This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/HvmqBtWUYMGFh5C-KyBSOzuc75c.roa File: HvmqBtWUYMGFh5C-KyBSOzuc75c.roa (raw, json) Hash identifier: i4C3k1sm5mmjzNZsvd78LY+nyVs9jkbVVK2+DN/cqVE= Subject key identifier: 1E:F9:AA:06:D5:94:60:C1:85:87:90:BE:2B:20:52:3B:3B:9C:EF:97 Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Certificate serial: 019B7E3906DAC9FE536F65B753F5B08AC32B Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/HvmqBtWUYMGFh5C-KyBSOzuc75c.roa Signing time: Fri 02 Jan 2026 10:20:25 +0000 ROA not before: Fri 02 Jan 2026 10:20:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201135 IP address blocks: 216.163.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:06:da:c9:fe:53:6f:65:b7:53:f5:b0:8a:c3:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Validity Not Before: Jan 2 10:20:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ef9aa06d59460c1858790be2b20523b3b9cef97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4e:30:f3:9f:a5:23:e6:bf:ff:53:73:3a:8e: 07:a2:16:9e:7b:51:5a:5f:d8:f5:9c:f9:b4:84:69: a0:43:ae:43:f8:56:5a:ed:91:34:fb:3e:70:6a:75: 94:1c:ff:8f:c2:26:3b:4c:a4:ad:3f:b1:35:fa:0b: af:9e:a4:7a:81:a4:32:ab:e1:fe:a1:dc:5f:37:54: f1:a9:5d:86:0e:0c:e2:c6:d7:b8:f2:20:44:ae:00: 23:5d:07:88:56:5e:16:bc:d3:12:41:72:52:49:6e: 2c:77:5c:bf:bf:a7:41:04:3f:e7:83:d3:89:02:43: 71:5f:80:9c:26:fb:53:56:d7:63:34:48:54:61:d4: 4b:cc:60:58:76:21:e1:80:e0:a2:d8:cb:2b:ae:56: 15:5c:bb:59:b6:37:52:49:da:69:2c:90:a9:21:34: 2d:92:97:d7:1c:f7:51:70:cd:70:db:1c:8b:9e:99: 38:3f:3f:92:0b:0a:b2:ac:2c:1c:66:cf:ee:ae:3d: 34:89:59:7f:f4:b0:7d:77:85:aa:4f:a4:d2:ce:3b: ff:b5:ed:85:a6:8c:1e:b0:18:97:f7:60:b2:d5:5c: 83:2b:2f:8b:64:11:4d:15:3d:95:cf:57:f5:77:45: 92:09:37:98:3d:83:c3:0c:8d:6c:69:35:4c:35:8a: 52:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F9:AA:06:D5:94:60:C1:85:87:90:BE:2B:20:52:3B:3B:9C:EF:97 X509v3 Authority Key Identifier: keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/HvmqBtWUYMGFh5C-KyBSOzuc75c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.163.177.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:39:f0:1c:d4:f9:c5:5e:ff:38:89:46:f9:73:6f:cb:58:52: 27:e2:df:2b:f1:a4:ea:58:54:24:29:24:10:27:ef:9a:2d:2f: 77:57:65:c7:64:8d:68:3e:44:31:6d:95:de:92:37:d5:a1:f8: c1:c1:03:54:f7:17:e2:3b:76:7d:d1:56:18:8e:f0:cf:da:27: 72:1b:2e:e5:3f:fe:64:f0:38:e9:d7:5b:84:bc:a1:aa:f1:00: 35:60:a5:af:93:37:ab:bf:c7:36:bb:ab:64:bd:36:e8:10:23: bd:53:cf:84:e5:07:6b:0a:07:58:7e:0c:9c:ad:c1:e2:a4:d5: 5a:4e:d4:62:8c:04:08:9d:96:3e:f5:58:58:88:b5:78:07:e1: 07:3d:02:f2:22:49:ec:09:4d:0e:7a:d2:38:f1:00:5b:0a:28: 29:55:5b:94:23:71:05:bc:60:f0:bc:6c:1a:af:09:0c:2a:c4: 96:a0:b9:1b:f2:06:21:12:ab:98:1d:75:40:dd:60:e9:1c:da: d4:35:00:3f:97:d3:1f:56:cf:3a:fe:b5:b0:70:00:19:ad:8d: 9b:f4:ca:14:ec:aa:3d:dc:4e:f5:b8:2c:50:0d:90:cc:3e:e1: 6c:a3:06:b6:68:ed:c4:41:e0:7b:b4:36:dd:bd:7d:8b:81:f8: c1:90:75:35 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OQbayf5Tb2W3U/WwisMrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjQ0MWQ5ZDgwN2UwZDc4Y2U3NTIxM2ExMDM0MDBlZTE0 YTdjZGMwHhcNMjYwMTAyMTAyMDI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWY5YWEwNmQ1OTQ2MGMxODU4NzkwYmUyYjIwNTIzYjNiOWNlZjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwk4w85+lI+a//1NzOo4Hohaee1Fa X9j1nPm0hGmgQ65D+FZa7ZE0+z5wanWUHP+PwiY7TKStP7E1+guvnqR6gaQyq+H+ odxfN1TxqV2GDgzixte48iBErgAjXQeIVl4WvNMSQXJSSW4sd1y/v6dBBD/ng9OJ AkNxX4CcJvtTVtdjNEhUYdRLzGBYdiHhgOCi2MsrrlYVXLtZtjdSSdppLJCpITQt kpfXHPdRcM1w2xyLnpk4Pz+SCwqyrCwcZs/urj00iVl/9LB9d4WqT6TSzjv/te2F powesBiX92Cy1VyDKy+LZBFNFT2Vz1f1d0WSCTeYPYPDDI1saTVMNYpSKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB75qgbVlGDBhYeQvisgUjs7nO+XMB8GA1UdIwQY MBaAFMpkQdnYB+DXjOdSE6EDQA7hSnzcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYt MmUyOGI5NjQ5OGE5LzEvSHZtcUJ0V1VZTUdGaDVDLUt5QlNPenVjNzVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYtMmUyOGI5NjQ5OGE5 LzEveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2KOxMA0G CSqGSIb3DQEBCwUAA4IBAQCMOfAc1PnFXv84iUb5c2/LWFIn4t8r8aTqWFQkKSQQ J++aLS93V2XHZI1oPkQxbZXekjfVofjBwQNU9xfiO3Z90VYYjvDP2idyGy7lP/5k 8Djp11uEvKGq8QA1YKWvkzerv8c2u6tkvTboECO9U8+E5QdrCgdYfgycrcHipNVa TtRijAQInZY+9VhYiLV4B+EHPQLyIknsCU0OetI48QBbCigpVVuUI3EFvGDwvGwa rwkMKsSWoLkb8gYhEquYHXVA3WDpHNrUNQA/l9MfVs86/rWwcAAZrY2b9MoU7Ko9 3E71uCxQDZDMPuFsowa2aO3EQeB7tDbdvX2LgfjBkHU1 -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:15 2026 by rpki-client