This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/SHJi1Hg3BYSDVLWuUF3dUC_y5Qc.roa File: SHJi1Hg3BYSDVLWuUF3dUC_y5Qc.roa (raw, json) Hash identifier: hbtSVIptoXiMe4xO8q5DDqQ1ZQZBnOOJmENfX4ZeP2E= Subject key identifier: 48:72:62:D4:78:37:05:84:83:54:B5:AE:50:5D:DD:50:2F:F2:E5:07 Certificate issuer: /CN=863589feecbe4c4ab444d93864454dbcd7cd0de7 Certificate serial: 019B78A2B801195D229A26590636CBD44477 Authority key identifier: 86:35:89:FE:EC:BE:4C:4A:B4:44:D9:38:64:45:4D:BC:D7:CD:0D:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/SHJi1Hg3BYSDVLWuUF3dUC_y5Qc.roa Signing time: Thu 01 Jan 2026 08:18:08 +0000 ROA not before: Thu 01 Jan 2026 08:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9021 IP address blocks: 185.66.124.0/24 maxlen: 24 185.66.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.mft rsync://rpki.ripe.net/repository/DEFAULT/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:b8:01:19:5d:22:9a:26:59:06:36:cb:d4:44:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=863589feecbe4c4ab444d93864454dbcd7cd0de7 Validity Not Before: Jan 1 08:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=487262d4783705848354b5ae505ddd502ff2e507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a4:09:d9:bb:0a:92:95:33:2f:60:ff:8a:20: 1a:2d:d5:04:a3:a4:72:0d:78:19:82:8f:da:91:5a: 1e:45:41:2d:65:d5:3e:28:fb:d8:f7:96:70:16:80: c3:42:78:35:2c:aa:4c:33:19:ca:df:e6:ba:7f:04: 9e:63:70:63:c3:27:6b:63:c5:01:33:86:5f:11:eb: b7:7d:cb:53:ce:fa:1f:aa:27:3c:10:62:ac:c3:75: 30:b7:83:e9:bd:25:89:94:e4:a8:40:12:64:10:a6: cd:22:ee:03:13:4e:32:5d:8d:12:af:d4:66:f1:4b: 71:64:8f:f6:29:15:25:95:25:33:c7:12:e3:13:7f: 44:fa:93:9c:ae:71:3f:61:15:21:b2:1b:f3:8f:b7: 66:0d:58:1c:ba:1f:2a:15:b4:10:5f:67:a7:4c:1e: c0:ee:66:82:7b:87:f3:3c:63:a6:c8:d8:f8:92:a0: d8:d7:7d:87:dc:bc:b8:95:54:f5:63:eb:01:e0:e3: b3:33:4e:84:ae:24:a6:f5:e8:38:94:9c:9a:71:99: a5:6d:88:93:11:48:04:7a:2d:e2:b6:77:8b:02:c4: 23:59:f2:0b:a2:20:03:db:f2:7c:9f:32:54:8a:f0: 3f:25:90:8c:46:54:5b:65:2e:bf:05:2c:ce:73:e4: c1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:72:62:D4:78:37:05:84:83:54:B5:AE:50:5D:DD:50:2F:F2:E5:07 X509v3 Authority Key Identifier: keyid:86:35:89:FE:EC:BE:4C:4A:B4:44:D9:38:64:45:4D:BC:D7:CD:0D:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/SHJi1Hg3BYSDVLWuUF3dUC_y5Qc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5140ff-090e-43da-b7c8-59e818c6b71b/1/hjWJ_uy-TEq0RNk4ZEVNvNfNDec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.66.124.0/23 Signature Algorithm: