This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/hUmeN4RZKbsYYc_l4uCSd2PDCfo.roa File: hUmeN4RZKbsYYc_l4uCSd2PDCfo.roa (raw, json) Hash identifier: Tk0pGzYSdyHfAZRkeQDxs+AKgZCXk7MNPWm4TXjCtDA= Subject key identifier: 85:49:9E:37:84:59:29:BB:18:61:CF:E5:E2:E0:92:77:63:C3:09:FA Certificate issuer: /CN=6d7701d5850491f50299ef93f2d7409b78cd6c96 Certificate serial: 019B7AC8E54224C59FEF90332E2E7E36B57E Authority key identifier: 6D:77:01:D5:85:04:91:F5:02:99:EF:93:F2:D7:40:9B:78:CD:6C:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/hUmeN4RZKbsYYc_l4uCSd2PDCfo.roa Signing time: Thu 01 Jan 2026 18:19:04 +0000 ROA not before: Thu 01 Jan 2026 18:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45014 IP address blocks: 46.175.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/bXcB1YUEkfUCme-T8tdAm3jNbJY.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/bXcB1YUEkfUCme-T8tdAm3jNbJY.mft rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:e5:42:24:c5:9f:ef:90:33:2e:2e:7e:36:b5:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d7701d5850491f50299ef93f2d7409b78cd6c96 Validity Not Before: Jan 1 18:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85499e37845929bb1861cfe5e2e0927763c309fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:51:a8:52:6f:4d:f4:fc:df:42:ea:0e:3a:a3: 0e:88:e3:ad:14:f9:f3:91:1a:63:36:ff:c1:f6:3b: bc:7d:1f:ac:24:a3:aa:c9:75:fc:35:5f:1d:f3:39: 22:e4:5a:9f:8d:c5:9d:fc:73:96:76:69:66:3a:45: 0e:79:d8:44:01:61:fd:d3:73:74:92:5c:be:88:5a: bb:53:bc:c8:78:d5:4a:6d:bd:19:db:34:78:2f:1d: 29:d3:98:88:ea:78:c2:75:df:67:d7:4d:0a:11:a2: cc:44:c5:35:91:c9:ee:a5:98:6f:50:d9:e4:ef:ce: 7a:08:3e:c7:f1:94:eb:c2:9a:b6:5a:40:09:50:c3: 2b:c5:b5:47:5d:44:7e:f2:df:c7:67:20:1c:0a:53: 40:fb:df:4d:3a:68:0f:11:86:8d:b1:85:cf:13:33: 4e:6f:95:19:e5:ce:79:45:62:45:b0:54:cf:ba:64: 26:d1:b9:e7:92:c0:53:6b:22:1c:d0:6b:95:d9:65: 65:d2:f4:bb:3d:3c:86:12:a1:49:1c:10:58:e3:7e: f0:85:01:9f:82:7c:c8:e5:78:7e:1d:dc:55:18:79: 68:60:d9:ef:42:f6:eb:3c:db:e1:a1:ee:a6:7c:b4: c4:41:28:d5:2a:b7:71:bd:67:1a:fb:5a:9f:37:70: 21:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:49:9E:37:84:59:29:BB:18:61:CF:E5:E2:E0:92:77:63:C3:09:FA X509v3 Authority Key Identifier: keyid:6D:77:01:D5:85:04:91:F5:02:99:EF:93:F2:D7:40:9B:78:CD:6C:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXcB1YUEkfUCme-T8tdAm3jNbJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/hUmeN4RZKbsYYc_l4uCSd2PDCfo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/7f997c-07cf-44c2-bdf0-66a329b6afad/1/bXcB1YUEkfUCme-T8tdAm3jNbJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.175.13.0/24 