This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/7bf679-e44c-49c3-88b8-2b6dceb6b39c/1/Hb9lR6z96oz2vyhltcQxunWJBv8.roa File: Hb9lR6z96oz2vyhltcQxunWJBv8.roa (raw, json) Hash identifier: O7fLuXJ7Rg2hYWenuMiQM2a0cwNOs4RkQpqjX6H+1F8= Subject key identifier: 1D:BF:65:47:AC:FD:EA:8C:F6:BF:28:65:B5:C4:31:BA:75:89:06:FF Certificate issuer: /CN=a90d457c66d1f5942dc3e7829d4fcda4ad3ddecb Certificate serial: 019ADA418D677FC6A77E651161C44818B361 Authority key identifier: A9:0D:45:7C:66:D1:F5:94:2D:C3:E7:82:9D:4F:CD:A4:AD:3D:DE:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ1FfGbR9ZQtw-eCnU_NpK093ss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/7bf679-e44c-49c3-88b8-2b6dceb6b39c/1/Hb9lR6z96oz2vyhltcQxunWJBv8.roa Signing time: Mon 01 Dec 2025 14:12:00 +0000 ROA not before: Mon 01 Dec 2025 14:12:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 201098 IP address blocks: 185.174.84.0/22 maxlen: 22 2a0b:9100::/29 maxlen: 29 2a0b:9100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/7bf679-e44c-49c3-88b8-2b6dceb6b39c/1/qQ1FfGbR9ZQtw-eCnU_NpK093ss.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/7bf679-e44c-49c3-88b8-2b6dceb6b39c/1/qQ1FfGbR9ZQtw-eCnU_NpK093ss.mft rsync://rpki.ripe.net/repository/DEFAULT/qQ1FfGbR9ZQtw-eCnU_NpK093ss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:da:41:8d:67:7f:c6:a7:7e:65:11:61:c4:48:18:b3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a90d457c66d1f5942dc3e7829d4fcda4ad3ddecb Validity Not Before: Dec 1 14:12:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1dbf6547acfdea8cf6bf2865b5c431ba758906ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bc:39:3f:e8:49:2c:13:4e:c9:21:ce:b6:d0: 31:a2:d7:e9:56:7e:8a:7a:2b:91:f9:95:fc:e7:d6: a2:f7:80:fa:8b:51:44:09:27:34:ad:95:26:97:a4: 1c:aa:9c:ea:1a:dd:e8:33:60:a8:3a:06:be:e3:18: 70:4c:75:db:3f:fc:47:65:14:24:93:79:f7:21:f5: aa:6e:a4:a4:d8:94:b7:5d:36:e7:40:0f:04:05:1f: 46:6d:b3:43:43:05:85:04:d1:91:75:41:ec:1f:1d: c1:8a:ac:35:58:87:bb:2a:4f:30:66:92:0c:fe:14: 3c:f7:33:83:3e:70:ec:ff:e0:c3:5f:67:e6:08:bb: 79:a0:22:0f:0d:2b:f8:4d:a2:f6:82:ce:1b:e1:2e: b5:f1:97:72:ec:33:41:77:7a:02:a0:36:4f:8e:36: 71:69:f3:cd:46:26:81:e0:38:c6:e0:b6:f3:34:98: c9:ea:0d:76:04:c5:e1:e0:76:c7:81:5c:53:ea:d4: a3:9e:4b:88:9f:f0:46:bc:e5:a4:d5:a6:47:74:3d: 0c:ba:f0:59:e2:48:5b:2b:98:da:2e:40:1b:67:64: 8a:2f:77:1e:99:40:9a:39:76:40:2a:19:ce:53:27: b7:ac:50:d2:4b:89:48:52:1c:3f:a3:2d:79:5c:fc: 78:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:BF:65:47:AC:FD:EA:8C:F6:BF:28:65:B5:C4:31:BA:75:89:06:FF X509v3 Authority Key Identifier: keyid:A9:0D:45:7C:66:D1:F5:94:2D:C3:E7:82:9D:4F:CD:A4:AD:3D:DE:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ1FfGbR9ZQtw-eCnU_NpK093ss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7bf679-e44c-49c3-88b8-2b6dceb6b39c/1/Hb9lR6z96oz2vyhltcQxunWJBv8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/7bf679-e44c-49c3-88b8-2b6dceb6b39c/1/qQ1FfGbR9ZQtw-eCnU_NpK093ss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.174.84.0/22 