This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/487962-8588-4f0a-bb7d-aaa8d3a940ac/1/1-hMzdQcNiHlC1ILPCSFeyzc3V18.roa File: 1-hMzdQcNiHlC1ILPCSFeyzc3V18.roa (raw, json) Hash identifier: pQ5b3SKsH66K13eGB0zI0xg6+iC58sAtCToDI1E0I1c= Subject key identifier: FA:13:33:75:07:0D:88:79:42:D4:82:CF:09:21:5E:CB:37:37:57:5F Certificate issuer: /CN=452e7d87922129df90c4870da2a7738404724858 Certificate serial: 019B76EB9041FE84F234EC817ED18BF4DEC8 Authority key identifier: 45:2E:7D:87:92:21:29:DF:90:C4:87:0D:A2:A7:73:84:04:72:48:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RS59h5IhKd-QxIcNoqdzhARySFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/487962-8588-4f0a-bb7d-aaa8d3a940ac/1/1-hMzdQcNiHlC1ILPCSFeyzc3V18.roa Signing time: Thu 01 Jan 2026 00:18:27 +0000 ROA not before: Thu 01 Jan 2026 00:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200583 IP address blocks: 185.34.248.0/22 maxlen: 22 185.34.248.0/24 maxlen: 24 185.102.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/487962-8588-4f0a-bb7d-aaa8d3a940ac/1/RS59h5IhKd-QxIcNoqdzhARySFg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/487962-8588-4f0a-bb7d-aaa8d3a940ac/1/RS59h5IhKd-QxIcNoqdzhARySFg.mft rsync://rpki.ripe.net/repository/DEFAULT/RS59h5IhKd-QxIcNoqdzhARySFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:90:41:fe:84:f2:34:ec:81:7e:d1:8b:f4:de:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=452e7d87922129df90c4870da2a7738404724858 Validity Not Before: Jan 1 00:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa133375070d887942d482cf09215ecb3737575f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6a:6d:6a:65:8d:d9:26:ad:8e:a0:c9:53:0c: 56:d8:5a:95:c8:4f:2d:76:e8:6c:4d:dd:34:51:db: c5:26:01:3f:de:80:76:04:90:3b:7d:3f:b7:91:ac: e8:8e:cb:e9:37:e6:7a:ab:45:bb:47:13:ad:7c:5c: ba:12:c8:fb:ad:ad:95:98:19:f9:c8:93:35:44:34: 2c:44:79:83:0c:3c:a4:4f:df:61:a3:32:aa:fe:ed: b4:03:4a:61:d8:ca:97:e8:ee:3c:23:85:f5:9c:bd: 27:1c:e5:77:1a:4f:6a:6b:cc:a1:c9:5a:bd:d5:24: 13:f4:44:e5:14:55:cc:c7:f2:59:00:7c:0c:d2:3b: 9b:35:f3:88:39:a5:c8:af:b4:dd:59:18:e6:13:26: e3:be:28:d5:e5:9a:82:98:d3:d9:23:04:d5:7a:ba: ee:65:1d:8b:81:a4:ab:32:04:24:d7:be:67:65:a4: 05:dd:cb:d8:37:79:b3:40:b6:6f:41:32:9e:cb:06: dc:98:00:1d:d4:be:bb:40:2f:01:10:e2:06:71:68: 20:78:14:47:d3:12:c7:75:19:94:03:81:bd:ad:1b: fb:65:f5:0b:da:da:49:4d:83:21:34:3a:36:ea:47: 31:42:e0:30:f0:bb:a1:c7:05:99:30:26:87:3b:ad: c3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:13:33:75:07:0D:88:79:42:D4:82:CF:09:21:5E:CB:37:37:57:5F X509v3 Authority Key Identifier: keyid:45:2E:7D:87:92:21:29:DF:90:C4:87:0D:A2:A7:73:84:04:72:48:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RS59h5IhKd-QxIcNoqdzhARySFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/487962-8588-4f0a-bb7d-aaa8d3a940ac/1/1-hMzdQcNiHlC1ILPCSFeyzc3V18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/487962-8588-4f0a-bb7d-aaa8d3a940ac/1/RS59h5IhKd-QxIcNoqdzhARySFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.34.248.0/22 185.102.41.