This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hKJDVK08o4RIWoWlt6lBuBhmgR0.roa File: hKJDVK08o4RIWoWlt6lBuBhmgR0.roa (raw, json) Hash identifier: MAApWzskbzneHqBQ6AJZbIOluhaLfJyDC3dItvxt1eM= Subject key identifier: 84:A2:43:54:AD:3C:A3:84:48:5A:85:A5:B7:A9:41:B8:18:66:81:1D Certificate issuer: /CN=848d9800d69debae11b7f8161c3ce88181fde7b4 Certificate serial: 019B7C11230161BD2BB1E2C6D52AA73E6AD7 Authority key identifier: 84:8D:98:00:D6:9D:EB:AE:11:B7:F8:16:1C:3C:E8:81:81:FD:E7:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hI2YANad664Rt_gWHDzogYH957Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hKJDVK08o4RIWoWlt6lBuBhmgR0.roa Signing time: Fri 02 Jan 2026 00:17:36 +0000 ROA not before: Fri 02 Jan 2026 00:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8412 IP address blocks: 185.237.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hI2YANad664Rt_gWHDzogYH957Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hI2YANad664Rt_gWHDzogYH957Q.mft rsync://rpki.ripe.net/repository/DEFAULT/hI2YANad664Rt_gWHDzogYH957Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:23:01:61:bd:2b:b1:e2:c6:d5:2a:a7:3e:6a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=848d9800d69debae11b7f8161c3ce88181fde7b4 Validity Not Before: Jan 2 00:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84a24354ad3ca384485a85a5b7a941b81866811d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:67:27:88:bf:4a:e9:de:3f:04:6c:46:44:32: f3:fa:ac:ba:b1:11:55:94:a3:4a:3f:8b:b3:56:e4: f8:d8:6b:ba:67:37:a4:5b:f4:4b:bf:99:38:99:ec: 46:4b:f5:07:c0:78:1b:1a:40:1e:5e:b9:f1:b2:c4: ca:a8:32:1e:49:6d:d8:46:b9:95:69:2a:da:ed:f6: 83:37:18:ea:af:db:90:22:21:fd:3d:18:4f:70:9b: a4:bf:cb:3f:9a:ec:41:24:41:42:25:52:47:fa:a4: 7b:bf:e4:7a:f4:27:1c:b0:64:64:4b:07:5f:64:59: 21:29:09:fb:2e:8f:32:1a:68:ca:2c:25:2c:c1:a5: 79:28:34:92:00:d2:16:08:29:0a:1b:6b:c1:e1:0e: 4d:b5:11:9a:76:86:a5:c1:a6:8f:f1:f8:fc:bf:77: 5e:ec:b6:8b:2b:66:f8:83:c2:a6:82:72:32:dd:00: 49:90:3a:2d:4d:f6:b6:31:21:11:50:58:89:c3:31: 29:19:c4:5c:fb:23:b7:7b:c3:08:d3:e1:95:49:b6: e0:0a:7d:c0:d1:54:e9:53:57:49:27:d5:27:60:cd: dc:85:91:7d:8d:4a:59:88:24:58:c5:65:cb:78:4d: 2b:94:e8:66:75:ed:36:f7:3b:d0:66:33:a3:ac:e6: 4b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A2:43:54:AD:3C:A3:84:48:5A:85:A5:B7:A9:41:B8:18:66:81:1D X509v3 Authority Key Identifier: keyid:84:8D:98:00:D6:9D:EB:AE:11:B7:F8:16:1C:3C:E8:81:81:FD:E7:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hI2YANad664Rt_gWHDzogYH957Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hKJDVK08o4RIWoWlt6lBuBhmgR0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/387136-3c70-4619-8321-3d93fe6d20aa/1/hI2YANad664Rt_gWHDzogYH957Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.237.168.0/24 