This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/hwb1wfdjBP0ICPiTwRCIVMoWbas.roa File: hwb1wfdjBP0ICPiTwRCIVMoWbas.roa (raw, json) Hash identifier: T7sc8nDqr0XEZ0UNMsL5qIQPmcfivrMuFXOo3aEkX1I= Subject key identifier: 87:06:F5:C1:F7:63:04:FD:08:08:F8:93:C1:10:88:54:CA:16:6D:AB Certificate issuer: /CN=b155daddb871b9d6a53cd6b47f776250837f7774 Certificate serial: 019B7F845786298DA646FE1AADF300FD494F Authority key identifier: B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/hwb1wfdjBP0ICPiTwRCIVMoWbas.roa Signing time: Fri 02 Jan 2026 16:22:18 +0000 ROA not before: Fri 02 Jan 2026 16:22:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9145 IP address blocks: 31.150.0.0/16 maxlen: 24 31.184.0.0/18 maxlen: 24 31.187.112.0/20 maxlen: 24 37.138.0.0/16 maxlen: 24 62.89.160.0/19 maxlen: 24 80.66.0.0/19 maxlen: 24 80.228.0.0/16 maxlen: 24 82.149.160.0/19 maxlen: 24 85.8.64.0/18 maxlen: 24 85.16.0.0/16 maxlen: 24 87.245.0.0/18 maxlen: 24 89.166.128.0/17 maxlen: 24 89.233.64.0/19 maxlen: 24 90.153.0.0/17 maxlen: 24 91.96.0.0/15 maxlen: 24 91.248.0.0/15 maxlen: 24 92.252.0.0/17 maxlen: 24 95.33.0.0/16 maxlen: 24 178.142.0.0/16 maxlen: 24 188.118.128.0/18 maxlen: 24 212.6.64.0/18 maxlen: 24 212.95.96.0/19 maxlen: 24 213.168.192.0/19 maxlen: 24 213.170.160.0/19 maxlen: 24 213.182.96.0/19 maxlen: 24 213.183.160.0/19 maxlen: 24 213.252.128.0/18 maxlen: 24 2a00:1470::/32 maxlen: 48 2a02:8020::/30 maxlen: 48 2a02:8200::/27 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.mft rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:57:86:29:8d:a6:46:fe:1a:ad:f3:00:fd:49:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155daddb871b9d6a53cd6b47f776250837f7774 Validity Not Before: Jan 2 16:22:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8706f5c1f76304fd0808f893c1108854ca166dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5e:ef:04:3e:3f:74:6e:bd:2f:d1:d6:d8:6c: fe:f6:9d:52:71:41:5c:db:d5:c1:9f:58:0b:d0:b2: ee:7b:b0:75:96:9d:ff:dc:e5:f2:66:86:28:af:3a: c8:18:12:db:a1:d5:66:b8:c4:a9:3a:c3:b1:35:fe: c3:51:a4:93:ec:d7:96:91:85:b8:bd:d2:80:da:9a: cd:99:46:e6:d8:15:b4:46:c6:b9:9d:ff:3d:0c:74: 35:83:3b:43:b9:20:58:8e:cc:01:84:43:a0:68:dc: cf:fb:0a:d0:6b:3c:0a:b7:6c:2d:54:9a:ec:10:7d: 1f:8c:5f:80:b9:c0:73:0b:97:9c:ec:b0:5e:d8:c7: 34:66:84:80:cd:8a:43:3e:a9:36:bd:b2:be:b3:32: 2c:0c:15:24:20:b1:c0:a7:df:9f:e1:66:3a:3b:8c: ca:99:c2:87:f2:26:3c:8f:8e:43:0a:f4:77:32:4a: e0:88:c3:83:84:82:f3:55:58:79:7b:70:f1:d2:71: 8d:5f:ab:5d:d9:c0:da:74:22:89:aa:12:9a:95:1f: 09:b3:be:e4:f7:a2:b5:c6:ec:8b:e7:a7:bb:16:14: 16:49:f1:36:3d:88:7c:59:63:d8:55:7f:00:c2:e7: 40:84:d2:2b:e6:fa:7b:af:e9:48:2a:ab:65:cc:27: 9d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:06:F5:C1:F7:63:04:FD:08:08:F8:93:C1:10:88:54:CA:16:6D:AB X509v3 Authority Key Identifier: keyid:B1:55:DA:DD:B8:71:B9:D6:A5:3C:D6:B4:7F:77:62:50:83:7F:77:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVXa3bhxudalPNa0f3diUIN_d3Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/hwb1wfdjBP0ICPiTwRCIVMoWbas.