This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/HEoJzyQgpbE2dOnYnIQsCFAqMqU.roa File: HEoJzyQgpbE2dOnYnIQsCFAqMqU.roa (raw, json) Hash identifier: QpTgQ2IqAcbkzWSPs4SEjRf+cwV/9JVPxh15R54dMfM= Subject key identifier: 1C:4A:09:CF:24:20:A5:B1:36:74:E9:D8:9C:84:2C:08:50:2A:32:A5 Certificate issuer: /CN=64f47c98440f103825c8ea5074298b18cc113e20 Certificate serial: 019B7D5D08B92E6A7266BDBD15103E25E23C Authority key identifier: 64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/HEoJzyQgpbE2dOnYnIQsCFAqMqU.roa Signing time: Fri 02 Jan 2026 06:20:07 +0000 ROA not before: Fri 02 Jan 2026 06:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201063 IP address blocks: 185.3.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.mft rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:08:b9:2e:6a:72:66:bd:bd:15:10:3e:25:e2:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64f47c98440f103825c8ea5074298b18cc113e20 Validity Not Before: Jan 2 06:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c4a09cf2420a5b13674e9d89c842c08502a32a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:3c:7b:47:93:7e:0a:27:6f:cb:38:a4:4e: 95:f3:50:de:00:de:48:2e:80:7f:46:23:49:44:93: f9:4a:18:df:b6:e9:b8:25:aa:20:75:c4:82:38:4e: 66:02:25:57:d1:8c:6f:36:7c:f0:db:01:4e:d3:cf: 5a:61:47:92:dc:df:10:22:b4:e6:16:ab:a0:75:5a: 71:af:70:10:de:f6:e2:a8:24:eb:5a:d6:56:2d:6f: 4e:c9:95:14:2a:d8:bd:e4:26:77:8c:82:53:d5:a3: 4c:2a:dc:ba:b1:97:22:ae:7c:ff:44:82:8a:f8:c4: 8d:22:48:ad:5b:6d:5e:1d:ed:9e:69:b4:d5:4e:b0: 53:dd:19:8a:64:25:f7:ad:9d:26:53:7a:af:8b:10: 62:f2:91:90:6a:96:70:0b:c3:75:e2:7e:69:30:b8: e5:0a:8a:34:9b:ce:1e:e7:be:e2:ab:b5:88:b3:37: 53:b5:e5:b0:55:b5:1e:f9:35:21:de:e4:4b:e1:1f: e7:cc:31:8e:b8:ff:f1:33:29:a1:6e:71:9a:68:47: c6:e3:41:ae:58:3b:44:10:33:4f:bd:55:e9:61:9b: 8a:05:b3:98:8c:97:61:ac:c2:69:dd:8b:a0:6d:0f: 77:99:32:d7:e7:f6:9f:0f:90:1e:02:f5:f5:c1:16: 0a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4A:09:CF:24:20:A5:B1:36:74:E9:D8:9C:84:2C:08:50:2A:32:A5 X509v3 Authority Key Identifier: keyid:64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/HEoJzyQgpbE2dOnYnIQsCFAqMqU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.3.189.0/24 Signature Algorithm: sha256WithRSAEncryption 78:d1:c4:8e:b2:df:81:cc:6b:e2:1d:be:90:e2:6a:91:02:f5: 89:7c:14:be:c6:dc:0e:dc:9a:01:8a:d3:7c:26:58:99:d5:46: 71:45:7e:5c:59:ae:f8:df:0a:b3:4b:8e:05:62:b2:b7:d6:c4: 7c:8e:68:54:8f:4b:21:80:be:c1:29:06:5e:79:a2:0f:74:36: 10:e2:4d:72:ac:a1:c6:66:24:78:72:f7:35:3a:ea:2b:e3:ff: 31:3b:cd:55:a4:6a:8d:88:c2:ec:41:1a:67:14:84:c4:56:74: d6:b8:d7:25:ff:51:cb:ad:d0:20:83:10:d7:29:d3:34:85:20: d3:37:60:d2:23:39:57:16:03:52:e9:f7:c6:45:59:88:18:62: 43:a7:90:fc:70:6d:18:9e:6d:da:3d:ee:55:bf:69:3f:0f:fc: d3:38:89:56:94:d4:71:8b:67:3a:fc:b7:22:c3:a4:f6:4d:2b: 14:91:b7:e1:4f:c5:8c:08:3a:43:b0:0b:79:62:cb:ec:e9:c6: 7d:35:cb:f1:60:41:a1:61:2c:81:fe:bf:d5:81:29:da:2a:37: 61:f8:e1:a5:de:68:de:7d:4b:15:31:6c:f7:ec:96:7d:46:65: 5e:2c:28:de:12:2f:df:c0:16:db:5f:19:5b:6e:3c:02:bb:23: 93:30:2c:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQi5LmpyZr29FRA+JeI8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZjQ3Yzk4NDQwZjEwMzgyNWM4ZWE1MDc0Mjk4YjE4Y2Mx MTNlMjAwHhcNMjYwMTAyMDYyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzRhMDljZjI0MjBhNWIxMzY3NGU5ZDg5Yzg0MmMwODUwMmEzMmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKg8e0eTfgonb8s4pE6V81DeAN5I LoB/RiNJRJP5Shjftum4JaogdcSCOE5mAiVX0YxvNnzw2wFO089aYUeS3N8QIrTm FqugdVpxr3AQ3vbiqCTrWtZWLW9OyZUUKti95CZ3jIJT1aNMKty6sZcirnz/RIKK +MSNIkitW21eHe2eabTVTrBT3RmKZCX3rZ0mU3qvixBi8pGQapZwC8N14n5pMLjl Coo0m84e577iq7WIszdTteWwVbUe+TUh3uRL4R/nzDGOuP/xMymhbnGaaEfG40Gu WDtEEDNPvVXpYZuKBbOYjJdhrMJp3YugbQ93mTLX5/afD5AeAvX1wRYKowIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBxKCc8kIKWxNnTp2JyELAhQKjKlMB8GA1UdIwQY MBaAFGT0fJhEDxA4JcjqUHQpixjMET4gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlBSOG1FUVBFRGdseU9wUWRDbUxHTXdSUGlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTlhZWItYzcxMy00MmY4LTkxZDYt Mzg0NDc4NTVkNjY5LzEvSEVvSnp5UWdwYkUyZE9uWW5JUXNDRkFxTXFVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTlhZWItYzcxMy00MmY4LTkxZDYtMzg0NDc4NTVkNjY5 LzEvWlBSOG1FUVBFRGdseU9wUWRDbUxHTXdSUGlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQO9MA0G CSqGSIb3DQEBCwUAA4IBAQB40cSOst+BzGviHb6Q4mqRAvWJfBS+xtwO3JoBitN8 JliZ1UZxRX5cWa743wqzS44FYrK31sR8jmhUj0shgL7BKQZeeaIPdDYQ4k1yrKHG ZiR4cvc1Ouor4/8xO81VpGqNiMLsQRpnFITEVnTWuNcl/1HLrdAggxDXKdM0hSDT N2DSIzlXFgNS6ffGRVmIGGJDp5D8cG0Ynm3aPe5Vv2k/D/zTOIlWlNRxi2c6/Lci w6T2TSsUkbfhT8WMCDpDsAt5Ysvs6cZ9NcvxYEGhYSyB/r/VgSnaKjdh+OGl3mje fUsVMWz37JZ9RmVeLCjeEi/fwBbbXxlbbjwCuyOTMCza -----END CERTIFICATE-----Generated at Sun Jan 25 20:49:09 2026 by rpki-client