This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/hANHew_LKnwXLhQEqSyCSLozpjo.roa File: hANHew_LKnwXLhQEqSyCSLozpjo.roa (raw, json) Hash identifier: dvAoBldq4IsXBYE3jIxDiPUa2vvECDMQ4VTSUJ1/ngo= Subject key identifier: 84:03:47:7B:0F:CB:2A:7C:17:2E:14:04:A9:2C:82:48:BA:33:A6:3A Certificate issuer: /CN=5babcaa10a336072ebc0820a6df0bfa4dc5cfdaa Certificate serial: 019B76EAC2FFA56F2FD5235CA8071E596F12 Authority key identifier: 5B:AB:CA:A1:0A:33:60:72:EB:C0:82:0A:6D:F0:BF:A4:DC:5C:FD:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W6vKoQozYHLrwIIKbfC_pNxc_ao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/hANHew_LKnwXLhQEqSyCSLozpjo.roa Signing time: Thu 01 Jan 2026 00:17:35 +0000 ROA not before: Thu 01 Jan 2026 00:17:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15580 IP address blocks: 194.34.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/W6vKoQozYHLrwIIKbfC_pNxc_ao.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/W6vKoQozYHLrwIIKbfC_pNxc_ao.mft rsync://rpki.ripe.net/repository/DEFAULT/W6vKoQozYHLrwIIKbfC_pNxc_ao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:c2:ff:a5:6f:2f:d5:23:5c:a8:07:1e:59:6f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5babcaa10a336072ebc0820a6df0bfa4dc5cfdaa Validity Not Before: Jan 1 00:17:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8403477b0fcb2a7c172e1404a92c8248ba33a63a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f4:5c:20:99:49:5e:65:5d:c7:80:a8:99:28: 06:57:67:d1:68:e3:0e:67:64:6a:f2:21:d7:e1:a4: 9d:2c:e1:df:97:fb:21:38:15:c6:d1:64:e2:5c:2e: ad:e1:f7:16:e4:0c:c0:13:63:95:82:95:0b:24:19: 0a:cc:97:2a:8f:6f:82:d2:39:93:70:e6:f1:61:16: f4:18:89:70:39:0d:ac:73:bd:97:90:88:bf:a0:66: 2a:6c:b7:84:37:6e:f7:c9:a5:79:19:70:c7:1b:ba: 0c:35:12:ec:59:a3:ba:86:2c:db:b3:ac:2f:84:64: c3:3d:ab:54:98:fa:b3:95:cd:2c:56:57:c8:f5:28: 5b:3b:04:c0:17:b5:9d:5b:e9:48:99:bd:ff:4e:5d: 38:1d:2b:f7:f5:2a:fa:7f:fe:18:29:69:9a:f9:10: 58:8c:77:e2:a5:f4:97:a9:62:49:ae:64:ef:ed:69: bb:b9:13:30:8a:59:34:4b:2b:39:9a:64:fa:f6:30: a1:c1:ea:67:17:a9:3b:08:39:23:50:03:1f:d8:8e: ab:dd:b9:82:fa:5f:c7:7f:fd:7a:19:27:98:19:40: 7d:f3:5b:1d:75:cb:bf:25:14:0e:7b:70:74:c6:b7: fe:dc:e0:9c:3a:7f:94:37:55:cd:fa:24:5a:ff:7f: 02:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:03:47:7B:0F:CB:2A:7C:17:2E:14:04:A9:2C:82:48:BA:33:A6:3A X509v3 Authority Key Identifier: keyid:5B:AB:CA:A1:0A:33:60:72:EB:C0:82:0A:6D:F0:BF:A4:DC:5C:FD:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W6vKoQozYHLrwIIKbfC_pNxc_ao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/hANHew_LKnwXLhQEqSyCSLozpjo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/W6vKoQozYHLrwIIKbfC_pNxc_ao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.34.174.