This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/HL42GB5yCeK03X0nAabkVkH3_Aw.roa File: HL42GB5yCeK03X0nAabkVkH3_Aw.roa (raw, json) Hash identifier: uOANZs2dCcg3I2ddPUvkq5JotkivRlYW0T26ryzPHHM= Subject key identifier: 1C:BE:36:18:1E:72:09:E2:B4:DD:7D:27:01:A6:E4:56:41:F7:FC:0C Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16 Certificate serial: 019B7BA36CBE0FBCB3DBAA352838540E466F Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/HL42GB5yCeK03X0nAabkVkH3_Aw.roa Signing time: Thu 01 Jan 2026 22:17:46 +0000 ROA not before: Thu 01 Jan 2026 22:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47626 IP address blocks: 5.180.240.0/22 maxlen: 24 78.24.100.0/22 maxlen: 22 91.208.35.0/24 maxlen: 24 91.222.120.0/22 maxlen: 24 128.0.92.0/24 maxlen: 24 128.0.94.0/24 maxlen: 24 176.96.189.0/24 maxlen: 24 188.93.64.0/22 maxlen: 22 193.7.216.0/22 maxlen: 24 213.241.199.0/24 maxlen: 24 2a05:9c00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.mft rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:6c:be:0f:bc:b3:db:aa:35:28:38:54:0e:46:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16 Validity Not Before: Jan 1 22:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cbe36181e7209e2b4dd7d2701a6e45641f7fc0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0c:a8:82:a4:fc:df:bb:5e:d2:ec:73:f2:23: 51:20:03:16:c4:58:bc:06:fc:53:29:ca:83:8d:8f: b9:bd:d2:32:f3:32:fd:fc:3c:a7:d5:5b:19:df:52: 33:e6:09:83:48:f8:5b:f5:fc:2d:65:46:a6:d0:29: d0:11:55:72:cc:da:52:10:6a:e9:7d:94:17:d1:e8: d2:e1:5b:82:b0:8c:c6:04:40:85:54:c2:9d:e8:b6: e1:4e:64:8d:56:17:82:d1:24:fc:99:43:c1:fe:71: ee:74:fb:03:81:c5:bd:cc:63:ee:ef:f7:17:ed:c4: 85:0e:19:12:57:b1:b6:94:cd:74:c7:8e:89:c7:71: 66:4a:b8:d5:ff:82:c5:ac:a4:79:14:e6:e4:bc:94: b8:ac:67:29:ba:c6:63:d0:b9:74:3e:45:fd:22:63: 70:43:76:ab:72:77:23:e1:40:b4:2b:e0:6f:ab:2c: cc:db:5a:a0:59:1d:e9:f2:06:43:32:2a:50:cb:86: 9e:c9:db:d2:c6:ea:b8:02:27:a6:79:18:70:47:da: 5a:f5:eb:e0:00:f2:51:64:95:ea:76:98:77:47:4b: c7:3e:bc:63:41:37:25:7e:82:24:0e:b3:e2:f7:26: df:f4:a3:d6:aa:dd:bc:59:77:df:df:8f:3c:bb:ad: 42:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BE:36:18:1E:72:09:E2:B4:DD:7D:27:01:A6:E4:56:41:F7:FC:0C X509v3 Authority Key Identifier: keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/HL42GB5yCeK03X0nAabkVkH3_Aw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.240.0/22 78.24.100.0/22 91.208.35.0/24 91.222.120.0/22 128.0.92.0/24 128.0.94.0/24 176.96.189.0/24 188.93.64.0/22 193.7.216.0/22 