This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/d6a9b1-552b-46ec-a31b-c5d0cb7b7df5/1/0HWY1HiU78_jJcF_XY596KUiIF4.roa File: 0HWY1HiU78_jJcF_XY596KUiIF4.roa (raw, json) Hash identifier: s5rOhCDiSQ/7qjHvDBXNK34Dzbz4UIZWaQSxS6aLAto= Subject key identifier: D0:75:98:D4:78:94:EF:CF:E3:25:C1:7F:5D:8E:7D:E8:A5:22:20:5E Certificate issuer: /CN=7927f6d0062a9766bd58f0d075c4f0d10257e606 Certificate serial: 019B22157264E30CBD312FA567C5CA8191FF Authority key identifier: 79:27:F6:D0:06:2A:97:66:BD:58:F0:D0:75:C4:F0:D1:02:57:E6:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eSf20AYql2a9WPDQdcTw0QJX5gY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/d6a9b1-552b-46ec-a31b-c5d0cb7b7df5/1/0HWY1HiU78_jJcF_XY596KUiIF4.roa Signing time: Mon 15 Dec 2025 12:56:29 +0000 ROA not before: Mon 15 Dec 2025 12:56:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198457 IP address blocks: 91.234.232.0/24 maxlen: 24 2001:678:1004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/d6a9b1-552b-46ec-a31b-c5d0cb7b7df5/1/eSf20AYql2a9WPDQdcTw0QJX5gY.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/d6a9b1-552b-46ec-a31b-c5d0cb7b7df5/1/eSf20AYql2a9WPDQdcTw0QJX5gY.mft rsync://rpki.ripe.net/repository/DEFAULT/eSf20AYql2a9WPDQdcTw0QJX5gY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:15:72:64:e3:0c:bd:31:2f:a5:67:c5:ca:81:91:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7927f6d0062a9766bd58f0d075c4f0d10257e606 Validity Not Before: Dec 15 12:56:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=d07598d47894efcfe325c17f5d8e7de8a522205e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b5:74:ea:08:3c:19:41:98:a4:4e:00:f8:3c: 43:4a:e4:75:d9:62:fa:ed:89:56:84:45:e7:3a:d0: d8:75:ec:58:f5:92:04:e6:58:fb:e4:bd:ec:f4:66: a9:83:e0:c1:3f:c0:ea:33:65:31:48:81:b3:6a:88: 2a:e7:54:7c:35:e2:3e:a7:ee:6b:8b:dd:55:ed:29: c6:71:80:50:ea:15:80:15:f6:03:af:7a:a4:eb:cd: bd:56:a9:6a:40:c9:e9:eb:50:21:3a:93:b8:80:e3: bd:cb:75:97:81:fd:09:8e:fb:fd:2c:d9:74:57:15: 64:99:ce:24:95:6b:77:fa:48:0c:d1:53:10:3c:61: c6:6d:51:cb:9d:9c:ea:dc:26:a6:0a:18:b6:d9:9d: 9a:1d:21:8d:af:7c:4e:a4:95:59:a4:42:b1:04:e9: 72:28:9e:cc:0f:36:c4:e2:3f:c8:b3:6f:46:51:75: a9:42:fc:da:75:06:93:09:a5:2c:34:46:2b:af:a6: 56:1d:6d:76:54:37:0b:b0:86:8a:cf:42:0f:40:71: 27:be:75:50:88:c3:e3:aa:23:23:f0:eb:2b:b1:7e: 04:e4:d8:7e:0b:2c:c5:a1:3a:75:4a:2c:0c:0b:f8: d5:2e:3d:58:70:04:83:d1:3b:00:0c:72:ca:87:5a: 5d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:75:98:D4:78:94:EF:CF:E3:25:C1:7F:5D:8E:7D:E8:A5:22:20:5E X509v3 Authority Key Identifier: keyid:79:27:F6:D0:06:2A:97:66:BD:58:F0:D0:75:C4:F0:D1:02:57:E6:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eSf20AYql2a9WPDQdcTw0QJX5gY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d6a9b1-552b-46ec-a31b-c5d0cb7b7df5/1/0HWY1HiU78_jJcF_XY596KUiIF4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d6a9b1-552b-46ec-a31b-c5d0cb7b7df5/1/eSf20AYql2a9WPDQdcTw0QJX5gY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.234.232.0/24 