This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/5268dd-56ee-4b9a-8050-232fbdaf5c1a/1/Hh4oawFMPhlZWHiv9oVznjVHldw.roa File: Hh4oawFMPhlZWHiv9oVznjVHldw.roa (raw, json) Hash identifier: ZkANeMjzmI2+4mD6XiyteCRytMwKnaF4f4SfTl1h+1g= Subject key identifier: 1E:1E:28:6B:01:4C:3E:19:59:58:78:AF:F6:85:73:9E:35:47:95:DC Certificate issuer: /CN=b710cd4471a3f8cdcd844d3f366148940952b4e7 Certificate serial: 019B7B36071368DB29A207A44896C1BAA7E6 Authority key identifier: B7:10:CD:44:71:A3:F8:CD:CD:84:4D:3F:36:61:48:94:09:52:B4:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txDNRHGj-M3NhE0_NmFIlAlStOc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/5268dd-56ee-4b9a-8050-232fbdaf5c1a/1/Hh4oawFMPhlZWHiv9oVznjVHldw.roa Signing time: Thu 01 Jan 2026 20:18:16 +0000 ROA not before: Thu 01 Jan 2026 20:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25540 IP address blocks: 185.130.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/5268dd-56ee-4b9a-8050-232fbdaf5c1a/1/txDNRHGj-M3NhE0_NmFIlAlStOc.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/5268dd-56ee-4b9a-8050-232fbdaf5c1a/1/txDNRHGj-M3NhE0_NmFIlAlStOc.mft rsync://rpki.ripe.net/repository/DEFAULT/txDNRHGj-M3NhE0_NmFIlAlStOc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 Jan 2026 01:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:07:13:68:db:29:a2:07:a4:48:96:c1:ba:a7:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b710cd4471a3f8cdcd844d3f366148940952b4e7 Validity Not Before: Jan 1 20:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e1e286b014c3e19595878aff685739e354795dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:80:8b:c0:73:78:c3:33:92:67:43:32:3b:2b: af:e0:90:2b:e2:7d:53:d9:68:cc:c5:d0:b9:aa:72: 93:09:9f:bc:be:1e:12:dd:e7:b7:cd:9c:c3:a1:be: 15:a0:21:71:96:b9:98:ad:d4:3b:24:8d:1b:3b:ed: 2e:09:a2:b5:c5:0a:c2:7a:a7:8c:02:06:0e:60:6c: 96:91:2a:8e:8b:3f:4c:93:11:2c:4e:e0:a3:97:17: 47:82:63:4c:9b:43:42:7b:21:b6:13:ca:92:4c:2b: b1:54:3d:4e:46:da:10:eb:fd:34:35:bf:17:c5:1d: 4f:15:a6:c0:4a:d2:5d:1a:ec:ce:b1:83:e8:7c:56: 01:e0:e5:d2:92:01:32:54:20:eb:42:d0:f3:f6:32: cf:d4:10:cf:33:bb:1c:bb:58:5d:dd:46:2b:71:1d: 56:41:ff:2b:86:98:00:f5:26:19:29:94:62:f4:1a: d1:be:59:fb:32:ee:5f:29:7a:13:ec:61:b7:a4:2a: cc:a8:9d:4d:66:e9:b0:7d:7e:78:b0:4b:3f:ec:ad: 16:1f:76:21:fe:6b:ed:da:e7:2d:cb:b1:5d:8f:71: d2:b8:13:d3:43:a4:af:68:69:16:6c:ab:a9:55:c8: 32:fe:f1:e8:87:0e:05:2a:8e:98:4f:58:31:ee:61: 2e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1E:28:6B:01:4C:3E:19:59:58:78:AF:F6:85:73:9E:35:47:95:DC X509v3 Authority Key Identifier: