This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/HWvGRqMe27--NoC2Dyw8FKUNjHk.roa File: HWvGRqMe27--NoC2Dyw8FKUNjHk.roa (raw, json) Hash identifier: ycBN27AOuQt6gtV2gw83af0DBTats6sXAt4skvhgHcE= Subject key identifier: 1D:6B:C6:46:A3:1E:DB:BF:BE:36:80:B6:0F:2C:3C:14:A5:0D:8C:79 Certificate issuer: /CN=65816774b7c5665d67a86c20ceb6487b5b78b38d Certificate serial: 019B7F82504DE7CF3BED5A9DC49AEEC16AB9 Authority key identifier: 65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/HWvGRqMe27--NoC2Dyw8FKUNjHk.roa Signing time: Fri 02 Jan 2026 16:20:05 +0000 ROA not before: Fri 02 Jan 2026 16:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31029 IP address blocks: 77.76.128.0/21 maxlen: 21 77.76.137.0/24 maxlen: 24 77.76.138.0/24 maxlen: 24 77.76.139.0/24 maxlen: 24 77.76.140.0/24 maxlen: 24 77.76.141.0/24 maxlen: 24 77.76.142.0/24 maxlen: 24 77.76.143.0/24 maxlen: 24 77.76.152.0/21 maxlen: 21 77.76.152.0/24 maxlen: 24 77.76.153.0/24 maxlen: 24 77.76.154.0/24 maxlen: 24 77.76.155.0/24 maxlen: 24 77.76.156.0/24 maxlen: 24 77.76.157.0/24 maxlen: 24 77.76.158.0/24 maxlen: 24 77.76.159.0/24 maxlen: 24 77.76.184.0/21 maxlen: 21 94.139.208.0/21 maxlen: 21 109.107.72.0/21 maxlen: 21 109.107.88.0/21 maxlen: 21 2a03:2c0:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.mft rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:50:4d:e7:cf:3b:ed:5a:9d:c4:9a:ee:c1:6a:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65816774b7c5665d67a86c20ceb6487b5b78b38d Validity Not Before: Jan 2 16:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d6bc646a31edbbfbe3680b60f2c3c14a50d8c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:37:d4:c7:95:29:3f:b2:9e:ed:86:e4:10:bb: e5:22:ee:15:84:ec:64:bd:1e:21:b4:44:c1:a6:ff: d0:f0:17:7a:ac:12:ef:2a:3a:a8:f9:25:7b:a3:36: 76:cf:98:5b:7e:0c:ab:cd:8a:d4:6b:68:0b:42:3f: 4f:a9:cb:1e:c7:2e:fd:70:bd:5d:17:6f:ce:2a:fa: 6e:d0:5c:dc:e7:32:af:36:f5:c0:93:91:b0:d5:eb: 2a:bb:41:77:ae:21:ab:12:9e:c6:5d:f6:47:8c:1d: 13:42:b2:39:e7:3d:bb:22:8e:ad:c8:7f:4f:92:27: 91:1a:ff:23:1e:b2:d7:ec:c3:ea:8f:70:d2:44:ca: 91:2b:6f:98:26:7c:26:44:ed:10:94:dc:8b:ae:7e: 7c:ff:5d:07:ec:e2:1f:6c:cf:47:59:fa:e6:40:99: cb:4e:05:6c:d0:7f:0a:f2:aa:dd:2e:7f:a1:0f:a9: 70:4b:0b:97:1f:a0:a7:a8:98:5e:dc:1d:58:81:23: 70:32:a0:98:ca:77:f9:4b:8d:65:72:84:f6:d7:f0: 4f:d8:92:23:c2:7d:de:17:fd:b5:21:40:91:70:88: f1:3d:08:14:9a:d6:10:80:e8:2c:4b:07:dd:2b:05: fe:22:fa:38:f7:18:19:50:c5:f7:cd:5f:77:86:5a: bc:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6B:C6:46:A3:1E:DB:BF:BE:36:80:B6:0F:2C:3C:14:A5:0D:8C:79 X509v3 Authority Key Identifier: keyid:65:81:67:74:B7:C5:66:5D:67:A8:6C:20:CE:B6:48:7B:5B:78:B3:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYFndLfFZl1nqGwgzrZIe1t4s40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/HWvGRqMe27--NoC2Dyw8FKUNjHk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f3b825-cbc0-49d2-8b76-6b1469c3b95a/1/ZYFndLfFZl1nqGwgzrZIe1t4s40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.76.128.0/21 