This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/hgw9wYlk4wR5eNiUcnjatjNiyuU.roa File: hgw9wYlk4wR5eNiUcnjatjNiyuU.roa (raw, json) Hash identifier: /JkBSdweBfoP1mweZ7SYCC9sy7LJZE2RlKgGeMAIRXE= Subject key identifier: 86:0C:3D:C1:89:64:E3:04:79:78:D8:94:72:78:DA:B6:33:62:CA:E5 Certificate issuer: /CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718 Certificate serial: 019B7F15055ED0A7ACABF7453908F1AF99CE Authority key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/hgw9wYlk4wR5eNiUcnjatjNiyuU.roa Signing time: Fri 02 Jan 2026 14:20:42 +0000 ROA not before: Fri 02 Jan 2026 14:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204957 IP address blocks: 80.68.159.0/24 maxlen: 24 91.90.193.0/24 maxlen: 24 91.90.195.0/24 maxlen: 24 91.196.7.0/24 maxlen: 24 91.210.164.0/23 maxlen: 23 91.210.167.0/24 maxlen: 24 92.118.149.0/24 maxlen: 24 92.118.150.0/24 maxlen: 24 92.118.151.0/24 maxlen: 24 94.131.17.0/24 maxlen: 24 94.131.18.0/24 maxlen: 24 94.142.255.0/24 maxlen: 24 176.126.163.0/24 maxlen: 24 185.39.30.0/24 maxlen: 24 185.190.251.0/24 maxlen: 24 185.230.45.0/24 maxlen: 24 185.230.46.0/24 maxlen: 24 185.230.47.0/24 maxlen: 24 185.237.224.0/23 maxlen: 23 185.253.44.0/23 maxlen: 23 185.253.46.0/23 maxlen: 23 193.111.210.0/24 maxlen: 24 193.162.47.0/24 maxlen: 24 2a06:fcc0:2::/48 maxlen: 48 2a0a:8c41::/32 maxlen: 32 2a0a:8c42::/32 maxlen: 32 2a0a:8c43::/32 maxlen: 32 2a0a:8c44::/32 maxlen: 32 2a0a:8c45::/32 maxlen: 32 2a0a:8c47::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:05:5e:d0:a7:ac:ab:f7:45:39:08:f1:af:99:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718 Validity Not Before: Jan 2 14:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=860c3dc18964e3047978d8947278dab63362cae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:68:54:9d:20:87:2a:b3:58:2e:85:3a:55:bd: 7f:17:3b:5a:48:a4:b9:e2:5e:73:60:b8:8d:2b:08: c8:26:c1:e4:74:ac:42:35:fc:f4:5f:58:2b:f9:3d: d5:37:50:7f:10:fd:27:ce:02:ec:fe:94:5b:54:79: 51:67:6d:5c:49:14:43:7e:bc:6a:29:82:10:7a:c5: 18:30:95:c5:39:69:0f:31:bf:61:59:4a:89:f0:55: ab:ae:09:c1:e7:88:80:fd:00:cf:c8:56:24:91:b1: 84:26:5a:e2:2d:23:2f:aa:38:3d:d6:b7:e4:50:0e: 7b:ff:0e:84:42:a5:db:18:ce:f5:01:47:5d:8d:ab: f6:ee:f8:bd:67:1a:81:d2:4f:24:65:4c:8f:57:7e: 21:f1:6a:0d:4b:ce:5a:7b:e8:66:2a:ee:e8:38:d0: 22:6f:f6:1f:ad:8c:56:4c:62:82:5f:06:49:2b:3f: ca:fb:e0:41:c7:f5:77:4c:1f:09:b2:b0:9a:99:8d: 97:ce:81:27:04:65:84:cd:88:07:2c:b5:e2:98:f0: 93:09:74:1c:3e:2c:41:35:db:6e:22:ca:31:4e:65: e1:0d:5f:12:4e:44:f8:de:6b:26:66:e6:ca:ee:b5: 66:52:22:ef:0f:7d:27:1b:37:be:dc:9b:29:d0:5e: be:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0C:3D:C1:89:64:E3:04:79:78:D8:94:72:78:DA:B6:33:62:CA:E5 X509v3 Authority Key Identifier: keyid:6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/hgw9wYlk4wR5eNiUcnjatjNiyuU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.68.159.0/24 91.90.193.0/24 91.90.195.0/24 91.196.7.0/24 91.210.164.0/23 91.210.167.0/24 92.118.149.0-92.118.151.255 94.131.17.0-94.131.18.255 94.142.255.0/24 