Signature Algorithm: sha256WithRSAEncryption 48:b0:dc:39:d2:0d:06:6c:d5:8f:9f:7e:ee:8d:2c:21:7d:1e: 70:24:db:04:70:93:3c:a2:a6:61:18:9e:33:ab:4a:4e:fc:42: ed:1c:79:f7:c2:3c:91:c5:d2:58:4f:be:70:4d:11:c4:c5:88: 4b:8b:a4:29:d0:0a:04:08:43:97:bc:bc:88:c5:14:cb:48:ec: c1:d3:6e:9a:85:f5:94:a9:ad:42:89:f6:0f:1c:29:f2:9f:f7: 88:51:6a:50:92:cc:4f:ec:44:30:ff:9f:c7:22:1c:b7:9e:6e: 16:28:e6:70:2b:c7:13:57:11:4b:29:b5:6c:7a:81:e7:e9:3a: 6a:69:4b:10:0b:1d:ab:74:ee:af:36:b6:a2:7f:80:42:3f:a4: c9:de:bf:66:0e:d2:3f:36:6f:f2:2b:a3:1f:31:ab:4d:32:4b: 42:33:56:7a:5a:a3:b2:26:98:f6:e9:02:2c:56:db:ac:36:9d: a5:40:3b:3f:90:3f:11:76:0c:df:bd:d0:c0:8a:1d:73:40:30: 88:e9:45:d9:db:c4:13:6d:37:0b:b7:66:50:d4:0a:42:e7:70: 3d:48:af:98:cb:67:91:94:4b:e1:45:71:42:53:ef:d7:82:62: 38:df:25:05:67:cc:31:aa:e8:09:d1:e5:56:31:1a:4a:ea:1c: 94:7d:43:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8ESMBYb0rseLG1SqnPmrXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OGQ5ODAwZDY5ZGViYWUxMWI3ZjgxNjFjM2NlODgxODFm ZGU3YjQwHhcNMjYwMTAyMDAxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGEyNDM1NGFkM2NhMzg0NDg1YTg1YTViN2E5NDFiODE4NjY4MTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2cniL9K6d4/BGxGRDLz+qy6sRFV lKNKP4uzVuT42Gu6ZzekW/RLv5k4mexGS/UHwHgbGkAeXrnxssTKqDIeSW3YRrmV aSra7faDNxjqr9uQIiH9PRhPcJukv8s/muxBJEFCJVJH+qR7v+R69CccsGRkSwdf ZFkhKQn7Lo8yGmjKLCUswaV5KDSSANIWCCkKG2vB4Q5NtRGadoalwaaP8fj8v3de 7LaLK2b4g8KmgnIy3QBJkDotTfa2MSERUFiJwzEpGcRc+yO3e8MI0+GVSbbgCn3A 0VTpU1dJJ9UnYM3chZF9jUpZiCRYxWXLeE0rlOhmde029zvQZjOjrOZLZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFISiQ1StPKOESFqFpbepQbgYZoEdMB8GA1UdIwQY MBaAFISNmADWneuuEbf4Fhw86IGB/ee0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEkyWUFOYWQ2NjRSdF9nV0hEem9nWUg5NTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zODcxMzYtM2M3MC00NjE5LTgzMjEt M2Q5M2ZlNmQyMGFhLzEvaEtKRFZLMDhvNFJJV29XbHQ2bEJ1QmhtZ1IwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8zODcxMzYtM2M3MC00NjE5LTgzMjEtM2Q5M2ZlNmQyMGFh LzEvaEkyWUFOYWQ2NjRSdF9nV0hEem9nWUg5NTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue2oMA0G CSqGSIb3DQEBCwUAA4IBAQBIsNw50g0GbNWPn37ujSwhfR5wJNsEcJM8oqZhGJ4z q0pO/ELtHHn3wjyRxdJYT75wTRHExYhLi6Qp0AoECEOXvLyIxRTLSOzB026ahfWU qa1CifYPHCnyn/eIUWpQksxP7EQw/5/HIhy3nm4WKOZwK8cTVxFLKbVseoHn6Tpq aUsQCx2rdO6vNraif4BCP6TJ3r9mDtI/Nm/yK6MfMatNMktCM1Z6WqOyJpj26QIs VtusNp2lQDs/kD8RdgzfvdDAih1zQDCI6UXZ28QTbTcLt2ZQ1ApC53A9SK+Yy2eR lEvhRXFCU+/XgmI43yUFZ8wxqugJ0eVWMRpK6hyUfUNa -----END CERTIFICATE-----Generated at Mon Jan 26 10:52:53 2026 by rpki-client