This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/D4HmthbydYoqExoa56VFIbe7J5A.roa File: D4HmthbydYoqExoa56VFIbe7J5A.roa (raw, json) Hash identifier: 1gmVpoixHN/Zn+8HJ6YdrukA3JeRxcEeBWZ/2aGh+ps= Subject key identifier: 0F:81:E6:B6:16:F2:75:8A:2A:13:1A:1A:E7:A5:45:21:B7:BB:27:90 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019B7D5C3255C54B8FC86A6D12522CECCFCD Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/D4HmthbydYoqExoa56VFIbe7J5A.roa Signing time: Fri 02 Jan 2026 06:19:12 +0000 ROA not before: Fri 02 Jan 2026 06:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3169 IP address blocks: 155.133.62.0/23 maxlen: 23 185.60.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:32:55:c5:4b:8f:c8:6a:6d:12:52:2c:ec:cf:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Jan 2 06:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f81e6b616f2758a2a131a1ae7a54521b7bb2790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4c:2d:ce:96:d4:26:1e:df:81:e9:32:5a:41: 65:75:e9:3a:42:ce:83:92:ab:80:86:8a:fe:02:35: de:86:34:a8:9c:49:8b:cc:b4:f5:70:be:97:01:c0: 3f:60:84:52:7a:c9:90:b9:41:66:7a:df:94:60:de: 5f:80:8f:b5:45:dc:21:60:c0:ab:c0:0a:c2:85:4e: 2c:d4:b8:21:e3:9b:a9:2f:d6:41:2d:79:d1:b3:cd: 4a:aa:97:d3:6e:a8:de:dc:7f:1c:a7:1a:dc:84:66: 34:66:54:0f:4d:1e:15:07:c3:90:79:a9:a7:e0:47: ba:6c:a0:95:81:01:eb:da:43:a0:15:ad:a0:5d:e1: 1c:3d:01:76:54:8e:4c:08:34:25:1b:af:87:18:87: 14:37:c4:44:d3:14:8d:19:9a:98:49:d9:be:86:12: 9e:aa:45:5d:3d:65:15:f9:12:e5:a9:aa:ba:40:dd: 7e:3e:ab:80:f5:a9:5f:1d:62:40:8d:9e:2b:69:cc: 24:b8:95:73:96:bb:53:1e:04:79:1f:c2:30:13:3f: 4b:89:1c:af:aa:34:6f:8a:ad:0b:16:b1:9f:67:06: 4c:05:e8:d5:b3:83:a8:0a:37:30:9e:4c:a2:aa:99: 76:94:a6:ca:34:1a:47:a5:ad:22:31:79:07:f2:07: b1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:81:E6:B6:16:F2:75:8A:2A:13:1A:1A:E7:A5:45:21:B7:BB:27:90 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/D4HmthbydYoqExoa56VFIbe7J5A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.133.62.0/23 185.60.231.0/24 Signature Algorithm: sha256WithRSAEncryption 24:6c:c9:51:ea:f6:7e:c3:27:67:e4:e6:9b:a5:6d:09:bc:77: 92:c1:4b:89:3b:03:83:7b:57:66:bc:30:ef:98:a7:f5:21:3c: 0a:65:45:fb:fb:b3:a3:a0:1e:b0:c6:f6:51:cf:d4:bf:e7:82: 53:7f:46:6c:a0:6f:86:26:c0:5a:4f:02:9c:55:88:88:ae:5b: 35:1f:ec:fc:eb:89:32:eb:52:c9:b3:2f:23:f1:e9:ba:53:ce: 90:16:1a:c8:d3:63:ad:30:2e:6e:2e:3c:0c:51:de:2e:b6:ef: f6:e8:5b:1e:a5:7a:8a:e3:fb:c3:45:81:52:2a:e3:01:da:38: 51:b2:9c:4a:01:1e:91:3d:54:e2:91:41:ab:b5:c5:1b:a2:1a: d7:ac:1f:45:ad:bb:e0:24:87:17:3f:f1:50:24:58:a4:4e:7f: 70:68:26:4f:51:11:dd:52:b9:97:4f:16:03:2f:fd:b5:d2:74: c5:8a:c4:9b:27:3d:f0:6d:9a:28:f8:16:65:26:d4:2a:a2:3b: bb:17:b7:a4:21:06:1e:35:1b:33:8f:50:f2:7e:4d:49:83:5f: 4c:14:45:ec:1f:bb:4b:57:36:e7:05:53:19:3b:60:69:8a:fa: d5:58:f6:06:ef:88:4f:fb:e0:d0:1e:ee:03:c1:f0:ce:2b:1a: c5:df:3e:58 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9XDJVxUuPyGptElIs7M/NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwMTAyMDYxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjgxZTZiNjE2ZjI3NThhMmExMzFhMWFlN2E1NDUyMWI3YmIyNzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EwtzpbUJh7fgekyWkFldek6Qs6D kquAhor+AjXehjSonEmLzLT1cL6XAcA/YIRSesmQuUFmet+UYN5fgI+1RdwhYMCr wArChU4s1Lgh45upL9ZBLXnRs81KqpfTbqje3H8cpxrchGY0ZlQPTR4VB8OQeamn 4Ee6bKCVgQHr2kOgFa2gXeEcPQF2VI5MCDQlG6+HGIcUN8RE0xSNGZqYSdm+hhKe qkVdPWUV+RLlqaq6QN1+PquA9alfHWJAjZ4racwkuJVzlrtTHgR5H8IwEz9LiRyv qjRviq0LFrGfZwZMBejVs4OoCjcwnkyiqpl2lKbKNBpHpa0iMXkH8gex6wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFA+B5rYW8nWKKhMaGuelRSG3uyeQMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRDRIbXRoYnlkWW9xRXhvYTU2VkZJYmU3SjVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBm4U+AwQA uTznMA0GCSqGSIb3DQEBCwUAA4IBAQAkbMlR6vZ+wydn5OabpW0JvHeSwUuJOwOD e1dmvDDvmKf1ITwKZUX7+7OjoB6wxvZRz9S/54JTf0ZsoG+GJsBaTwKcVYiIrls1 H+z864ky61LJsy8j8em6U86QFhrI02OtMC5uLjwMUd4utu/26FsepXqK4/vDRYFS KuMB2jhRspxKAR6RPVTikUGrtcUbohrXrB9FrbvgJIcXP/FQJFikTn9waCZPURHd UrmXTxYDL/210nTFisSbJz3wbZoo+BZlJtQqoju7F7ekIQYeNRszj1Dyfk1Jg19M FEXsH7tLVzbnBVMZO2BpivrVWPYG74hP++DQHu4DwfDOKxrF3z5Y -----END CERTIFICATE-----Generated at Sun Jan 25 22:41:49 2026 by rpki-client