This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/HmYrDKd2yjYmZLmWzYz7se6Li1c.roa File: HmYrDKd2yjYmZLmWzYz7se6Li1c.roa (raw, json) Hash identifier: 2E+4PcgEvP7v29a2K/Pql8IKPHh2ZcXb/x/xhB+Fnbs= Subject key identifier: 1E:66:2B:0C:A7:76:CA:36:26:64:B9:96:CD:8C:FB:B1:EE:8B:8B:57 Certificate issuer: /CN=930a572c16d0c44f7766587d92d878ba30541d1e Certificate serial: 019B7835590049DCBA166F6A91FB43F0B116 Authority key identifier: 93:0A:57:2C:16:D0:C4:4F:77:66:58:7D:92:D8:78:BA:30:54:1D:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwpXLBbQxE93Zlh9kth4ujBUHR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/HmYrDKd2yjYmZLmWzYz7se6Li1c.roa Signing time: Thu 01 Jan 2026 06:18:40 +0000 ROA not before: Thu 01 Jan 2026 06:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197481 IP address blocks: 91.213.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/kwpXLBbQxE93Zlh9kth4ujBUHR4.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/kwpXLBbQxE93Zlh9kth4ujBUHR4.mft rsync://rpki.ripe.net/repository/DEFAULT/kwpXLBbQxE93Zlh9kth4ujBUHR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:59:00:49:dc:ba:16:6f:6a:91:fb:43:f0:b1:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=930a572c16d0c44f7766587d92d878ba30541d1e Validity Not Before: Jan 1 06:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e662b0ca776ca362664b996cd8cfbb1ee8b8b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:78:2b:19:0e:09:70:52:d3:6b:dd:87:b6:66: d0:d7:ca:fb:d8:6b:f6:5d:7b:ba:1f:17:43:81:66: 93:23:bd:f4:4c:35:1d:66:73:b2:da:56:8e:76:e0: d6:be:70:8b:de:ad:fe:5d:1c:83:97:5c:a0:7a:63: 8a:69:ac:37:34:f6:02:bb:55:0e:cc:5d:ca:5c:11: 5b:3e:28:e0:6b:21:56:bc:18:a4:45:95:42:13:2e: 3d:0a:4f:02:48:42:7f:2c:6c:a8:18:33:5b:3c:9c: 2b:13:0e:cc:0d:74:8c:02:a5:4f:a8:6f:03:0b:2f: 79:14:00:38:78:d1:14:71:2b:cd:29:3f:21:90:6f: f7:c9:ff:be:d3:66:8a:21:8b:fb:5e:4a:66:a2:73: 88:51:5e:b7:f0:1e:34:0a:0c:74:5a:ad:43:cc:76: 97:c0:fc:f2:fb:e9:3f:9e:1a:06:63:74:c1:a3:d1: 3e:3e:9f:dd:86:df:49:13:b5:b9:38:2a:7f:00:da: 19:b2:59:da:ee:45:76:ba:ac:41:34:ad:83:a5:e3: d8:ad:9a:20:6c:63:56:80:4c:62:4a:4f:70:d9:04: 0e:2f:75:c9:31:39:2a:fa:c0:ac:b0:df:2d:be:0c: 31:85:1d:08:33:0e:06:fa:53:f2:09:64:ef:e0:17: d7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:66:2B:0C:A7:76:CA:36:26:64:B9:96:CD:8C:FB:B1:EE:8B:8B:57 X509v3 Authority Key Identifier: keyid:93:0A:57:2C:16:D0:C4:4F:77:66:58:7D:92:D8:78:BA:30:54:1D:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwpXLBbQxE93Zlh9kth4ujBUHR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/HmYrDKd2yjYmZLmWzYz7se6Li1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/aa55a2-e33e-4dc0-9d87-8cc6579415da/1/kwpXLBbQxE93Zlh9kth4ujBUHR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.33.0/24 