This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/HhyQ1xbfi1ZT4qXLErneHVnMZKQ.roa File: HhyQ1xbfi1ZT4qXLErneHVnMZKQ.roa (raw, json) Hash identifier: LTQHQ2QemVphT2OwaYY6pIObkofdkSf8QmySEt23OP0= Subject key identifier: 1E:1C:90:D7:16:DF:8B:56:53:E2:A5:CB:12:B9:DE:1D:59:CC:64:A4 Certificate issuer: /CN=0a36b97736762d69080b43d9b00c61af1d311d8c Certificate serial: 019B78352163B88C8007D1A4150BF56068F5 Authority key identifier: 0A:36:B9:77:36:76:2D:69:08:0B:43:D9:B0:0C:61:AF:1D:31:1D:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/HhyQ1xbfi1ZT4qXLErneHVnMZKQ.roa Signing time: Thu 01 Jan 2026 06:18:26 +0000 ROA not before: Thu 01 Jan 2026 06:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209480 IP address blocks: 194.50.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.mft rsync://rpki.ripe.net/repository/DEFAULT/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:21:63:b8:8c:80:07:d1:a4:15:0b:f5:60:68:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a36b97736762d69080b43d9b00c61af1d311d8c Validity Not Before: Jan 1 06:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e1c90d716df8b5653e2a5cb12b9de1d59cc64a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5d:01:e9:18:59:ab:f3:71:4f:e7:f3:43:04: 92:55:c8:60:a8:e0:f7:89:67:da:db:28:50:8e:9d: e2:bf:00:81:c9:87:2e:6e:dd:6c:d0:02:83:4d:46: cf:8a:91:6f:f2:67:8b:1e:54:cb:41:cd:57:dd:e4: 76:a4:a5:61:dd:ea:82:66:33:9e:84:fe:4e:4b:1a: b6:6d:60:9d:50:b2:b7:4f:07:95:3f:0d:07:fc:5a: f2:bc:02:35:c8:92:2d:2c:7f:66:e1:64:d8:47:dd: 23:08:fa:a6:0f:0b:36:34:d8:be:68:16:21:9b:6c: 44:6b:d1:4c:b8:a9:68:82:e3:1a:62:c0:d2:da:82: 0e:6c:65:e9:fb:ed:5e:e4:1a:5b:33:2d:ea:43:24: fc:48:86:a0:7e:53:75:5b:a6:33:9c:93:aa:e7:90: c8:2b:0b:10:96:24:65:c9:14:2d:69:e5:38:41:18: f5:17:7d:50:7a:80:d6:69:c7:1b:12:d4:4d:bd:ca: ef:44:ed:28:15:af:b6:8f:29:15:6e:27:8d:f8:50: 0b:89:e5:2d:e9:63:2c:30:fe:8f:5a:48:1a:f4:71: 30:37:51:63:01:14:e2:fe:28:35:92:db:3b:ec:77: 5b:96:e6:09:6b:56:80:e4:08:6d:e2:80:a8:d3:9a: 40:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1C:90:D7:16:DF:8B:56:53:E2:A5:CB:12:B9:DE:1D:59:CC:64:A4 X509v3 Authority Key Identifier: keyid:0A:36:B9:77:36:76:2D:69:08:0B:43:D9:B0:0C:61:AF:1D:31:1D:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/HhyQ1xbfi1ZT4qXLErneHVnMZKQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dcd2ed-d35b-4cd5-a822-1a3226832c91/1/Cja5dzZ2LWkIC0PZsAxhrx0xHYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.50.36.0/24 Signature Algorithm: sha256WithRSAEncryption 