This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/huE20aXM3N7PaG8GceIj6RJyTlA.roa File: huE20aXM3N7PaG8GceIj6RJyTlA.roa (raw, json) Hash identifier: jcJ8ew+vBDxyYA6S4523hKWnsVK0xej8XCe9HX6u9OM= Subject key identifier: 86:E1:36:D1:A5:CC:DC:DE:CF:68:6F:06:71:E2:23:E9:12:72:4E:50 Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52 Certificate serial: 019B77C6A12552B16C1723668B1759E87826 Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/huE20aXM3N7PaG8GceIj6RJyTlA.roa Signing time: Thu 01 Jan 2026 04:17:44 +0000 ROA not before: Thu 01 Jan 2026 04:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396597 IP address blocks: 81.19.195.30/32 maxlen: 32 81.19.195.31/32 maxlen: 32 185.100.0.53/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a1:25:52:b1:6c:17:23:66:8b:17:59:e8:78:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52 Validity Not Before: Jan 1 04:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86e136d1a5ccdcdecf686f0671e223e912724e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4e:7d:49:8f:5c:0f:50:72:b9:b6:b3:07:83: 84:b5:da:d3:08:f2:88:73:a2:be:3f:79:30:46:11: a0:95:8e:7a:68:9a:dc:a5:b6:13:e0:b0:56:00:be: c8:55:97:bf:f7:4a:86:57:a1:03:74:8c:eb:bd:3e: e5:b1:d7:7b:02:41:01:69:db:a9:d7:78:b5:fe:95: 67:0c:fe:2d:83:93:36:f1:f1:fa:3f:0b:d4:c7:10: db:3b:b7:67:f2:3d:73:98:ff:bf:c8:a0:a8:8b:e4: bb:68:07:b3:2a:1d:25:e7:c6:87:12:15:9b:1c:7e: 28:25:a5:90:cf:ae:89:5a:0a:8c:78:65:14:22:1b: 57:6f:23:88:f7:aa:67:bf:38:4d:1d:de:05:68:0f: 74:af:8e:ba:d2:5e:6d:94:03:95:8f:a7:8b:26:28: 31:a3:07:08:b8:99:9e:a4:59:3c:fb:19:f8:0a:dd: 39:82:c7:7a:7c:63:3b:8d:aa:4d:42:04:a9:d9:f2: 37:7f:e7:c9:76:da:fb:f7:46:38:e3:d0:dc:f8:2f: 9f:82:53:fd:e6:74:8f:23:ba:62:70:0c:7e:db:8c: a2:3f:79:55:08:6b:8f:f5:f2:0f:84:c3:71:0e:05: 81:58:e0:e8:59:ef:4f:0f:1f:c3:43:29:45:3a:ec: 81:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E1:36:D1:A5:CC:DC:DE:CF:68:6F:06:71:E2:23:E9:12:72:4E:50 X509v3 Authority Key Identifier: keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/huE20aXM3N7PaG8GceIj6RJyTlA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.19.195.30/31 185.100.0.53/32 Signature Algorithm: sha256WithRSAEncryption 38:e7:21:c4:a8:b4:56:f5:b0:0f:23:68:1d:86:85:2f:c2:47: a5:2c:c8:fe:e1:d2:25:35:64:c8:d8:60:5f:10:b9:62:6c:95: 32:58:60:4d:a8:b2:ff:58:a8:ce:f1:09:7b:83:56:a5:b2:c9: da:29:50:50:8e:da:f3:96:0d:ed:1f:77:ed:7f:7e:f7:34:77: 9f:ac:54:91:a5:c9:f8:ec:43:b6:e7:fa:9b:ec:70:bf:69:2f: 49:b0:5f:93:71:fc:9a:4d:7e:32:17:98:04:e0:21:fa:7b:0e: 39:0f:d9:c9:54:26:fe:cb:dc:0c:26:b1:2c:81:75:10:eb:7a: c0:be:69:e7:2f:66:ab:74:57:74:0e:67:f4:26:c3:4d:a9:b6: 14:6f:73:e3:c0:1f:ab:76:36:12:ac:af:80:69:5a:52:87:b4: 07:96:79:76:3c:8f:60:e8:66:90:ba:55:46:8b:52:30:09:7d: 36:34:cc:e9:83:a9:2b:d7:80:80:21:9d:9e:ab:34:16:6f:a3: 90:52:db:ef:7d:0f:48:6b:55:87:07:50:b6:d1:07:1b:62:fc: c2:d2:41:00:f4:fb:bd:ea:d9:3a:e5:bf:09:de:8a:d0:3e:e6: 7a:cc:b4:f8:ab:2a:3d:65:6f:b7:18:78:b9:c4:c5:1a:c4:ed: b2:1f:a1:dc -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3xqElUrFsFyNmixdZ6HgmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl MDZkNTIwHhcNMjYwMTAxMDQxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmUxMzZkMWE1Y2NkY2RlY2Y2ODZmMDY3MWUyMjNlOTEyNzI0ZTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzk59SY9cD1ByubazB4OEtdrTCPKI c6K+P3kwRhGglY56aJrcpbYT4LBWAL7IVZe/90qGV6EDdIzrvT7lsdd7AkEBadup 13i1/pVnDP4tg5M28fH6PwvUxxDbO7dn8j1zmP+/yKCoi+S7aAezKh0l58aHEhWb HH4oJaWQz66JWgqMeGUUIhtXbyOI96pnvzhNHd4FaA90r4660l5tlAOVj6eLJigx owcIuJmepFk8+xn4Ct05gsd6fGM7japNQgSp2fI3f+fJdtr790Y449Dc+C+fglP9 5nSPI7picAx+24yiP3lVCGuP9fIPhMNxDgWBWODoWe9PDx/DQylFOuyBowIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFIbhNtGlzNzez2hvBnHiI+kSck5QMB8GA1UdIwQY MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt MzZjY2I1YTA2MTk1LzEvaHVFMjBhWE0zTjdQYUc4R2NlSWo2Ukp5VGxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1 LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF ALlkADUwDQYJKoZIhvcNAQELBQADggEBADjnIcSotFb1sA8jaB2GhS/CR6UsyP7h 0iU1ZMjYYF8QuWJslTJYYE2osv9YqM7xCXuDVqWyydopUFCO2vOWDe0fd+1/fvc0 d5+sVJGlyfjsQ7bn+pvscL9pL0mwX5Nx/JpNfjIXmATgIfp7DjkP2clUJv7L3Awm sSyBdRDresC+aecvZqt0V3QOZ/Qmw02pthRvc+PAH6t2NhKsr4BpWlKHtAeWeXY8 j2DoZpC6VUaLUjAJfTY0zOmDqSvXgIAhnZ6rNBZvo5BS2+99D0hrVYcHULbRBxti /MLSQQD0+73q2TrlvwneitA+5nrMtPirKj1lb7cYeLnExRrE7bIfodw= -----END CERTIFICATE-----Generated at Mon Jan 26 05:05:13 2026 by rpki-client