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/8fd6e7-496f-47cf-80fb-5468b2cf0a77/1/sVXa3bhxudalPNa0f3diUIN_d3Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.150.0.0/16 31.184.0.0/18 31.187.112.0/20 37.138.0.0/16 62.89.160.0/19 80.66.0.0/19 80.228.0.0/16 82.149.160.0/19 85.8.64.0/18 85.16.0.0/16 87.245.0.0/18 89.166.128.0/17 89.233.64.0/19 90.153.0.0/17 91.96.0.0/15 91.248.0.0/15 92.252.0.0/17 95.33.0.0/16 178.142.0.0/16 188.118.128.0/18 212.6.64.0/18 212.95.96.0/19 213.168.192.0/19 213.170.160.0/19 213.182.96.0/19 213.183.160.0/19 213.252.128.0/18 IPv6: 2a00:1470::/32 2a02:8020::/30 2a02:8200::/27 Signature Algorithm: sha256WithRSAEncryption 2d:4d:db:da:6a:8e:cb:6b:e9:18:21:f5:05:8b:ac:9a:7f:a9: d3:e8:eb:00:04:94:fd:a5:0c:8d:a5:4b:95:ad:1b:1c:10:a1: e9:04:9a:d1:e5:52:1b:91:b1:1f:b0:85:70:d9:63:c0:f1:3b: 26:99:12:cd:b4:e7:f6:d8:83:f3:a4:3a:39:28:ef:05:38:f9: f0:af:27:95:2f:f3:1a:2b:a7:e1:44:b3:06:80:c1:e7:48:d2: b9:15:4e:3e:b8:49:2f:6f:bc:1d:e4:ce:8e:32:5b:3e:c9:a8: 35:e3:57:1c:9d:db:64:ec:0e:02:79:5f:89:d4:60:37:3b:d4: 69:0f:95:7a:6b:64:05:72:95:d7:c8:40:24:f8:21:ff:9a:2e: cc:8a:3e:35:66:60:26:79:4b:e8:55:cb:4d:80:4a:df:36:d5: db:8c:9d:0d:af:c4:76:90:59:27:d8:54:7c:af:f4:2f:d0:ed: b8:25:2b:e9:f3:d7:bf:45:b0:93:b1:55:f3:8b:3e:38:c7:8b: 71:0b:27:1b:6e:72:5c:c7:85:83:01:88:33:0e:26:b4:4e:93: 75:3e:82:c7:2a:86:e8:87:08:00:79:43:c6:dc:39:e1:17:41: ae:99:21:7c:3d:7d:24:f6:a9:ce:33:6f:8c:d1:7c:57:d1:fa: eb:8d:60:28 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgISAZt/hFeGKY2mRv4arfMA/UlPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTVkYWRkYjg3MWI5ZDZhNTNjZDZiNDdmNzc2MjUwODM3 Zjc3NzQwHhcNMjYwMTAyMTYyMjE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzA2ZjVjMWY3NjMwNGZkMDgwOGY4OTNjMTEwODg1NGNhMTY2ZGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn17vBD4/dG69L9HW2Gz+9p1ScUFc 29XBn1gL0LLue7B1lp3/3OXyZoYorzrIGBLbodVmuMSpOsOxNf7DUaST7NeWkYW4 vdKA2prNmUbm2BW0Rsa5nf89DHQ1gztDuSBYjswBhEOgaNzP+wrQazwKt2wtVJrs EH0fjF+AucBzC5ec7LBe2Mc0ZoSAzYpDPqk2vbK+szIsDBUkILHAp9+f4WY6O4zK mcKH8iY8j45DCvR3MkrgiMODhILzVVh5e3Dx0nGNX6td2cDadCKJqhKalR8Js77k 96K1xuyL56e7FhQWSfE2PYh8WWPYVX8AwudAhNIr5vp7r+lIKqtlzCeduQIDAQAB o4ICvzCCArswHQYDVR0OBBYEFIcG9cH3YwT9CAj4k8EQiFTKFm2rMB8GA1UdIwQY MBaAFLFV2t24cbnWpTzWtH93YlCDf3d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmIt NTQ2OGIyY2YwYTc3LzEvaHdiMXdmZGpCUDBJQ1BpVHdSQ0lWTW9XYmFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS84ZmQ2ZTctNDk2Zi00N2NmLTgwZmItNTQ2OGIyY2YwYTc3 LzEvc1ZYYTNiaHh1ZGFsUE5hMGYzZGlVSU5fZDNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHUBggrBgEFBQcBBwEB/wSBxDCBwTCBoQQCAAEwgZoDAwAf lgMEBh+4AAMEBB+7cAMDACWKAwQFPlmgAwQFUEIAAwMAUOQDBAVSlaADBAZVCEAD AwBVEAMEBlf1AAMEB1mmgAMEBVnpQAMEB1qZAAMDAVtgAwMBW/gDBAdc/AADAwBf IQMDALKOAwQGvHaAAwQG1AZAAwQF1F9gAwQF1ajAAwQF1aqgAwQF1bZgAwQF1beg AwQG1fyAMBsEAgACMBUDBQAqABRwAwUCKgKAIAMFBSoCggAwDQYJKoZIhvcNAQEL BQADggEBAC1N29pqjstr6Rgh9QWLrJp/qdPo6wAElP2lDI2lS5WtGxwQoekEmtHl UhuRsR+whXDZY8DxOyaZEs205/bYg/OkOjko7wU4+fCvJ5Uv8xorp+FEswaAwedI 0rkVTj64SS9vvB3kzo4yWz7JqDXjVxyd22TsDgJ5X4nUYDc71GkPlXprZAVyldfI QCT4If+aLsyKPjVmYCZ5S+hVy02ASt821duMnQ2vxHaQWSfYVHyv9C/Q7bglK+nz 179FsJOxVfOLPjjHi3ELJxtuclzHhYMBiDMOJrROk3U+gscqhuiHCAB5Q8bcOeEX Qa6ZIXw9fST2qc4zb4zRfFfR+uuNYCg= -----END CERTIFICATE-----Generated at Tue Jan 27 00:06:22 2026 by rpki-client