Signature Algorithm: sha256WithRSAEncryption 40:ad:eb:34:fc:10:62:50:f8:3e:e9:ba:e9:e2:87:aa:ff:69: cf:af:8a:1c:f5:d0:f2:f7:96:85:ac:db:e7:b6:7f:2e:3c:7c: fc:3f:73:75:fc:34:cd:14:74:95:8d:42:75:0e:7d:cd:fe:a8: 2f:af:3c:45:cf:c5:ba:60:d3:5c:90:d5:fb:46:f9:9e:e4:aa: 89:7c:e1:e6:93:f0:ad:9b:01:4d:f9:a3:2a:8b:ba:70:98:55: 1a:56:fb:6d:09:fd:be:f4:02:74:08:e5:a6:19:0f:97:70:bd: c5:d4:bb:c6:12:90:05:15:cd:24:1f:ec:74:b3:62:cb:ce:02: 09:41:2c:2f:ad:40:52:9d:7b:7a:02:93:d6:98:94:25:af:30: 64:00:7d:2b:bc:e9:23:e4:10:d2:96:3b:ed:ac:99:f5:b4:10: 45:4a:ae:bc:cb:04:34:76:ca:f5:12:fd:29:ee:02:b6:47:53: 0b:76:08:09:fc:af:da:5c:09:b3:13:1a:dc:a4:b2:00:b0:57: 57:5d:44:f6:14:5a:95:7c:f9:6b:3e:24:9d:66:48:58:06:3e: 5b:61:f9:cc:02:21:11:0f:29:56:53:ba:3f:bb:1c:2e:62:e9: ff:ed:d0:21:a0:c6:39:1e:4c:84:f9:63:e0:f6:02:4a:f2:df: 67:d8:bd:8a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yOVCJMWf75AzLi5+NrV+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkNzcwMWQ1ODUwNDkxZjUwMjk5ZWY5M2YyZDc0MDliNzhj ZDZjOTYwHhcNMjYwMTAxMTgxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTQ5OWUzNzg0NTkyOWJiMTg2MWNmZTVlMmUwOTI3NzYzYzMwOWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4VGoUm9N9PzfQuoOOqMOiOOtFPnz kRpjNv/B9ju8fR+sJKOqyXX8NV8d8zki5FqfjcWd/HOWdmlmOkUOedhEAWH903N0 kly+iFq7U7zIeNVKbb0Z2zR4Lx0p05iI6njCdd9n100KEaLMRMU1kcnupZhvUNnk 7856CD7H8ZTrwpq2WkAJUMMrxbVHXUR+8t/HZyAcClNA+99NOmgPEYaNsYXPEzNO b5UZ5c55RWJFsFTPumQm0bnnksBTayIc0GuV2WVl0vS7PTyGEqFJHBBY437whQGf gnzI5Xh+HdxVGHloYNnvQvbrPNvhoe6mfLTEQSjVKrdxvWca+1qfN3Ah2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIVJnjeEWSm7GGHP5eLgkndjwwn6MB8GA1UdIwQY MBaAFG13AdWFBJH1Apnvk/LXQJt4zWyWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlhjQjFZVUVrZlVDbWUtVDh0ZEFtM2pOYkpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi83Zjk5N2MtMDdjZi00NGMyLWJkZjAt NjZhMzI5YjZhZmFkLzEvaFVtZU40UlpLYnNZWWNfbDR1Q1NkMlBEQ2ZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi83Zjk5N2MtMDdjZi00NGMyLWJkZjAtNjZhMzI5YjZhZmFk LzEvYlhjQjFZVUVrZlVDbWUtVDh0ZEFtM2pOYkpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALq8NMA0G CSqGSIb3DQEBCwUAA4IBAQBAres0/BBiUPg+6brp4oeq/2nPr4oc9dDy95aFrNvn tn8uPHz8P3N1/DTNFHSVjUJ1Dn3N/qgvrzxFz8W6YNNckNX7Rvme5KqJfOHmk/Ct mwFN+aMqi7pwmFUaVvttCf2+9AJ0COWmGQ+XcL3F1LvGEpAFFc0kH+x0s2LLzgIJ QSwvrUBSnXt6ApPWmJQlrzBkAH0rvOkj5BDSljvtrJn1tBBFSq68ywQ0dsr1Ev0p 7gK2R1MLdggJ/K/aXAmzExrcpLIAsFdXXUT2FFqVfPlrPiSdZkhYBj5bYfnMAiER DylWU7o/uxwuYun/7dAhoMY5HkyE+WPg9gJK8t9n2L2K -----END CERTIFICATE-----Generated at Sun Jan 25 18:05:39 2026 by rpki-client