Signature Algorithm: sha256WithRSAEncryption e0:30:ea:2c:98:a7:a5:4e:e2:2d:82:93:44:09:8b:f5:76:02: 98:53:81:98:c8:0b:80:a1:3f:b8:41:4d:63:be:94:62:7b:f9: db:62:25:05:63:ab:52:d1:39:74:66:09:ed:e2:a1:ea:93:0d: 80:ee:ad:84:4e:a3:12:c2:3c:9e:b6:2c:93:fb:d2:87:4c:8f: c1:3e:a1:12:8a:f2:50:b1:64:bb:09:2e:f4:37:3a:46:e9:7e: af:01:42:06:3f:e9:2d:e8:71:a9:fd:b7:c7:69:a5:5c:25:1a: aa:99:5e:18:38:78:07:d6:d6:5a:1f:65:9b:a6:b7:ea:19:c8: 25:61:a5:ae:1c:12:d3:f2:12:3b:b0:a6:90:dd:ad:9e:4c:9b: d1:56:7e:43:2b:56:ef:c3:d9:c8:83:ed:d2:01:67:49:10:42: 28:74:4d:97:f5:65:43:6c:51:9c:98:3f:f8:9c:ac:4f:10:7f: cb:75:25:83:30:fd:b2:6f:e9:ca:b9:f3:90:94:4e:d5:42:df: 2f:52:6e:ea:93:23:16:a4:41:87:3b:68:db:c9:4c:53:ab:d8: e4:7c:86:d3:0a:25:ab:d6:84:0a:22:a8:02:ef:74:80:02:0d: 32:d9:60:fa:7b:ac:7d:9a:02:de:21:65:81:1a:3d:33:42:28: d5:b0:e7:6e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NVkASdy6Fm9qkftD8LEWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMGE1NzJjMTZkMGM0NGY3NzY2NTg3ZDkyZDg3OGJhMzA1 NDFkMWUwHhcNMjYwMTAxMDYxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTY2MmIwY2E3NzZjYTM2MjY2NGI5OTZjZDhjZmJiMWVlOGI4YjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3grGQ4JcFLTa92HtmbQ18r72Gv2 XXu6HxdDgWaTI730TDUdZnOy2laOduDWvnCL3q3+XRyDl1ygemOKaaw3NPYCu1UO zF3KXBFbPijgayFWvBikRZVCEy49Ck8CSEJ/LGyoGDNbPJwrEw7MDXSMAqVPqG8D Cy95FAA4eNEUcSvNKT8hkG/3yf++02aKIYv7XkpmonOIUV638B40Cgx0Wq1DzHaX wPzy++k/nhoGY3TBo9E+Pp/dht9JE7W5OCp/ANoZslna7kV2uqxBNK2DpePYrZog bGNWgExiSk9w2QQOL3XJMTkq+sCssN8tvgwxhR0IMw4G+lPyCWTv4BfX/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB5mKwyndso2JmS5ls2M+7Hui4tXMB8GA1UdIwQY MBaAFJMKVywW0MRPd2ZYfZLYeLowVB0eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3dwWExCYlF4RTkzWmxoOWt0aDR1akJVSFI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9hYTU1YTItZTMzZS00ZGMwLTlkODct OGNjNjU3OTQxNWRhLzEvSG1ZckRLZDJ5alltWkxtV3pZejdzZTZMaTFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9hYTU1YTItZTMzZS00ZGMwLTlkODctOGNjNjU3OTQxNWRh LzEva3dwWExCYlF4RTkzWmxoOWt0aDR1akJVSFI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9UhMA0G CSqGSIb3DQEBCwUAA4IBAQDgMOosmKelTuItgpNECYv1dgKYU4GYyAuAoT+4QU1j vpRie/nbYiUFY6tS0Tl0Zgnt4qHqkw2A7q2ETqMSwjyetiyT+9KHTI/BPqESivJQ sWS7CS70NzpG6X6vAUIGP+kt6HGp/bfHaaVcJRqqmV4YOHgH1tZaH2WbprfqGcgl YaWuHBLT8hI7sKaQ3a2eTJvRVn5DK1bvw9nIg+3SAWdJEEIodE2X9WVDbFGcmD/4 nKxPEH/LdSWDMP2yb+nKufOQlE7VQt8vUm7qkyMWpEGHO2jbyUxTq9jkfIbTCiWr 1oQKIqgC73SAAg0y2WD6e6x9mgLeIWWBGj0zQijVsOdu -----END CERTIFICATE-----Generated at Mon Jan 26 05:48:56 2026 by rpki-client