This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/hjkC3iRNt0avWzBUq8AMXQkI3Ac.roa File: hjkC3iRNt0avWzBUq8AMXQkI3Ac.roa (raw, json) Hash identifier: FNoBVQ1K94n8J6Ws1ILAfrIE/RyDHH6bUB5I7oyTaEI= Subject key identifier: 86:39:02:DE:24:4D:B7:46:AF:5B:30:54:AB:C0:0C:5D:09:08:DC:07 Certificate issuer: /CN=661691ca9c58d0859b6b870230b0f581be66a58a Certificate serial: 019B76EB0AFDD9EA3FEA9FA4A714C1E2064F Authority key identifier: 66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/hjkC3iRNt0avWzBUq8AMXQkI3Ac.roa Signing time: Thu 01 Jan 2026 00:17:53 +0000 ROA not before: Thu 01 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12874 IP address blocks: 45.84.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0a:fd:d9:ea:3f:ea:9f:a4:a7:14:c1:e2:06:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=661691ca9c58d0859b6b870230b0f581be66a58a Validity Not Before: Jan 1 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=863902de244db746af5b3054abc00c5d0908dc07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2b:f3:8a:a0:e7:91:9b:94:7c:78:86:d1:60: b2:d6:48:80:49:b1:fe:3c:6d:ec:b8:5f:9e:44:fd: 1e:6a:59:24:3a:78:1f:4d:56:e7:dd:dc:b5:0d:2f: 8d:b0:6d:72:6d:c9:f7:25:fa:11:b1:35:44:f4:c9: 93:f0:a6:ea:89:da:12:7f:f3:cf:e4:40:0f:1b:b8: 64:25:51:91:f0:9f:47:9c:e0:7a:a6:68:77:46:32: ba:d4:97:ee:6c:87:4b:0e:a1:5b:8e:0e:d7:de:68: 2b:43:9f:46:66:45:f6:01:a7:80:11:af:61:1a:f3: 93:b8:49:5a:e6:1c:ad:0b:e8:03:aa:a9:7d:4d:70: 29:df:78:93:07:9a:5c:8f:85:4b:1b:ca:1d:c6:dd: a4:ab:83:aa:cb:46:5d:ba:77:3b:30:34:c9:10:c3: aa:23:c3:e0:42:90:44:05:89:71:9e:52:16:2b:da: 0f:3c:bf:13:f6:82:36:57:60:6a:69:ad:6f:92:30: 8d:ec:86:35:c0:13:7a:b6:e8:50:99:c4:1f:4d:a4: b2:dd:87:43:a6:d3:a2:c4:0d:d8:8f:cb:91:f8:11: 52:6c:47:3c:96:4a:d4:72:c8:ac:c8:61:10:bc:ef: 7d:1f:42:6d:0b:f0:3f:6a:47:f6:10:b3:14:5a:81: 40:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:39:02:DE:24:4D:B7:46:AF:5B:30:54:AB:C0:0C:5D:09:08:DC:07 X509v3 Authority Key Identifier: keyid:66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/hjkC3iRNt0avWzBUq8AMXQkI3Ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.195.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:d9:af:5c:22:29:af:3e:f0:91:10:19:90:6c:d4:1d:39:45: d3:85:5b:f2:da:88:76:e1:21:ff:99:0f:2c:99:43:83:4f:16: 5e:93:19:eb:6b:66:ca:b6:c8:23:4b:54:30:97:52:59:b5:54: 62:8d:cb:87:d1:13:33:e8:ec:ac:5a:13:d2:a7:18:98:6a:6e: 70:de:f4:ce:28:de:80:c1:d7:d6:07:8f:e5:23:db:98:42:fe: 47:38:be:ef:f5:f6:a1:21:93:b4:6f:c6:2d:4f:7e:80:25:90: 59:35:35:ee:b7:1c:b4:dd:3a:11:96:2e:77:98:ab:e0:45:2b: 96:3b:8e:8a:47:7d:ce:e8:85:00:db:06:fb:f4:35:1e:5c:7d: e8:58:68:a4:f0:6c:79:d8:d9:c9:f1:50:1b:74:58:04:22:d7: c4:1f:37:86:47:bc:be:12:c8:8d:d2:99:08:77:01:45:c0:a2: 4e:ac:da:15:3b:d5:a9:c2:2e:2e:51:ba:1a:32:57:7f:07:56: 0b:5f:9c:9d:d5:aa:05:46:cb:82:73:7a:e4:a2:a4:c1:26:e7: aa:93:06:49:03:ac:5b:67:73:b5:2b:8a:16:f5:c6:ee:a8:ce: d4:9b:c1:cc:95:6f:77:f5:03:0b:64:15:ec:c5:ff:67:4a:d7: 8f:ba:87:90 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26wr92eo/6p+kpxTB4gZPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MTY5MWNhOWM1OGQwODU5YjZiODcwMjMwYjBmNTgxYmU2 NmE1OGEwHhcNMjYwMTAxMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjM5MDJkZTI0NGRiNzQ2YWY1YjMwNTRhYmMwMGM1ZDA5MDhkYzA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6yvziqDnkZuUfHiG0WCy1kiASbH+ PG3suF+eRP0ealkkOngfTVbn3dy1DS+NsG1ybcn3JfoRsTVE9MmT8KbqidoSf/PP 5EAPG7hkJVGR8J9HnOB6pmh3RjK61JfubIdLDqFbjg7X3mgrQ59GZkX2AaeAEa9h GvOTuEla5hytC+gDqql9TXAp33iTB5pcj4VLG8odxt2kq4Oqy0Zdunc7MDTJEMOq I8PgQpBEBYlxnlIWK9oPPL8T9oI2V2Bqaa1vkjCN7IY1wBN6tuhQmcQfTaSy3YdD ptOixA3Yj8uR+BFSbEc8lkrUcsisyGEQvO99H0JtC/A/akf2ELMUWoFAFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIY5At4kTbdGr1swVKvADF0JCNwHMB8GA1UdIwQY MBaAFGYWkcqcWNCFm2uHAjCw9YG+ZqWKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmhhUnlweFkwSVdiYTRjQ01MRDFnYjVtcFlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84ZjAyNTktOWJjOC00ZmRjLTkyNmQt MWE4MGRhZmZkNzk2LzEvaGprQzNpUk50MGF2V3pCVXE4QU1YUWtJM0FjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS84ZjAyNTktOWJjOC00ZmRjLTkyNmQtMWE4MGRhZmZkNzk2 LzEvWmhhUnlweFkwSVdiYTRjQ01MRDFnYjVtcFlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVTDMA0G CSqGSIb3DQEBCwUAA4IBAQCc2a9cIimvPvCREBmQbNQdOUXThVvy2oh24SH/mQ8s mUODTxZekxnra2bKtsgjS1Qwl1JZtVRijcuH0RMz6OysWhPSpxiYam5w3vTOKN6A wdfWB4/lI9uYQv5HOL7v9fahIZO0b8YtT36AJZBZNTXutxy03ToRli53mKvgRSuW O46KR33O6IUA2wb79DUeXH3oWGik8Gx52NnJ8VAbdFgEItfEHzeGR7y+EsiN0pkI dwFFwKJOrNoVO9Wpwi4uUboaMld/B1YLX5yd1aoFRsuCc3rkoqTBJueqkwZJA6xb Z3O1K4oW9cbuqM7Um8HMlW939QMLZBXsxf9nStePuoeQ -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:41 2026 by rpki-client