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:41:4d:1f:4b:63:fd:2f:47:59:f0:e7:0d:05:51:16:d6:84: 42:81:8a:95:1b:62:27:06:da:e0:21:32:a1:74:7a:ac:9b:9e: 91:db:27:fe:76:ea:22:ad:dd:ad:6c:bb:9b:8a:69:29:0a:f3: 89:de:77:bc:d3:2b:1c:70:e3:1e:08:e1:59:79:16:7d:ec:db: 3d:96:b4:8f:2a:58:64:36:74:7f:76:4d:f4:22:aa:4a:ff:44: 1d:ea:0f:97:19:ad:72:8c:48:f2:39:97:eb:69:a0:db:60:4e: 12:93:a7:6c:31:09:de:33:14:c3:9f:55:d5:5e:a1:a4:c3:c9: dd:fd:23:af:1b:8e:38:bb:78:83:58:fa:88:55:f8:db:6b:3d: a1:09:cf:31:59:5c:fa:8e:69:27:f3:b2:8a:e0:3f:28:24:4a: ab:ce:c1:5b:98:6b:ba:3e:a5:ee:22:88:d4:28:3a:49:4b:a0: d9:1c:61:d7:5b:4c:d4:0f:f1:1c:49:64:c8:a4:49:4e:86:9f: d0:60:97:44:07:c7:20:ae:b0:0c:22:7a:0a:c5:ae:1e:33:8d: 96:76:cb:c3:1f:fc:dd:b8:46:f5:f6:86:20:14:d7:78:2b:44: 70:84:63:30:70:1f:17:94:a1:d8:72:5d:41:71:12:f1:ea:73: 02:5d:06:a6 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt265BB/oTyNOyBftGL9N7IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1MmU3ZDg3OTIyMTI5ZGY5MGM0ODcwZGEyYTc3Mzg0MDQ3 MjQ4NTgwHhcNMjYwMTAxMDAxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTEzMzM3NTA3MGQ4ODc5NDJkNDgyY2YwOTIxNWVjYjM3Mzc1NzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32ptamWN2SatjqDJUwxW2FqVyE8t duhsTd00UdvFJgE/3oB2BJA7fT+3kazojsvpN+Z6q0W7RxOtfFy6Esj7ra2VmBn5 yJM1RDQsRHmDDDykT99hozKq/u20A0ph2MqX6O48I4X1nL0nHOV3Gk9qa8yhyVq9 1SQT9ETlFFXMx/JZAHwM0jubNfOIOaXIr7TdWRjmEybjvijV5ZqCmNPZIwTVerru ZR2LgaSrMgQk175nZaQF3cvYN3mzQLZvQTKeywbcmAAd1L67QC8BEOIGcWggeBRH 0xLHdRmUA4G9rRv7ZfUL2tpJTYMhNDo26kcxQuAw8LuhxwWZMCaHO63DwQIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPoTM3UHDYh5QtSCzwkhXss3N1dfMB8GA1UdIwQY MBaAFEUufYeSISnfkMSHDaKnc4QEckhYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlM1OWg1SWhLZC1ReEljTm9xZHpoQVJ5U0ZnLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80ODc5NjItODU4OC00ZjBhLWJiN2Qt YWFhOGQzYTk0MGFjLzEvMS1oTXpkUWNOaUhsQzFJTFBDU0ZleXpjM1YxOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNTQvNDg3OTYyLTg1ODgtNGYwYS1iYjdkLWFhYThkM2E5NDBh Yy8xL1JTNTloNUloS2QtUXhJY05vcWR6aEFSeVNGZy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArki+AME ALlmKTANBgkqhkiG9w0BAQsFAAOCAQEAKkFNH0tj/S9HWfDnDQVRFtaEQoGKlRti Jwba4CEyoXR6rJuekdsn/nbqIq3drWy7m4ppKQrzid53vNMrHHDjHgjhWXkWfezb PZa0jypYZDZ0f3ZN9CKqSv9EHeoPlxmtcoxI8jmX62mg22BOEpOnbDEJ3jMUw59V 1V6hpMPJ3f0jrxuOOLt4g1j6iFX422s9oQnPMVlc+o5pJ/OyiuA/KCRKq87BW5hr uj6l7iKI1Cg6SUug2Rxh11tM1A/xHElkyKRJToaf0GCXRAfHIK6wDCJ6CsWuHjON lnbLwx/83bhG9faGIBTXeCtEcIRjMHAfF5Sh2HJdQXES8epzAl0Gpg== -----END CERTIFICATE-----Generated at Fri Jan 9 09:36:16 2026 by rpki-client