This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/HzNF72M-JUjvY2auMIhPMaZbcu4.roa File: HzNF72M-JUjvY2auMIhPMaZbcu4.roa (raw, json) Hash identifier: jIE8nOAj+oK6NNaSyEYskPrjUE0ya5pmThUjASHeDg0= Subject key identifier: 1F:33:45:EF:63:3E:25:48:EF:63:66:AE:30:88:4F:31:A6:5B:72:EE Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5 Certificate serial: 019B76EB561701F934763B9ACF583B32F6D6 Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/HzNF72M-JUjvY2auMIhPMaZbcu4.roa Signing time: Thu 01 Jan 2026 00:18:12 +0000 ROA not before: Thu 01 Jan 2026 00:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202468 IP address blocks: 2.178.254.0/24 maxlen: 24 2.178.255.0/24 maxlen: 24 78.39.156.0/24 maxlen: 24 78.39.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.mft rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:56:17:01:f9:34:76:3b:9a:cf:58:3b:32:f6:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5 Validity Not Before: Jan 1 00:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f3345ef633e2548ef6366ae30884f31a65b72ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ad:28:fd:fb:e5:37:32:f6:9e:17:47:b8:83: ca:8d:10:c0:c0:44:9e:64:f7:9e:9e:ff:e7:d7:44: 92:e7:91:ee:d0:07:3f:dd:fe:6b:3e:f5:ea:57:0f: d8:f3:77:9c:35:c2:5d:61:06:6e:3b:66:79:0b:da: 4d:2a:c9:32:b9:56:75:f8:81:07:ab:c1:ae:54:99: 29:7a:15:b4:00:2a:25:6a:33:f6:90:8e:51:28:7d: 0d:95:4e:c5:39:cf:63:f6:fc:c5:ee:a1:03:12:6b: 94:ab:4f:f4:60:31:4d:16:ee:8c:0d:e9:26:24:de: fa:ee:e5:e7:99:3b:cf:16:4d:26:19:1f:99:cd:98: 37:47:d5:d5:76:40:27:c6:c8:67:64:87:23:94:89: 09:a7:38:68:39:6d:4e:02:0a:ce:9b:11:b7:e2:99: 35:fa:0e:b2:a7:a6:9b:ad:2b:92:c2:a8:8c:e2:0f: 90:d3:c2:03:ac:ba:de:83:fa:46:1f:41:d1:6d:5f: 6c:c6:8c:00:81:c7:98:2f:b8:aa:b5:2a:22:10:99: da:73:73:f8:52:4f:ef:6c:3a:a1:dc:b2:69:18:62: 0a:a8:77:ad:ec:13:b7:b9:35:7e:ed:0d:51:0f:91: 89:8c:68:01:1a:9e:b0:ff:ca:ce:aa:db:60:75:30: a9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:33:45:EF:63:3E:25:48:EF:63:66:AE:30:88:4F:31:A6:5B:72:EE X509v3 Authority Key Identifier: keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/HzNF72M-JUjvY2auMIhPMaZbcu4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.178.254.0/23 78.39.156.0/24 78.39.198.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:2b:b3:88:01:57:99:68:b4:8c:76:3f:79:66:a7:c0:1a:d0: b5:05:ca:53:9f:51:be:3d:aa:df:c1:c3:ff:70:43:67:17:59: c5:cd:86:59:4e:69:98:b5:10:70:a2:36:c3:61:83:c5:eb:e0: 87:47:f3:02:88:ba:2c:4b:67:12:93:c0:53:d4:9a:da:4e:f9: b2:99:ce:50:27:a2:74:31:02:f9:19:90:e9:a7:be:b2:df:f6: c8:da:6e:f7:86:ca:65:43:48:7a:6a:1b:4a:a9:34:f4:35:a7: cf:c5:d6:27:74:bf:94:ca:64:76:f6:ba:e3:f4:cb:af:c6:d7: a0:7c:1f:9f:45:5d:09:24:99:fb:36:c2:4f:38:aa:93:45:79: 5b:d6:b2:6b:c9:bd:6e:5e:a6:cc:2f:ee:62:74:97:1f:27:86: 9f:7a:fa:61:25:8c:af:4b:6a:e4:0b:f6:ab:76:cc:f7:70:55: e3:23:f5:e7:ed:dd:5a:81:d5:64:b2:9a:6f:84:22:a4:a5:68: 73:83:42:19:af:32:76:4d:f6:7d:f2:7f:78:fc:c4:eb:31:b0: 53:b0:ff:dc:be:62:1c:4a:32:13:78:7d:0e:07:58:e6:cc:9b: d4:a9:1c:38:f9:f2:d5:63:c7:1d:82:f8:1c:d7:08:6e:f8:a2: e6:af:94:6d -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt261YXAfk0djuaz1g7MvbWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YTM5ZTQ3OTRjMzQ2MTJlN2YyMjU2OWIxYTZhODE3MTAy NjBhZTUwHhcNMjYwMTAxMDAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjMzNDVlZjYzM2UyNTQ4ZWY2MzY2YWUzMDg4NGYzMWE2NWI3MmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8q0o/fvlNzL2nhdHuIPKjRDAwESe ZPeenv/n10SS55Hu0Ac/3f5rPvXqVw/Y83ecNcJdYQZuO2Z5C9pNKskyuVZ1+IEH q8GuVJkpehW0AColajP2kI5RKH0NlU7FOc9j9vzF7qEDEmuUq0/0YDFNFu6MDekm JN767uXnmTvPFk0mGR+ZzZg3R9XVdkAnxshnZIcjlIkJpzhoOW1OAgrOmxG34pk1 +g6yp6abrSuSwqiM4g+Q08IDrLreg/pGH0HRbV9sxowAgceYL7iqtSoiEJnac3P4 Uk/vbDqh3LJpGGIKqHet7BO3uTV+7Q1RD5GJjGgBGp6w/8rOqttgdTCpnQIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFB8zRe9jPiVI72NmrjCITzGmW3LuMB8GA1UdIwQY MBaAFCejnkeUw0YS5/IlabGmqBcQJgrlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMt Zjc0ZDk1MTg1NzZjLzEvSHpORjcyTS1KVWp2WTJhdU1JaFBNYVpiY3U0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMtZjc0ZDk1MTg1NzZj LzEvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBArL+AwQA TiecAwQATifGMA0GCSqGSIb3DQEBCwUAA4IBAQAKK7OIAVeZaLSMdj95ZqfAGtC1 BcpTn1G+ParfwcP/cENnF1nFzYZZTmmYtRBwojbDYYPF6+CHR/MCiLosS2cSk8BT 1JraTvmymc5QJ6J0MQL5GZDpp76y3/bI2m73hsplQ0h6ahtKqTT0NafPxdYndL+U ymR29rrj9MuvxtegfB+fRV0JJJn7NsJPOKqTRXlb1rJryb1uXqbML+5idJcfJ4af evphJYyvS2rkC/ardsz3cFXjI/Xn7d1agdVksppvhCKkpWhzg0IZrzJ2TfZ98n94 /MTrMbBTsP/cvmIcSjITeH0OB1jmzJvUqRw4+fLVY8cdgvgc1whu+KLmr5Rt -----END CERTIFICATE-----Generated at Sun Jan 25 20:31:21 2026 by rpki-client