This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/8ptK5EyL818ELWz7bccjTkhrDT8.roa File: 8ptK5EyL818ELWz7bccjTkhrDT8.roa (raw, json) Hash identifier: J57Tpp1jGmkjoUMhY5enpHuf4ytrasZEoVVY530U8w0= Subject key identifier: F2:9B:4A:E4:4C:8B:F3:5F:04:2D:6C:FB:6D:C7:23:4E:48:6B:0D:3F Certificate issuer: /CN=86efb49df2474a6042b9f210bfea861b1b2886ed Certificate serial: 019B7BA544408EA2CC683538F7EB4C9FB6AA Authority key identifier: 86:EF:B4:9D:F2:47:4A:60:42:B9:F2:10:BF:EA:86:1B:1B:28:86:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu-0nfJHSmBCufIQv-qGGxsohu0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/8ptK5EyL818ELWz7bccjTkhrDT8.roa Signing time: Thu 01 Jan 2026 22:19:47 +0000 ROA not before: Thu 01 Jan 2026 22:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35701 IP address blocks: 192.109.204.0/24 maxlen: 24 195.234.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/hu-0nfJHSmBCufIQv-qGGxsohu0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/hu-0nfJHSmBCufIQv-qGGxsohu0.mft rsync://rpki.ripe.net/repository/DEFAULT/hu-0nfJHSmBCufIQv-qGGxsohu0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:44:40:8e:a2:cc:68:35:38:f7:eb:4c:9f:b6:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86efb49df2474a6042b9f210bfea861b1b2886ed Validity Not Before: Jan 1 22:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f29b4ae44c8bf35f042d6cfb6dc7234e486b0d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1c:07:d9:12:43:c2:1c:20:a1:5c:f7:ca:d3: 31:89:f9:88:00:97:d5:5a:eb:1f:40:ee:9d:1c:3b: d0:d6:0b:26:26:83:5c:c4:d7:f3:7b:8b:6a:6f:b3: 9b:ef:eb:65:1a:10:11:86:0f:92:10:10:f6:6c:ad: f3:53:68:ae:d1:40:d6:f3:77:95:35:47:8c:80:19: 79:92:96:2f:81:9c:fd:aa:d6:98:ce:aa:bc:3d:09: 45:27:b8:25:90:b4:22:74:87:5a:c8:33:fa:2e:40: 78:7a:fe:9d:d1:4c:2a:12:44:e3:e3:7f:1a:68:a3: 82:20:63:19:2f:df:e7:7f:c0:9f:4f:17:68:ab:0a: b9:0b:3a:68:8e:65:c3:f6:26:ec:ad:5c:96:f6:2e: 99:00:68:c4:79:11:d7:71:cd:43:16:5a:83:a2:41: 0b:9f:b1:ac:6f:05:d6:b0:4c:54:03:7b:31:2e:8e: fa:99:2f:2c:42:48:3b:13:7d:4f:df:f2:e1:3a:77: 3d:8a:35:c0:07:33:9a:c2:4c:13:f8:65:59:1a:ee: f4:f1:57:19:4e:79:54:59:8e:38:54:4f:ba:f3:c4: 44:4a:cf:70:4d:61:41:0a:cc:8a:27:b9:ec:61:76: 9b:64:ba:5f:c9:09:a5:4b:0b:f9:0a:b8:23:53:b0: ba:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:9B:4A:E4:4C:8B:F3:5F:04:2D:6C:FB:6D:C7:23:4E:48:6B:0D:3F X509v3 Authority Key Identifier: keyid:86:EF:B4:9D:F2:47:4A:60:42:B9:F2:10:BF:EA:86:1B:1B:28:86:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu-0nfJHSmBCufIQv-qGGxsohu0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/8ptK5EyL818ELWz7bccjTkhrDT8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/hu-0nfJHSmBCufIQv-qGGxsohu0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.109.204.0/24 