This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/HgNHcMq7NIa8W_Oie54BpJeBOb4.roa File: HgNHcMq7NIa8W_Oie54BpJeBOb4.roa (raw, json) Hash identifier: +M17r4uc13A/CN+iJDH8M4JfdOZqtI02WSgDMbtnpJo= Subject key identifier: 1E:03:47:70:CA:BB:34:86:BC:5B:F3:A2:7B:9E:01:A4:97:81:39:BE Certificate issuer: /CN=df895a3ee2211b6ee2df7202f09a426680d66269 Certificate serial: 019B7D5B7354C711EF5FCE83347F97FA1B38 Authority key identifier: DF:89:5A:3E:E2:21:1B:6E:E2:DF:72:02:F0:9A:42:66:80:D6:62:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/34laPuIhG27i33IC8JpCZoDWYmk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/HgNHcMq7NIa8W_Oie54BpJeBOb4.roa Signing time: Fri 02 Jan 2026 06:18:23 +0000 ROA not before: Fri 02 Jan 2026 06:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216334 IP address blocks: 77.105.131.0/24 maxlen: 24 77.105.133.0/24 maxlen: 24 77.105.144.0/24 maxlen: 24 91.193.43.0/24 maxlen: 24 2a00:f9a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/34laPuIhG27i33IC8JpCZoDWYmk.crl rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/34laPuIhG27i33IC8JpCZoDWYmk.mft rsync://rpki.ripe.net/repository/DEFAULT/34laPuIhG27i33IC8JpCZoDWYmk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:73:54:c7:11:ef:5f:ce:83:34:7f:97:fa:1b:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df895a3ee2211b6ee2df7202f09a426680d66269 Validity Not Before: Jan 2 06:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e034770cabb3486bc5bf3a27b9e01a4978139be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:b5:f6:96:33:f9:65:6d:fe:61:22:f7:e9: 64:df:b6:59:d7:69:43:8a:53:9c:27:5a:ab:da:76: f5:23:ff:a2:d9:83:21:4d:8d:2f:4e:4a:c7:7b:bf: b3:b1:ca:93:72:6b:68:9e:6e:dc:90:66:b5:73:15: 8a:8f:d3:e7:a6:32:a5:49:2f:0a:3c:ff:76:d0:d7: 00:16:44:c5:53:8c:ed:ca:57:67:d6:a2:a5:ad:1e: 83:e6:e3:2f:4a:4f:bd:88:36:f7:32:56:53:13:b5: 77:ad:f2:25:c6:e7:89:9f:38:7a:40:2f:8d:12:e1: 20:8c:7f:42:f3:05:e4:ed:aa:90:e8:cc:dd:5d:e1: a7:b3:91:72:73:75:fe:f1:93:02:59:f5:d0:b0:ab: 17:9a:ea:cc:e8:76:8b:97:50:84:15:d7:fc:81:72: 15:77:8e:e0:01:ce:22:7f:1c:20:e0:5e:94:4c:05: c6:96:13:2e:1c:bb:94:32:3f:88:82:f0:4e:98:96: b9:d9:2d:f9:bd:1a:d7:00:23:eb:1b:7b:77:56:df: ed:3d:72:b5:95:2f:7f:48:08:95:e4:0f:2d:73:a0: f7:9b:4d:f1:d2:43:b0:3b:08:be:45:49:a7:10:11: 7f:37:73:65:e6:2f:c0:fb:56:35:5f:0b:5c:6b:f7: f4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:03:47:70:CA:BB:34:86:BC:5B:F3:A2:7B:9E:01:A4:97:81:39:BE X509v3 Authority Key Identifier: keyid:DF:89:5A:3E:E2:21:1B:6E:E2:DF:72:02:F0:9A:42:66:80:D6:62:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/34laPuIhG27i33IC8JpCZoDWYmk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/HgNHcMq7NIa8W_Oie54BpJeBOb4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/1a72a7-277d-44f5-87de-70b2ebd51438/1/34laPuIhG27i33IC8JpCZoDWYmk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.105.131.0/24 