This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HyHThTy2laixIbO3z9EDLHwDhKY.roa File: HyHThTy2laixIbO3z9EDLHwDhKY.roa (raw, json) Hash identifier: BkLA8iTJLAu2dB2Rqj77I2+ZU9LC5K+pf2Js5AaTYxg= Subject key identifier: 1F:21:D3:85:3C:B6:95:A8:B1:21:B3:B7:CF:D1:03:2C:7C:03:84:A6 Certificate issuer: /CN=1cdc76327e92f25fc471b345a37d243cc8393500 Certificate serial: 019B7EA691F5624D325794FB8C3ABC3FB9F4 Authority key identifier: 1C:DC:76:32:7E:92:F2:5F:C4:71:B3:45:A3:7D:24:3C:C8:39:35:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HyHThTy2laixIbO3z9EDLHwDhKY.roa Signing time: Fri 02 Jan 2026 12:20:04 +0000 ROA not before: Fri 02 Jan 2026 12:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13039 IP address blocks: 193.102.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.crl rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.mft rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:91:f5:62:4d:32:57:94:fb:8c:3a:bc:3f:b9:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cdc76327e92f25fc471b345a37d243cc8393500 Validity Not Before: Jan 2 12:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f21d3853cb695a8b121b3b7cfd1032c7c0384a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:50:78:1e:80:33:9d:21:e2:17:69:3f:78:73: 21:e8:f2:21:50:3d:b6:7f:b6:e6:ae:03:86:34:f1: 32:2c:25:fe:57:d3:41:b1:bd:a4:f1:a7:1f:15:fb: 98:c9:6e:53:58:eb:0a:62:1f:e9:45:64:88:91:c4: 23:da:55:00:d7:9b:15:d9:d2:89:0a:0e:37:06:fc: 65:f8:4d:b8:9d:be:34:af:90:08:dd:57:a7:b4:3a: 86:8d:f1:26:54:22:19:72:23:ae:64:49:4d:c8:a9: 98:56:45:b6:3a:dc:91:cd:93:28:d2:25:00:53:7c: 17:ce:05:af:b6:a7:d4:66:39:52:63:36:ca:c6:d5: f5:e4:6d:88:c4:55:d1:2e:eb:5b:34:73:b9:ad:48: ab:cd:e2:5e:f7:be:fd:fd:b7:0d:76:57:8f:34:b7: 14:59:06:c4:7f:0d:81:cb:fd:de:36:7d:6a:11:d0: 74:fd:f3:fa:92:63:94:c3:68:f7:50:5d:81:a0:ca: 6d:a3:22:60:8a:92:d5:e5:94:20:8a:1e:4e:d3:4a: 10:32:2e:01:f8:7f:0d:a5:10:66:eb:d1:a3:f0:85: b3:39:11:f0:2d:c2:5f:c8:18:f9:f9:96:7b:f0:16: b0:8c:92:4c:5c:63:14:ce:bd:ed:c7:59:3d:73:09: b3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:21:D3:85:3C:B6:95:A8:B1:21:B3:B7:CF:D1:03:2C:7C:03:84:A6 X509v3 Authority Key Identifier: keyid:1C:DC:76:32:7E:92:F2:5F:C4:71:B3:45:A3:7D:24:3C:C8:39:35:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HyHThTy2laixIbO3z9EDLHwDhKY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.102.189.