213.241.199.0/24 IPv6: 2a05:9c00::/29 Signature Algorithm: sha256WithRSAEncryption 12:55:25:d3:2c:93:89:be:f2:34:6a:41:14:bc:9c:9b:b2:f1: 6d:3c:ad:4c:52:0e:1f:a5:cc:be:22:91:fa:20:d1:c5:13:c3: 42:0d:f3:c5:5c:99:aa:b2:fe:c1:d8:34:a3:94:35:af:d2:92: 77:a7:ae:6b:29:0e:90:30:f1:46:b0:5f:1a:19:f1:12:59:da: a1:39:75:c7:4f:0c:bf:65:7e:15:e5:52:2e:d4:92:15:36:83: 35:88:26:0f:f2:9b:d1:58:68:40:3a:ce:ab:88:8c:bf:84:6c: ca:b5:21:68:a8:c4:a0:c0:9f:0e:e7:86:7e:6e:47:0f:40:b3: 07:95:8e:9b:10:c6:44:b4:9d:74:0f:8c:5c:ca:bd:61:67:5c: 5d:ec:de:5d:c8:eb:27:0b:ce:c1:dc:d4:24:10:b3:49:6b:e0: f0:60:5a:70:b1:db:92:a3:d4:cc:5e:97:2b:90:3c:4d:37:46: 78:f8:c2:f7:ed:6c:4c:13:9a:bd:c7:4c:18:d0:5a:ff:44:17: 0b:58:fe:f9:4b:1e:90:e4:c4:87:a6:5d:2c:29:b5:85:04:86: 7c:32:30:8b:83:cf:0f:3d:22:e2:c4:84:95:35:89:30:2b:46: 8f:12:ad:e6:1b:95:13:9e:ad:01:51:a7:c3:1d:a3:bc:83:f0: bf:f1:cb:7e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgISAZt7o2y+D7yz26o1KDhUDkZvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNWI2ZDE1OTZhYzA1MDFhNzFhMzkzNDQ3MDUxYTYyZmYx ZGRhMTYwHhcNMjYwMTAxMjIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2JlMzYxODFlNzIwOWUyYjRkZDdkMjcwMWE2ZTQ1NjQxZjdmYzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQyogqT837te0uxz8iNRIAMWxFi8 BvxTKcqDjY+5vdIy8zL9/Dyn1VsZ31Iz5gmDSPhb9fwtZUam0CnQEVVyzNpSEGrp fZQX0ejS4VuCsIzGBECFVMKd6LbhTmSNVheC0ST8mUPB/nHudPsDgcW9zGPu7/cX 7cSFDhkSV7G2lM10x46Jx3FmSrjV/4LFrKR5FObkvJS4rGcpusZj0Ll0PkX9ImNw Q3arcncj4UC0K+BvqyzM21qgWR3p8gZDMipQy4aeydvSxuq4AiemeRhwR9pa9evg APJRZJXqdph3R0vHPrxjQTclfoIkDrPi9ybf9KPWqt28WXff3488u61CWQIDAQAB o4ICTjCCAkowHQYDVR0OBBYEFBy+NhgecgnitN19JwGm5FZB9/wMMB8GA1UdIwQY MBaAFAFbbRWWrAUBpxo5NEcFGmL/HdoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgt ZmVlOGYzNzkwNTY3LzEvSEw0MkdCNXlDZUswM1gwbkFhYmtWa0gzX0F3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgtZmVlOGYzNzkwNTY3 LzEvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGQGCCsGAQUFBwEHAQH/BFUwUzBCBAIAATA8AwQCBbTwAwQC ThhkAwQAW9AjAwQCW954AwQAgABcAwQAgABeAwQAsGC9AwQCvF1AAwQCwQfYAwQA 1fHHMA0EAgACMAcDBQMqBZwAMA0GCSqGSIb3DQEBCwUAA4IBAQASVSXTLJOJvvI0 akEUvJybsvFtPK1MUg4fpcy+IpH6INHFE8NCDfPFXJmqsv7B2DSjlDWv0pJ3p65r KQ6QMPFGsF8aGfESWdqhOXXHTwy/ZX4V5VIu1JIVNoM1iCYP8pvRWGhAOs6riIy/ hGzKtSFoqMSgwJ8O54Z+bkcPQLMHlY6bEMZEtJ10D4xcyr1hZ1xd7N5dyOsnC87B 3NQkELNJa+DwYFpwsduSo9TMXpcrkDxNN0Z4+ML37WxME5q9x0wY0Fr/RBcLWP75 Sx6Q5MSHpl0sKbWFBIZ8MjCLg88PPSLixISVNYkwK0aPEq3mG5UTnq0BUafDHaO8 g/C/8ct+ -----END CERTIFICATE-----Generated at Mon Jan 26 10:24:08 2026 by rpki-client