This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/h_hzjLW67wHlOyeEeE48OzILdyk.roa File: h_hzjLW67wHlOyeEeE48OzILdyk.roa (raw, json) Hash identifier: OBEq0IJXfkXFzJ3vqHNWHMcPsC7MjRnngy52bDrCEpY= Subject key identifier: 87:F8:73:8C:B5:BA:EF:01:E5:3B:27:84:78:4E:3C:3B:32:0B:77:29 Certificate issuer: /CN=63495a4cecbeafb3eadf6ed0349bb0b96da464ee Certificate serial: 019B7E38675765E3FF06871DEEB1AD4D1139 Authority key identifier: 63:49:5A:4C:EC:BE:AF:B3:EA:DF:6E:D0:34:9B:B0:B9:6D:A4:64:EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0laTOy-r7Pq327QNJuwuW2kZO4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/h_hzjLW67wHlOyeEeE48OzILdyk.roa Signing time: Fri 02 Jan 2026 10:19:44 +0000 ROA not before: Fri 02 Jan 2026 10:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8468 IP address blocks: 178.16.224.0/22 maxlen: 22 178.16.228.0/24 maxlen: 24 178.16.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/Y0laTOy-r7Pq327QNJuwuW2kZO4.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/Y0laTOy-r7Pq327QNJuwuW2kZO4.mft rsync://rpki.ripe.net/repository/DEFAULT/Y0laTOy-r7Pq327QNJuwuW2kZO4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:67:57:65:e3:ff:06:87:1d:ee:b1:ad:4d:11:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63495a4cecbeafb3eadf6ed0349bb0b96da464ee Validity Not Before: Jan 2 10:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87f8738cb5baef01e53b2784784e3c3b320b7729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:96:f4:1a:f7:b3:8d:db:63:f2:00:0c:53:45: f9:88:0b:90:ae:0a:6e:f0:08:9c:bc:e3:d6:60:49: da:39:14:e4:8f:e8:d2:e9:6d:8f:43:7a:c4:c8:b7: 26:92:a6:63:bb:49:13:a0:a7:ac:eb:95:16:ca:54: 0d:84:98:7d:bd:05:62:6d:5a:92:9d:43:1a:3f:7a: 90:42:a2:b6:e2:4f:cf:09:86:57:0e:16:af:b5:5b: 95:40:71:1f:73:90:8a:f6:53:93:b2:bc:82:fc:78: a0:9c:88:39:f1:e8:25:01:85:37:ac:8f:cc:2b:f5: c5:aa:86:f1:99:54:05:5f:e7:b2:43:05:35:d0:da: e1:5c:01:ad:b7:27:3e:47:87:21:a3:fe:1e:b6:2b: a7:c1:e5:6e:95:2b:53:6a:bf:92:5f:35:99:01:fa: e3:31:db:ef:ca:57:20:b8:d8:70:5e:15:f7:92:66: 78:c8:b1:0a:83:34:88:e2:58:53:aa:f1:a6:00:f7: 50:f5:19:ac:03:da:2a:7f:31:83:db:61:44:9a:44: cd:4b:17:aa:66:8d:b0:5b:e4:c7:49:89:dd:d6:3e: 63:11:34:dd:d4:e3:1c:c2:29:e8:b2:61:f2:3b:d4: 05:b9:9f:c1:9a:ac:9e:2c:8a:f7:4f:70:e0:c8:67: 66:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F8:73:8C:B5:BA:EF:01:E5:3B:27:84:78:4E:3C:3B:32:0B:77:29 X509v3 Authority Key Identifier: keyid:63:49:5A:4C:EC:BE:AF:B3:EA:DF:6E:D0:34:9B:B0:B9:6D:A4:64:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0laTOy-r7Pq327QNJuwuW2kZO4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/h_hzjLW67wHlOyeEeE48OzILdyk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1fde18-2873-4fe0-869c-3820f7ee2cb8/1/Y0laTOy-r7Pq327QNJuwuW2kZO4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.16.224.0-178.16.228.255 