This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/hnmnA26xKXY54jFPUcSN_0PAckk.roa File: hnmnA26xKXY54jFPUcSN_0PAckk.roa (raw, json) Hash identifier: iZnIOMbwxqj7gdSqvCeT/1vFVrhvoJ0Z39/9nmcH68s= Subject key identifier: 86:79:A7:03:6E:B1:29:76:39:E2:31:4F:51:C4:8D:FF:43:C0:72:49 Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9 Certificate serial: 019B7C133EDF3943EA6936277246C76A9A45 Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/hnmnA26xKXY54jFPUcSN_0PAckk.roa Signing time: Fri 02 Jan 2026 00:19:54 +0000 ROA not before: Fri 02 Jan 2026 00:19:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35073 IP address blocks: 195.238.254.0/24 maxlen: 24 2001:67c:18fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:3e:df:39:43:ea:69:36:27:72:46:c7:6a:9a:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9 Validity Not Before: Jan 2 00:19:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8679a7036eb1297639e2314f51c48dff43c07249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e0:c7:03:36:57:7a:ad:3f:e6:47:50:8e:c8: 1e:0b:68:72:cf:01:9d:e6:3b:b0:38:01:e1:eb:1c: 79:0d:57:e5:d5:30:0a:2d:d4:1a:4f:a4:d9:ce:58: f0:c8:2b:53:16:79:1a:37:bc:65:14:ca:d8:8c:b6: e1:6a:d9:fc:a9:d8:3d:d2:a2:39:8e:63:38:3b:64: b9:6e:78:ea:92:b9:43:7d:a1:bd:e2:8c:4a:36:d0: 16:e6:a7:4e:db:93:39:26:0e:d7:0a:7e:f7:76:d4: b7:d2:70:68:b2:af:54:1d:cc:71:a2:ae:03:e3:5f: e1:e7:85:c4:51:ae:22:30:f6:12:64:d7:ce:57:00: 4d:dd:47:c2:50:a6:90:49:19:02:a7:14:af:b8:fd: 33:fe:e5:bd:6d:a9:a3:0d:c5:9d:08:61:e3:16:c7: ee:cc:46:87:ce:f9:9c:af:89:14:70:13:eb:8c:b0: d3:7e:af:0c:9b:4a:8e:98:ce:f2:ef:2e:78:06:37: 9c:31:1c:9f:d0:16:25:c3:33:8e:ac:85:cd:4f:d8: b6:9c:31:24:1f:31:79:71:12:b3:bd:ea:ad:56:9b: 5c:9b:17:c9:96:3f:44:2c:59:7e:f2:09:d1:0e:77: 0e:31:2b:11:ce:ae:c7:01:8c:4b:ba:bf:65:3b:dc: ed:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:79:A7:03:6E:B1:29:76:39:E2:31:4F:51:C4:8D:FF:43:C0:72:49 X509v3 Authority Key Identifier: keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/hnmnA26xKXY54jFPUcSN_0PAckk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.238.254.0/24 IPv6: 2001:67c:18fc::/48 Signature Algorithm: sha256WithRSAEncryption a6:67:84:7d:8f:4a:9a:39:07:3a:27:09:97:94:9d:d5:75:93: cd:d3:0c:24:d2:a5:3b:75:90:4f:cc:b6:f2:a8:96:0c:d7:b7: 11:6a:58:44:58:de:c2:69:4f:f3:69:7c:39:d0:60:af:e4:49: c6:47:35:1c:5f:2e:c9:8e:b0:4b:75:c3:69:cb:89:09:bd:83: c4:a5:76:af:51:5a:e3:95:25:e9:6d:5c:be:27:21:cf:1a:dd: 80:19:fd:43:64:ed:1e:72:6a:6c:ae:71:0e:ba:0e:15:4b:69: c2:e8:43:bd:0a:7b:96:fd:f0:80:d4:f9:7f:ef:a8:67:93:02: 3c:dd:38:22:a8:7a:68:22:4c:c5:1e:af:74:66:60:ab:2c:ea: f5:97:e2:1c:29:7e:59:b9:d3:04:b0:41:10:90:ba:15:78:91: 89:97:95:e5:5d:ac:80:0c:f6:1e:b8:23:81:b2:9c:0d:60:63: 0e:d4:e8:4a:53:36:e0:d9:4d:3c:c9:82:ab:78:48:56:72:64: e2:71:c7:43:ea:4f:48:c6:ce:e3:53:c3:1b:1c:47:c0:75:2c: e2:b9:84:f4:db:aa:d4:0c:ef:c7:3b:f4:29:69:ec:f5:4f:65: d8:a7:01:17:f7:33:a7:51:a8:37:37:c7:c5:4a:e7:fe:f0:86: 08:d2:fc:e6 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8Ez7fOUPqaTYnckbHappFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMDRkNjI5MzI3NDM5NmY1YThkNjkxNDg1ZDY4NzZhMGEy MDcxZDkwHhcNMjYwMTAyMDAxOTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Njc5YTcwMzZlYjEyOTc2MzllMjMxNGY1MWM0OGRmZjQzYzA3MjQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uDHAzZXeq0/5kdQjsgeC2hyzwGd 5juwOAHh6xx5DVfl1TAKLdQaT6TZzljwyCtTFnkaN7xlFMrYjLbhatn8qdg90qI5 jmM4O2S5bnjqkrlDfaG94oxKNtAW5qdO25M5Jg7XCn73dtS30nBosq9UHcxxoq4D 41/h54XEUa4iMPYSZNfOVwBN3UfCUKaQSRkCpxSvuP0z/uW9bamjDcWdCGHjFsfu zEaHzvmcr4kUcBPrjLDTfq8Mm0qOmM7y7y54BjecMRyf0BYlwzOOrIXNT9i2nDEk HzF5cRKzveqtVptcmxfJlj9ELFl+8gnRDncOMSsRzq7HAYxLur9lO9ztSwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIZ5pwNusSl2OeIxT1HEjf9DwHJJMB8GA1UdIwQY MBaAFCAE1ikydDlvWo1pFIXWh2oKIHHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzIt NGVmOWNjNzUxNTE3LzEvaG5tbkEyNnhLWFk1NGpGUFVjU05fMFBBY2trLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzItNGVmOWNjNzUxNTE3 LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAw+7+MA8E AgACMAkDBwAgAQZ8GPwwDQYJKoZIhvcNAQELBQADggEBAKZnhH2PSpo5BzonCZeU ndV1k83TDCTSpTt1kE/MtvKolgzXtxFqWERY3sJpT/NpfDnQYK/kScZHNRxfLsmO sEt1w2nLiQm9g8Sldq9RWuOVJeltXL4nIc8a3YAZ/UNk7R5yamyucQ66DhVLacLo Q70Ke5b98IDU+X/vqGeTAjzdOCKoemgiTMUer3RmYKss6vWX4hwpflm50wSwQRCQ uhV4kYmXleVdrIAM9h64I4GynA1gYw7U6EpTNuDZTTzJgqt4SFZyZOJxx0PqT0jG zuNTwxscR8B1LOK5hPTbqtQM78c79Clp7PVPZdinARf3M6dRqDc3x8VK5/7whgjS /OY= -----END CERTIFICATE-----Generated at Sun Jan 25 15:14:58 2026 by rpki-client