This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hQSKHC4v0ASpyCYSJPcyFlgy0HA.roa File: hQSKHC4v0ASpyCYSJPcyFlgy0HA.roa (raw, json) Hash identifier: taL29xtXAqTB1HZK+F1NZvnI3UvNILO/ajMVQIS2zpM= Subject key identifier: 85:04:8A:1C:2E:2F:D0:04:A9:C8:26:12:24:F7:32:16:58:32:D0:70 Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83A8F43DEA0257DAF020E3AD81780D Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hQSKHC4v0ASpyCYSJPcyFlgy0HA.roa Signing time: Fri 02 Jan 2026 16:21:33 +0000 ROA not before: Fri 02 Jan 2026 16:21:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197309 IP address blocks: 37.230.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:a8:f4:3d:ea:02:57:da:f0:20:e3:ad:81:78:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85048a1c2e2fd004a9c8261224f732165832d070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e1:0f:48:ed:43:21:e3:dc:6b:be:04:a6:14: d8:c1:db:b8:78:0b:65:32:8a:b3:2a:e9:73:d1:19: 45:b2:23:b7:91:12:49:23:13:86:98:dc:c4:a4:a9: 7a:93:70:04:a5:4c:3f:94:5b:35:c7:9c:af:b3:2f: 3b:d7:e3:09:67:9d:08:90:0a:f4:ad:d6:91:8f:e6: 3f:17:91:2b:39:bd:b7:65:f7:2b:c0:7c:54:63:78: 30:ef:51:e7:1b:8e:80:d6:f8:00:d6:be:7b:92:2e: ff:b4:84:e7:70:31:ab:fe:c9:bc:75:27:8e:c7:f0: 88:6f:71:2e:08:38:48:93:1b:95:1a:b4:77:cf:2f: ab:fb:f9:fc:14:d4:65:63:fa:ef:97:e2:5f:96:f1: bd:7d:9f:28:bd:09:cf:0c:fc:7e:2e:d7:35:cb:df: e9:ab:4f:c3:d9:0f:0c:79:ad:cb:9d:ec:d9:8d:f2: bd:be:ce:e9:e7:d8:1d:f0:11:a4:94:76:02:b2:72: 3d:f0:7b:d4:4c:c1:ca:dc:84:62:e3:9b:41:f6:08: 9b:c4:62:f5:7b:90:13:00:54:14:a1:b6:6a:6b:b2: ee:ea:6c:c1:42:6d:7b:e9:42:3d:2a:2b:f3:bf:e4: d7:c5:22:10:9b:aa:1e:ff:fb:af:22:b9:f5:02:f2: a0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:04:8A:1C:2E:2F:D0:04:A9:C8:26:12:24:F7:32:16:58:32:D0:70 X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/hQSKHC4v0ASpyCYSJPcyFlgy0HA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.162.0/24 Signature Algorithm: sha256WithRSAEncryption 64:a3:8c:73:9f:0e:86:3f:ab:d0:e3:52:2d:fd:bd:66:a8:1d: 6f:4b:7f:41:dc:db:1b:ab:76:ad:cf:8f:30:1f:2a:0e:75:31: 18:a1:ad:b2:05:09:77:7f:1b:3f:75:80:1c:99:c9:4b:77:4f: 9f:e4:4a:24:f2:db:b9:01:5d:67:11:34:8c:ff:84:a4:81:c9: 06:ee:61:ad:a2:e5:89:12:ad:60:b5:ff:58:59:83:37:a8:e9: 6e:47:f6:20:de:0f:a5:2e:8b:d8:96:16:78:11:62:3d:68:2b: 51:6a:85:e0:7e:72:bf:e5:6c:5c:5a:16:90:88:fc:56:85:fc: 24:c5:6b:60:1a:5b:e9:ec:c9:21:8b:49:4f:ad:09:11:23:08: 95:41:8c:9b:6b:18:12:3b:19:ae:2a:23:38:89:aa:81:f1:a0: 8f:55:55:1f:ee:fe:cb:40:f4:89:e0:b1:d6:ae:ed:3b:b7:d5: 8e:4d:e4:a4:fa:24:b0:5e:2b:30:92:8c:69:d4:30:51:5a:60: 62:85:3a:b3:18:63:df:7c:40:da:ac:4d:b8:d0:70:d4:7b:c6: bb:f2:d6:a2:8e:5a:40:cf:46:b1:75:3b:20:04:c1:2d:ef:38: 09:73:7f:da:61:49:88:f7:66:fe:ae:3e:7d:19:93:e9:38:f8: 44:72:47:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g6j0PeoCV9rwIOOtgXgNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTA0OGExYzJlMmZkMDA0YTljODI2MTIyNGY3MzIxNjU4MzJkMDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+EPSO1DIePca74EphTYwdu4eAtl MoqzKulz0RlFsiO3kRJJIxOGmNzEpKl6k3AEpUw/lFs1x5yvsy871+MJZ50IkAr0 rdaRj+Y/F5ErOb23ZfcrwHxUY3gw71HnG46A1vgA1r57ki7/tITncDGr/sm8dSeO x/CIb3EuCDhIkxuVGrR3zy+r+/n8FNRlY/rvl+JflvG9fZ8ovQnPDPx+Ltc1y9/p q0/D2Q8Mea3LnezZjfK9vs7p59gd8BGklHYCsnI98HvUTMHK3IRi45tB9gibxGL1 e5ATAFQUobZqa7Lu6mzBQm176UI9Kivzv+TXxSIQm6oe//uvIrn1AvKgxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIUEihwuL9AEqcgmEiT3MhZYMtBwMB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvaFFTS0hDNHYwQVNweUNZU0pQY3lGbGd5MEhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeaiMA0G CSqGSIb3DQEBCwUAA4IBAQBko4xznw6GP6vQ41It/b1mqB1vS39B3Nsbq3atz48w HyoOdTEYoa2yBQl3fxs/dYAcmclLd0+f5Eok8tu5AV1nETSM/4SkgckG7mGtouWJ Eq1gtf9YWYM3qOluR/Yg3g+lLovYlhZ4EWI9aCtRaoXgfnK/5WxcWhaQiPxWhfwk xWtgGlvp7Mkhi0lPrQkRIwiVQYybaxgSOxmuKiM4iaqB8aCPVVUf7v7LQPSJ4LHW ru07t9WOTeSk+iSwXiswkoxp1DBRWmBihTqzGGPffEDarE240HDUe8a78taijlpA z0axdTsgBMEt7zgJc3/aYUmI92b+rj59GZPpOPhEckcW -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:18 2026 by rpki-client