This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HsvLwPBsY0ylTL2IvmcTbmCN7Ks.roa File: HsvLwPBsY0ylTL2IvmcTbmCN7Ks.roa (raw, json) Hash identifier: kzJZ8gvoipf6thNE9O5oCBMm1gBfeXPIFVxQAUXhtTA= Subject key identifier: 1E:CB:CB:C0:F0:6C:63:4C:A5:4C:BD:88:BE:67:13:6E:60:8D:EC:AB Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84B5F321E334A1F25FF24CE65DF5E9 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HsvLwPBsY0ylTL2IvmcTbmCN7Ks.roa Signing time: Fri 02 Jan 2026 16:22:42 +0000 ROA not before: Fri 02 Jan 2026 16:22:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49098 IP address blocks: 93.171.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:b5:f3:21:e3:34:a1:f2:5f:f2:4c:e6:5d:f5:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ecbcbc0f06c634ca54cbd88be67136e608decab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6c:dd:4f:4d:d6:f8:60:62:a2:6e:2f:70:15: a7:30:67:a1:9b:ff:99:97:b1:0c:c6:b4:8c:0d:4e: ee:42:a6:64:f0:41:12:81:25:81:b8:e3:d4:2f:c2: 0a:b6:4a:4a:f9:8f:40:c8:ba:93:0d:51:ec:cc:d8: a9:fb:be:bd:82:6c:6a:97:01:ca:24:46:6e:d4:f9: 43:07:0f:29:c3:1d:ab:01:3b:1d:b2:5e:2a:e2:6f: 37:7d:fa:75:51:10:5a:3d:de:81:d3:ef:0c:f6:cb: af:ad:b7:76:b9:ee:e4:7f:82:f5:87:d6:3e:ef:a1: a9:7f:9d:20:70:d6:18:53:09:ef:97:04:fa:85:0a: 54:f6:12:c0:db:bf:8b:22:b7:1c:2a:91:82:67:c6: 0c:58:3a:5a:af:dc:d0:78:64:ff:25:08:63:1c:12: 88:41:f5:87:1d:f9:17:6a:66:9b:5e:33:16:4e:c0: 05:a7:7b:ca:8d:14:10:59:42:23:f3:3c:fb:b0:13: 7f:be:15:ca:3c:8a:6d:73:58:ce:db:d1:c3:36:51: 91:2c:de:64:9d:ee:18:67:d8:9e:21:1e:1f:30:93: 35:11:59:62:4f:8c:f6:76:2a:e6:03:cc:0d:af:f4: 37:f9:2a:ea:8e:48:08:5e:72:c4:54:4e:b6:2c:ca: 82:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:CB:CB:C0:F0:6C:63:4C:A5:4C:BD:88:BE:67:13:6E:60:8D:EC:AB X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HsvLwPBsY0ylTL2IvmcTbmCN7Ks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.168.0/24 Signature Algorithm: sha256WithRSAEncryption 53:9f:9c:f6:d3:22:21:a7:6b:31:90:74:b6:b6:d8:ef:e9:0d: 7b:3b:6f:c3:04:af:5d:5b:02:08:ea:7d:5b:64:8b:95:37:34: d4:c4:f2:e0:6e:32:5c:f7:a5:8e:dd:2c:77:14:81:24:78:55: cc:1d:22:27:f0:b6:25:c3:06:5f:a9:9c:19:ed:04:b1:1a:79: 68:18:92:08:51:f0:fa:81:9a:c0:a1:8d:e6:03:a9:00:3d:7e: 04:3d:f3:0a:73:a9:07:e0:88:12:d2:fa:57:ed:72:7f:b3:d6: 52:4e:6e:e3:77:c7:fc:01:58:56:d1:26:12:9a:50:0e:73:7d: 9f:36:86:01:d4:90:5d:0f:10:76:7b:f6:32:6d:66:20:79:14: 25:81:a5:b2:93:6f:f9:2f:30:9e:3f:df:63:c8:0d:b5:30:99: f7:0c:82:4f:bf:e5:7e:b3:d0:ba:fa:3b:10:fe:c4:b4:bb:14: d1:cf:5d:9c:d7:e1:6a:ba:eb:32:74:02:ad:80:d7:6a:6c:ce: cb:f2:54:f8:80:0a:8c:7f:29:6d:e6:83:79:6b:fe:cb:61:86: 43:46:1d:57:a8:f0:62:94:46:0d:e8:85:ba:e1:12:ad:3d:a5: 75:af:b4:de:3d:c6:37:6a:8d:73:16:7c:ec:a4:bf:ff:1f:30: 3a:01:cd:a8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hLXzIeM0ofJf8kzmXfXpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWNiY2JjMGYwNmM2MzRjYTU0Y2JkODhiZTY3MTM2ZTYwOGRlY2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2zdT03W+GBiom4vcBWnMGehm/+Z l7EMxrSMDU7uQqZk8EESgSWBuOPUL8IKtkpK+Y9AyLqTDVHszNip+769gmxqlwHK JEZu1PlDBw8pwx2rATsdsl4q4m83ffp1URBaPd6B0+8M9suvrbd2ue7kf4L1h9Y+ 76Gpf50gcNYYUwnvlwT6hQpU9hLA27+LIrccKpGCZ8YMWDpar9zQeGT/JQhjHBKI QfWHHfkXamabXjMWTsAFp3vKjRQQWUIj8zz7sBN/vhXKPIptc1jO29HDNlGRLN5k ne4YZ9ieIR4fMJM1EVliT4z2dirmA8wNr/Q3+SrqjkgIXnLEVE62LMqC4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB7Ly8DwbGNMpUy9iL5nE25gjeyrMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvSHN2THdQQnNZMHlsVEwySXZtY1RibUNON0tzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXauoMA0G CSqGSIb3DQEBCwUAA4IBAQBTn5z20yIhp2sxkHS2ttjv6Q17O2/DBK9dWwII6n1b ZIuVNzTUxPLgbjJc96WO3Sx3FIEkeFXMHSIn8LYlwwZfqZwZ7QSxGnloGJIIUfD6 gZrAoY3mA6kAPX4EPfMKc6kH4IgS0vpX7XJ/s9ZSTm7jd8f8AVhW0SYSmlAOc32f NoYB1JBdDxB2e/YybWYgeRQlgaWyk2/5LzCeP99jyA21MJn3DIJPv+V+s9C6+jsQ /sS0uxTRz12c1+FquusydAKtgNdqbM7L8lT4gAqMfylt5oN5a/7LYYZDRh1XqPBi lEYN6IW64RKtPaV1r7TePcY3ao1zFnzspL//HzA6Ac2o -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:58 2026 by rpki-client