195.234.45.0/24 Signature Algorithm: sha256WithRSAEncryption 02:0f:48:55:6c:38:85:04:8e:6e:99:85:a2:a7:d9:79:12:48: 96:0a:4c:7c:6f:0f:c4:c7:6d:5a:bc:ed:ab:5c:8d:e2:09:7e: 4d:5f:02:87:1d:ca:2c:ae:8d:bc:f7:f3:66:6f:91:12:50:dd: 67:7d:76:0b:17:b2:20:2d:3c:38:eb:53:f8:50:4a:92:f4:c7: d2:a1:f7:86:7e:52:65:64:e1:1d:9e:86:25:0a:3c:28:4e:f3: d1:a9:78:b0:b0:98:b6:ca:09:cc:16:71:d3:bd:21:44:94:a1: b3:d1:52:35:fb:44:80:8e:4f:35:89:0d:b1:32:3b:fa:d8:6a: ba:68:e0:82:09:1c:cd:6e:53:b5:52:9f:ba:38:39:24:dd:99: 13:d1:01:62:69:b9:1c:88:f2:3b:49:9a:70:97:c7:1b:23:65: 3a:60:7e:6e:34:bd:cf:13:ea:80:61:c3:0c:a0:b3:ca:c3:42: 39:0e:2d:13:90:b4:00:47:c3:85:9c:da:d8:98:7f:07:a8:11: 21:d8:73:05:c0:c4:dc:81:12:92:9d:2b:8e:f8:83:12:03:31: 5b:48:e7:38:4c:1e:a2:7e:4a:9e:9c:7d:cc:a8:ff:9a:4e:36: a1:bc:7e:66:b4:42:a6:f8:35:a9:ef:60:7f:03:1f:24:da:5b: 6d:85:e6:d2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pURAjqLMaDU49+tMn7aqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZWZiNDlkZjI0NzRhNjA0MmI5ZjIxMGJmZWE4NjFiMWIy ODg2ZWQwHhcNMjYwMTAxMjIxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjliNGFlNDRjOGJmMzVmMDQyZDZjZmI2ZGM3MjM0ZTQ4NmIwZDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BwH2RJDwhwgoVz3ytMxifmIAJfV WusfQO6dHDvQ1gsmJoNcxNfze4tqb7Ob7+tlGhARhg+SEBD2bK3zU2iu0UDW83eV NUeMgBl5kpYvgZz9qtaYzqq8PQlFJ7glkLQidIdayDP6LkB4ev6d0UwqEkTj438a aKOCIGMZL9/nf8CfTxdoqwq5CzpojmXD9ibsrVyW9i6ZAGjEeRHXcc1DFlqDokEL n7GsbwXWsExUA3sxLo76mS8sQkg7E31P3/LhOnc9ijXABzOawkwT+GVZGu708VcZ TnlUWY44VE+688RESs9wTWFBCsyKJ7nsYXabZLpfyQmlSwv5CrgjU7C6mwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPKbSuRMi/NfBC1s+23HI05Iaw0/MB8GA1UdIwQY MBaAFIbvtJ3yR0pgQrnyEL/qhhsbKIbtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHUtMG5mSkhTbUJDdWZJUXYtcUdHeHNvaHUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS80MzUxODQtNzc5MS00YjU0LWI5Yjgt OTViMjcxZjJlMjBiLzEvOHB0SzVFeUw4MThFTFd6N2JjY2pUa2hyRFQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS80MzUxODQtNzc5MS00YjU0LWI5YjgtOTViMjcxZjJlMjBi LzEvaHUtMG5mSkhTbUJDdWZJUXYtcUdHeHNvaHUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwG3MAwQA w+otMA0GCSqGSIb3DQEBCwUAA4IBAQACD0hVbDiFBI5umYWip9l5EkiWCkx8bw/E x21avO2rXI3iCX5NXwKHHcosro289/Nmb5ESUN1nfXYLF7IgLTw461P4UEqS9MfS ofeGflJlZOEdnoYlCjwoTvPRqXiwsJi2ygnMFnHTvSFElKGz0VI1+0SAjk81iQ2x Mjv62Gq6aOCCCRzNblO1Up+6ODkk3ZkT0QFiabkciPI7SZpwl8cbI2U6YH5uNL3P E+qAYcMMoLPKw0I5Di0TkLQAR8OFnNrYmH8HqBEh2HMFwMTcgRKSnSuO+IMSAzFb SOc4TB6ifkqenH3MqP+aTjahvH5mtEKm+DWp72B/Ax8k2ltthebS -----END CERTIFICATE-----Generated at Thu Jan 8 11:02:00 2026 by rpki-client