This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa File: Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa (raw, json) Hash identifier: aBGsg4UHN28OpsS2xFbkAdXhnlHxP423kuvv3ReKy28= Subject key identifier: 1E:FF:87:A5:89:41:B5:C1:AD:8E:54:7C:AA:D3:5F:94:36:B2:1A:94 Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda Certificate serial: 019B7EA4FFE4CC799EFAA26B1F80D9EA5163 Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa Signing time: Fri 02 Jan 2026 12:18:21 +0000 ROA not before: Fri 02 Jan 2026 12:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29119 IP address blocks: 185.137.165.0/24 maxlen: 24 185.226.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:ff:e4:cc:79:9e:fa:a2:6b:1f:80:d9:ea:51:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda Validity Not Before: Jan 2 12:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1eff87a58941b5c1ad8e547caad35f9436b21a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:b1:0d:83:79:ed:97:13:18:24:d7:d0:e4: bb:6b:f2:0b:33:62:af:be:62:21:0d:a5:6b:ee:fb: 54:da:82:16:07:6a:03:e8:8b:0a:30:24:63:ad:f9: c2:0a:c1:81:7f:e6:1b:4e:b1:a8:e4:69:e6:0f:49: f2:52:3c:f3:72:f3:09:48:3c:0a:55:d7:94:5b:31: ba:46:0d:d8:ff:5a:dc:86:45:c0:e4:49:95:19:e9: fa:18:a8:26:80:39:c7:9c:7c:e6:84:64:97:15:df: 42:7a:de:99:8f:04:33:4b:d5:1b:31:a7:36:18:44: 73:68:9e:98:bb:fd:bf:e2:4d:5e:e7:99:59:99:f3: b8:e7:d6:6a:dc:fd:15:31:71:44:d2:da:6e:37:c0: de:ee:d6:ea:5b:52:c0:42:24:40:40:73:75:e2:6f: 39:6b:35:36:dd:35:de:59:7b:3f:de:0f:1e:4f:d1: 60:45:4a:b7:e1:cb:22:64:43:e0:1c:9f:3c:b6:cf: 81:01:35:eb:8c:4d:ee:cc:f7:1f:fe:d0:29:3c:96: 14:ab:af:28:ca:09:b2:a0:b7:7e:c2:ce:08:20:b6: c1:b7:60:6c:79:1d:91:4a:cb:4c:1a:36:d4:c1:1a: 7e:4f:0b:ed:b6:92:50:4d:89:bb:0c:01:bf:78:6d: 02:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FF:87:A5:89:41:B5:C1:AD:8E:54:7C:AA:D3:5F:94:36:B2:1A:94 X509v3 Authority Key Identifier: keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.137.165.0/24 185.226.188.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:1f:0e:a9:3f:ff:68:7a:3b:73:45:06:ab:33:0f:02:86:a9: f2:1c:6b:41:ac:9f:90:5c:58:ce:27:84:39:bd:1e:74:21:82: ee:c1:b9:b3:a1:fb:98:8d:26:0b:d8:24:9b:eb:9e:2c:00:a3: 29:18:ae:43:cc:d3:f2:ba:4b:46:58:f0:c6:fc:c5:f9:06:95: 3c:b2:7c:f8:ae:1e:b8:33:92:a1:51:d5:8e:6d:50:76:11:97: ae:98:30:ff:a0:40:0e:ff:6b:0e:2e:59:f5:b1:96:4f:0f:21: 9f:05:a2:d3:e3:58:92:31:f8:89:c0:70:33:8c:c6:4a:25:62: 17:0c:ef:8b:a7:b0:be:99:de:7d:12:94:92:2d:89:8d:5f:55: 76:be:54:dc:da:cb:97:2c:e2:fe:b2:4f:1d:d7:46:79:89:f1: e4:74:d8:5e:27:4a:9e:cb:80:07:e4:33:53:1f:db:32:96:09: 84:86:cd:a9:c1:31:93:e6:2e:cc:c3:f9:39:7e:64:fc:a5:83: 99:76:1a:f4:1f:25:be:fd:d0:93:2f:c8:67:97:09:88:ac:75: b8:19:ef:85:55:0b:82:28:6f:c3:6d:f6:cb:90:8d:11:45:62: cc:bb:2c:de:7d:68:41:d3:d3:6e:d5:18:5a:66:89:d2:96:6a: c7:a8:cc:3f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pP/kzHme+qJrH4DZ6lFjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMjFhMTEzZDFiYTAxZDEwN2ZkZjc5MTMwOGMwYTUxZjNk MDZkZGEwHhcNMjYwMTAyMTIxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWZmODdhNTg5NDFiNWMxYWQ4ZTU0N2NhYWQzNWY5NDM2YjIxYTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufCxDYN57ZcTGCTX0OS7a/ILM2Kv vmIhDaVr7vtU2oIWB2oD6IsKMCRjrfnCCsGBf+YbTrGo5GnmD0nyUjzzcvMJSDwK VdeUWzG6Rg3Y/1rchkXA5EmVGen6GKgmgDnHnHzmhGSXFd9Cet6ZjwQzS9UbMac2 GERzaJ6Yu/2/4k1e55lZmfO459Zq3P0VMXFE0tpuN8De7tbqW1LAQiRAQHN14m85 azU23TXeWXs/3g8eT9FgRUq34csiZEPgHJ88ts+BATXrjE3uzPcf/tApPJYUq68o ygmyoLd+ws4IILbBt2BseR2RSstMGjbUwRp+TwvttpJQTYm7DAG/eG0CGwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFB7/h6WJQbXBrY5UfKrTX5Q2shqUMB8GA1UdIwQY MBaAFKwhoRPRugHRB/33kTCMClHz0G3aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYt ZmQ3M2I4MDgzM2I3LzEvSHYtSHBZbEJ0Y0d0amxSOHF0TmZsRGF5R3BRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYtZmQ3M2I4MDgzM2I3 LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuYmlAwQC ueK8MA0GCSqGSIb3DQEBCwUAA4IBAQCeHw6pP/9oejtzRQarMw8ChqnyHGtBrJ+Q XFjOJ4Q5vR50IYLuwbmzofuYjSYL2CSb654sAKMpGK5DzNPyuktGWPDG/MX5BpU8 snz4rh64M5KhUdWObVB2EZeumDD/oEAO/2sOLln1sZZPDyGfBaLT41iSMfiJwHAz jMZKJWIXDO+Lp7C+md59EpSSLYmNX1V2vlTc2suXLOL+sk8d10Z5ifHkdNheJ0qe y4AH5DNTH9sylgmEhs2pwTGT5i7Mw/k5fmT8pYOZdhr0HyW+/dCTL8hnlwmIrHW4 Ge+FVQuCKG/DbfbLkI0RRWLMuyzefWhB09Nu1RhaZonSlmrHqMw/ -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:09 2026 by rpki-client