This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/hqktrCsZJqimo2ahj-sAvXASn80.roa File: hqktrCsZJqimo2ahj-sAvXASn80.roa (raw, json) Hash identifier: SEvGp2GlMOZxCF6DQljxJGTchNAJHIxC4Qc0ihc5bAQ= Subject key identifier: 86:A9:2D:AC:2B:19:26:A8:A6:A3:66:A1:8F:EB:00:BD:70:12:9F:CD Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Certificate serial: 019B7758FDBAD791DC34F1E8DDCC9660925D Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/hqktrCsZJqimo2ahj-sAvXASn80.roa Signing time: Thu 01 Jan 2026 02:17:59 +0000 ROA not before: Thu 01 Jan 2026 02:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 4637 IP address blocks: 88.223.47.0/24 maxlen: 24 95.173.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:fd:ba:d7:91:dc:34:f1:e8:dd:cc:96:60:92:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4 Validity Not Before: Jan 1 02:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86a92dac2b1926a8a6a366a18feb00bd70129fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ed:cb:d4:8a:37:bd:a7:c2:2b:f5:c5:be:1b: 53:aa:a9:af:31:77:9c:8d:6c:64:69:57:04:38:31: 40:2a:65:01:4e:dd:fd:29:3e:67:ff:0d:8b:fe:25: 86:cc:d9:cf:e7:d3:68:a6:62:b5:4f:82:fd:02:a2: 10:34:27:dd:4a:11:1e:76:cc:da:0f:cb:4e:a9:56: 8b:ec:a8:c4:49:85:42:64:5a:f4:e7:33:30:35:18: ed:5a:db:99:c9:c3:0c:fc:48:67:bb:d8:64:53:98: f5:df:ae:50:27:1b:fd:8b:1e:15:7a:3d:32:e8:48: 93:e8:8a:48:53:ac:66:65:f1:c1:a8:cb:2f:ec:4b: af:f1:34:df:c8:8d:94:7f:dc:66:3b:f1:4b:1f:31: c7:b5:86:5e:04:b7:6e:20:7d:33:30:41:60:78:6d: 44:29:8b:48:b3:d1:14:eb:11:d9:79:dc:30:bc:db: 9a:b6:99:fc:e3:a4:50:bd:a5:12:92:37:01:e3:0c: 7b:b5:91:67:fe:59:96:fd:6c:82:d6:aa:3d:72:bf: e2:95:53:2b:57:b8:52:c3:99:93:a4:19:d6:d7:ba: 90:00:e7:a4:27:02:1b:68:d9:bb:a4:16:72:96:1c: b4:00:80:9f:7f:d3:9d:4c:8d:08:35:63:82:dd:05: 01:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A9:2D:AC:2B:19:26:A8:A6:A3:66:A1:8F:EB:00:BD:70:12:9F:CD X509v3 Authority Key Identifier: keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/hqktrCsZJqimo2ahj-sAvXASn80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.223.47.0/24 95.173.55.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:45:c8:d5:a8:7d:3d:ba:05:3d:c6:40:e6:f6:64:9d:f7:c1: 59:54:fc:c3:a2:95:0b:0b:7a:b6:b9:d8:96:4c:bc:c3:c2:b2: d1:65:98:7b:dd:2e:be:52:60:2c:19:c7:b4:02:8d:90:e0:f4: 79:4e:2f:3a:9d:4e:f7:74:32:03:11:91:31:82:ce:a7:8a:d2: 83:a0:88:9d:16:58:c2:e3:72:39:cb:c2:34:72:39:b6:11:ac: b2:0b:13:c1:9a:14:b0:9f:17:6f:22:c5:1e:40:d0:72:78:89: d6:11:70:70:25:8a:6f:a4:0f:f6:a1:ab:89:c9:c4:bd:0b:ae: a8:ae:ab:26:6f:6f:8d:eb:03:e4:da:eb:3a:4f:81:75:56:5f: 80:90:63:ae:30:6d:13:3d:cb:d8:0a:20:87:05:74:86:53:dc: 9c:44:fd:b2:6b:60:df:7c:80:34:2c:7e:2e:56:ce:94:75:7d: 51:00:12:04:4d:ec:eb:dc:d6:a8:19:87:26:50:fd:05:d4:91: a1:19:8d:50:7e:2e:2f:08:b3:eb:df:ff:29:80:c9:f7:57:a6: b1:c3:47:ee:d6:aa:24:9e:1a:03:91:bb:89:6e:6c:b8:01:1a: c9:d3:6d:63:10:ed:47:31:6d:88:fa:b0:27:d5:6d:83:34:97: b0:c3:f1:ba -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WP2615HcNPHo3cyWYJJdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjYxNzU4Y2UzMzA2MjI0NzBhMzlhZThkNmVmNGEyMDQ0 ZjgzYzQwHhcNMjYwMTAxMDIxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmE5MmRhYzJiMTkyNmE4YTZhMzY2YTE4ZmViMDBiZDcwMTI5ZmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+3L1Io3vafCK/XFvhtTqqmvMXec jWxkaVcEODFAKmUBTt39KT5n/w2L/iWGzNnP59NopmK1T4L9AqIQNCfdShEedsza D8tOqVaL7KjESYVCZFr05zMwNRjtWtuZycMM/Ehnu9hkU5j1365QJxv9ix4Vej0y 6EiT6IpIU6xmZfHBqMsv7Euv8TTfyI2Uf9xmO/FLHzHHtYZeBLduIH0zMEFgeG1E KYtIs9EU6xHZedwwvNuatpn846RQvaUSkjcB4wx7tZFn/lmW/WyC1qo9cr/ilVMr V7hSw5mTpBnW17qQAOekJwIbaNm7pBZylhy0AICff9OdTI0INWOC3QUBKwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIapLawrGSaopqNmoY/rAL1wEp/NMB8GA1UdIwQY MBaAFGBmF1jOMwYiRwo5ro1u9KIET4PEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2Ut MWY4NzQ2OTQ1NDgzLzEvaHFrdHJDc1pKcWltbzJhaGotc0F2WEFTbjgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2UtMWY4NzQ2OTQ1NDgz LzEvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWN8vAwQA X603MA0GCSqGSIb3DQEBCwUAA4IBAQALRcjVqH09ugU9xkDm9mSd98FZVPzDopUL C3q2udiWTLzDwrLRZZh73S6+UmAsGce0Ao2Q4PR5Ti86nU73dDIDEZExgs6nitKD oIidFljC43I5y8I0cjm2EayyCxPBmhSwnxdvIsUeQNByeInWEXBwJYpvpA/2oauJ ycS9C66orqsmb2+N6wPk2us6T4F1Vl+AkGOuMG0TPcvYCiCHBXSGU9ycRP2ya2Df fIA0LH4uVs6UdX1RABIETezr3NaoGYcmUP0F1JGhGY1Qfi4vCLPr3/8pgMn3V6ax w0fu1qoknhoDkbuJbmy4ARrJ021jEO1HMW2I+rAn1W2DNJeww/G6 -----END CERTIFICATE-----Generated at Sun Jan 25 08:50:36 2026 by rpki-client