IPv6: 2001:678:1004::/48 Signature Algorithm: sha256WithRSAEncryption 60:46:37:06:44:c9:98:60:14:45:85:98:9e:ed:d3:5f:bf:6b: ac:4b:d2:84:45:3f:c5:fe:4a:21:e5:12:dd:a1:86:d1:84:74: c5:01:1c:c8:0f:39:c8:b7:46:b0:5b:53:d6:a1:4b:37:c9:1f: fb:6c:75:ce:4c:45:3e:80:2b:29:41:b1:6b:24:2d:76:ee:ca: 1c:22:6f:15:e6:03:98:1f:c4:19:3d:c2:8a:3a:e4:e4:3e:a8: af:ed:c9:f1:9a:9f:55:84:de:07:1f:3f:77:66:eb:a5:99:14: 27:2a:e9:2b:0c:0c:bd:03:e6:31:53:1b:7d:c7:e6:34:e0:2b: 6a:ac:1d:35:5a:9d:8a:98:e0:b0:8c:8e:ce:bd:e3:c4:05:5a: d7:0e:c0:e3:c5:2f:3d:77:58:51:70:be:1e:0b:e4:bb:e1:fd: 9d:84:4c:35:46:ca:44:ff:8b:c5:75:fe:c8:54:c3:a0:23:e6: cb:70:f1:d3:17:18:4c:18:a4:17:4e:5b:b3:f1:a9:25:d6:f9: 72:5a:6f:9b:f2:f6:b2:36:48:be:2b:a7:95:58:3e:b5:32:b9: db:46:3c:e2:1f:15:e8:a8:b5:58:42:74:57:19:22:69:c2:e7: e7:b0:2a:2d:50:46:c1:6f:5d:ba:5f:c7:b6:05:7e:bc:35:2c: fb:ad:9c:04 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZsiFXJk4wy9MS+lZ8XKgZH/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5MjdmNmQwMDYyYTk3NjZiZDU4ZjBkMDc1YzRmMGQxMDI1 N2U2MDYwHhcNMjUxMjE1MTI1NjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDc1OThkNDc4OTRlZmNmZTMyNWMxN2Y1ZDhlN2RlOGE1MjIyMDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLV06gg8GUGYpE4A+DxDSuR12WL6 7YlWhEXnOtDYdexY9ZIE5lj75L3s9Gapg+DBP8DqM2UxSIGzaogq51R8NeI+p+5r i91V7SnGcYBQ6hWAFfYDr3qk6829VqlqQMnp61AhOpO4gOO9y3WXgf0Jjvv9LNl0 VxVkmc4klWt3+kgM0VMQPGHGbVHLnZzq3CamChi22Z2aHSGNr3xOpJVZpEKxBOly KJ7MDzbE4j/Is29GUXWpQvzadQaTCaUsNEYrr6ZWHW12VDcLsIaKz0IPQHEnvnVQ iMPjqiMj8OsrsX4E5Nh+CyzFoTp1SiwMC/jVLj1YcASD0TsADHLKh1pdSwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFNB1mNR4lO/P4yXBf12OfeilIiBeMB8GA1UdIwQY MBaAFHkn9tAGKpdmvVjw0HXE8NECV+YGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZVNmMjBBWXFsMmE5V1BEUWRjVHcwUUpYNWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9kNmE5YjEtNTUyYi00NmVjLWEzMWIt YzVkMGNiN2I3ZGY1LzEvMEhXWTFIaVU3OF9qSmNGX1hZNTk2S1VpSUY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy9kNmE5YjEtNTUyYi00NmVjLWEzMWItYzVkMGNiN2I3ZGY1 LzEvZVNmMjBBWXFsMmE5V1BEUWRjVHcwUUpYNWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW+roMA8E AgACMAkDBwAgAQZ4EAQwDQYJKoZIhvcNAQELBQADggEBAGBGNwZEyZhgFEWFmJ7t 01+/a6xL0oRFP8X+SiHlEt2hhtGEdMUBHMgPOci3RrBbU9ahSzfJH/tsdc5MRT6A KylBsWskLXbuyhwibxXmA5gfxBk9woo65OQ+qK/tyfGan1WE3gcfP3dm66WZFCcq 6SsMDL0D5jFTG33H5jTgK2qsHTVanYqY4LCMjs6948QFWtcOwOPFLz13WFFwvh4L 5Lvh/Z2ETDVGykT/i8V1/shUw6Aj5stw8dMXGEwYpBdOW7PxqSXW+XJab5vy9rI2 SL4rp5VYPrUyudtGPOIfFeiotVhCdFcZImnC5+ewKi1QRsFvXbpfx7YFfrw1LPut nAQ= -----END CERTIFICATE-----Generated at Tue Dec 16 00:18:42 2025 by rpki-client