178.16.237.0/24 Signature Algorithm: sha256WithRSAEncryption 59:9a:52:e9:52:0f:bd:3f:cb:f8:09:5f:f3:c6:60:b7:04:bc: 08:71:e1:a4:90:be:98:3c:e4:6d:47:b7:b1:09:a3:95:f5:b9: 92:fa:d1:fd:b4:9e:6c:08:6c:ef:8d:f7:78:ae:c1:ae:77:c8: 56:92:8b:87:9f:8f:58:22:71:db:6c:94:15:a2:80:84:0e:4d: 37:36:54:80:8b:78:0b:f7:a8:49:b8:55:ee:65:ac:c4:57:30: fa:4a:cf:60:b1:e1:ad:d8:72:60:9c:b3:fc:6e:5f:df:f7:15: 04:dd:31:83:92:da:50:0e:c0:48:98:a4:30:e7:45:e8:b1:94: aa:7d:27:9e:84:64:c7:db:c5:70:14:98:df:71:8c:ae:49:f9: 47:a7:0e:b7:72:e3:73:0c:76:61:9c:df:0f:d1:9f:4b:30:0e: ab:97:f6:ef:d2:56:b6:10:da:f9:90:87:4e:10:a4:98:34:6a: e2:08:81:03:b4:88:07:16:2b:ca:87:21:87:cd:12:6f:ca:cc: 48:66:78:f4:ff:bd:e9:67:bc:a6:95:a7:8b:89:b6:9e:a7:7c: 1b:4b:d9:f0:03:ef:0c:08:27:8f:f6:3e:c9:8d:87:8c:3c:24: f8:5c:a4:2d:14:3e:cb:45:03:ae:a8:8d:5e:5b:a0:ef:80:f4: 38:15:8b:b1 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt+OGdXZeP/Bocd7rGtTRE5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNDk1YTRjZWNiZWFmYjNlYWRmNmVkMDM0OWJiMGI5NmRh NDY0ZWUwHhcNMjYwMTAyMTAxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2Y4NzM4Y2I1YmFlZjAxZTUzYjI3ODQ3ODRlM2MzYjMyMGI3NzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhJb0Gvezjdtj8gAMU0X5iAuQrgpu 8AicvOPWYEnaORTkj+jS6W2PQ3rEyLcmkqZju0kToKes65UWylQNhJh9vQVibVqS nUMaP3qQQqK24k/PCYZXDhavtVuVQHEfc5CK9lOTsryC/HignIg58eglAYU3rI/M K/XFqobxmVQFX+eyQwU10NrhXAGttyc+R4cho/4etiunweVulStTar+SXzWZAfrj MdvvylcguNhwXhX3kmZ4yLEKgzSI4lhTqvGmAPdQ9RmsA9oqfzGD22FEmkTNSxeq Zo2wW+THSYnd1j5jETTd1OMcwinosmHyO9QFuZ/BmqyeLIr3T3DgyGdmsQIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFIf4c4y1uu8B5TsnhHhOPDsyC3cpMB8GA1UdIwQY MBaAFGNJWkzsvq+z6t9u0DSbsLltpGTuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTBsYVRPeS1yN1BxMzI3UU5KdXd1VzJrWk80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC8xZmRlMTgtMjg3My00ZmUwLTg2OWMt MzgyMGY3ZWUyY2I4LzEvaF9oempMVzY3d0hsT3llRWVFNDhPeklMZHlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC8xZmRlMTgtMjg3My00ZmUwLTg2OWMtMzgyMGY3ZWUyY2I4 LzEvWTBsYVRPeS1yN1BxMzI3UU5KdXd1VzJrWk80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAWyEOAD BACyEOQDBACyEO0wDQYJKoZIhvcNAQELBQADggEBAFmaUulSD70/y/gJX/PGYLcE vAhx4aSQvpg85G1Ht7EJo5X1uZL60f20nmwIbO+N93iuwa53yFaSi4efj1gicdts lBWigIQOTTc2VICLeAv3qEm4Ve5lrMRXMPpKz2Cx4a3YcmCcs/xuX9/3FQTdMYOS 2lAOwEiYpDDnReixlKp9J56EZMfbxXAUmN9xjK5J+UenDrdy43MMdmGc3w/Rn0sw DquX9u/SVrYQ2vmQh04QpJg0auIIgQO0iAcWK8qHIYfNEm/KzEhmePT/velnvKaV p4uJtp6nfBtL2fAD7wwIJ4/2PsmNh4w8JPhcpC0UPstFA66ojV5boO+A9DgVi7E= -----END CERTIFICATE-----Generated at Sun Jan 25 22:31:19 2026 by rpki-client