This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/HW_hkEfvkCc_Nbd1XrvVgG6W_mc.roa File: HW_hkEfvkCc_Nbd1XrvVgG6W_mc.roa (raw, json) Hash identifier: hJtEY+ViaHHrE6ovlwWbn8ahLz2qGrhOtEFfqEUoIIE= Subject key identifier: 1D:6F:E1:90:47:EF:90:27:3F:35:B7:75:5E:BB:D5:80:6E:96:FE:67 Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1 Certificate serial: 019B7C7EF85FA97A582E31438D23F3B7255A Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/HW_hkEfvkCc_Nbd1XrvVgG6W_mc.roa Signing time: Fri 02 Jan 2026 02:17:34 +0000 ROA not before: Fri 02 Jan 2026 02:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57043 IP address blocks: 78.142.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.mft rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7e:f8:5f:a9:7a:58:2e:31:43:8d:23:f3:b7:25:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1 Validity Not Before: Jan 2 02:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d6fe19047ef90273f35b7755ebbd5806e96fe67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:d3:12:8d:26:36:79:b2:5f:d2:f1:67:bc: 2f:ad:a7:32:ea:f8:33:91:7e:a7:85:9b:c1:ec:78: 2c:3b:86:c4:0e:37:d5:4a:e1:54:4d:25:d1:f3:37: cf:e1:e4:9d:9a:07:7e:77:9f:33:b8:e3:32:3a:99: 86:7c:ad:24:ab:1e:ff:c7:24:3d:e8:15:76:f1:16: 92:ce:4f:ab:1d:28:20:14:11:36:0f:45:bc:79:4f: f9:d7:0b:3d:d8:e0:32:db:0a:4b:59:c2:bf:c6:75: c4:d8:78:d8:0a:27:fc:2e:3f:94:dc:ce:5e:29:18: 0e:04:d2:73:4c:12:8e:3c:79:5f:9a:47:66:47:79: 2b:3e:c8:23:e6:98:6a:b3:4a:b5:79:91:09:2c:2e: b2:9c:df:41:5d:16:9e:91:d3:5c:1c:13:aa:f9:b6: b2:94:dc:d9:3d:46:30:c9:80:d7:c6:48:fa:83:1c: e1:89:2a:e3:ac:12:e8:b5:93:9d:b5:dd:73:c5:8c: 84:bb:91:c4:34:89:61:01:bd:07:b7:d4:7d:a0:89: 27:d4:09:a9:61:29:15:63:e0:30:97:f9:7c:eb:7e: a7:3a:d1:3b:d7:05:57:e6:41:40:11:4d:2f:2a:6c: 71:14:63:e3:0a:db:ef:48:d9:50:5b:7c:f4:df:c2: fa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6F:E1:90:47:EF:90:27:3F:35:B7:75:5E:BB:D5:80:6E:96:FE:67 X509v3 Authority Key Identifier: keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/HW_hkEfvkCc_Nbd1XrvVgG6W_mc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.142.216.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:7a:34:20:99:6f:fc:b0:b7:27:aa:14:c4:71:6a:2d:d6:7f: 1a:14:ab:ad:40:fa:95:cc:65:ca:11:b7:bf:27:b7:ca:86:3d: e9:3e:10:e6:f0:41:d4:33:33:7f:31:6f:52:54:e6:36:7d:27: 80:89:2a:2e:a1:0d:84:72:1d:94:66:e6:7f:2d:c1:b5:a0:77: 52:96:5a:2e:10:25:61:a4:98:48:eb:18:6d:9b:d1:28:e3:37: a3:42:9d:18:20:68:81:c8:7c:f1:5b:23:c7:9a:f0:47:d6:1f: 9e:8c:56:98:a2:9d:4c:ca:c5:44:49:ee:c5:b5:21:28:7a:0b: 57:a4:82:b6:e6:2d:42:7b:43:37:b7:ce:60:65:a7:94:41:b7: 11:3a:48:4e:62:a2:c9:1f:8b:18:a9:e0:72:bf:74:1c:aa:40: 29:79:ae:c3:68:b7:06:81:54:02:6e:f6:29:f7:de:c1:c3:d2: 74:b7:2f:e7:f8:e9:b0:50:cb:a4:31:65:29:09:ff:3f:d9:e1: 82:38:e7:87:a6:e3:d0:1a:04:cd:48:9a:13:29:a7:3d:02:ee: 56:ed:f1:98:5a:0a:2a:63:00:3e:23:61:ab:62:7c:93:a9:99: e4:cd:30:04:65:78:f3:15:62:80:a2:2b:00:ff:79:2b:02:91: a7:3f:58:8f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8fvhfqXpYLjFDjSPztyVaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZDA4YTFlMWNiYzkwOTI1NGU5ZTZiOWM5MzlmZDg1YTI2 OGIxZTEwHhcNMjYwMTAyMDIxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDZmZTE5MDQ3ZWY5MDI3M2YzNWI3NzU1ZWJiZDU4MDZlOTZmZTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOTTEo0mNnmyX9LxZ7wvracy6vgz kX6nhZvB7HgsO4bEDjfVSuFUTSXR8zfP4eSdmgd+d58zuOMyOpmGfK0kqx7/xyQ9 6BV28RaSzk+rHSggFBE2D0W8eU/51ws92OAy2wpLWcK/xnXE2HjYCif8Lj+U3M5e KRgOBNJzTBKOPHlfmkdmR3krPsgj5phqs0q1eZEJLC6ynN9BXRaekdNcHBOq+bay lNzZPUYwyYDXxkj6gxzhiSrjrBLotZOdtd1zxYyEu5HENIlhAb0Ht9R9oIkn1Amp YSkVY+Awl/l8636nOtE71wVX5kFAEU0vKmxxFGPjCtvvSNlQW3z038L6/wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB1v4ZBH75AnPzW3dV671YBulv5nMB8GA1UdIwQY MBaAFPTQih4cvJCSVOnmuck5/YWiaLHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2Ut ZGNlOTQ3ZTI5NGI2LzEvSFdfaGtFZnZrQ2NfTmJkMVhydlZnRzZXX21jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2UtZGNlOTQ3ZTI5NGI2 LzEvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATo7YMA0G CSqGSIb3DQEBCwUAA4IBAQB/ejQgmW/8sLcnqhTEcWot1n8aFKutQPqVzGXKEbe/ J7fKhj3pPhDm8EHUMzN/MW9SVOY2fSeAiSouoQ2Ech2UZuZ/LcG1oHdSllouECVh pJhI6xhtm9Eo4zejQp0YIGiByHzxWyPHmvBH1h+ejFaYop1MysVESe7FtSEoegtX pIK25i1Ce0M3t85gZaeUQbcROkhOYqLJH4sYqeByv3QcqkApea7DaLcGgVQCbvYp 997Bw9J0ty/n+OmwUMukMWUpCf8/2eGCOOeHpuPQGgTNSJoTKac9Au5W7fGYWgoq YwA+I2GrYnyTqZnkzTAEZXjzFWKAoisA/3krApGnP1iP -----END CERTIFICATE-----Generated at Sun Jan 25 14:36:23 2026 by rpki-client