77.105.133.0/24 77.105.144.0/24 91.193.43.0/24 IPv6: 2a00:f9a0::/32 Signature Algorithm: sha256WithRSAEncryption 98:e9:34:aa:f5:de:10:40:f4:b8:85:52:bd:32:75:9b:ac:8a: 9b:74:03:58:37:3e:f4:16:14:94:e0:53:06:c3:71:c4:c6:b3: aa:8f:be:93:cd:34:4f:ea:af:56:3e:d2:06:53:17:88:eb:79: 02:d6:dd:21:7f:7d:e0:d8:c3:71:a7:53:4f:c7:6e:42:bd:ff: 0e:09:de:84:58:74:88:a1:5a:f1:9b:fe:d5:0e:10:bb:ca:99: d1:1a:79:ec:a2:31:64:31:d4:59:19:e3:3b:2e:ac:e9:c7:ba: 1a:2a:6c:86:7d:76:7f:49:3b:d6:77:09:55:85:89:7f:2f:ec: f8:16:36:d1:d9:02:3a:31:d4:08:e7:4d:63:52:54:25:33:cc: ac:70:77:ea:0a:ae:21:5f:df:a4:32:67:d2:b8:c0:94:2a:50: c7:87:49:ab:c7:84:f4:51:91:da:bb:de:b9:47:ed:a5:4d:63: 16:b6:6b:9a:59:73:e2:e0:83:bc:d3:cf:38:19:a6:c0:2b:90: 08:14:57:d0:da:bf:a4:ce:05:3a:a0:d0:9e:f5:7f:28:d4:a7: 51:ec:1e:0b:91:e5:56:60:db:47:9b:55:fe:05:bb:dc:58:39: 2a:da:17:7e:22:63:63:c8:6f:a8:ec:87:88:f5:c0:4e:55:4b: 20:4a:89:18 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt9W3NUxxHvX86DNH+X+hs4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmODk1YTNlZTIyMTFiNmVlMmRmNzIwMmYwOWE0MjY2ODBk NjYyNjkwHhcNMjYwMTAyMDYxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTAzNDc3MGNhYmIzNDg2YmM1YmYzYTI3YjllMDFhNDk3ODEzOWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwM619pYz+WVt/mEi9+lk37ZZ12lD ilOcJ1qr2nb1I/+i2YMhTY0vTkrHe7+zscqTcmtonm7ckGa1cxWKj9PnpjKlSS8K PP920NcAFkTFU4ztyldn1qKlrR6D5uMvSk+9iDb3MlZTE7V3rfIlxueJnzh6QC+N EuEgjH9C8wXk7aqQ6MzdXeGns5Fyc3X+8ZMCWfXQsKsXmurM6HaLl1CEFdf8gXIV d47gAc4ifxwg4F6UTAXGlhMuHLuUMj+IgvBOmJa52S35vRrXACPrG3t3Vt/tPXK1 lS9/SAiV5A8tc6D3m03x0kOwOwi+RUmnEBF/N3Nl5i/A+1Y1Xwtca/f0BQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFB4DR3DKuzSGvFvzonueAaSXgTm+MB8GA1UdIwQY MBaAFN+JWj7iIRtu4t9yAvCaQmaA1mJpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzRsYVB1SWhHMjdpMzNJQzhKcENab0RXWW1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8xYTcyYTctMjc3ZC00NGY1LTg3ZGUt NzBiMmViZDUxNDM4LzEvSGdOSGNNcTdOSWE4V19PaWU1NEJwSmVCT2I0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8xYTcyYTctMjc3ZC00NGY1LTg3ZGUtNzBiMmViZDUxNDM4 LzEvMzRsYVB1SWhHMjdpMzNJQzhKcENab0RXWW1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQATWmDAwQA TWmFAwQATWmQAwQAW8ErMA0EAgACMAcDBQAqAPmgMA0GCSqGSIb3DQEBCwUAA4IB AQCY6TSq9d4QQPS4hVK9MnWbrIqbdANYNz70FhSU4FMGw3HExrOqj76TzTRP6q9W PtIGUxeI63kC1t0hf33g2MNxp1NPx25Cvf8OCd6EWHSIoVrxm/7VDhC7ypnRGnns ojFkMdRZGeM7Lqzpx7oaKmyGfXZ/STvWdwlVhYl/L+z4FjbR2QI6MdQI501jUlQl M8yscHfqCq4hX9+kMmfSuMCUKlDHh0mrx4T0UZHau965R+2lTWMWtmuaWXPi4IO8 0884GabAK5AIFFfQ2r+kzgU6oNCe9X8o1KdR7B4LkeVWYNtHm1X+BbvcWDkq2hd+ ImNjyG+o7IeI9cBOVUsgSokY -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:25 2026 by rpki-client