This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/hTUAMk4ivW-zcf6qV0iH6m50Tko.roa File: hTUAMk4ivW-zcf6qV0iH6m50Tko.roa (raw, json) Hash identifier: VBCrCjN466HYq/3fbWnNr2nU6AFrUJpSz4d+MsDsH6k= Subject key identifier: 85:35:00:32:4E:22:BD:6F:B3:71:FE:AA:57:48:87:EA:6E:74:4E:4A Certificate issuer: /CN=b921277f3e7954a4af5520a99042fb0893af804d Certificate serial: 019B7E385D44786F219B61340DD5EA979574 Authority key identifier: B9:21:27:7F:3E:79:54:A4:AF:55:20:A9:90:42:FB:08:93:AF:80:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/hTUAMk4ivW-zcf6qV0iH6m50Tko.roa Signing time: Fri 02 Jan 2026 10:19:41 +0000 ROA not before: Fri 02 Jan 2026 10:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205107 IP address blocks: 185.230.156.0/24 maxlen: 24 2001:678:570::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/uSEnfz55VKSvVSCpkEL7CJOvgE0.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/uSEnfz55VKSvVSCpkEL7CJOvgE0.mft rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:5d:44:78:6f:21:9b:61:34:0d:d5:ea:97:95:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b921277f3e7954a4af5520a99042fb0893af804d Validity Not Before: Jan 2 10:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=853500324e22bd6fb371feaa574887ea6e744e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:a6:53:5c:af:f1:0b:1c:25:27:f0:21:ea: 8f:bb:d5:7e:e8:f9:ca:72:b2:d4:6b:bb:fd:dc:5d: 04:00:23:ce:a4:20:1b:db:8d:67:0b:83:a6:2b:48: 24:49:fa:2f:f5:49:ff:37:18:ba:c0:44:f6:8a:bb: a9:64:90:8f:a0:a5:be:a9:96:77:91:f8:f5:e2:a5: f1:6e:ba:d2:36:65:69:25:0f:ce:76:68:32:bd:17: 99:39:80:28:a7:02:c8:ef:e8:73:6a:0f:5e:12:b5: e7:14:6d:63:a9:50:73:07:70:5b:2b:23:98:e0:59: ad:16:39:d6:0b:d6:5b:98:3c:e6:b1:79:8a:5f:b1: 5a:95:f6:32:73:0d:e3:38:cf:7c:87:0c:13:c2:b0: dd:1b:bf:bb:a8:9c:11:c5:04:2a:98:64:02:03:79: fc:9b:7a:c1:b6:55:54:37:e9:cf:72:17:ad:ac:9a: 92:74:85:55:4b:f2:e2:4c:c4:31:5b:78:50:84:df: e8:05:5f:d4:25:ed:50:24:69:19:6c:a5:a0:25:57: ff:20:e1:94:0a:46:2e:43:ec:c6:82:38:4b:29:12: c1:c0:c6:6c:28:80:84:2c:9c:52:bf:8d:d7:30:2e: f2:34:3b:83:d0:de:dd:e3:15:8f:56:1e:ee:6e:44: 3f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:35:00:32:4E:22:BD:6F:B3:71:FE:AA:57:48:87:EA:6E:74:4E:4A X509v3 Authority Key Identifier: keyid:B9:21:27:7F:3E:79:54:A4:AF:55:20:A9:90:42:FB:08:93:AF:80:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uSEnfz55VKSvVSCpkEL7CJOvgE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/hTUAMk4ivW-zcf6qV0iH6m50Tko.