This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/282b19-68b9-4ef3-ad39-6ec8c81fdc3f/1/rgV_YHXJTzBMuCLXNvJrah_1fI4.roa File: rgV_YHXJTzBMuCLXNvJrah_1fI4.roa (raw, json) Hash identifier: zXS5BhZMEhE+70Rk0zddRLFewXhA36j+GXNP73VBI6E= Subject key identifier: AE:05:7F:60:75:C9:4F:30:4C:B8:22:D7:36:F2:6B:6A:1F:F5:7C:8E Certificate issuer: /CN=1d1e354362cb9224c016dac944e3d9d49909b17f Certificate serial: 019B78A31EAECB921E7C95C55A9607637249 Authority key identifier: 1D:1E:35:43:62:CB:92:24:C0:16:DA:C9:44:E3:D9:D4:99:09:B1:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HR41Q2LLkiTAFtrJROPZ1JkJsX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/282b19-68b9-4ef3-ad39-6ec8c81fdc3f/1/rgV_YHXJTzBMuCLXNvJrah_1fI4.roa Signing time: Thu 01 Jan 2026 08:18:34 +0000 ROA not before: Thu 01 Jan 2026 08:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197328 IP address blocks: 185.125.32.0/24 maxlen: 24 185.125.33.0/24 maxlen: 24 185.125.34.0/24 maxlen: 24 185.125.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/282b19-68b9-4ef3-ad39-6ec8c81fdc3f/1/HR41Q2LLkiTAFtrJROPZ1JkJsX8.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/282b19-68b9-4ef3-ad39-6ec8c81fdc3f/1/HR41Q2LLkiTAFtrJROPZ1JkJsX8.mft rsync://rpki.ripe.net/repository/DEFAULT/HR41Q2LLkiTAFtrJROPZ1JkJsX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1e:ae:cb:92:1e:7c:95:c5:5a:96:07:63:72:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d1e354362cb9224c016dac944e3d9d49909b17f Validity Not Before: Jan 1 08:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae057f6075c94f304cb822d736f26b6a1ff57c8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:10:07:f1:35:94:76:38:a3:0d:4e:92:d1:5b: 8e:15:9f:1b:5d:40:ad:6a:36:9e:e5:a4:ae:f7:a9: 1e:70:a2:98:20:48:3f:de:bc:ff:8e:93:f8:de:88: cc:d4:75:4b:a5:ae:82:a4:f4:5e:34:b7:1e:10:2c: 6a:10:90:ce:b3:a2:0e:bb:93:4f:a3:8a:aa:2a:48: 3c:2d:c1:76:d1:9b:b2:d7:ec:ba:26:5f:c9:4d:2f: d0:e2:f7:bb:e4:00:60:c0:4e:5f:7e:3e:1f:4e:c3: 00:a2:a1:b4:70:53:50:08:cc:45:0f:f2:bb:47:3a: 02:3d:c4:a4:4a:a8:6c:fc:6d:5a:b0:ca:e8:87:88: 85:76:b6:e2:bd:30:21:3b:1e:6f:44:cf:80:7b:76: a5:3f:80:14:a3:dc:77:b5:f2:4b:4d:bc:aa:cb:6c: df:56:34:5f:62:be:5c:a8:dd:10:5d:5e:cb:02:49: 5c:d0:6a:f6:4e:b7:40:6e:ea:ae:19:96:f1:63:48: fc:08:dd:7a:9f:81:da:b2:36:3d:76:b8:88:fc:b2: ea:a8:7a:06:8e:8b:e6:b0:c6:15:de:8a:1a:5e:2c: 04:43:5e:de:6f:80:18:e2:10:7a:66:0c:6d:06:89: 71:38:c1:aa:de:13:c6:fc:d7:25:b3:08:d7:f4:e1: 0a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:05:7F:60:75:C9:4F:30:4C:B8:22:D7:36:F2:6B:6A:1F:F5:7C:8E X509v3 Authority Key Identifier: