This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1d5081-e4d2-40db-a5e9-af2404c25acf/1/H20JQocMFrDfWdVutaPCrCC7li4.roa File: H20JQocMFrDfWdVutaPCrCC7li4.roa (raw, json) Hash identifier: gZcsKxQMJ6dZalTlYBUSf2/QY+Hj8zaB/GmOyCIp1vw= Subject key identifier: 1F:6D:09:42:87:0C:16:B0:DF:59:D5:6E:B5:A3:C2:AC:20:BB:96:2E Certificate issuer: /CN=d377dc66a563a3af21ee07ab33e8bffe7af9288e Certificate serial: 019B7C1333C45ED7967132CBCCAD6DEDF57E Authority key identifier: D3:77:DC:66:A5:63:A3:AF:21:EE:07:AB:33:E8:BF:FE:7A:F9:28:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/03fcZqVjo68h7gerM-i__nr5KI4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1d5081-e4d2-40db-a5e9-af2404c25acf/1/H20JQocMFrDfWdVutaPCrCC7li4.roa Signing time: Fri 02 Jan 2026 00:19:51 +0000 ROA not before: Fri 02 Jan 2026 00:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60893 IP address blocks: 146.19.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/1d5081-e4d2-40db-a5e9-af2404c25acf/1/03fcZqVjo68h7gerM-i__nr5KI4.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/1d5081-e4d2-40db-a5e9-af2404c25acf/1/03fcZqVjo68h7gerM-i__nr5KI4.mft rsync://rpki.ripe.net/repository/DEFAULT/03fcZqVjo68h7gerM-i__nr5KI4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:33:c4:5e:d7:96:71:32:cb:cc:ad:6d:ed:f5:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d377dc66a563a3af21ee07ab33e8bffe7af9288e Validity Not Before: Jan 2 00:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f6d0942870c16b0df59d56eb5a3c2ac20bb962e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5d:2f:57:42:ab:87:54:db:03:99:06:1c:b5: fa:30:5f:88:a2:9a:65:1b:18:2d:e1:0f:6e:18:34: 1d:5b:d8:37:34:60:16:d8:4f:a3:8d:04:b5:b0:59: 94:d9:fd:09:da:2c:a6:7b:dd:9e:54:65:68:ce:6c: 64:14:33:cf:41:3a:8d:29:c0:a0:17:a2:2d:4a:79: 3d:3e:bf:0f:42:b0:5b:ee:8e:94:8d:18:c4:a8:3b: 22:b6:71:37:8d:c5:4c:30:13:94:6b:60:fe:76:30: e2:1d:62:47:13:95:8c:18:a9:d7:88:ab:ac:21:d9: db:4d:73:b3:a7:4c:1c:62:b5:1e:e2:22:04:df:15: 52:e0:37:b7:1b:15:3b:45:45:e2:06:c4:e2:f4:38: 50:6d:52:d2:23:53:af:66:ed:bb:e6:94:9b:78:4f: f4:d0:d1:ae:1c:b6:8d:79:81:52:16:03:2f:86:71: f0:1d:16:38:dd:61:1c:72:a8:fb:ad:98:e7:5c:ba: 96:69:1b:80:b8:3a:6d:e9:09:37:59:84:11:08:44: 4d:12:a5:a0:48:7d:c9:42:ca:03:be:dd:46:4e:e1: ca:db:06:54:05:ee:fc:97:4a:66:a0:cc:8e:9c:db: 66:78:d5:c6:5b:7f:86:6f:51:a1:e9:ef:70:98:5b: e9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:6D:09:42:87:0C:16:B0:DF:59:D5:6E:B5:A3:C2:AC:20:BB:96:2E X509v3 Authority Key Identifier: keyid:D3:77:DC:66:A5:63:A3:AF:21:EE:07:AB:33:E8:BF:FE:7A:F9:28:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/03fcZqVjo68h7gerM-i__nr5KI4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1d5081-e4d2-40db-a5e9-af2404c25acf/1/H20JQocMFrDfWdVutaPCrCC7li4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1d5081-e4d2-40db-a5e9-af2404c25acf/1/03fcZqVjo68h7gerM-i__nr5KI4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.165.