTFp7w6O0MWtwbutJW1gvesIAPYCD7vuTgm Cf96PHXKcYjpEIOHhcNfIsrcnC4B8LU5+aQY3SxrOrRZEJCfC9joymqu34pFfm3a M0ReV1zAs+u4wlA3bFKHFqJc/2MXyRsYFDifduYUQtoC -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:42 2026 by rpki-client