This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/f5fdeb-3a14-4a9e-8815-e56b690fd30e/1/HKNvKNWPTS8CN6bgJcF5utIakEo.roa File: HKNvKNWPTS8CN6bgJcF5utIakEo.roa (raw, json) Hash identifier: eSN9s7qGbERAlGNaTgQ/bC9Kz0HuoANi8MNnFyNF5ZA= Subject key identifier: 1C:A3:6F:28:D5:8F:4D:2F:02:37:A6:E0:25:C1:79:BA:D2:1A:90:4A Certificate issuer: /CN=b0bd281345af6cd54154d4cff74f195a388fffc1 Certificate serial: 019B76EB6418411168358FEE616783C4295B Authority key identifier: B0:BD:28:13:45:AF:6C:D5:41:54:D4:CF:F7:4F:19:5A:38:8F:FF:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL0oE0WvbNVBVNTP908ZWjiP_8E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/f5fdeb-3a14-4a9e-8815-e56b690fd30e/1/HKNvKNWPTS8CN6bgJcF5utIakEo.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44398 IP address blocks: 194.93.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/f5fdeb-3a14-4a9e-8815-e56b690fd30e/1/sL0oE0WvbNVBVNTP908ZWjiP_8E.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/f5fdeb-3a14-4a9e-8815-e56b690fd30e/1/sL0oE0WvbNVBVNTP908ZWjiP_8E.mft rsync://rpki.ripe.net/repository/DEFAULT/sL0oE0WvbNVBVNTP908ZWjiP_8E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:64:18:41:11:68:35:8f:ee:61:67:83:c4:29:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0bd281345af6cd54154d4cff74f195a388fffc1 Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ca36f28d58f4d2f0237a6e025c179bad21a904a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:80:01:c6:c2:eb:39:8c:28:45:a3:73:cd:95: 57:b9:83:8f:c3:4e:5a:58:4d:26:13:46:ea:12:4c: f6:ae:8a:7f:66:f5:e3:37:8a:ba:6d:63:d5:4c:76: 8f:fd:15:07:7d:cf:fd:35:2e:70:57:01:a1:48:27: 9b:4c:43:10:22:1d:c9:30:06:b0:ca:ad:01:1c:75: 3c:43:07:06:89:ad:a4:a2:66:e5:3b:09:a9:37:46: a2:8a:c5:7b:de:c9:c0:0d:c3:66:c1:f0:61:d0:db: e3:65:dd:01:15:49:44:11:15:cb:f7:46:18:36:cf: d2:c4:52:6e:bd:b9:2e:49:be:4e:b0:51:16:58:14: 9f:8a:64:23:d0:6a:c3:ea:91:ef:47:89:ca:80:4e: 5d:ea:03:54:37:b2:8e:2a:8e:c4:1d:8a:7f:b7:8e: fb:d5:a6:b5:b9:d0:97:53:b5:27:c8:f2:db:65:ef: 81:b1:5a:13:49:e6:de:7f:4b:df:97:26:91:df:ee: 4a:86:76:72:cc:e1:62:3b:50:98:f6:fb:55:aa:df: b0:2f:e7:75:c1:c3:ff:65:6e:2e:06:3d:7f:71:56: 8a:f9:63:78:0f:f2:24:de:cf:3f:2b:6b:3f:69:1f: 5e:06:98:08:bc:ae:b9:35:84:e9:c4:fc:2e:d0:8a: a4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A3:6F:28:D5:8F:4D:2F:02:37:A6:E0:25:C1:79:BA:D2:1A:90:4A X509v3 Authority Key Identifier: keyid:B0:BD:28:13:45:AF:6C:D5:41:54:D4:CF:F7:4F:19:5A:38:8F:FF:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL0oE0WvbNVBVNTP908ZWjiP_8E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f5fdeb-3a14-4a9e-8815-e56b690fd30e/1/HKNvKNWPTS8CN6bgJcF5utIakEo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/f5fdeb-3a14-4a9e-8815-e56b690fd30e/1/sL0oE0WvbNVBVNTP908ZWjiP_8E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.93.75.