This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/HmW_P23dUzDRtMsd-FLLjzvvQa4.roa File: HmW_P23dUzDRtMsd-FLLjzvvQa4.roa (raw, json) Hash identifier: +e6sg8X7k7p+1a6dzNwEOYu3V1hao2K2yzgqgc3LBN8= Subject key identifier: 1E:65:BF:3F:6D:DD:53:30:D1:B4:CB:1D:F8:52:CB:8F:3B:EF:41:AE Certificate issuer: /CN=01628a415e1fa72ce1d03cd76219ce1b77c655c4 Certificate serial: 019B79ED0F314B53C12C9CD54A0D1114EA28 Authority key identifier: 01:62:8A:41:5E:1F:A7:2C:E1:D0:3C:D7:62:19:CE:1B:77:C6:55:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/HmW_P23dUzDRtMsd-FLLjzvvQa4.roa Signing time: Thu 01 Jan 2026 14:18:57 +0000 ROA not before: Thu 01 Jan 2026 14:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202021 IP address blocks: 185.56.64.0/22 maxlen: 24 185.56.64.0/24 maxlen: 24 185.56.65.0/24 maxlen: 24 185.56.66.0/24 maxlen: 24 185.56.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:0f:31:4b:53:c1:2c:9c:d5:4a:0d:11:14:ea:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01628a415e1fa72ce1d03cd76219ce1b77c655c4 Validity Not Before: Jan 1 14:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e65bf3f6ddd5330d1b4cb1df852cb8f3bef41ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:fa:45:e5:04:79:7b:49:b3:16:08:be:79: 86:79:25:9f:0b:c5:91:fa:a8:b3:c5:ca:9a:7a:3a: c2:5a:25:73:79:a8:ba:53:0b:aa:4f:33:47:be:4e: f4:bd:74:18:1a:21:7b:7b:f3:46:60:16:00:b7:25: a3:f6:05:50:f3:e1:d2:ba:fb:d7:24:7a:ff:02:09: ce:02:63:87:b4:c2:a2:95:8c:d5:1a:44:47:ff:2d: 31:08:c0:22:cd:ca:a3:e5:de:5b:8f:02:90:7c:35: 12:3f:8a:fa:4b:05:c0:84:de:03:e0:1e:d9:7b:78: d5:2b:0f:db:34:21:98:19:35:bd:d4:71:6d:4b:53: f1:ad:25:27:9d:9d:50:6d:c8:92:65:77:29:d0:d1: 86:67:f9:74:82:5d:bc:f5:5f:d8:c6:08:1a:55:f1: 12:6d:61:e5:50:56:55:67:ee:f3:58:96:5d:73:28: b3:ed:18:78:6b:6e:e1:ea:44:6f:41:23:60:45:e5: e5:a2:fb:25:47:13:1c:a1:31:d0:19:b6:4f:79:00: 4a:41:ed:28:cc:20:81:4e:0e:94:69:74:ae:44:d1: 8c:98:67:54:01:fd:a5:84:6a:a6:18:84:a9:c2:e7: 8f:13:92:82:77:2b:d7:b8:65:bc:ea:1a:eb:65:b3: f6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:BF:3F:6D:DD:53:30:D1:B4:CB:1D:F8:52:CB:8F:3B:EF:41:AE X509v3 Authority Key Identifier: keyid:01:62:8A:41:5E:1F:A7:2C:E1:D0:3C:D7:62:19:CE:1B:77:C6:55:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/HmW_P23dUzDRtMsd-FLLjzvvQa4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.64.