This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/HHsy1xAcCXnG_JwgNqivNIU6a18.roa File: HHsy1xAcCXnG_JwgNqivNIU6a18.roa (raw, json) Hash identifier: KWj8iCxuhrlSFTYMeIOB5ldKBzMh6IRpBhhjF8+nNzU= Subject key identifier: 1C:7B:32:D7:10:1C:09:79:C6:FC:9C:20:36:A8:AF:34:85:3A:6B:5F Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83BCE76675E1EEC43B86DF3A872FA2 Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/HHsy1xAcCXnG_JwgNqivNIU6a18.roa Signing time: Fri 02 Jan 2026 16:21:38 +0000 ROA not before: Fri 02 Jan 2026 16:21:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210226 IP address blocks: 37.230.128.0/23 maxlen: 23 128.0.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:bc:e7:66:75:e1:ee:c4:3b:86:df:3a:87:2f:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c7b32d7101c0979c6fc9c2036a8af34853a6b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:44:33:f4:b5:a7:48:8f:2e:ef:83:cc:aa:6b: 1e:c5:61:0f:b4:f3:48:51:43:0c:a6:ec:d1:cb:6b: 30:cb:01:ed:91:a5:a9:2a:0f:23:2b:64:36:46:44: d2:a3:75:dc:21:d4:19:bf:9c:e2:d4:c5:95:c4:44: 6f:2c:b4:28:ee:27:02:d1:44:4f:8a:d6:a1:0d:94: a0:a5:f1:e0:5c:b8:ef:36:73:1f:ae:eb:7e:07:a5: b9:e5:16:d4:4c:ce:10:1d:0f:49:97:e4:91:a6:0c: 8f:55:c0:d0:f7:66:b4:05:fd:3d:e3:4c:6a:a8:aa: 32:98:04:5d:74:73:ed:5b:a8:9c:99:cf:7f:b0:f3: 65:eb:5b:ce:47:cb:e6:7e:2b:79:a8:2b:78:55:1d: 28:6c:35:89:d6:39:7f:f2:36:79:88:57:bf:c5:99: 83:4e:b4:3d:9a:17:f5:14:80:1d:6a:d8:11:6b:4a: aa:25:3f:c0:e3:e6:9b:94:de:29:dd:b8:36:e7:a6: af:f2:71:8d:fe:82:b4:84:0d:1f:81:3d:4b:d3:ee: 1f:32:77:de:68:cf:71:31:72:fc:f7:d2:89:93:1a: 8e:3b:91:8d:94:fd:0d:b7:d9:ca:eb:80:8f:f1:26: ce:08:21:6f:42:39:77:22:97:14:e4:3b:f3:7b:9a: 1f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7B:32:D7:10:1C:09:79:C6:FC:9C:20:36:A8:AF:34:85:3A:6B:5F X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/HHsy1xAcCXnG_JwgNqivNIU6a18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.128.0/23 128.0.65.0/24 Signature Algorithm: sha256WithRSAEncryption b8:9b:49:cc:bc:78:d7:60:cc:7d:0f:46:2b:cc:d5:a4:a0:f2: a0:44:2f:87:a0:6f:a2:6f:4c:77:6d:13:75:51:97:05:64:b2: 69:d2:85:74:75:ff:73:e9:7b:1f:47:16:af:e7:fb:be:2e:1e: b6:bd:fe:f6:9f:49:f9:6b:22:59:66:ed:ee:71:a8:46:23:86: a3:df:d2:c3:86:e3:ea:77:3d:47:8d:bb:f4:ca:b9:c8:83:fb: db:0e:d3:d4:f4:3f:0c:73:ed:fd:f2:23:fc:ea:f9:1d:8e:56: 4f:45:4b:da:d6:71:71:a6:83:df:c8:ae:4b:a7:ee:9c:57:7e: 7d:97:10:29:73:6a:fa:ac:af:cb:e6:19:f3:74:8f:88:f6:9d: f4:77:ba:a4:cd:bf:af:ea:c3:5a:29:65:09:b8:12:93:1f:3f: 75:7e:ee:b8:c1:46:e3:66:e5:80:e4:84:49:e2:c6:00:9b:36: 9d:6f:2c:88:43:51:df:6a:f0:05:9e:c5:66:36:bc:53:11:d0: 08:92:25:e6:dc:e4:8e:6a:b9:13:40:4c:c7:61:6d:3c:13:e1: 62:f5:8a:78:fa:03:00:d5:63:47:a6:d7:5a:ac:a4:5c:44:5e: 98:4c:82:3c:c8:85:01:b1:cd:7e:53:c9:f7:7c:05:41:04:01: 41:ff:6f:d4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/g7znZnXh7sQ7ht86hy+iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzdiMzJkNzEwMWMwOTc5YzZmYzljMjAzNmE4YWYzNDg1M2E2YjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0Qz9LWnSI8u74PMqmsexWEPtPNI UUMMpuzRy2swywHtkaWpKg8jK2Q2RkTSo3XcIdQZv5zi1MWVxERvLLQo7icC0URP itahDZSgpfHgXLjvNnMfrut+B6W55RbUTM4QHQ9Jl+SRpgyPVcDQ92a0Bf0940xq qKoymARddHPtW6icmc9/sPNl61vOR8vmfit5qCt4VR0obDWJ1jl/8jZ5iFe/xZmD TrQ9mhf1FIAdatgRa0qqJT/A4+ablN4p3bg256av8nGN/oK0hA0fgT1L0+4fMnfe aM9xMXL899KJkxqOO5GNlP0Nt9nK64CP8SbOCCFvQjl3IpcU5Dvze5ofFwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBx7MtcQHAl5xvycIDaorzSFOmtfMB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvSEhzeTF4QWNDWG5HX0p3Z05xaXZOSVU2YTE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBJeaAAwQA gABBMA0GCSqGSIb3DQEBCwUAA4IBAQC4m0nMvHjXYMx9D0YrzNWkoPKgRC+HoG+i b0x3bRN1UZcFZLJp0oV0df9z6XsfRxav5/u+Lh62vf72n0n5ayJZZu3ucahGI4aj 39LDhuPqdz1Hjbv0yrnIg/vbDtPU9D8Mc+398iP86vkdjlZPRUva1nFxpoPfyK5L p+6cV359lxApc2r6rK/L5hnzdI+I9p30d7qkzb+v6sNaKWUJuBKTHz91fu64wUbj ZuWA5IRJ4sYAmzadbyyIQ1HfavAFnsVmNrxTEdAIkiXm3OSOarkTQEzHYW08E+Fi 9Yp4+gMA1WNHptdarKRcRF6YTII8yIUBsc1+U8n3fAVBBAFB/2/U -----END CERTIFICATE-----Generated at Sun Jan 25 19:38:58 2026 by rpki-client