77.76.137.0-77.76.143.255 77.76.152.0/21 77.76.184.0/21 94.139.208.0/21 109.107.72.0/21 109.107.88.0/21 IPv6: 2a03:2c0:e::/48 Signature Algorithm: sha256WithRSAEncryption 68:47:7d:0a:85:60:4b:b7:a2:3f:13:b8:e5:c1:d5:99:2b:0a: fc:fe:a9:7a:1a:f2:ee:70:d0:0e:7e:0f:bb:91:6c:3a:5b:16: b3:da:09:8a:74:d9:17:03:df:63:44:6f:8a:c9:43:57:44:22: dd:91:db:21:2f:97:2b:f7:59:6d:e2:c0:b0:5f:57:30:e9:61: 57:ed:d7:26:ab:c5:5e:aa:1c:da:cd:fb:53:f4:6b:7f:a5:d8: 5c:cd:71:3b:01:31:62:d5:06:91:7c:d6:fc:1b:36:2d:92:08: 4a:29:53:63:7e:ad:f7:e1:55:a3:7e:44:15:ea:e0:c6:d5:6c: 5a:b4:c6:2c:75:8c:ae:20:59:0f:4d:48:5a:17:c2:21:69:9f: 2b:00:61:39:fd:42:e3:05:bb:44:ab:7a:36:f5:09:b1:1c:38: cc:86:c3:43:d1:ad:30:e0:33:f2:82:31:ee:33:88:91:0e:6f: 1d:8c:38:7c:c1:3d:d5:03:05:86:d0:56:34:9e:cd:72:ef:75: 00:d1:86:46:3f:ee:e5:b4:5b:58:63:0d:be:1a:d5:d5:16:9f: 56:0f:57:99:84:94:b6:81:fd:90:7d:61:d9:dd:c3:36:5e:96: f0:3e:6b:c5:30:e7:61:f5:99:28:c7:0c:76:a7:29:99:0e:65: 5b:ac:f2:4e -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgISAZt/glBN58877VqdxJruwWq5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1ODE2Nzc0YjdjNTY2NWQ2N2E4NmMyMGNlYjY0ODdiNWI3 OGIzOGQwHhcNMjYwMTAyMTYyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDZiYzY0NmEzMWVkYmJmYmUzNjgwYjYwZjJjM2MxNGE1MGQ4Yzc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTfUx5UpP7Ke7YbkELvlIu4VhOxk vR4htETBpv/Q8Bd6rBLvKjqo+SV7ozZ2z5hbfgyrzYrUa2gLQj9Pqcsexy79cL1d F2/OKvpu0Fzc5zKvNvXAk5Gw1esqu0F3riGrEp7GXfZHjB0TQrI55z27Io6tyH9P kieRGv8jHrLX7MPqj3DSRMqRK2+YJnwmRO0QlNyLrn58/10H7OIfbM9HWfrmQJnL TgVs0H8K8qrdLn+hD6lwSwuXH6CnqJhe3B1YgSNwMqCYynf5S41lcoT21/BP2JIj wn3eF/21IUCRcIjxPQgUmtYQgOgsSwfdKwX+Ivo49xgZUMX3zV93hlq8/wIDAQAB o4ICRjCCAkIwHQYDVR0OBBYEFB1rxkajHtu/vjaAtg8sPBSlDYx5MB8GA1UdIwQY MBaAFGWBZ3S3xWZdZ6hsIM62SHtbeLONMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWllGbmRMZkZabDFucUd3Z3pyWkllMXQ0czQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9mM2I4MjUtY2JjMC00OWQyLThiNzYt NmIxNDY5YzNiOTVhLzEvSFd2R1JxTWUyNy0tTm9DMkR5dzhGS1VOakhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC9mM2I4MjUtY2JjMC00OWQyLThiNzYtNmIxNDY5YzNiOTVh LzEvWllGbmRMZkZabDFucUd3Z3pyWkllMXQ0czQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFwGCCsGAQUFBwEHAQH/BE0wSzA4BAIAATAyAwQDTUyAMAwD BABNTIkDBARNTIADBANNTJgDBANNTLgDBANei9ADBANta0gDBANta1gwDwQCAAIw CQMHACoDAsAADjANBgkqhkiG9w0BAQsFAAOCAQEAaEd9CoVgS7eiPxO45cHVmSsK /P6pehry7nDQDn4Pu5FsOlsWs9oJinTZFwPfY0RvislDV0Qi3ZHbIS+XK/dZbeLA sF9XMOlhV+3XJqvFXqoc2s37U/Rrf6XYXM1xOwExYtUGkXzW/Bs2LZIISilTY36t 9+FVo35EFergxtVsWrTGLHWMriBZD01IWhfCIWmfKwBhOf1C4wW7RKt6NvUJsRw4 zIbDQ9GtMOAz8oIx7jOIkQ5vHYw4fME91QMFhtBWNJ7Ncu91ANGGRj/u5bRbWGMN vhrV1RafVg9XmYSUtoH9kH1h2d3DNl6W8D5rxTDnYfWZKMcMdqcpmQ5lW6zyTg== -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:05 2026 by rpki-client