53:28:0c:6c:31:82:3c:69:70:d5:5e:59:ef:3e:8d:99:3f:0f: c6:fc:91:79:a6:ea:c7:3e:f0:0a:26:d5:49:ac:0f:13:ec:4a: 04:6d:5a:91:cf:b0:53:ae:fa:0f:c3:5d:36:c7:f8:65:f8:f8: 49:53:87:7f:8b:a2:12:62:59:7a:1d:10:aa:aa:d0:cf:a6:49: 21:ca:76:ed:0b:a5:9a:3a:8d:14:f5:1c:bc:0c:66:03:be:a2: cf:fb:81:bc:6f:01:d3:bf:68:a2:51:d1:42:e1:d9:09:3f:95: 54:46:aa:97:74:9d:f9:57:7d:1d:42:13:08:5f:12:9a:d1:6c: 84:4e:e9:fc:bb:fa:1e:49:ea:07:36:f6:f2:03:46:6c:3d:f0: 47:7c:16:ba:b3:71:4d:e9:b7:fb:63:67:8a:bc:25:46:58:77: ba:6f:7b:48:ee:ff:8c:e2:1f:0f:26:12:a9:3a:c8:84:94:62: ee:0f:d6:d7:bb:8f:06:c4:a3:1e:38:55:ae:18:2b:ad:b9:87: 66:ef:ca:0f:12:82:e8:de:d9:7e:ac:c3:cc:cf:57:b9:c1:da: 74:e6:a9:e0:42:03:8a:72:be:b6:6f:58:25:aa:4f:e0:bc:21: 9a:f7:ac:4a:f5:bc:35:f4:a6:68:97:77:11:ce:56:ae:43:7d: 83:6f:bd:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NSFjuIyAB9GkFQv1YGj1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhMzZiOTc3MzY3NjJkNjkwODBiNDNkOWIwMGM2MWFmMWQz MTFkOGMwHhcNMjYwMTAxMDYxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTFjOTBkNzE2ZGY4YjU2NTNlMmE1Y2IxMmI5ZGUxZDU5Y2M2NGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApV0B6RhZq/NxT+fzQwSSVchgqOD3 iWfa2yhQjp3ivwCByYcubt1s0AKDTUbPipFv8meLHlTLQc1X3eR2pKVh3eqCZjOe hP5OSxq2bWCdULK3TweVPw0H/FryvAI1yJItLH9m4WTYR90jCPqmDws2NNi+aBYh m2xEa9FMuKloguMaYsDS2oIObGXp++1e5BpbMy3qQyT8SIagflN1W6YznJOq55DI KwsQliRlyRQtaeU4QRj1F31QeoDWaccbEtRNvcrvRO0oFa+2jykVbieN+FALieUt 6WMsMP6PWkga9HEwN1FjARTi/ig1kts77HdbluYJa1aA5Aht4oCo05pAlQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB4ckNcW34tWU+KlyxK53h1ZzGSkMB8GA1UdIwQY MBaAFAo2uXc2di1pCAtD2bAMYa8dMR2MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2phNWR6WjJMV2tJQzBQWnNBeGhyeDB4SFl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9kY2QyZWQtZDM1Yi00Y2Q1LWE4MjIt MWEzMjI2ODMyYzkxLzEvSGh5UTF4YmZpMVpUNHFYTEVybmVIVm5NWktRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9kY2QyZWQtZDM1Yi00Y2Q1LWE4MjItMWEzMjI2ODMyYzkx LzEvQ2phNWR6WjJMV2tJQzBQWnNBeGhyeDB4SFl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjIkMA0G CSqGSIb3DQEBCwUAA4IBAQBTKAxsMYI8aXDVXlnvPo2ZPw/G/JF5purHPvAKJtVJ rA8T7EoEbVqRz7BTrvoPw102x/hl+PhJU4d/i6ISYll6HRCqqtDPpkkhynbtC6Wa Oo0U9Ry8DGYDvqLP+4G8bwHTv2iiUdFC4dkJP5VURqqXdJ35V30dQhMIXxKa0WyE Tun8u/oeSeoHNvbyA0ZsPfBHfBa6s3FN6bf7Y2eKvCVGWHe6b3tI7v+M4h8PJhKp OsiElGLuD9bXu48GxKMeOFWuGCutuYdm78oPEoLo3tl+rMPMz1e5wdp05qngQgOK cr62b1glqk/gvCGa96xK9bw19KZol3cRzlauQ32Db71r -----END CERTIFICATE-----Generated at Mon Jan 26 01:42:27 2026 by rpki-client