176.126.163.0/24 185.39.30.0/24 185.190.251.0/24 185.230.45.0-185.230.47.255 185.237.224.0/23 185.253.44.0/22 193.111.210.0/24 193.162.47.0/24 IPv6: 2a06:fcc0:2::/48 2a0a:8c41::-2a0a:8c45:ffff:ffff:ffff:ffff:ffff:ffff 2a0a:8c47::/32 Signature Algorithm: sha256WithRSAEncryption 31:8a:65:47:f6:40:14:4e:fd:ae:30:58:ee:5b:61:e0:8c:7d: 6f:35:cd:85:23:5b:ba:e7:56:d9:49:04:b1:35:8b:ce:f2:20: 0e:e4:0e:8c:5a:84:57:df:4b:9b:00:bd:49:5e:70:6b:50:ed: aa:c3:d6:77:e6:97:32:62:04:a5:bb:c4:28:3d:20:f9:70:0c: e4:7b:de:c4:24:1a:0c:11:c0:00:12:aa:6c:27:f1:e4:55:86: 7c:a2:ea:03:fd:20:68:67:5b:9d:7f:c4:57:40:df:2d:af:c4: f6:12:8a:42:ec:c5:d9:4b:4f:1d:f5:e6:70:0f:80:f6:d5:f0: f3:7a:b8:99:ee:e6:ef:e7:26:0f:c2:72:4f:c7:0d:0b:25:7b: 2b:fd:c2:3b:81:c2:f7:86:ea:79:6a:36:b8:53:d2:42:4a:2c: fa:fd:13:8b:63:c3:00:ff:85:ab:32:90:35:17:ef:6a:dd:b1: 47:a7:93:e9:a8:53:13:d2:1c:95:ee:3c:dc:80:bc:34:33:60: 15:55:3e:e6:66:45:6b:78:71:a0:69:b2:68:06:2e:a0:28:1e: 69:42:fb:e6:1a:64:59:ee:8d:3b:6c:77:1a:e0:24:7a:9e:a3: b0:cc:06:62:24:9a:c4:cb:4c:cf:46:b7:34:39:77:90:cb:8a: 8e:39:e8:af -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgISAZt/FQVe0Kesq/dFOQjxr5nOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmY2NkZmZkYTZhNGM0ODkxNGI1ZThjZGU3ZGE1ZDgyMGI5 Yzk3MTgwHhcNMjYwMTAyMTQyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjBjM2RjMTg5NjRlMzA0Nzk3OGQ4OTQ3Mjc4ZGFiNjMzNjJjYWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2hUnSCHKrNYLoU6Vb1/FztaSKS5 4l5zYLiNKwjIJsHkdKxCNfz0X1gr+T3VN1B/EP0nzgLs/pRbVHlRZ21cSRRDfrxq KYIQesUYMJXFOWkPMb9hWUqJ8FWrrgnB54iA/QDPyFYkkbGEJlriLSMvqjg91rfk UA57/w6EQqXbGM71AUddjav27vi9ZxqB0k8kZUyPV34h8WoNS85ae+hmKu7oONAi b/YfrYxWTGKCXwZJKz/K++BBx/V3TB8JsrCamY2XzoEnBGWEzYgHLLXimPCTCXQc PixBNdtuIsoxTmXhDV8STkT43msmZubK7rVmUiLvD30nGze+3Jsp0F6+9wIDAQAB o4ICrTCCAqkwHQYDVR0OBBYEFIYMPcGJZOMEeXjYlHJ42rYzYsrlMB8GA1UdIwQY MBaAFG/M3/2mpMSJFLXozefaXYILnJcYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjh6Zl9hYWt4SWtVdGVqTjU5cGRnZ3VjbHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9jYjAxNTMtODAzYS00YmI2LWIxOWQt YTc3NGU0MWQyNjRjLzEvaGd3OXdZbGs0d1I1ZU5pVWNuamF0ak5peXVVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9jYjAxNTMtODAzYS00YmI2LWIxOWQtYTc3NGU0MWQyNjRj LzEvYjh6Zl9hYWt4SWtVdGVqTjU5cGRnZ3VjbHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHCBggrBgEFBQcBBwEB/wSBsjCBrzCBhAQCAAEwfgMEAFBE nwMEAFtawQMEAFtawwMEAFvEBwMEAVvSpAMEAFvSpzAMAwQAXHaVAwQDXHaQMAwD BABegxEDBABegxIDBABejv8DBACwfqMDBAC5Jx4DBAC5vvswDAMEALnmLQMEBLnm IAMEAbnt4AMEArn9LAMEAMFv0gMEAMGiLzAmBAIAAjAgAwcAKgb8wAACMA4DBQAq CoxBAwUBKgqMRAMFACoKjEcwDQYJKoZIhvcNAQELBQADggEBADGKZUf2QBRO/a4w WO5bYeCMfW81zYUjW7rnVtlJBLE1i87yIA7kDoxahFffS5sAvUlecGtQ7arD1nfm lzJiBKW7xCg9IPlwDOR73sQkGgwRwAASqmwn8eRVhnyi6gP9IGhnW51/xFdA3y2v xPYSikLsxdlLTx315nAPgPbV8PN6uJnu5u/nJg/Cck/HDQsleyv9wjuBwveG6nlq NrhT0kJKLPr9E4tjwwD/hasykDUX72rdsUenk+moUxPSHJXuPNyAvDQzYBVVPuZm RWt4caBpsmgGLqAoHmlC++YaZFnujTtsdxrgJHqeo7DMBmIkmsTLTM9GtzQ5d5DL io456K8= -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:21 2026 by rpki-client