This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/8huTzHW57A5cCLn4DJengqWUHbU.roa File: 8huTzHW57A5cCLn4DJengqWUHbU.roa (raw, json) Hash identifier: QbaePOyAbanHl8XCDKIaOAWESWKmtviz49Mi0ZJ8gU8= Subject key identifier: F2:1B:93:CC:75:B9:EC:0E:5C:08:B9:F8:0C:97:A7:82:A5:94:1D:B5 Certificate issuer: /CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582 Certificate serial: 019B7E3920CF7D5A9D6DB061757A73316690 Authority key identifier: FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/8huTzHW57A5cCLn4DJengqWUHbU.roa Signing time: Fri 02 Jan 2026 10:20:31 +0000 ROA not before: Fri 02 Jan 2026 10:20:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199927 IP address blocks: 45.11.12.0/22 maxlen: 22 185.42.56.0/22 maxlen: 22 2a04:8e40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/_DWHfMA4v_25e7PW6iFqtSs6BYI.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/_DWHfMA4v_25e7PW6iFqtSs6BYI.mft rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:20:cf:7d:5a:9d:6d:b0:61:75:7a:73:31:66:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582 Validity Not Before: Jan 2 10:20:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f21b93cc75b9ec0e5c08b9f80c97a782a5941db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1c:3e:86:b5:70:05:51:fc:fc:d7:fb:89:53: 9f:cb:bd:18:1e:05:c3:71:65:e8:43:af:88:65:8d: 54:1c:80:e6:52:9f:63:de:e5:5b:6c:71:6f:a2:e6: 80:34:10:31:5a:2e:9e:b4:9d:56:15:0a:bb:5a:d9: f5:f4:30:36:47:0b:1e:28:8c:79:6b:37:1d:f1:83: bc:bf:49:8c:35:f9:a6:a1:66:42:8e:6e:94:b7:ad: 13:7e:1f:13:7d:0c:cc:68:c0:51:b0:b2:84:e9:d8: 58:55:40:24:95:02:ea:ed:62:c7:72:56:08:c7:84: e4:c0:8f:ff:af:15:3e:82:56:53:56:8c:0d:d5:ae: 5f:09:69:58:a7:c4:7f:18:c0:04:d9:36:24:85:8c: e4:d1:43:54:42:0e:2c:91:c7:4f:58:90:c4:e0:b6: a7:0d:06:9b:9f:72:a4:e5:44:55:f9:4d:3a:15:3b: 6a:80:ab:ed:f5:83:9d:f0:01:63:3b:48:4d:4d:fb: ba:fb:d2:75:fe:7c:e3:64:a0:54:44:42:61:26:63: cb:84:75:71:4d:7b:ba:33:dd:83:93:88:52:7d:9b: aa:32:ea:18:60:17:26:fb:3f:01:8f:0d:ee:37:d9: e0:c5:e0:67:e8:ad:57:ae:2d:6b:2a:95:49:f0:b9: 95:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1B:93:CC:75:B9:EC:0E:5C:08:B9:F8:0C:97:A7:82:A5:94:1D:B5 X509v3 Authority Key Identifier: keyid:FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/8huTzHW57A5cCLn4DJengqWUHbU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/_DWHfMA4v_25e7PW6iFqtSs6BYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.12.0/22 185.42.56.0/22 IPv6: 2a04:8e40::/29 Signature Algorithm: sha256WithRSAEncryption 