This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/hkFrsNhiq0TnoVB5lv6ukrym9kU.roa File: hkFrsNhiq0TnoVB5lv6ukrym9kU.roa (raw, json) Hash identifier: Lpo1dIydhWwC2a6odejRAjq7zYy9EyLkYPWh1THs0As= Subject key identifier: 86:41:6B:B0:D8:62:AB:44:E7:A1:50:79:96:FE:AE:92:BC:A6:F6:45 Certificate issuer: /CN=d2622fdec8fadfca58e7575c29f10e73ae775715 Certificate serial: 019B7DCB2F39CE844575B00DEBBC15F18C43 Authority key identifier: D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/hkFrsNhiq0TnoVB5lv6ukrym9kU.roa Signing time: Fri 02 Jan 2026 08:20:26 +0000 ROA not before: Fri 02 Jan 2026 08:20:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39013 IP address blocks: 151.237.66.0/24 maxlen: 24 151.237.80.0/22 maxlen: 22 151.237.80.0/23 maxlen: 23 151.237.82.0/23 maxlen: 23 151.237.88.0/23 maxlen: 23 151.237.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/0mIv3sj638pY51dcKfEOc653VxU.crl rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/0mIv3sj638pY51dcKfEOc653VxU.mft rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:2f:39:ce:84:45:75:b0:0d:eb:bc:15:f1:8c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2622fdec8fadfca58e7575c29f10e73ae775715 Validity Not Before: Jan 2 08:20:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86416bb0d862ab44e7a1507996feae92bca6f645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e1:7b:2b:5c:ae:8d:d7:e4:79:5a:d0:ee:14: 4c:52:34:74:44:99:e2:3d:47:4b:03:c6:82:d8:9e: c3:db:cc:c6:bb:6c:22:17:69:7c:12:fe:21:4c:12: 6d:3e:d7:19:96:d2:8a:30:69:01:58:90:23:bf:32: 4e:6b:7d:89:d2:5a:90:3f:c9:8d:a9:7d:95:fc:c7: 5c:f1:06:f0:17:6f:da:57:f4:b4:34:53:ae:08:46: 45:e3:62:86:29:3a:5a:11:e6:36:0a:57:cf:f2:ac: b9:dd:71:ef:58:e3:14:4a:eb:e7:b3:c7:a9:53:df: 65:58:dc:ff:66:b8:30:c7:94:ab:53:3d:56:9c:ed: 85:9c:97:f0:57:c3:0e:e3:49:96:38:7c:0c:20:81: 7c:8b:da:be:39:b3:cb:dd:76:12:3b:48:84:f6:05: 50:8f:6d:65:ad:d4:e3:28:28:00:13:dd:83:e5:35: c2:df:9f:2e:f1:b1:3b:7f:97:1f:ea:d1:cb:a0:f3: 57:15:23:23:a7:f9:30:93:e5:90:bf:8e:b3:23:a2: 54:6b:e7:21:ac:e5:b9:0c:40:cf:4d:12:b3:2b:f8: 2d:cb:3e:23:e0:72:db:5a:a7:82:5d:e7:40:b1:9b: 52:42:c5:11:d3:6e:9d:ae:e5:74:fa:84:8b:86:ef: ca:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:41:6B:B0:D8:62:AB:44:E7:A1:50:79:96:FE:AE:92:BC:A6:F6:45 X509v3 Authority Key Identifier: keyid:D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/hkFrsNhiq0TnoVB5lv6ukrym9kU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/0mIv3sj638pY51dcKfEOc653VxU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.237.66.0/24 151.237.80.0/22 151.237.88.0-151.237.90.255 