This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/heDWIjAtV4Dfu6bhg1J9nZcl5qo.roa File: heDWIjAtV4Dfu6bhg1J9nZcl5qo.roa (raw, json) Hash identifier: zW/+lZ7RfSWqiEzqmlzW/11hnbmw6v/qc+vi/mY5ysc= Subject key identifier: 85:E0:D6:22:30:2D:57:80:DF:BB:A6:E1:83:52:7D:9D:97:25:E6:AA Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b Certificate serial: 019B7BA50EB1BFE459E0ABA0E4ED219E1D2F Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/heDWIjAtV4Dfu6bhg1J9nZcl5qo.roa Signing time: Thu 01 Jan 2026 22:19:33 +0000 ROA not before: Thu 01 Jan 2026 22:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57119 IP address blocks: 185.215.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:0e:b1:bf:e4:59:e0:ab:a0:e4:ed:21:9e:1d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b Validity Not Before: Jan 1 22:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85e0d622302d5780dfbba6e183527d9d9725e6aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:01:16:9d:06:12:51:e5:96:06:b9:eb:c6:c9: f6:6e:63:85:f6:ad:d1:d3:53:52:df:5e:c7:66:77: 1c:79:62:75:50:3e:11:ba:c5:4f:12:01:0d:3e:e5: 0b:02:e8:95:7a:8f:83:64:17:05:db:59:83:6b:69: be:4e:94:51:c0:bb:bb:d3:01:f7:0f:a9:69:85:2f: 75:50:91:6a:7a:97:78:e6:1b:f8:d9:d7:7f:fb:3f: 68:53:f4:72:80:75:a8:50:6f:12:b2:88:00:eb:3c: 5a:df:4e:2f:91:9e:b3:eb:07:71:49:24:dd:dc:4a: 95:d9:45:1c:44:34:ff:20:2e:dd:a2:64:3b:16:ac: 97:e0:a3:3e:7d:d0:5f:f8:57:1a:cd:4c:95:6a:7b: 63:8c:12:56:e5:4f:4a:c9:31:2f:e4:1b:86:e2:2c: 68:74:da:f6:71:dd:ab:03:fe:cc:a1:a1:09:ea:b1: 18:40:69:a9:5b:b7:75:13:50:aa:21:1e:63:d2:8c: 4d:45:95:9b:c8:5b:95:a9:be:93:4e:ee:31:52:92: 5b:9e:b6:54:b2:c0:46:10:3b:4d:85:03:1c:df:02: ad:5e:24:c0:58:75:6c:1d:8f:0a:a0:82:db:b7:29: b8:20:43:4b:1f:3a:5f:d3:f4:30:3e:32:8c:11:dd: 1f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E0:D6:22:30:2D:57:80:DF:BB:A6:E1:83:52:7D:9D:97:25:E6:AA X509v3 Authority Key Identifier: keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/heDWIjAtV4Dfu6bhg1J9nZcl5qo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.215.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:0d:d9:9f:e5:aa:48:19:9e:03:31:57:c0:75:65:c8:14:b6: a4:a1:05:16:76:d7:f7:75:ec:fa:1e:d1:41:fc:2e:fb:78:6e: 61:7c:02:0c:0e:16:a3:f2:57:3d:29:bb:b3:39:9b:d9:01:e8: 2d:87:27:3e:99:3c:2a:93:9f:87:a9:e6:01:7d:c1:d3:b4:bf: 7b:01:a2:5c:32:a9:c7:55:fc:a9:c9:e8:b8:ee:82:d2:50:9a: 33:95:92:80:60:aa:f4:61:68:1e:e0:99:5d:ee:75:b3:55:a0: 44:b7:99:86:ee:a5:69:6c:92:e7:9b:c5:51:c3:12:9a:60:e7: 63:42:66:38:8b:39:3e:a4:7e:19:99:37:36:94:49:1c:d7:93: 94:38:2f:14:bf:42:df:2f:bc:4a:b6:88:bc:d3:f3:37:cd:20: 8a:d5:ef:07:4e:bf:29:1e:1d:62:5c:92:8c:6c:84:63:44:ba: 6f:25:4d:33:05:bd:72:76:02:98:b4:fe:b4:38:8d:03:dd:6a: c0:43:17:72:ec:08:96:ec:a3:a5:66:9a:b6:e2:17:6b:da:60: 91:d1:35:4e:72:23:83:c4:70:44:00:76:67:ae:16:4b:19:e1: 3e:11:d1:b9:93:8b:bb:3f:ee:32:7a:42:af:c3:3a:24:10:5e: db:fc:34:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pQ6xv+RZ4Kug5O0hnh0vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjVhNDBiMjc0YTk2M2U1ZWQzZWYwMmU4Mzk5Y2I5YjFi YjBjN2IwHhcNMjYwMTAxMjIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWUwZDYyMjMwMmQ1NzgwZGZiYmE2ZTE4MzUyN2Q5ZDk3MjVlNmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAEWnQYSUeWWBrnrxsn2bmOF9q3R 01NS317HZncceWJ1UD4RusVPEgENPuULAuiVeo+DZBcF21mDa2m+TpRRwLu70wH3 D6lphS91UJFqepd45hv42dd/+z9oU/RygHWoUG8SsogA6zxa304vkZ6z6wdxSSTd 3EqV2UUcRDT/IC7domQ7FqyX4KM+fdBf+FcazUyVantjjBJW5U9KyTEv5BuG4ixo dNr2cd2rA/7MoaEJ6rEYQGmpW7d1E1CqIR5j0oxNRZWbyFuVqb6TTu4xUpJbnrZU ssBGEDtNhQMc3wKtXiTAWHVsHY8KoILbtym4IENLHzpf0/QwPjKMEd0fIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIXg1iIwLVeA37um4YNSfZ2XJeaqMB8GA1UdIwQY MBaAFIS1pAsnSpY+XtPvAug5nLmxuwx7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjct YTcyMGFmODYxZmVlLzEvaGVEV0lqQXRWNERmdTZiaGcxSjluWmNsNXFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjctYTcyMGFmODYxZmVl LzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCudcYMA0G CSqGSIb3DQEBCwUAA4IBAQB+Ddmf5apIGZ4DMVfAdWXIFLakoQUWdtf3dez6HtFB /C77eG5hfAIMDhaj8lc9KbuzOZvZAegthyc+mTwqk5+HqeYBfcHTtL97AaJcMqnH Vfypyei47oLSUJozlZKAYKr0YWge4Jld7nWzVaBEt5mG7qVpbJLnm8VRwxKaYOdj QmY4izk+pH4ZmTc2lEkc15OUOC8Uv0LfL7xKtoi80/M3zSCK1e8HTr8pHh1iXJKM bIRjRLpvJU0zBb1ydgKYtP60OI0D3WrAQxdy7AiW7KOlZpq24hdr2mCR0TVOciOD xHBEAHZnrhZLGeE+EdG5k4u7P+4yekKvwzokEF7b/DTx -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:33 2026 by rpki-client