keyid:B7:10:CD:44:71:A3:F8:CD:CD:84:4D:3F:36:61:48:94:09:52:B4:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txDNRHGj-M3NhE0_NmFIlAlStOc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/5268dd-56ee-4b9a-8050-232fbdaf5c1a/1/Hh4oawFMPhlZWHiv9oVznjVHldw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/5268dd-56ee-4b9a-8050-232fbdaf5c1a/1/txDNRHGj-M3NhE0_NmFIlAlStOc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.130.116.0/22 Signature Algorithm: sha256WithRSAEncryption 90:44:7d:19:29:36:e7:52:4a:9d:52:9e:14:25:09:f0:93:a4: 8a:2a:a6:c6:7e:dc:64:97:ef:46:82:14:52:51:cf:ff:bf:94: 26:cf:06:1e:46:4f:2c:8e:26:8d:c2:f8:39:67:14:6d:07:cc: 52:07:07:33:dd:c8:6d:26:af:b2:61:83:c9:a1:5b:9e:ee:6c: 28:e3:32:5a:ff:0f:d4:fe:86:ae:0f:54:50:d8:fb:df:69:2c: 33:61:b5:61:44:5c:dc:1b:48:1c:31:5d:37:21:d1:15:e5:bd: 7a:56:2b:f5:ba:7b:31:f4:98:b9:8f:2d:01:c1:f8:4a:4d:b5: 51:7d:c5:6c:8e:ff:e9:ca:dc:73:0e:46:63:1b:36:fe:2b:6c: 75:20:82:4d:3d:47:ef:56:67:d7:90:94:6b:55:48:f6:03:a1: 68:af:1b:33:47:9d:a4:1d:ed:c6:31:61:20:4d:17:6a:13:59: 99:bf:91:19:55:af:32:ab:6f:d1:a7:d6:1c:57:21:4a:83:0d: 55:6d:20:71:c5:50:55:51:54:6c:e0:e8:ac:fb:ff:7c:21:b2: e1:41:82:e8:5d:7e:79:49:34:46:d2:cc:ee:8a:59:7b:17:71: b8:4b:54:24:b2:e7:c1:40:27:24:e4:86:fd:a1:60:69:a8:1b: 56:e9:9e:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NgcTaNspogekSJbBuqfmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3MTBjZDQ0NzFhM2Y4Y2RjZDg0NGQzZjM2NjE0ODk0MDk1 MmI0ZTcwHhcNMjYwMTAxMjAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTFlMjg2YjAxNGMzZTE5NTk1ODc4YWZmNjg1NzM5ZTM1NDc5NWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvICLwHN4wzOSZ0MyOyuv4JAr4n1T 2WjMxdC5qnKTCZ+8vh4S3ee3zZzDob4VoCFxlrmYrdQ7JI0bO+0uCaK1xQrCeqeM AgYOYGyWkSqOiz9MkxEsTuCjlxdHgmNMm0NCeyG2E8qSTCuxVD1ORtoQ6/00Nb8X xR1PFabAStJdGuzOsYPofFYB4OXSkgEyVCDrQtDz9jLP1BDPM7scu1hd3UYrcR1W Qf8rhpgA9SYZKZRi9BrRvln7Mu5fKXoT7GG3pCrMqJ1NZumwfX54sEs/7K0WH3Yh /mvt2ucty7Fdj3HSuBPTQ6SvaGkWbKupVcgy/vHohw4FKo6YT1gx7mEu1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB4eKGsBTD4ZWVh4r/aFc541R5XcMB8GA1UdIwQY MBaAFLcQzURxo/jNzYRNPzZhSJQJUrTnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHhETlJIR2otTTNOaEUwX05tRklsQWxTdE9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy81MjY4ZGQtNTZlZS00YjlhLTgwNTAt MjMyZmJkYWY1YzFhLzEvSGg0b2F3Rk1QaGxaV0hpdjlvVnpualZIbGR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy81MjY4ZGQtNTZlZS00YjlhLTgwNTAtMjMyZmJkYWY1YzFh LzEvdHhETlJIR2otTTNOaEUwX05tRklsQWxTdE9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYJ0MA0G CSqGSIb3DQEBCwUAA4IBAQCQRH0ZKTbnUkqdUp4UJQnwk6SKKqbGftxkl+9GghRS Uc//v5QmzwYeRk8sjiaNwvg5ZxRtB8xSBwcz3chtJq+yYYPJoVue7mwo4zJa/w/U /oauD1RQ2PvfaSwzYbVhRFzcG0gcMV03IdEV5b16Viv1unsx9Ji5jy0BwfhKTbVR fcVsjv/pytxzDkZjGzb+K2x1IIJNPUfvVmfXkJRrVUj2A6ForxszR52kHe3GMWEg TRdqE1mZv5EZVa8yq2/Rp9YcVyFKgw1VbSBxxVBVUVRs4Ois+/98IbLhQYLoXX55 STRG0szuill7F3G4S1QksufBQCck5Ib9oWBpqBtW6Z6e -----END CERTIFICATE-----Generated at Tue Jan 13 10:58:07 2026 by rpki-client