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/8ccbcc-cd51-44ae-8f05-36fd233514f9/1/uSEnfz55VKSvVSCpkEL7CJOvgE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.156.0/24 IPv6: 2001:678:570::/48 Signature Algorithm: sha256WithRSAEncryption 79:66:a8:e6:f7:9e:d1:29:b2:5f:37:d9:70:7a:f1:f7:ff:25: e5:27:08:ac:36:e5:84:21:77:97:1e:e2:75:63:a8:93:f6:24: 5b:b9:c8:d8:cc:8b:d5:f4:a7:40:ea:ca:04:ea:da:25:f8:26: 13:c0:9c:fa:9e:8f:34:4c:e8:d9:d2:52:1c:9d:fe:1e:9e:0b: c7:bf:ad:5e:68:e9:0a:16:40:97:89:5f:e5:21:da:ea:86:58: 82:ae:fe:ae:17:a1:85:ac:f7:c8:89:85:3e:36:15:33:42:2e: 7f:75:84:d0:ee:fd:94:b8:e7:cd:df:63:c7:d0:25:ac:94:da: a6:c4:a1:67:86:c8:ff:44:11:cf:6d:c8:b7:28:12:71:e2:92: b8:76:bc:ca:5b:1c:97:28:68:d0:95:e5:b8:2e:d4:6d:71:98: 22:97:6f:b0:8f:1b:60:4f:29:a5:90:09:fe:45:45:d3:9c:34: 51:da:50:68:d1:58:d4:7c:2a:fb:56:cc:23:8c:6f:47:be:06: 9a:c7:3d:0e:10:5b:22:94:32:46:27:0c:35:5d:31:40:36:1c: 23:66:08:6e:34:62:3f:d7:ef:18:41:89:ef:54:a4:67:3e:51: 7a:6b:d2:c8:08:fa:c2:2c:7a:83:87:05:96:ec:2e:ef:28:d8: a5:b7:c5:0e -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+OF1EeG8hm2E0DdXql5V0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5MjEyNzdmM2U3OTU0YTRhZjU1MjBhOTkwNDJmYjA4OTNh ZjgwNGQwHhcNMjYwMTAyMTAxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTM1MDAzMjRlMjJiZDZmYjM3MWZlYWE1NzQ4ODdlYTZlNzQ0ZTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxL6mU1yv8QscJSfwIeqPu9V+6PnK crLUa7v93F0EACPOpCAb241nC4OmK0gkSfov9Un/Nxi6wET2irupZJCPoKW+qZZ3 kfj14qXxbrrSNmVpJQ/OdmgyvReZOYAopwLI7+hzag9eErXnFG1jqVBzB3BbKyOY 4FmtFjnWC9ZbmDzmsXmKX7FalfYycw3jOM98hwwTwrDdG7+7qJwRxQQqmGQCA3n8 m3rBtlVUN+nPchetrJqSdIVVS/LiTMQxW3hQhN/oBV/UJe1QJGkZbKWgJVf/IOGU CkYuQ+zGgjhLKRLBwMZsKICELJxSv43XMC7yNDuD0N7d4xWPVh7ubkQ/swIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIU1ADJOIr1vs3H+qldIh+pudE5KMB8GA1UdIwQY MBaAFLkhJ38+eVSkr1UgqZBC+wiTr4BNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVNFbmZ6NTVWS1N2VlNDcGtFTDdDSk92Z0UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84Y2NiY2MtY2Q1MS00NGFlLThmMDUt MzZmZDIzMzUxNGY5LzEvaFRVQU1rNGl2Vy16Y2Y2cVYwaUg2bTUwVGtvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi84Y2NiY2MtY2Q1MS00NGFlLThmMDUtMzZmZDIzMzUxNGY5 LzEvdVNFbmZ6NTVWS1N2VlNDcGtFTDdDSk92Z0UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAueacMA8E AgACMAkDBwAgAQZ4BXAwDQYJKoZIhvcNAQELBQADggEBAHlmqOb3ntEpsl832XB6 8ff/JeUnCKw25YQhd5ce4nVjqJP2JFu5yNjMi9X0p0DqygTq2iX4JhPAnPqejzRM 6NnSUhyd/h6eC8e/rV5o6QoWQJeJX+Uh2uqGWIKu/q4XoYWs98iJhT42FTNCLn91 hNDu/ZS4583fY8fQJayU2qbEoWeGyP9EEc9tyLcoEnHikrh2vMpbHJcoaNCV5bgu 1G1xmCKXb7CPG2BPKaWQCf5FRdOcNFHaUGjRWNR8KvtWzCOMb0e+BprHPQ4QWyKU MkYnDDVdMUA2HCNmCG40Yj/X7xhBie9UpGc+UXpr0sgI+sIseoOHBZbsLu8o2KW3 xQ4= -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:41 2026 by rpki-client