This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/RHgj94s99yLOm8jJoah9M5rvNqY.roa File: RHgj94s99yLOm8jJoah9M5rvNqY.roa (raw, json) Hash identifier: 52fyve7WO1cwkbeeuvWUD7YyeD7rPI2Crc9dE/2ZkFM= Subject key identifier: 44:78:23:F7:8B:3D:F7:22:CE:9B:C8:C9:A1:A8:7D:33:9A:EF:36:A6 Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e Certificate serial: 019B79ECFD11857C1A52411459A0F5671B66 Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/RHgj94s99yLOm8jJoah9M5rvNqY.roa Signing time: Thu 01 Jan 2026 14:18:53 +0000 ROA not before: Thu 01 Jan 2026 14:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206178 IP address blocks: 185.194.102.0/23 maxlen: 23 2a0a:49c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:fd:11:85:7c:1a:52:41:14:59:a0:f5:67:1b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e Validity Not Before: Jan 1 14:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=447823f78b3df722ce9bc8c9a1a87d339aef36a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ce:db:bb:0e:1c:f9:07:b8:d0:ab:0f:36:1c: 4e:cf:a8:05:3f:a7:3c:96:a1:86:63:c2:df:79:b0: b7:8d:ea:82:42:f5:b1:94:e1:fd:84:51:df:5d:27: b2:f3:e8:09:1a:11:82:bd:17:eb:48:75:f2:2a:02: d6:91:71:49:85:25:8a:f3:b4:50:54:b7:b2:6b:a2: e8:4c:58:b5:4f:39:69:1a:9e:6a:c5:28:40:e5:52: 7e:68:77:bc:94:be:7a:94:2d:87:14:1d:ae:1d:b4: 5a:8d:4a:89:ea:7c:d0:e2:fe:1d:17:cd:ea:75:01: ce:c2:e7:26:79:67:47:85:54:c9:23:fa:61:0a:9f: 52:a0:5a:18:b3:2b:dc:58:cb:3d:19:9f:02:fd:2a: 70:21:23:12:30:ed:33:5c:c3:0b:89:2b:43:aa:d4: b9:51:a8:5a:c3:c6:63:45:db:25:4e:ac:0b:e6:98: 42:15:83:fd:9f:6a:78:35:bd:ed:d3:1e:bd:b5:a4: 0d:f6:5e:2c:c9:d5:f2:50:3c:17:f2:be:d1:dd:94: 21:72:b2:e3:6d:38:f1:7b:d2:92:f1:93:98:6f:ba: 1e:e2:b5:77:1d:d1:f4:0f:6c:50:73:7f:4a:76:6f: cc:14:3f:56:9d:bc:6e:6c:4a:a8:48:57:2f:27:23: cd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:78:23:F7:8B:3D:F7:22:CE:9B:C8:C9:A1:A8:7D:33:9A:EF:36:A6 X509v3 Authority Key Identifier: keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/RHgj94s99yLOm8jJoah9M5rvNqY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.194.102.0/23 IPv6: 2a0a:49c0::/29 Signature Algorithm: sha256WithRSAEncryption 5b:5c:98:c7:3a:99:b5:08:e3:17:b5:ac:f3:2e:10:c8:eb:63: 37:c9:22:db:c1:de:94:43:e1:c1:d4:14:d4:d4:07:9e:23:db: 56:48:97:cd:a0:17:9e:45:de:54:b1:cd:71:17:37:8c:b7:a9: d9:f5:6f:6f:ba:d7:8e:ce:70:bb:15:23:a1:68:70:c1:7b:6b: 7a:60:a3:7a:6c:f9:9a:16:8c:de:1f:19:4f:77:f0:94:56:4f: 19:97:4d:e8:d5:86:33:5d:15:cd:6f:21:96:e4:a1:83:12:2a: 0f:db:4c:09:33:da:ee:79:d8:32:42:d3:0e:1f:b1:f6:1c:74: ee:c7:6b:f4:a7:a3:9e:ad:34:6d:1b:87:21:9a:7c:bf:0e:4b: 9d:f7:69:41:2d:43:7e:35:21:74:ff:22:b5:99:a6:c8:a0:91: 21:01:e9:2f:6c:04:50:e7:8d:ba:aa:5a:e5:f3:12:1a:f4:ac: 85:9d:7f:30:e3:7c:b0:ac:46:37:10:34:d3:fb:f5:9b:bc:74: 6b:8d:57:65:1e:d4:6a:40:9b:fc:60:9e:90:08:08:c3:3c:c2: 56:33:17:6c:2a:8b:d0:ce:f8:36:4d:c8:6b:a0:ff:b0:d3:ce: 69:be:65:a4:03:d8:e7:25:d2:fb:89:3d:c4:4c:99:16:79:9f: 85:0b:2d:76 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57P0RhXwaUkEUWaD1ZxtmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NzQwNWU5Y2VlMzlkNzE5NDRkNWUzMTQ5ZWIwMWI2MWY5 YWRiMWUwHhcNMjYwMTAxMTQxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDc4MjNmNzhiM2RmNzIyY2U5YmM4YzlhMWE4N2QzMzlhZWYzNmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo87buw4c+Qe40KsPNhxOz6gFP6c8 lqGGY8LfebC3jeqCQvWxlOH9hFHfXSey8+gJGhGCvRfrSHXyKgLWkXFJhSWK87RQ VLeya6LoTFi1TzlpGp5qxShA5VJ+aHe8lL56lC2HFB2uHbRajUqJ6nzQ4v4dF83q dQHOwucmeWdHhVTJI/phCp9SoFoYsyvcWMs9GZ8C/SpwISMSMO0zXMMLiStDqtS5 Uahaw8ZjRdslTqwL5phCFYP9n2p4Nb3t0x69taQN9l4sydXyUDwX8r7R3ZQhcrLj bTjxe9KS8ZOYb7oe4rV3HdH0D2xQc39Kdm/MFD9WnbxubEqoSFcvJyPNowIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFER4I/eLPfcizpvIyaGofTOa7zamMB8GA1UdIwQY MBaAFCR0BenO451xlE1eMUnrAbYfmtseMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkhRRjZjN2puWEdVVFY0eFNlc0J0aC1hMng0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC85YTNhOTgtZDY3MC00MzQzLTkyMDYt NDdiYmFjYTA3OGZmLzEvUkhnajk0czk5eUxPbThqSm9haDlNNXJ2TnFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC85YTNhOTgtZDY3MC00MzQzLTkyMDYtNDdiYmFjYTA3OGZm LzEvSkhRRjZjN2puWEdVVFY0eFNlc0J0aC1hMng0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBucJmMA0E AgACMAcDBQMqCknAMA0GCSqGSIb3DQEBCwUAA4IBAQBbXJjHOpm1COMXtazzLhDI 62M3ySLbwd6UQ+HB1BTU1AeeI9tWSJfNoBeeRd5Usc1xFzeMt6nZ9W9vuteOznC7 FSOhaHDBe2t6YKN6bPmaFozeHxlPd/CUVk8Zl03o1YYzXRXNbyGW5KGDEioP20wJ M9ruedgyQtMOH7H2HHTux2v0p6OerTRtG4chmny/Dkud92lBLUN+NSF0/yK1mabI oJEhAekvbARQ5426qlrl8xIa9KyFnX8w43ywrEY3EDTT+/WbvHRrjVdlHtRqQJv8 YJ6QCAjDPMJWMxdsKovQzvg2TchroP+w085pvmWkA9jnJdL7iT3ETJkWeZ+FCy12 -----END CERTIFICATE-----Generated at Sun Jan 25 23:33:17 2026 by rpki-client