This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/hmyypgZeZjs1rI8ypzPihdUNMjE.roa File: hmyypgZeZjs1rI8ypzPihdUNMjE.roa (raw, json) Hash identifier: qWNykdL6epLd/pHRnj2yljaFdAOhHq0rhbaXB9zAVI8= Subject key identifier: 86:6C:B2:A6:06:5E:66:3B:35:AC:8F:32:A7:33:E2:85:D5:0D:32:31 Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Certificate serial: 019B78A21E28EB47879095A70448E2047932 Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/hmyypgZeZjs1rI8ypzPihdUNMjE.roa Signing time: Thu 01 Jan 2026 08:17:29 +0000 ROA not before: Thu 01 Jan 2026 08:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400529 IP address blocks: 91.190.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:1e:28:eb:47:87:90:95:a7:04:48:e2:04:79:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Validity Not Before: Jan 1 08:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=866cb2a6065e663b35ac8f32a733e285d50d3231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:33:f8:60:88:bf:7b:ca:e3:50:71:65:83:4a: 51:78:9e:9c:96:9d:2c:e9:77:71:1a:85:f9:a9:d1: c6:3c:02:03:a2:36:18:30:b4:ff:3f:22:2c:34:66: 3d:88:12:46:c9:83:63:6d:b2:4d:d6:d4:ff:0f:42: 5f:9c:c3:23:1f:ee:4f:f0:f4:e1:b2:86:9d:bb:04: 25:6c:05:e1:4e:4f:45:00:af:a9:b7:01:bb:ce:58: 26:6e:45:f7:54:5e:b4:68:c5:9c:0c:2e:b9:70:4c: 07:38:f2:2b:5f:09:f9:f3:0b:49:d7:1e:f2:c7:df: 6b:62:5a:a7:5f:28:3f:f7:ff:3e:c1:66:95:6f:43: c7:31:27:35:d7:4e:9c:23:3c:35:b1:04:b3:fd:85: 80:5a:54:d9:f8:bd:21:8c:a4:ea:2a:fa:3c:ac:c9: 68:0a:f3:3b:15:39:40:95:4b:8c:ff:9b:3e:9c:52: 1a:ed:c9:59:be:22:ce:d5:7c:17:d7:84:5a:20:b8: 9e:e8:89:df:a7:57:8b:d6:c5:e6:2c:79:e1:2a:a6: 38:c3:0e:8d:63:e0:0e:b9:25:a0:4f:96:ec:12:88: 20:94:a2:da:39:90:af:5a:b1:fe:bc:b0:b8:1b:fa: 0f:ae:ec:15:0b:b1:9d:f2:d8:86:23:6a:70:a9:f9: f9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6C:B2:A6:06:5E:66:3B:35:AC:8F:32:A7:33:E2:85:D5:0D:32:31 X509v3 Authority Key Identifier: keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/hmyypgZeZjs1rI8ypzPihdUNMjE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.190.154.0/24 Signature Algorithm: sha256WithRSAEncryption 77:ce:7f:66:4d:c6:b0:19:08:38:67:6b:18:f3:ae:78:0d:2d: 09:59:bb:f5:5b:6c:fe:ba:e0:f7:ef:20:00:7b:0a:30:45:ed: b1:d2:74:95:84:97:28:a4:52:ae:8d:ed:f0:c0:bc:36:4b:8e: 59:b2:1d:19:9c:2c:33:10:42:68:d1:81:dd:d1:c0:cb:9a:b3: ca:d2:81:9d:85:58:8f:2d:81:55:b7:00:e1:8b:64:2d:17:33: 95:3b:8d:8c:dc:ac:61:43:b9:a3:46:06:2b:86:14:0f:d3:f6: a6:69:2c:7c:df:0f:b8:9c:91:a4:a6:6e:d1:51:08:da:33:d3: ec:fb:34:a0:15:d0:7a:de:a5:cd:cd:79:31:31:36:a3:4d:34: 24:a8:79:1c:cc:7d:d4:71:67:a1:b1:1c:37:a8:fe:15:56:ad: cb:30:d9:09:d8:d7:7a:a5:51:8c:fd:de:0a:e7:c5:f2:2d:12: d9:91:4e:51:b8:0c:af:29:f1:d1:9d:58:b7:67:ad:f3:d7:a5: d5:f7:1e:3c:78:42:6a:7a:11:05:ed:88:ec:90:74:da:35:b3: df:5d:70:8e:dd:69:86:a6:ff:76:e3:46:e4:36:a7:a9:ee:9b: fa:5f:e7:f5:92:7c:cd:fa:6c:bc:15:ab:61:e0:49:0f:6e:d9: 91:2d:d1:15 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oh4o60eHkJWnBEjiBHkyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy NjhmNTQwHhcNMjYwMTAxMDgxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjZjYjJhNjA2NWU2NjNiMzVhYzhmMzJhNzMzZTI4NWQ1MGQzMjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3zP4YIi/e8rjUHFlg0pReJ6clp0s 6XdxGoX5qdHGPAIDojYYMLT/PyIsNGY9iBJGyYNjbbJN1tT/D0JfnMMjH+5P8PTh soaduwQlbAXhTk9FAK+ptwG7zlgmbkX3VF60aMWcDC65cEwHOPIrXwn58wtJ1x7y x99rYlqnXyg/9/8+wWaVb0PHMSc1106cIzw1sQSz/YWAWlTZ+L0hjKTqKvo8rMlo CvM7FTlAlUuM/5s+nFIa7clZviLO1XwX14RaILie6Infp1eL1sXmLHnhKqY4ww6N Y+AOuSWgT5bsEogglKLaOZCvWrH+vLC4G/oPruwVC7Gd8tiGI2pwqfn5gwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIZssqYGXmY7NayPMqcz4oXVDTIxMB8GA1UdIwQY MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt N2FhN2ZjMzU5NjU1LzEvaG15eXBnWmVaanMxckk4eXB6UGloZFVOTWpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1 LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW76aMA0G CSqGSIb3DQEBCwUAA4IBAQB3zn9mTcawGQg4Z2sY8654DS0JWbv1W2z+uuD37yAA ewowRe2x0nSVhJcopFKuje3wwLw2S45Zsh0ZnCwzEEJo0YHd0cDLmrPK0oGdhViP LYFVtwDhi2QtFzOVO42M3KxhQ7mjRgYrhhQP0/amaSx83w+4nJGkpm7RUQjaM9Ps +zSgFdB63qXNzXkxMTajTTQkqHkczH3UcWehsRw3qP4VVq3LMNkJ2Nd6pVGM/d4K 58XyLRLZkU5RuAyvKfHRnVi3Z63z16XV9x48eEJqehEF7YjskHTaNbPfXXCO3WmG pv9240bkNqep7pv6X+f1knzN+my8Fath4EkPbtmRLdEV -----END CERTIFICATE-----Generated at Sun Jan 25 13:02:25 2026 by rpki-client