This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/hwtVlXCFjo--idd4yO5s0tt7X3I.roa File: hwtVlXCFjo--idd4yO5s0tt7X3I.roa (raw, json) Hash identifier: NUHjZYJkOekWUWwDXQIom+k1M6skxKicFwBdcoVK9n8= Subject key identifier: 87:0B:55:95:70:85:8E:8F:BE:89:D7:78:C8:EE:6C:D2:DB:7B:5F:72 Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae Certificate serial: 019B7AC7C534FAB13EB59772BD150CBF6F67 Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/hwtVlXCFjo--idd4yO5s0tt7X3I.roa Signing time: Thu 01 Jan 2026 18:17:51 +0000 ROA not before: Thu 01 Jan 2026 18:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208235 IP address blocks: 185.88.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c5:34:fa:b1:3e:b5:97:72:bd:15:0c:bf:6f:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae Validity Not Before: Jan 1 18:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=870b559570858e8fbe89d778c8ee6cd2db7b5f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ed:e2:41:5f:1f:24:ca:4e:70:2f:58:a2:79: 6b:b0:a8:37:2d:c3:c3:56:7d:f6:e8:a8:4c:87:d3: 64:cb:8f:78:45:02:8b:1a:b1:35:c6:21:d3:d7:f1: f3:6d:b5:78:b3:e9:b8:a5:6f:16:3c:f0:07:26:d3: 68:0e:6e:90:02:20:9c:a6:32:8b:bc:84:22:74:f3: 57:3b:2d:1f:9d:8a:af:5f:7b:5c:38:af:e1:1d:0c: 51:0e:a7:79:ae:7f:c2:04:14:52:32:b7:0b:bb:17: 55:f3:8e:2c:30:9e:52:b2:95:df:84:0a:ad:58:98: 76:df:04:09:73:82:7d:5e:54:70:1e:17:1b:40:0c: 78:ac:ea:ee:8b:0e:72:98:5b:f4:df:11:35:c1:ec: 51:05:78:a7:9b:9b:4f:c2:88:ee:42:b9:fc:8b:0e: 64:2e:64:0e:59:c8:36:f1:db:1d:6a:3e:80:b7:55: 3a:8b:a0:ef:ff:1d:36:47:21:43:88:dc:98:e6:de: d1:80:a2:5c:1e:b3:d2:29:7b:00:6c:21:ff:8c:47: d2:ab:c2:51:de:84:54:2c:67:7c:94:1e:fd:6f:f4: 32:29:58:46:0b:f8:60:c3:c0:2e:7a:e7:3b:6c:79: fe:fa:9e:fa:52:8b:fb:a9:a7:16:42:46:19:55:a9: 2d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0B:55:95:70:85:8E:8F:BE:89:D7:78:C8:EE:6C:D2:DB:7B:5F:72 X509v3 Authority Key Identifier: keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/hwtVlXCFjo--idd4yO5s0tt7X3I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.88.144.0/22 Signature Algorithm: sha256WithRSAEncryption 20:e4:5a:55:81:16:52:18:f1:8d:73:68:12:d9:88:da:05:43: 61:17:19:ef:d3:80:d7:d3:0d:bb:7e:a1:a8:78:e8:d9:f0:7f: cc:a1:7f:c6:74:e4:24:d6:72:bb:ab:57:28:ed:bc:23:46:2b: 6c:f9:0b:33:e6:69:ad:e8:45:42:ab:b3:53:d4:17:4b:7d:c4: fc:2c:68:ce:1a:d3:e8:8d:58:b2:19:47:2b:d2:59:e5:63:2d: fd:22:4e:d1:da:1e:66:cc:af:de:8d:41:65:12:c2:89:86:ba: cb:86:9a:09:f4:a7:d9:07:41:c3:74:b2:94:c0:e9:fa:79:23: ad:da:0a:ad:b3:d6:35:09:58:b4:84:0d:d7:27:7c:92:31:30: 94:1e:64:69:15:61:82:b9:7d:ce:94:45:16:24:fc:31:ec:20: 29:75:06:8b:97:f0:e6:76:5c:11:bb:d8:cd:82:70:32:21:a9: 0e:c6:53:54:b4:3a:cc:09:0c:33:47:d7:4c:b5:27:b8:ad:e4: 0e:c1:a8:c1:20:60:59:74:78:b5:f6:d1:79:2a:bd:25:50:76: 61:bf:b5:70:c3:fd:19:99:c2:b8:03:b8:d8:42:84:28:4b:32: 92:d4:32:cd:8d:ce:a9:ad:2f:d1:de:70:f8:d2:32:98:60:df: a0:7b:f0:21 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x8U0+rE+tZdyvRUMv29nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxOWI5N2IyMGNjYjRmNjk2NTE4ZTQ3YzQzNzI1OWE4OTEz ZTcyYWUwHhcNMjYwMTAxMTgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzBiNTU5NTcwODU4ZThmYmU4OWQ3NzhjOGVlNmNkMmRiN2I1ZjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvO3iQV8fJMpOcC9YonlrsKg3LcPD Vn326KhMh9Nky494RQKLGrE1xiHT1/HzbbV4s+m4pW8WPPAHJtNoDm6QAiCcpjKL vIQidPNXOy0fnYqvX3tcOK/hHQxRDqd5rn/CBBRSMrcLuxdV844sMJ5SspXfhAqt WJh23wQJc4J9XlRwHhcbQAx4rOruiw5ymFv03xE1wexRBXinm5tPwojuQrn8iw5k LmQOWcg28dsdaj6At1U6i6Dv/x02RyFDiNyY5t7RgKJcHrPSKXsAbCH/jEfSq8JR 3oRULGd8lB79b/QyKVhGC/hgw8Aueuc7bHn++p76Uov7qacWQkYZVaktUwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIcLVZVwhY6PvonXeMjubNLbe19yMB8GA1UdIwQY MBaAFIGbl7IMy09pZRjkfENyWaiRPnKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy83NzRmMzctMGU1Ny00OWU2LTg4NjUt YTY0YmE0YjhmYTE5LzEvaHd0VmxYQ0Zqby0taWRkNHlPNXMwdHQ3WDNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy83NzRmMzctMGU1Ny00OWU2LTg4NjUtYTY0YmE0YjhmYTE5 LzEvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuViQMA0G CSqGSIb3DQEBCwUAA4IBAQAg5FpVgRZSGPGNc2gS2YjaBUNhFxnv04DX0w27fqGo eOjZ8H/MoX/GdOQk1nK7q1co7bwjRits+Qsz5mmt6EVCq7NT1BdLfcT8LGjOGtPo jViyGUcr0lnlYy39Ik7R2h5mzK/ejUFlEsKJhrrLhpoJ9KfZB0HDdLKUwOn6eSOt 2gqts9Y1CVi0hA3XJ3ySMTCUHmRpFWGCuX3OlEUWJPwx7CApdQaLl/DmdlwRu9jN gnAyIakOxlNUtDrMCQwzR9dMtSe4reQOwajBIGBZdHi19tF5Kr0lUHZhv7Vww/0Z mcK4A7jYQoQoSzKS1DLNjc6prS/R3nD40jKYYN+ge/Ah -----END CERTIFICATE-----Generated at Mon Jan 26 15:35:04 2026 by rpki-client