This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/h6PxJ4P9fw2mPiB1bzbloLD9ySY.roa File: h6PxJ4P9fw2mPiB1bzbloLD9ySY.roa (raw, json) Hash identifier: +EZ5CMikkFb7fdg5EIxG+t8LZY1EVs5DyG4OFvuf94U= Subject key identifier: 87:A3:F1:27:83:FD:7F:0D:A6:3E:20:75:6F:36:E5:A0:B0:FD:C9:26 Certificate issuer: /CN=4e98acc86f41c4715b10c1dd52631c32a8194a30 Certificate serial: 019B7F846F1E8ECAC75014EBAA8315352CD3 Authority key identifier: 4E:98:AC:C8:6F:41:C4:71:5B:10:C1:DD:52:63:1C:32:A8:19:4A:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpisyG9BxHFbEMHdUmMcMqgZSjA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/h6PxJ4P9fw2mPiB1bzbloLD9ySY.roa Signing time: Fri 02 Jan 2026 16:22:24 +0000 ROA not before: Fri 02 Jan 2026 16:22:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59925 IP address blocks: 185.66.36.0/22 maxlen: 22 2a03:1e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/TpisyG9BxHFbEMHdUmMcMqgZSjA.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/TpisyG9BxHFbEMHdUmMcMqgZSjA.mft rsync://rpki.ripe.net/repository/DEFAULT/TpisyG9BxHFbEMHdUmMcMqgZSjA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 19:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:6f:1e:8e:ca:c7:50:14:eb:aa:83:15:35:2c:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e98acc86f41c4715b10c1dd52631c32a8194a30 Validity Not Before: Jan 2 16:22:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87a3f12783fd7f0da63e20756f36e5a0b0fdc926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:87:1d:aa:9d:90:ce:98:ca:99:c4:4b:06:20: 93:3d:31:b8:97:d3:aa:fc:31:88:62:13:71:d4:c6: a9:96:7f:00:d3:af:9c:ea:d3:79:00:cb:a8:b8:25: dd:4d:0a:0f:45:1b:be:10:26:ad:a6:7e:09:44:01: 59:b2:4c:06:4a:0b:4d:da:f5:fd:83:5a:33:9f:7f: 5a:2d:a2:7f:6b:aa:4e:91:cf:01:98:fd:f8:c8:61: 03:f1:5e:40:6c:9b:36:6b:ff:0d:7d:ab:07:a2:60: c0:1f:a8:78:d3:fc:b2:6b:bc:bf:13:ad:d6:02:ab: b7:ee:cc:72:b9:34:89:fc:c8:8a:7f:ab:42:c0:8b: 22:b9:cf:1a:b7:aa:9d:c3:24:6c:47:46:b0:0a:df: 95:8a:07:56:8e:ae:ba:f9:6d:19:7e:a6:2a:a2:b0: 4c:dc:1e:01:3b:0b:90:97:62:a6:7c:f1:59:5b:65: ea:03:3a:53:da:a6:3c:11:5b:6b:4a:87:1c:5c:8f: 8e:6a:c3:ae:07:53:b8:60:b2:a1:89:e7:f1:95:4c: b7:39:c0:8d:b0:33:f0:36:88:48:c8:6c:3b:61:20: 4f:b1:f0:ae:0d:aa:ef:d4:ae:42:7a:29:b1:b2:91: 6d:65:20:5a:a2:5e:b4:9b:18:84:18:a2:c2:06:39: 3a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A3:F1:27:83:FD:7F:0D:A6:3E:20:75:6F:36:E5:A0:B0:FD:C9:26 X509v3 Authority Key Identifier: keyid:4E:98:AC:C8:6F:41:C4:71:5B:10:C1:DD:52:63:1C:32:A8:19:4A:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpisyG9BxHFbEMHdUmMcMqgZSjA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/h6PxJ4P9fw2mPiB1bzbloLD9ySY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/f870c4-bdc9-453b-b3c8-491d30f4a2c8/1/TpisyG9BxHFbEMHdUmMcMqgZSjA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.66.36.0/22 