sha256WithRSAEncryption 20:00:07:a7:c6:ab:20:30:66:b6:34:60:4c:7f:0d:97:68:f9: 35:11:74:8a:ea:ee:43:2c:2d:2c:b3:95:bb:ab:f6:8c:48:2a: 81:31:ef:ef:15:14:98:75:59:46:fb:7d:a5:73:55:b6:c7:12: 3c:69:51:60:80:43:11:a9:c6:f8:64:8a:93:24:8f:d0:d3:fd: 9f:e1:85:c6:43:34:6a:e2:01:31:a5:a5:56:4a:33:8c:6f:80: 95:bc:c0:e4:c6:2e:1b:7f:6a:ad:0d:b2:c3:cc:a7:57:29:c5: ce:33:d0:e0:16:e5:f2:9e:83:23:46:8f:c2:aa:8c:58:4c:21: 77:c5:72:2d:d7:b6:a7:d8:79:67:73:07:62:bd:90:aa:85:2e: 92:76:82:40:04:bb:ea:65:14:98:0c:19:12:97:c5:a5:0c:d0: ab:c9:b9:74:1a:4d:a7:4c:a7:62:8c:b6:9f:de:c0:7c:70:06: 06:5f:10:98:99:42:84:ec:33:90:dd:f4:f3:ec:c1:24:10:ed: 6b:5a:49:6d:15:fc:36:71:df:bb:c7:70:b1:e8:f1:7e:61:69: 34:2e:6d:c8:be:05:36:f3:16:c1:f2:e6:57:5b:51:db:9b:6d: f8:a0:e8:3a:c7:54:b1:81:3e:ad:39:8c:82:dc:ec:1c:94:e7: 88:58:82:56 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4orgBGV0imiZZBjbL1ER3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MzU4OWZlZWNiZTRjNGFiNDQ0ZDkzODY0NDU0ZGJjZDdj ZDBkZTcwHhcNMjYwMTAxMDgxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODcyNjJkNDc4MzcwNTg0ODM1NGI1YWU1MDVkZGQ1MDJmZjJlNTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6QJ2bsKkpUzL2D/iiAaLdUEo6Ry DXgZgo/akVoeRUEtZdU+KPvY95ZwFoDDQng1LKpMMxnK3+a6fwSeY3BjwydrY8UB M4ZfEeu3fctTzvofqic8EGKsw3Uwt4PpvSWJlOSoQBJkEKbNIu4DE04yXY0Sr9Rm 8UtxZI/2KRUllSUzxxLjE39E+pOcrnE/YRUhshvzj7dmDVgcuh8qFbQQX2enTB7A 7maCe4fzPGOmyNj4kqDY132H3Ly4lVT1Y+sB4OOzM06EriSm9eg4lJyacZmlbYiT EUgEei3itneLAsQjWfILoiAD2/J8nzJUivA/JZCMRlRbZS6/BSzOc+TBaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEhyYtR4NwWEg1S1rlBd3VAv8uUHMB8GA1UdIwQY MBaAFIY1if7svkxKtETZOGRFTbzXzQ3nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGpXSl91eS1URXEwUk5rNFpFVk52TmZORGVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC81MTQwZmYtMDkwZS00M2RhLWI3Yzgt NTllODE4YzZiNzFiLzEvU0hKaTFIZzNCWVNEVkxXdVVGM2RVQ195NVFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC81MTQwZmYtMDkwZS00M2RhLWI3YzgtNTllODE4YzZiNzFi LzEvaGpXSl91eS1URXEwUk5rNFpFVk52TmZORGVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuUJ8MA0G CSqGSIb3DQEBCwUAA4IBAQAgAAenxqsgMGa2NGBMfw2XaPk1EXSK6u5DLC0ss5W7 q/aMSCqBMe/vFRSYdVlG+32lc1W2xxI8aVFggEMRqcb4ZIqTJI/Q0/2f4YXGQzRq 4gExpaVWSjOMb4CVvMDkxi4bf2qtDbLDzKdXKcXOM9DgFuXynoMjRo/CqoxYTCF3 xXIt17an2HlncwdivZCqhS6SdoJABLvqZRSYDBkSl8WlDNCrybl0Gk2nTKdijLaf 3sB8cAYGXxCYmUKE7DOQ3fTz7MEkEO1rWkltFfw2cd+7x3Cx6PF+YWk0Lm3IvgU2 8xbB8uZXW1Hbm234oOg6x1SxgT6tOYyC3OwclOeIWIJW -----END CERTIFICATE-----Generated at Mon Jan 26 01:02:14 2026 by rpki-client