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:42:83:dd:8b:b9:84:f7:0c:cf:c3:ac:9f:95:d1:06:64:0c: 5a:e6:da:70:58:40:83:63:42:51:c1:20:04:7c:91:8f:2d:4c: 60:7e:dd:6e:f4:da:78:95:a4:0d:11:81:c2:c5:86:b1:e3:4b: 40:c3:6b:96:71:05:cb:30:04:6d:16:11:95:a8:46:ca:26:c2: b5:9c:52:f6:4b:be:5e:7c:44:c5:f4:f8:79:f7:5a:57:fd:77: 16:ac:cd:3a:71:f4:52:18:26:04:b1:26:b2:0a:4d:1e:db:7c: aa:23:fa:33:87:c3:6c:24:6d:d6:b5:54:85:55:9e:b6:02:78: b4:86:f9:33:1b:c5:c1:ea:dc:75:f8:7d:03:92:dc:bb:62:b4: 82:87:9f:d0:f0:8c:76:b4:f6:b3:7f:93:65:a6:3f:99:74:43: 8c:f0:f2:7c:c3:89:9a:99:89:82:11:e7:ec:c5:23:c3:e7:81: 09:61:8d:2d:c8:43:c2:dd:5a:09:db:fe:e7:3a:d2:71:0f:7f: 01:60:b6:59:12:5a:01:e7:89:f4:cd:5a:d7:fe:68:3d:e9:ed: c5:59:e2:8b:a8:3c:d5:44:c0:3f:6a:f8:a1:fc:2a:6b:fa:d4: d3:a8:56:72:83:3b:1a:92:c1:83:7f:a2:d6:92:13:04:51:dc: 57:29:d6:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EzPEXteWcTLLzK1t7fV+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNzdkYzY2YTU2M2EzYWYyMWVlMDdhYjMzZThiZmZlN2Fm OTI4OGUwHhcNMjYwMTAyMDAxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjZkMDk0Mjg3MGMxNmIwZGY1OWQ1NmViNWEzYzJhYzIwYmI5NjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF0vV0Krh1TbA5kGHLX6MF+Ioppl Gxgt4Q9uGDQdW9g3NGAW2E+jjQS1sFmU2f0J2iyme92eVGVozmxkFDPPQTqNKcCg F6ItSnk9Pr8PQrBb7o6UjRjEqDsitnE3jcVMMBOUa2D+djDiHWJHE5WMGKnXiKus IdnbTXOzp0wcYrUe4iIE3xVS4De3GxU7RUXiBsTi9DhQbVLSI1OvZu275pSbeE/0 0NGuHLaNeYFSFgMvhnHwHRY43WEccqj7rZjnXLqWaRuAuDpt6Qk3WYQRCERNEqWg SH3JQsoDvt1GTuHK2wZUBe78l0pmoMyOnNtmeNXGW3+Gb1Gh6e9wmFvpAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB9tCUKHDBaw31nVbrWjwqwgu5YuMB8GA1UdIwQY MBaAFNN33GalY6OvIe4HqzPov/56+SiOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDNmY1pxVmpvNjhoN2dlck0taV9fbnI1S0k0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xZDUwODEtZTRkMi00MGRiLWE1ZTkt YWYyNDA0YzI1YWNmLzEvSDIwSlFvY01GckRmV2RWdXRhUENyQ0M3bGk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xZDUwODEtZTRkMi00MGRiLWE1ZTktYWYyNDA0YzI1YWNm LzEvMDNmY1pxVmpvNjhoN2dlck0taV9fbnI1S0k0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhOlMA0G CSqGSIb3DQEBCwUAA4IBAQCcQoPdi7mE9wzPw6yfldEGZAxa5tpwWECDY0JRwSAE fJGPLUxgft1u9Np4laQNEYHCxYax40tAw2uWcQXLMARtFhGVqEbKJsK1nFL2S75e fETF9Ph591pX/XcWrM06cfRSGCYEsSayCk0e23yqI/ozh8NsJG3WtVSFVZ62Ani0 hvkzG8XB6tx1+H0Dkty7YrSCh5/Q8Ix2tPazf5Nlpj+ZdEOM8PJ8w4mamYmCEefs xSPD54EJYY0tyEPC3VoJ2/7nOtJxD38BYLZZEloB54n0zVrX/mg96e3FWeKLqDzV RMA/avih/Cpr+tTTqFZygzsaksGDf6LWkhMEUdxXKdbH -----END CERTIFICATE-----Generated at Mon Jan 26 07:56:30 2026 by rpki-client