IPv6: 2a03:1e20::/32 Signature Algorithm: sha256WithRSAEncryption 00:4b:f0:0b:d0:07:aa:7a:6c:75:fa:30:63:2a:69:e3:a4:d7: 79:e4:de:76:6a:61:6a:63:d2:14:69:58:5a:47:d5:21:8b:63: 2d:94:05:2e:89:ac:4a:70:17:3e:38:ed:e3:f7:f1:91:fa:3f: 3d:20:bc:67:d7:90:8a:07:5b:55:51:9d:06:27:37:51:50:50: 28:c9:0f:dc:7d:1a:75:34:6c:83:44:08:cd:0f:4d:74:80:10: 64:58:e1:43:ff:39:90:65:5d:29:f1:2d:7d:05:68:c2:a9:0b: d1:3b:d0:3e:d7:73:1f:87:27:81:91:9e:9e:33:80:da:02:e2: 79:91:e0:1c:9a:ab:13:47:f4:38:2e:d2:5b:83:ac:99:74:7f: a4:10:b1:86:47:81:12:dc:7d:20:99:76:b1:ea:5c:d7:3b:93: 92:a7:f4:af:6d:3a:97:2a:33:d8:43:1a:3a:f2:c4:4d:34:9d: e8:f2:ca:21:4f:1d:90:a7:0c:04:85:0b:cd:81:b1:18:45:e4: 25:57:3b:21:af:dc:b6:d9:ca:6b:3f:f5:99:65:3b:d6:38:f8: 6b:eb:7b:11:e7:a1:9f:bc:ce:cc:9b:2c:f6:92:7b:b9:24:5d: 30:12:49:43:71:2a:a1:50:f0:73:cf:d5:d9:6d:e5:e2:c9:50: 4e:b3:84:2d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/hG8ejsrHUBTrqoMVNSzTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlOThhY2M4NmY0MWM0NzE1YjEwYzFkZDUyNjMxYzMyYTgx OTRhMzAwHhcNMjYwMTAyMTYyMjI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2EzZjEyNzgzZmQ3ZjBkYTYzZTIwNzU2ZjM2ZTVhMGIwZmRjOTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgocdqp2QzpjKmcRLBiCTPTG4l9Oq /DGIYhNx1Mapln8A06+c6tN5AMuouCXdTQoPRRu+ECatpn4JRAFZskwGSgtN2vX9 g1ozn39aLaJ/a6pOkc8BmP34yGED8V5AbJs2a/8NfasHomDAH6h40/yya7y/E63W Aqu37sxyuTSJ/MiKf6tCwIsiuc8at6qdwyRsR0awCt+VigdWjq66+W0ZfqYqorBM 3B4BOwuQl2KmfPFZW2XqAzpT2qY8EVtrSoccXI+OasOuB1O4YLKhiefxlUy3OcCN sDPwNohIyGw7YSBPsfCuDarv1K5CeimxspFtZSBaol60mxiEGKLCBjk6pwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIej8SeD/X8Npj4gdW825aCw/ckmMB8GA1UdIwQY MBaAFE6YrMhvQcRxWxDB3VJjHDKoGUowMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHBpc3lHOUJ4SEZiRU1IZFVtTWNNcWdaU2pBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi9mODcwYzQtYmRjOS00NTNiLWIzYzgt NDkxZDMwZjRhMmM4LzEvaDZQeEo0UDlmdzJtUGlCMWJ6YmxvTEQ5eVNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi9mODcwYzQtYmRjOS00NTNiLWIzYzgtNDkxZDMwZjRhMmM4 LzEvVHBpc3lHOUJ4SEZiRU1IZFVtTWNNcWdaU2pBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuUIkMA0E AgACMAcDBQAqAx4gMA0GCSqGSIb3DQEBCwUAA4IBAQAAS/AL0Aeqemx1+jBjKmnj pNd55N52amFqY9IUaVhaR9Uhi2MtlAUuiaxKcBc+OO3j9/GR+j89ILxn15CKB1tV UZ0GJzdRUFAoyQ/cfRp1NGyDRAjND010gBBkWOFD/zmQZV0p8S19BWjCqQvRO9A+ 13MfhyeBkZ6eM4DaAuJ5keAcmqsTR/Q4LtJbg6yZdH+kELGGR4ES3H0gmXax6lzX O5OSp/SvbTqXKjPYQxo68sRNNJ3o8sohTx2QpwwEhQvNgbEYReQlVzshr9y22cpr P/WZZTvWOPhr63sR56GfvM7Mmyz2knu5JF0wEklDcSqhUPBzz9XZbeXiyVBOs4Qt -----END CERTIFICATE-----Generated at Sat Jan 10 04:20:35 2026 by rpki-client