IPv6: 2a0b:9100::/29 Signature Algorithm: sha256WithRSAEncryption 46:ac:bb:67:01:c3:19:72:00:8f:10:b8:ff:43:ec:46:12:88: 4c:a4:ac:20:81:54:a8:6f:cf:37:ee:4b:6f:7b:a7:fb:5d:a5: b0:60:a5:31:89:04:77:96:06:2f:c2:95:27:9d:a0:f0:5f:36: a7:51:da:46:16:dd:5e:65:20:ca:3e:51:26:1b:55:b4:83:f0: 9b:84:1d:a7:ea:45:95:d6:1c:1a:35:ac:88:30:2e:1a:64:cb: 2a:99:a4:e6:87:b9:4d:fb:b8:cb:8c:57:a2:5a:da:67:fa:33: b2:8c:90:13:05:01:19:ea:40:b2:25:94:59:00:21:89:fa:51: 84:2c:98:c3:8d:0d:2a:59:9c:60:a3:f7:51:c6:8c:4f:cf:f3: 65:a2:50:c8:c3:2d:17:8d:fd:5b:9b:a6:a5:5b:fd:fb:fc:8e: 59:8e:dd:36:17:64:35:2d:c9:3d:60:a8:10:f5:96:3a:52:26: f8:c5:12:d2:46:2c:33:8c:54:ae:28:fa:cd:f9:15:c1:66:e1: 67:c1:64:cb:7d:f2:02:bd:c2:06:ce:7d:54:e0:07:1c:5f:16: 4f:8a:9c:0c:3a:e3:15:70:10:b1:0e:46:01:be:84:9d:12:a3: 04:20:ce:ea:8d:f3:ae:4e:04:2e:41:b9:74:c0:da:e2:96:5c: c6:ab:83:a1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZraQY1nf8anfmURYcRIGLNhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MGQ0NTdjNjZkMWY1OTQyZGMzZTc4MjlkNGZjZGE0YWQz ZGRlY2IwHhcNMjUxMjAxMTQxMjAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZGJmNjU0N2FjZmRlYThjZjZiZjI4NjViNWM0MzFiYTc1ODkwNmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLw5P+hJLBNOySHOttAxotfpVn6K eiuR+ZX859ai94D6i1FECSc0rZUml6QcqpzqGt3oM2CoOga+4xhwTHXbP/xHZRQk k3n3IfWqbqSk2JS3XTbnQA8EBR9GbbNDQwWFBNGRdUHsHx3Biqw1WIe7Kk8wZpIM /hQ89zODPnDs/+DDX2fmCLt5oCIPDSv4TaL2gs4b4S618Zdy7DNBd3oCoDZPjjZx afPNRiaB4DjG4LbzNJjJ6g12BMXh4HbHgVxT6tSjnkuIn/BGvOWk1aZHdD0MuvBZ 4khbK5jaLkAbZ2SKL3cemUCaOXZAKhnOUye3rFDSS4lIUhw/oy15XPx4GwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB2/ZUes/eqM9r8oZbXEMbp1iQb/MB8GA1UdIwQY MBaAFKkNRXxm0fWULcPngp1PzaStPd7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVExRmZHYlI5WlF0dy1lQ25VX05wSzA5M3NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS83YmY2NzktZTQ0Yy00OWMzLTg4Yjgt MmI2ZGNlYjZiMzljLzEvSGI5bFI2ejk2b3oydnlobHRjUXh1bldKQnY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS83YmY2NzktZTQ0Yy00OWMzLTg4YjgtMmI2ZGNlYjZiMzlj LzEvcVExRmZHYlI5WlF0dy1lQ25VX05wSzA5M3NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCua5UMA0E AgACMAcDBQMqC5EAMA0GCSqGSIb3DQEBCwUAA4IBAQBGrLtnAcMZcgCPELj/Q+xG EohMpKwggVSob8837ktve6f7XaWwYKUxiQR3lgYvwpUnnaDwXzanUdpGFt1eZSDK PlEmG1W0g/CbhB2n6kWV1hwaNayIMC4aZMsqmaTmh7lN+7jLjFeiWtpn+jOyjJAT BQEZ6kCyJZRZACGJ+lGELJjDjQ0qWZxgo/dRxoxPz/NlolDIwy0Xjf1bm6alW/37 /I5Zjt02F2Q1Lck9YKgQ9ZY6Uib4xRLSRiwzjFSuKPrN+RXBZuFnwWTLffICvcIG zn1U4AccXxZPipwMOuMVcBCxDkYBvoSdEqMEIM7qjfOuTgQuQbl0wNrillzGq4Oh -----END CERTIFICATE-----Generated at Sat Dec 6 16:16:32 2025 by rpki-client