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:6f:98:4d:75:c4:2b:fa:cd:6f:37:37:b8:d5:6c:36:d6:6a: f8:eb:05:01:16:0b:f7:b4:4c:c9:ba:be:ea:d0:d4:15:4f:79: a0:0d:7d:82:30:56:c7:39:cc:a9:be:f7:9f:ef:b8:9a:6e:d7: bb:84:ec:e3:4f:06:04:89:f8:a4:68:17:76:c5:bb:e9:b1:37: f0:2c:f7:8d:18:3a:d4:57:52:25:39:21:b4:28:52:eb:f8:f8: 6e:23:32:26:17:57:ae:e1:50:1d:78:10:77:b0:c1:8f:92:2a: e7:0a:8e:ff:ce:f7:03:2a:a6:e8:4c:53:78:9e:d8:87:76:6e: c8:47:ac:d8:12:49:ce:c1:d0:4d:d2:4c:16:a8:d6:c3:3c:15: ec:ca:bd:78:db:e9:f0:1f:2d:34:1b:36:da:44:ba:6f:f8:0f: 4d:5f:20:ca:80:bc:13:bd:d5:49:7d:5b:64:73:58:9d:91:df: 5a:1b:e4:ff:66:ba:6d:e9:b8:42:ff:de:b8:39:21:6d:d0:0b: ca:9c:7c:81:28:95:2f:41:ff:bc:1b:1d:8f:29:69:91:e1:71: 44:aa:24:7a:89:de:5c:a7:ef:0c:53:5b:e3:1c:b6:c7:9f:84: 52:8e:67:65:2b:0c:cd:0d:2a:96:f2:32:d4:b1:99:48:e7:ef: 27:90:26:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Q8xS1PBLJzVSg0RFOooMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNjI4YTQxNWUxZmE3MmNlMWQwM2NkNzYyMTljZTFiNzdj NjU1YzQwHhcNMjYwMTAxMTQxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTY1YmYzZjZkZGQ1MzMwZDFiNGNiMWRmODUyY2I4ZjNiZWY0MWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXr6ReUEeXtJsxYIvnmGeSWfC8WR +qizxcqaejrCWiVzeai6UwuqTzNHvk70vXQYGiF7e/NGYBYAtyWj9gVQ8+HSuvvX JHr/AgnOAmOHtMKilYzVGkRH/y0xCMAizcqj5d5bjwKQfDUSP4r6SwXAhN4D4B7Z e3jVKw/bNCGYGTW91HFtS1PxrSUnnZ1QbciSZXcp0NGGZ/l0gl289V/YxggaVfES bWHlUFZVZ+7zWJZdcyiz7Rh4a27h6kRvQSNgReXlovslRxMcoTHQGbZPeQBKQe0o zCCBTg6UaXSuRNGMmGdUAf2lhGqmGISpwuePE5KCdyvXuGW86hrrZbP2dwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB5lvz9t3VMw0bTLHfhSy48770GuMB8GA1UdIwQY MBaAFAFiikFeH6cs4dA812IZzht3xlXEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVdLS1FWNGZweXpoMER6WFlobk9HM2ZHVmNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC84MWNlMzYtZjk1Mi00MjljLThmYmIt N2ZmOTJmNmRjM2E0LzEvSG1XX1AyM2RVekRSdE1zZC1GTExqenZ2UWE0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC84MWNlMzYtZjk1Mi00MjljLThmYmItN2ZmOTJmNmRjM2E0 LzEvQVdLS1FWNGZweXpoMER6WFlobk9HM2ZHVmNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuThAMA0G CSqGSIb3DQEBCwUAA4IBAQA+b5hNdcQr+s1vNze41Ww21mr46wUBFgv3tEzJur7q 0NQVT3mgDX2CMFbHOcypvvef77iabte7hOzjTwYEifikaBd2xbvpsTfwLPeNGDrU V1IlOSG0KFLr+PhuIzImF1eu4VAdeBB3sMGPkirnCo7/zvcDKqboTFN4ntiHdm7I R6zYEknOwdBN0kwWqNbDPBXsyr142+nwHy00GzbaRLpv+A9NXyDKgLwTvdVJfVtk c1idkd9aG+T/Zrpt6bhC/964OSFt0AvKnHyBKJUvQf+8Gx2PKWmR4XFEqiR6id5c p+8MU1vjHLbHn4RSjmdlKwzNDSqW8jLUsZlI5+8nkCb7 -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:34 2026 by rpki-client