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:8c:3c:ec:e9:63:2e:39:53:ce:05:fd:ef:5f:71:f2:a2:11: 16:cb:11:bd:bf:96:6b:1c:35:5d:4e:26:60:83:fe:89:ce:b7: 99:5d:01:26:b3:f6:ee:57:c1:8b:36:14:84:d7:3a:83:23:f4: a5:cf:dd:ba:b3:81:7d:85:38:cb:90:7e:e0:b3:f9:16:a7:7f: 39:7c:d0:9d:46:33:b0:8c:d2:4d:17:2a:7a:9a:78:66:e3:fb: 41:55:4c:f4:b1:ed:f2:ec:7b:57:3e:d8:c2:a2:4a:e0:a5:6c: ce:61:54:5a:e2:0b:47:4e:8f:a9:d7:8d:e6:4c:85:9a:93:da: 5b:0f:16:07:fb:3c:f5:8a:0a:7d:03:fe:2d:af:1c:47:c0:ee: bf:50:d8:a0:8d:b3:1f:07:07:ce:c8:17:8c:43:03:e0:76:6f: ba:ad:3c:e4:83:34:b7:17:9f:b4:77:7d:99:d6:4c:5a:45:4b: 3e:fb:c3:49:da:81:0b:96:9d:9a:d5:ac:0b:b1:b3:94:c3:37: ea:0a:5e:d4:e5:f3:98:3a:c5:3c:b4:0b:5e:b3:4d:67:82:d1: 64:70:ef:85:6f:d4:ed:8e:e1:92:11:97:b2:ef:1f:33:d6:f4: 20:80:5a:ea:d8:7b:8f:b3:f2:38:a2:84:5d:24:14:21:02:e3: 0d:8d:9a:b2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ppH1Yk0yV5T7jDq8P7n0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZGM3NjMyN2U5MmYyNWZjNDcxYjM0NWEzN2QyNDNjYzgz OTM1MDAwHhcNMjYwMTAyMTIyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjIxZDM4NTNjYjY5NWE4YjEyMWIzYjdjZmQxMDMyYzdjMDM4NGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFB4HoAznSHiF2k/eHMh6PIhUD22 f7bmrgOGNPEyLCX+V9NBsb2k8acfFfuYyW5TWOsKYh/pRWSIkcQj2lUA15sV2dKJ Cg43Bvxl+E24nb40r5AI3VentDqGjfEmVCIZciOuZElNyKmYVkW2OtyRzZMo0iUA U3wXzgWvtqfUZjlSYzbKxtX15G2IxFXRLutbNHO5rUirzeJe9779/bcNdlePNLcU WQbEfw2By/3eNn1qEdB0/fP6kmOUw2j3UF2BoMptoyJgipLV5ZQgih5O00oQMi4B +H8NpRBm69Gj8IWzORHwLcJfyBj5+ZZ78BawjJJMXGMUzr3tx1k9cwmzowIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB8h04U8tpWosSGzt8/RAyx8A4SmMB8GA1UdIwQY MBaAFBzcdjJ+kvJfxHGzRaN9JDzIOTUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE54Mk1uNlM4bF9FY2JORm8zMGtQTWc1TlFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iNzhhMWMtMTMwMC00ZWY4LWFlOTYt ODA3MzY5NTBhYTk0LzEvSHlIVGhUeTJsYWl4SWJPM3o5RURMSHdEaEtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9iNzhhMWMtMTMwMC00ZWY4LWFlOTYtODA3MzY5NTBhYTk0 LzEvSE54Mk1uNlM4bF9FY2JORm8zMGtQTWc1TlFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWa9MA0G CSqGSIb3DQEBCwUAA4IBAQAejDzs6WMuOVPOBf3vX3HyohEWyxG9v5ZrHDVdTiZg g/6JzreZXQEms/buV8GLNhSE1zqDI/Slz926s4F9hTjLkH7gs/kWp385fNCdRjOw jNJNFyp6mnhm4/tBVUz0se3y7HtXPtjCokrgpWzOYVRa4gtHTo+p143mTIWak9pb DxYH+zz1igp9A/4trxxHwO6/UNigjbMfBwfOyBeMQwPgdm+6rTzkgzS3F5+0d32Z 1kxaRUs++8NJ2oELlp2a1awLsbOUwzfqCl7U5fOYOsU8tAtes01ngtFkcO+Fb9Tt juGSEZey7x8z1vQggFrq2HuPs/I4ooRdJBQhAuMNjZqy -----END CERTIFICATE-----Generated at Mon Jan 26 04:40:37 2026 by rpki-client