This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/hegGL8-uV3BRrn6gNDyPdNyufUY.roa File: hegGL8-uV3BRrn6gNDyPdNyufUY.roa (raw, json) Hash identifier: NdLsZSvEOQeFetn5mo5zqCP90MbZ8FM6WmwEiozHCyc= Subject key identifier: 85:E8:06:2F:CF:AE:57:70:51:AE:7E:A0:34:3C:8F:74:DC:AE:7D:46 Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511 Certificate serial: 019B7C801CCC448BEA5133EC1749B852EB8E Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/hegGL8-uV3BRrn6gNDyPdNyufUY.roa Signing time: Fri 02 Jan 2026 02:18:49 +0000 ROA not before: Fri 02 Jan 2026 02:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39771 IP address blocks: 195.6.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.mft rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:1c:cc:44:8b:ea:51:33:ec:17:49:b8:52:eb:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511 Validity Not Before: Jan 2 02:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85e8062fcfae577051ae7ea0343c8f74dcae7d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:90:f3:bd:16:12:85:ae:f7:8b:07:f6:f1:e8: e8:1f:42:fa:e1:37:e0:4b:b1:8d:c4:d8:9d:88:93: 5b:9a:23:b8:08:d2:0b:9c:67:1e:3c:b4:a5:30:96: 83:b4:15:36:eb:02:1e:35:28:26:66:9a:83:eb:3c: 0f:c9:53:d6:7f:c9:1b:b7:d7:2f:3a:2b:07:57:c6: bf:4c:99:fd:64:95:f8:bc:0e:63:64:c9:a5:bc:88: 18:6e:ba:f1:7f:22:12:cc:02:c4:2f:48:73:ae:16: 5f:06:06:31:53:41:e8:be:96:81:1a:ee:d0:be:12: 3d:bc:10:b1:4c:c0:22:29:05:04:41:f4:24:d4:19: b7:7e:6b:0c:14:00:35:3a:3f:8e:79:5e:b0:e2:1c: 6d:2d:71:19:62:2e:2b:91:46:9d:91:81:b5:cc:79: 22:42:68:78:81:fc:b8:19:e4:42:d5:4d:07:a3:ff: 19:b0:55:d2:bb:33:d1:d4:4a:9a:72:a9:92:9c:d3: f1:d4:ee:e0:0e:03:1f:74:2a:bd:30:7f:03:fd:ea: 33:c5:2e:78:73:15:9a:5d:86:37:26:c9:d6:de:eb: 19:59:06:06:71:51:67:11:f1:95:39:e7:69:1e:da: fd:16:e8:41:47:fd:12:51:82:77:fb:dc:69:7e:a0: dc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E8:06:2F:CF:AE:57:70:51:AE:7E:A0:34:3C:8F:74:DC:AE:7D:46 X509v3 Authority Key Identifier: keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/hegGL8-uV3BRrn6gNDyPdNyufUY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.6.59.0/24 Signature Algorithm: sha256WithRSAEncryption 99:a9:76:74:2a:37:04:eb:3b:69:da:1e:9b:65:0d:c0:a6:df: cf:ff:c8:ca:f8:6f:ae:5e:49:ee:93:4a:78:d3:1b:33:61:86: 25:05:de:f0:31:de:d7:98:f3:4d:b5:ea:ac:c1:69:9b:48:c4: bb:44:e4:b4:e4:89:41:1e:36:28:86:37:5e:21:67:6c:99:b0: 4a:39:75:f3:b3:ca:3b:56:0c:ef:ee:d8:a3:23:0d:51:76:5b: b9:97:28:ec:96:b3:2e:b4:75:41:85:4b:d9:1b:63:9b:14:20: 73:1e:eb:1e:91:1e:c5:bc:9a:a1:3b:59:8d:5f:09:51:cc:1b: bd:da:35:61:ca:bf:ca:cb:73:66:11:03:98:34:a8:16:57:1e: 37:16:2b:79:80:83:08:d5:bc:3d:7f:48:71:6f:14:a9:7c:b2: b8:de:24:d9:2f:03:47:64:2d:de:01:6f:1c:5b:b8:95:0f:af: 26:f2:cc:5d:a0:ba:59:ab:b5:18:79:64:1a:20:a9:87:ba:60: c5:43:95:15:b7:03:fc:f9:d4:13:0a:25:2e:0f:0a:5f:ec:59: df:7d:3b:b7:49:83:c8:f5:68:32:eb:94:ae:2c:de:79:53:1c: 97:18:d5:69:86:7f:a3:e3:8a:d4:b5:34:7e:a6:a2:7f:f4:0f: e5:11:df:b9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gBzMRIvqUTPsF0m4UuuOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh MTA1MTEwHhcNMjYwMTAyMDIxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWU4MDYyZmNmYWU1NzcwNTFhZTdlYTAzNDNjOGY3NGRjYWU3ZDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZDzvRYSha73iwf28ejoH0L64Tfg S7GNxNidiJNbmiO4CNILnGcePLSlMJaDtBU26wIeNSgmZpqD6zwPyVPWf8kbt9cv OisHV8a/TJn9ZJX4vA5jZMmlvIgYbrrxfyISzALEL0hzrhZfBgYxU0HovpaBGu7Q vhI9vBCxTMAiKQUEQfQk1Bm3fmsMFAA1Oj+OeV6w4hxtLXEZYi4rkUadkYG1zHki Qmh4gfy4GeRC1U0Ho/8ZsFXSuzPR1EqacqmSnNPx1O7gDgMfdCq9MH8D/eozxS54 cxWaXYY3JsnW3usZWQYGcVFnEfGVOedpHtr9FuhBR/0SUYJ3+9xpfqDclQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIXoBi/PrldwUa5+oDQ8j3Tcrn1GMB8GA1UdIwQY MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt NDU5MzVmNTA2YTEyLzEvaGVnR0w4LXVWM0JScm42Z05EeVBkTnl1ZlVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwY7MA0G CSqGSIb3DQEBCwUAA4IBAQCZqXZ0KjcE6ztp2h6bZQ3Apt/P/8jK+G+uXknuk0p4 0xszYYYlBd7wMd7XmPNNteqswWmbSMS7ROS05IlBHjYohjdeIWdsmbBKOXXzs8o7 Vgzv7tijIw1Rdlu5lyjslrMutHVBhUvZG2ObFCBzHusekR7FvJqhO1mNXwlRzBu9 2jVhyr/Ky3NmEQOYNKgWVx43Fit5gIMI1bw9f0hxbxSpfLK43iTZLwNHZC3eAW8c W7iVD68m8sxdoLpZq7UYeWQaIKmHumDFQ5UVtwP8+dQTCiUuDwpf7FnffTu3SYPI 9Wgy65SuLN55UxyXGNVphn+j44rUtTR+pqJ/9A/lEd+5 -----END CERTIFICATE-----Generated at Sun Jan 25 19:02:39 2026 by rpki-client