keyid:1D:1E:35:43:62:CB:92:24:C0:16:DA:C9:44:E3:D9:D4:99:09:B1:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HR41Q2LLkiTAFtrJROPZ1JkJsX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/282b19-68b9-4ef3-ad39-6ec8c81fdc3f/1/rgV_YHXJTzBMuCLXNvJrah_1fI4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/282b19-68b9-4ef3-ad39-6ec8c81fdc3f/1/HR41Q2LLkiTAFtrJROPZ1JkJsX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.125.32.0/22 Signature Algorithm: sha256WithRSAEncryption 89:69:eb:56:54:8c:ac:60:75:f3:2e:fa:6d:b6:50:62:a0:41: 8a:c1:91:ac:11:c3:1c:37:01:ea:22:d6:7e:39:60:62:dd:42: 7c:97:5a:7c:88:0f:66:33:77:b8:00:ed:3c:3f:23:03:8b:89: 56:50:7c:e4:48:2d:97:c8:ef:31:b5:96:d4:a3:8c:ea:a4:1a: 00:6d:40:67:f5:a9:36:48:1e:f1:70:e6:ef:a3:44:09:a4:7f: 17:a9:42:9c:39:fa:b1:d4:da:01:28:d9:6d:01:8e:97:1c:a5: b7:12:3e:43:57:dd:43:76:5e:5a:30:15:35:4f:92:5b:ae:2d: f8:f2:bf:8b:2d:ac:1f:cd:c5:b8:24:b1:a6:69:93:e9:75:c5: 8f:ea:9a:b3:a3:c8:ff:05:4e:0b:8f:21:7f:50:45:30:ea:84: eb:33:d9:79:21:63:bf:4b:dc:65:9e:57:8a:3c:ad:89:ae:63: b0:5c:58:17:d6:19:87:ed:be:44:40:8a:4b:c1:d5:14:59:2a: 9f:e6:94:47:40:5a:26:7b:10:19:30:4a:5c:82:4e:61:6c:38: 42:67:84:3d:39:0d:db:3f:55:0d:17:d9:80:81:ef:da:c1:d1: 3c:fc:d9:fe:6a:95:b1:81:83:f0:73:90:6c:7f:7a:56:96:0b: e7:49:06:a9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ox6uy5IefJXFWpYHY3JJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMWUzNTQzNjJjYjkyMjRjMDE2ZGFjOTQ0ZTNkOWQ0OTkw OWIxN2YwHhcNMjYwMTAxMDgxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTA1N2Y2MDc1Yzk0ZjMwNGNiODIyZDczNmYyNmI2YTFmZjU3YzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RAH8TWUdjijDU6S0VuOFZ8bXUCt ajae5aSu96kecKKYIEg/3rz/jpP43ojM1HVLpa6CpPReNLceECxqEJDOs6IOu5NP o4qqKkg8LcF20Zuy1+y6Jl/JTS/Q4ve75ABgwE5ffj4fTsMAoqG0cFNQCMxFD/K7 RzoCPcSkSqhs/G1asMroh4iFdrbivTAhOx5vRM+Ae3alP4AUo9x3tfJLTbyqy2zf VjRfYr5cqN0QXV7LAklc0Gr2TrdAbuquGZbxY0j8CN16n4HasjY9driI/LLqqHoG jovmsMYV3ooaXiwEQ17eb4AY4hB6ZgxtBolxOMGq3hPG/NclswjX9OEKaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK4Ff2B1yU8wTLgi1zbya2of9XyOMB8GA1UdIwQY MBaAFB0eNUNiy5IkwBbayUTj2dSZCbF/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFI0MVEyTExraVRBRnRySlJPUFoxSmtKc1g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8yODJiMTktNjhiOS00ZWYzLWFkMzkt NmVjOGM4MWZkYzNmLzEvcmdWX1lIWEpUekJNdUNMWE52SnJhaF8xZkk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8yODJiMTktNjhiOS00ZWYzLWFkMzktNmVjOGM4MWZkYzNm LzEvSFI0MVEyTExraVRBRnRySlJPUFoxSmtKc1g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuX0gMA0G CSqGSIb3DQEBCwUAA4IBAQCJaetWVIysYHXzLvpttlBioEGKwZGsEcMcNwHqItZ+ OWBi3UJ8l1p8iA9mM3e4AO08PyMDi4lWUHzkSC2XyO8xtZbUo4zqpBoAbUBn9ak2 SB7xcObvo0QJpH8XqUKcOfqx1NoBKNltAY6XHKW3Ej5DV91Ddl5aMBU1T5Jbri34 8r+LLawfzcW4JLGmaZPpdcWP6pqzo8j/BU4LjyF/UEUw6oTrM9l5IWO/S9xlnleK PK2JrmOwXFgX1hmH7b5EQIpLwdUUWSqf5pRHQFomexAZMEpcgk5hbDhCZ4Q9OQ3b P1UNF9mAge/awdE8/Nn+apWxgYPwc5Bsf3pWlgvnSQap -----END CERTIFICATE-----Generated at Sun Jan 25 22:14:51 2026 by rpki-client