This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/HOYPj4fxlJpMEgvz-DEwT478Zw0.roa File: HOYPj4fxlJpMEgvz-DEwT478Zw0.roa (raw, json) Hash identifier: 7P50ZlqJyO8nhGQCGcuWiJXDncM9pWzrp0URwjErvl4= Subject key identifier: 1C:E6:0F:8F:87:F1:94:9A:4C:12:0B:F3:F8:31:30:4F:8E:FC:67:0D Certificate issuer: /CN=33a9c7bdf2b82e343ec42667d6eede4b80610c84 Certificate serial: 019B7B35569128432542EF603E71CE2EA9BE Authority key identifier: 33:A9:C7:BD:F2:B8:2E:34:3E:C4:26:67:D6:EE:DE:4B:80:61:0C:84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/HOYPj4fxlJpMEgvz-DEwT478Zw0.roa Signing time: Thu 01 Jan 2026 20:17:31 +0000 ROA not before: Thu 01 Jan 2026 20:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207464 IP address blocks: 62.241.32.0/20 maxlen: 22 85.113.72.0/21 maxlen: 24 109.72.160.0/20 maxlen: 24 147.161.16.0/22 maxlen: 23 185.36.212.0/22 maxlen: 23 185.135.134.0/23 maxlen: 23 185.154.16.0/22 maxlen: 23 2a00:f0a0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:56:91:28:43:25:42:ef:60:3e:71:ce:2e:a9:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33a9c7bdf2b82e343ec42667d6eede4b80610c84 Validity Not Before: Jan 1 20:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ce60f8f87f1949a4c120bf3f831304f8efc670d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:42:d8:8b:27:36:ee:e1:da:17:68:d3:e6:c2: 6a:e2:7a:fc:62:b4:f3:94:5e:7e:a5:52:b4:15:8b: 13:8c:84:47:5e:eb:bc:b6:83:ef:51:8f:0c:dc:35: 96:cf:db:55:33:a2:53:78:5d:d0:e5:db:d4:84:b5: 67:62:0c:a4:b6:8c:83:93:35:ac:1d:af:34:98:e6: f5:47:54:1e:0f:6a:3f:21:c7:e6:f8:8f:2f:bf:c1: 49:bc:b2:cd:eb:d0:21:a1:c5:b1:35:bf:65:81:5b: 07:4d:49:8a:df:e7:1e:d8:5f:cd:b4:cf:5e:d0:8f: 36:bc:62:9c:ba:f0:49:ec:1d:a1:cf:fa:75:f9:a2: 7a:6f:a2:78:f0:83:13:37:8e:85:f4:c5:1b:f3:2d: fa:66:1a:d7:d2:e1:51:0e:67:00:f0:6f:a4:ee:cf: af:7b:18:ce:48:80:77:a8:fb:5e:6d:f1:1a:68:c0: b6:0b:e8:59:19:fe:a2:af:14:ad:77:67:33:f2:06: e4:b2:ea:db:76:c6:40:1c:e6:28:cd:ad:73:f4:3a: b7:0e:39:f6:e4:70:7d:29:85:77:59:42:23:36:e5: 16:4d:7b:a6:81:c5:cb:c6:05:fb:c1:7e:52:78:51: 3a:94:3d:17:6e:7f:71:47:01:32:1a:ef:eb:4e:a7: 6b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E6:0F:8F:87:F1:94:9A:4C:12:0B:F3:F8:31:30:4F:8E:FC:67:0D X509v3 Authority Key Identifier: keyid:33:A9:C7:BD:F2:B8:2E:34:3E:C4:26:67:D6:EE:DE:4B:80:61:0C:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/HOYPj4fxlJpMEgvz-DEwT478Zw0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.241.32.0/20 85.113.72.0/21 109.72.160.0/20 147.161.16.0/22 185.36.212.0/22 185.135.134.0/23 185.154.16.0/22 IPv6: 2a00:f0a0::/29 Signature Algorithm: sha256WithRSAEncryption 39:dd:a6:88:94:70:ce:47:b0:38:05:4f:21:63:44:f1:91:9c: d7:ce:70:16:98:78:f1:53:4f:29:26:13:9e:7f:8d:79:4f:91: 25:42:8f:f4:e9:b6:c7:82:a0:fa:1e:b6:dd:b6:4f:d7:1b:7e: b4:6e:af:35:89:8e:5f:28:00:cd:35:5c:88:0f:e6:02:54:ef: cb:49:ad:64:9a:25:66:31:2e:e8:50:6f:8f:fd:23:96:d6:43: e6:16:33:65:2c:06:e2:e3:67:45:30:00:f0:be:71:98:f7:56: 27:b9:77:f4:3d:01:70:3d:12:7e:4c:77:e7:aa:79:77:7c:41: de:16:73:89:73:fe:46:9d:83:5f:40:37:92:36:67:66:de:ca: f2:f7:da:75:0b:c4:21:c3:67:38:cb:8d:ec:48:3e:d1:b7:57: c0:c3:18:96:11:70:55:36:e4:2d:97:7c:8a:a1:b0:61:66:ff: dc:7c:2c:d4:b4:ce:e5:5f:5d:ce:3c:a5:6c:50:a9:ce:2f:e7: 33:39:0a:5c:99:a6:22:91:4a:79:31:c1:28:4f:2f:d2:3f:16: 64:01:89:a4:09:22:5b:a3:47:55:bf:ec:9b:e4:50:09:a8:ad: ee:d3:3b:f4:c4:4a:02:61:fd:bb:e6:18:22:95:ca:d6:ad:ed: 81:2a:f3:03 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt7NVaRKEMlQu9gPnHOLqm+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYTljN2JkZjJiODJlMzQzZWM0MjY2N2Q2ZWVkZTRiODA2 MTBjODQwHhcNMjYwMTAxMjAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2U2MGY4Zjg3ZjE5NDlhNGMxMjBiZjNmODMxMzA0ZjhlZmM2NzBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA90LYiyc27uHaF2jT5sJq4nr8YrTz lF5+pVK0FYsTjIRHXuu8toPvUY8M3DWWz9tVM6JTeF3Q5dvUhLVnYgyktoyDkzWs Ha80mOb1R1QeD2o/Icfm+I8vv8FJvLLN69AhocWxNb9lgVsHTUmK3+ce2F/NtM9e 0I82vGKcuvBJ7B2hz/p1+aJ6b6J48IMTN46F9MUb8y36ZhrX0uFRDmcA8G+k7s+v exjOSIB3qPtebfEaaMC2C+hZGf6irxStd2cz8gbksurbdsZAHOYoza1z9Dq3Djn2 5HB9KYV3WUIjNuUWTXumgcXLxgX7wX5SeFE6lD0Xbn9xRwEyGu/rTqdrOQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFBzmD4+H8ZSaTBIL8/gxME+O/GcNMB8GA1UdIwQY MBaAFDOpx73yuC40PsQmZ9bu3kuAYQyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTZuSHZmSzRMalEteENabjF1N2VTNEJoRElRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8yZjY1OTUtZDNkMS00M2VhLWE0YTMt YWIzYjdjM2U4MjE1LzEvSE9ZUGo0ZnhsSnBNRWd2ei1ERXdUNDc4WncwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC8yZjY1OTUtZDNkMS00M2VhLWE0YTMtYWIzYjdjM2U4MjE1 LzEvTTZuSHZmSzRMalEteENabjF1N2VTNEJoRElRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQEPvEgAwQD VXFIAwQEbUigAwQCk6EQAwQCuSTUAwQBuYeGAwQCuZoQMA0EAgACMAcDBQMqAPCg MA0GCSqGSIb3DQEBCwUAA4IBAQA53aaIlHDOR7A4BU8hY0TxkZzXznAWmHjxU08p JhOef415T5ElQo/06bbHgqD6Hrbdtk/XG360bq81iY5fKADNNVyID+YCVO/LSa1k miVmMS7oUG+P/SOW1kPmFjNlLAbi42dFMADwvnGY91YnuXf0PQFwPRJ+THfnqnl3 fEHeFnOJc/5GnYNfQDeSNmdm3sry99p1C8Qhw2c4y43sSD7Rt1fAwxiWEXBVNuQt l3yKobBhZv/cfCzUtM7lX13OPKVsUKnOL+czOQpcmaYikUp5McEoTy/SPxZkAYmk CSJbo0dVv+yb5FAJqK3u0zv0xEoCYf275hgilcrWre2BKvMD -----END CERTIFICATE-----Generated at Mon Jan 26 13:11:06 2026 by rpki-client