Signature Algorithm: sha256WithRSAEncryption 6c:f9:4b:70:34:90:71:f9:bd:b2:b7:82:96:c4:0a:fa:c9:36: dd:46:5a:4c:dc:41:78:33:2e:c0:e6:a8:44:81:fa:36:d9:e5: 7d:fb:00:ec:4f:fe:7e:7d:b9:60:dd:25:bf:41:44:3b:6f:6c: 3b:21:ff:81:92:a7:c9:cd:b3:ba:a3:fc:e5:d5:9a:33:24:5d: b9:01:ee:fe:e0:34:f9:6e:fa:c2:22:82:da:7c:e8:1b:47:73: b5:15:c9:e4:8b:36:6f:d1:27:21:5f:0f:64:68:05:30:c4:ce: fa:7b:d5:f6:6c:17:74:21:d6:10:cd:d0:92:40:68:43:29:c1: 9c:dc:1b:70:39:56:26:55:47:a0:81:96:0a:85:d7:26:31:a3: 6b:f5:ad:87:8d:a1:ab:74:10:e0:93:29:21:67:7c:a3:23:b3: 0b:73:e2:2d:30:4d:e1:9a:72:89:8a:da:13:66:45:f6:d1:a9: bf:83:00:17:8a:f5:51:48:df:60:49:8c:a4:33:74:3f:45:ac: fb:da:cc:62:a8:15:68:eb:83:54:81:aa:fb:df:26:80:b5:85: 55:d5:19:f5:35:45:4f:cc:61:59:31:be:b8:f6:c7:27:5d:47: 7a:24:27:37:25:04:bf:03:d2:b7:9b:31:2e:18:4a:c7:dd:22: 9b:af:39:d0 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgISAZt9yy85zoRFdbAN67wV8YxDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNjIyZmRlYzhmYWRmY2E1OGU3NTc1YzI5ZjEwZTczYWU3 NzU3MTUwHhcNMjYwMTAyMDgyMDI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjQxNmJiMGQ4NjJhYjQ0ZTdhMTUwNzk5NmZlYWU5MmJjYTZmNjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+F7K1yujdfkeVrQ7hRMUjR0RJni PUdLA8aC2J7D28zGu2wiF2l8Ev4hTBJtPtcZltKKMGkBWJAjvzJOa32J0lqQP8mN qX2V/Mdc8QbwF2/aV/S0NFOuCEZF42KGKTpaEeY2ClfP8qy53XHvWOMUSuvns8ep U99lWNz/Zrgwx5SrUz1WnO2FnJfwV8MO40mWOHwMIIF8i9q+ObPL3XYSO0iE9gVQ j21lrdTjKCgAE92D5TXC358u8bE7f5cf6tHLoPNXFSMjp/kwk+WQv46zI6JUa+ch rOW5DEDPTRKzK/gtyz4j4HLbWqeCXedAsZtSQsUR026druV0+oSLhu/KiQIDAQAB o4ICHTCCAhkwHQYDVR0OBBYEFIZBa7DYYqtE56FQeZb+rpK8pvZFMB8GA1UdIwQY MBaAFNJiL97I+t/KWOdXXCnxDnOud1cVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG1JdjNzajYzOHBZNTFkY0tmRU9jNjUzVnhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84NWYwMmUtZjFhYy00NGZiLTkyZWIt ZjA1YWEyMjlkNjM4LzEvaGtGcnNOaGlxMFRub1ZCNWx2NnVrcnltOWtVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS84NWYwMmUtZjFhYy00NGZiLTkyZWItZjA1YWEyMjlkNjM4 LzEvMG1JdjNzajYzOHBZNTFkY0tmRU9jNjUzVnhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQAl+1CAwQC l+1QMAwDBAOX7VgDBACX7VowDQYJKoZIhvcNAQELBQADggEBAGz5S3A0kHH5vbK3 gpbECvrJNt1GWkzcQXgzLsDmqESB+jbZ5X37AOxP/n59uWDdJb9BRDtvbDsh/4GS p8nNs7qj/OXVmjMkXbkB7v7gNPlu+sIigtp86BtHc7UVyeSLNm/RJyFfD2RoBTDE zvp71fZsF3Qh1hDN0JJAaEMpwZzcG3A5ViZVR6CBlgqF1yYxo2v1rYeNoat0EOCT KSFnfKMjswtz4i0wTeGacomK2hNmRfbRqb+DABeK9VFI32BJjKQzdD9FrPvazGKo FWjrg1SBqvvfJoC1hVXVGfU1RU/MYVkxvrj2xyddR3okJzclBL8D0rebMS4YSsfd IpuvOdA= -----END CERTIFICATE-----Generated at Sun Jan 25 19:01:08 2026 by rpki-client