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:d1:a7:d6:ea:16:35:f8:21:4b:ca:23:43:90:df:2d:8d:bd: db:25:76:9d:1c:98:3e:be:46:db:d8:cb:72:ce:5e:f9:77:f0: 10:42:02:07:ac:fa:94:8d:9b:27:db:dd:20:19:bd:22:5a:43: f5:39:87:f0:fb:9c:b4:f6:98:eb:84:07:31:54:84:3d:47:62: b0:ce:a5:87:1c:e4:45:e5:1f:a3:1b:81:57:ac:b2:45:d0:53: 58:b6:2b:99:ce:81:d5:a8:20:ed:d2:f5:c1:0c:0a:5c:18:2f: 7a:84:de:bd:ec:cb:29:a1:81:11:69:ca:14:13:29:bc:f3:83: ca:88:17:5e:d3:58:d5:50:f9:02:86:93:20:bc:82:2c:5f:17: 43:3a:12:f9:7d:3f:7c:75:b7:88:55:0c:17:3e:1b:5c:b1:0a: da:5b:05:c7:ca:7e:f1:0b:52:30:20:f6:b3:18:43:bb:7c:c5: 87:ba:95:0b:87:a1:ba:27:05:97:d5:af:e9:f9:c9:8a:24:3d: 67:12:dc:92:5e:27:83:7f:1c:f6:8e:d9:18:4a:42:d3:b6:4a: 16:74:29:1c:72:6e:6a:d5:ca:76:09:e2:82:11:d0:fe:09:ed: e4:f9:10:0e:71:09:2b:c2:c9:d6:e0:80:a5:1f:93:e5:27:53: 9f:fa:b8:66 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt262QYQRFoNY/uYWeDxClbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYmQyODEzNDVhZjZjZDU0MTU0ZDRjZmY3NGYxOTVhMzg4 ZmZmYzEwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2EzNmYyOGQ1OGY0ZDJmMDIzN2E2ZTAyNWMxNzliYWQyMWE5MDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2YABxsLrOYwoRaNzzZVXuYOPw05a WE0mE0bqEkz2rop/ZvXjN4q6bWPVTHaP/RUHfc/9NS5wVwGhSCebTEMQIh3JMAaw yq0BHHU8QwcGia2komblOwmpN0aiisV73snADcNmwfBh0NvjZd0BFUlEERXL90YY Ns/SxFJuvbkuSb5OsFEWWBSfimQj0GrD6pHvR4nKgE5d6gNUN7KOKo7EHYp/t477 1aa1udCXU7UnyPLbZe+BsVoTSebef0vflyaR3+5KhnZyzOFiO1CY9vtVqt+wL+d1 wcP/ZW4uBj1/cVaK+WN4D/Ik3s8/K2s/aR9eBpgIvK65NYTpxPwu0IqkYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFByjbyjVj00vAjem4CXBebrSGpBKMB8GA1UdIwQY MBaAFLC9KBNFr2zVQVTUz/dPGVo4j//BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0wwb0UwV3ZiTlZCVk5UUDkwOFpXamlQXzhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9mNWZkZWItM2ExNC00YTllLTg4MTUt ZTU2YjY5MGZkMzBlLzEvSEtOdktOV1BUUzhDTjZiZ0pjRjV1dElha0VvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9mNWZkZWItM2ExNC00YTllLTg4MTUtZTU2YjY5MGZkMzBl LzEvc0wwb0UwV3ZiTlZCVk5UUDkwOFpXamlQXzhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwl1LMA0G CSqGSIb3DQEBCwUAA4IBAQBb0afW6hY1+CFLyiNDkN8tjb3bJXadHJg+vkbb2Mty zl75d/AQQgIHrPqUjZsn290gGb0iWkP1OYfw+5y09pjrhAcxVIQ9R2KwzqWHHORF 5R+jG4FXrLJF0FNYtiuZzoHVqCDt0vXBDApcGC96hN697MspoYERacoUEym884PK iBde01jVUPkChpMgvIIsXxdDOhL5fT98dbeIVQwXPhtcsQraWwXHyn7xC1IwIPaz GEO7fMWHupULh6G6JwWX1a/p+cmKJD1nEtySXieDfxz2jtkYSkLTtkoWdCkccm5q 1cp2CeKCEdD+Ce3k+RAOcQkrwsnW4IClH5PlJ1Of+rhm -----END CERTIFICATE-----Generated at Mon Jan 26 11:40:00 2026 by rpki-client