06:b1:9b:17:7b:bf:19:19:35:b5:db:56:29:28:27:43:df:f2: ee:d2:72:f1:f5:a6:5b:18:61:63:65:00:8f:57:8c:79:02:28: 31:2d:fa:08:57:7e:35:f1:c3:a9:0e:01:df:67:fa:00:63:18: 64:d4:49:a5:62:1f:8b:3f:18:87:9c:0c:76:ea:d4:a3:25:b0: b7:9a:76:8b:54:8b:a1:d5:49:91:3b:0f:7c:7b:37:b8:79:22: 13:bd:9b:16:dc:24:0d:db:38:da:ff:4e:d6:b6:cc:57:e7:dc: b3:f7:2e:51:bc:0a:66:d8:7d:07:1a:4d:4f:57:98:9b:23:8b: ec:db:93:d1:15:df:aa:18:19:51:f6:6d:21:1e:e9:b1:9b:e3: 4b:bf:7b:37:9d:46:cb:4f:68:8a:68:34:34:49:42:30:ef:5f: c7:7f:2b:23:c7:37:e5:a4:10:cb:37:14:cd:98:d6:56:16:ca: 2d:db:78:8b:46:41:e2:0f:d5:3b:36:41:19:00:36:07:71:19: 0e:4c:b9:38:81:7d:67:ed:16:0d:39:d3:a8:2a:ef:e5:9d:2d: 0f:06:b9:94:26:ff:b4:5d:a6:a6:ba:2a:38:f6:80:04:1b:b1: 24:a4:23:fc:78:46:b7:33:35:99:a0:00:55:a3:6b:73:90:32: 2f:19:a7:56 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt+OSDPfVqdbbBhdXpzMWaQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjMzU4NzdjYzAzOGJmZmRiOTdiYjNkNmVhMjE2YWI1MmIz YTA1ODIwHhcNMjYwMTAyMTAyMDMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjFiOTNjYzc1YjllYzBlNWMwOGI5ZjgwYzk3YTc4MmE1OTQxZGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxw+hrVwBVH8/Nf7iVOfy70YHgXD cWXoQ6+IZY1UHIDmUp9j3uVbbHFvouaANBAxWi6etJ1WFQq7Wtn19DA2RwseKIx5 azcd8YO8v0mMNfmmoWZCjm6Ut60Tfh8TfQzMaMBRsLKE6dhYVUAklQLq7WLHclYI x4TkwI//rxU+glZTVowN1a5fCWlYp8R/GMAE2TYkhYzk0UNUQg4skcdPWJDE4Lan DQabn3Kk5URV+U06FTtqgKvt9YOd8AFjO0hNTfu6+9J1/nzjZKBUREJhJmPLhHVx TXu6M92Dk4hSfZuqMuoYYBcm+z8Bjw3uN9ngxeBn6K1Xri1rKpVJ8LmVCwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFPIbk8x1uewOXAi5+AyXp4KllB21MB8GA1UdIwQY MBaAFPw1h3zAOL/9uXuz1uoharUrOgWCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0RXSGZNQTR2XzI1ZTdQVzZpRnF0U3M2QllJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lODA3MmEtNjAxNy00ZWQ1LWJlZTMt OGU2NWIzNDdmMjE4LzEvOGh1VHpIVzU3QTVjQ0xuNERKZW5ncVdVSGJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9lODA3MmEtNjAxNy00ZWQ1LWJlZTMtOGU2NWIzNDdmMjE4 LzEvX0RXSGZNQTR2XzI1ZTdQVzZpRnF0U3M2QllJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLQsMAwQC uSo4MA0EAgACMAcDBQMqBI5AMA0GCSqGSIb3DQEBCwUAA4IBAQAGsZsXe78ZGTW1 21YpKCdD3/Lu0nLx9aZbGGFjZQCPV4x5AigxLfoIV3418cOpDgHfZ/oAYxhk1Eml Yh+LPxiHnAx26tSjJbC3mnaLVIuh1UmROw98eze4eSITvZsW3CQN2zja/07WtsxX 59yz9y5RvApm2H0HGk1PV5ibI4vs25PRFd+qGBlR9m0hHumxm+NLv3s3nUbLT2iK aDQ0SUIw71/HfysjxzflpBDLNxTNmNZWFsot23iLRkHiD9U7NkEZADYHcRkOTLk4 gX1n7RYNOdOoKu/lnS0PBrmUJv+0Xaamuio49oAEG7EkpCP8eEa3MzWZoABVo2tz kDIvGadW -----END CERTIFICATE-----Generated at Sun Jan 25 18:06:59 2026 by rpki-client