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f7:46:f2:1f:9a:fe:33:29:63:2b:7c:eb:50:97:9a:e4:34: 0a:f6:3e:b7:7d:1e:3d:99:09:3c:13:a8:d8:d4:7f:ca:ae:e8: 74:66:a3:fa:0a:a2:81:5c:c7:e9:a4:f4:05:09:e5:32:0f:6d: f6:00:7a:97:78:42:6e:1f:76:cf:e0:81:77:83:1a:fb:cf:04: 4b:64:21:25:32:a9:a7:81:76:e3:9d:a7:bd:ad:fb:6b:af:f4: 28:4f:4c:7f:97:ff:de:e3:0d:cb:29:83:e7:b3:c5:14:13:57: 4f:f0:d7:29:34:e8:c8:1d:3a:a3:17:5a:06:e5:0b:b5:a8:27: 6a:7e:9a:16:79:89:cd:4e:11:66:29:41:4b:43:df:03:7c:64: c5:4f:5d:01:ec:7c:fc:2c:80:44:70:34:de:e2:37:c2:54:10: 13:bf:28:0c:46:10:36:84:da:c1:14:2d:16:28:28:63:d0:d1: 65:0a:31:2c:d1:37:72:10:ba:f7:5f:9f:bc:51:f8:a5:94:17: 7c:47:b6:53:43:23:89:c1:e2:d4:f3:3e:33:e6:9f:0c:83:b0: ee:b9:dd:8e:72:8d:aa:a3:cd:ed:fa:a9:5a:2b:36:68:6f:f5: 53:ac:02:4b:c7:3f:a3:aa:5d:c0:6d:f9:e1:a3:6d:df:ca:a9: c4:28:b5:5f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26sL/pW8v1SNcqAceWW8SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViYWJjYWExMGEzMzYwNzJlYmMwODIwYTZkZjBiZmE0ZGM1 Y2ZkYWEwHhcNMjYwMTAxMDAxNzM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDAzNDc3YjBmY2IyYTdjMTcyZTE0MDRhOTJjODI0OGJhMzNhNjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfRcIJlJXmVdx4ComSgGV2fRaOMO Z2Rq8iHX4aSdLOHfl/shOBXG0WTiXC6t4fcW5AzAE2OVgpULJBkKzJcqj2+C0jmT cObxYRb0GIlwOQ2sc72XkIi/oGYqbLeEN273yaV5GXDHG7oMNRLsWaO6hizbs6wv hGTDPatUmPqzlc0sVlfI9ShbOwTAF7WdW+lImb3/Tl04HSv39Sr6f/4YKWma+RBY jHfipfSXqWJJrmTv7Wm7uRMwilk0Sys5mmT69jChwepnF6k7CDkjUAMf2I6r3bmC +l/Hf/16GSeYGUB981sddcu/JRQOe3B0xrf+3OCcOn+UN1XN+iRa/38CvQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIQDR3sPyyp8Fy4UBKksgki6M6Y6MB8GA1UdIwQY MBaAFFuryqEKM2By68CCCm3wv6TcXP2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzZ2S29Rb3pZSExyd0lJS2JmQ19wTnhjX2FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC84YzcyNDctODU5Mi00NGFlLTgyYjEt MTAwZTViNjVlNjcyLzEvaEFOSGV3X0xLbndYTGhRRXFTeUNTTG96cGpvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC84YzcyNDctODU5Mi00NGFlLTgyYjEtMTAwZTViNjVlNjcy LzEvVzZ2S29Rb3pZSExyd0lJS2JmQ19wTnhjX2FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiKuMA0G CSqGSIb3DQEBCwUAA4IBAQCA90byH5r+MyljK3zrUJea5DQK9j63fR49mQk8E6jY 1H/Kruh0ZqP6CqKBXMfppPQFCeUyD232AHqXeEJuH3bP4IF3gxr7zwRLZCElMqmn gXbjnae9rftrr/QoT0x/l//e4w3LKYPns8UUE1dP8NcpNOjIHTqjF1oG5Qu1qCdq fpoWeYnNThFmKUFLQ98DfGTFT10B7Hz8LIBEcDTe4jfCVBATvygMRhA2hNrBFC0W KChj0NFlCjEs0TdyELr3X5+8UfillBd8R7ZTQyOJweLU8z4z5p8Mg7Duud2Oco2q o83t+qlaKzZob/VTrAJLxz+jql3Abfnho23fyqnEKLVf -----END CERTIFICATE-----Generated at Sun Jan 25 15:11:28 2026 by rpki-client