This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ceb187-7486-404c-a1dc-09129872e143/1/HYvKCcw-bAqCpd1NvqN2fLCuK_c.roa File: HYvKCcw-bAqCpd1NvqN2fLCuK_c.roa (raw, json) Hash identifier: XoIkC6gkzv3SV50tLrqpWkzeeEIwqrXecB9Y4IUt8gc= Subject key identifier: 1D:8B:CA:09:CC:3E:6C:0A:82:A5:DD:4D:BE:A3:76:7C:B0:AE:2B:F7 Certificate issuer: /CN=a93616365693fb6502cb4d687bb66747b1a2fd74 Certificate serial: 019B7A5A6E9E311ADC9EC733DA52B760136F Authority key identifier: A9:36:16:36:56:93:FB:65:02:CB:4D:68:7B:B6:67:47:B1:A2:FD:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qTYWNlaT-2UCy01oe7ZnR7Gi_XQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ceb187-7486-404c-a1dc-09129872e143/1/HYvKCcw-bAqCpd1NvqN2fLCuK_c.roa Signing time: Thu 01 Jan 2026 16:18:25 +0000 ROA not before: Thu 01 Jan 2026 16:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5089 IP address blocks: 193.192.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/ceb187-7486-404c-a1dc-09129872e143/1/qTYWNlaT-2UCy01oe7ZnR7Gi_XQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/ceb187-7486-404c-a1dc-09129872e143/1/qTYWNlaT-2UCy01oe7ZnR7Gi_XQ.mft rsync://rpki.ripe.net/repository/DEFAULT/qTYWNlaT-2UCy01oe7ZnR7Gi_XQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:6e:9e:31:1a:dc:9e:c7:33:da:52:b7:60:13:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a93616365693fb6502cb4d687bb66747b1a2fd74 Validity Not Before: Jan 1 16:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d8bca09cc3e6c0a82a5dd4dbea3767cb0ae2bf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:2e:9c:45:b6:0c:6c:37:eb:f0:7f:58:9e: 6e:ca:cb:89:0e:93:32:72:67:c8:7b:c4:59:35:a5: 86:37:b0:f4:92:9e:a0:03:28:a9:53:eb:ba:a8:40: b4:94:19:bb:d3:cb:e3:bd:2f:c6:ed:1c:af:b4:bd: c5:13:e5:a3:03:e9:8a:3b:e6:ff:23:17:42:3d:0b: ad:cc:52:6d:79:a1:e1:09:d6:41:9c:5a:bf:6e:6e: 83:cf:f6:ce:c6:06:bd:24:93:bf:57:eb:af:cc:fb: 91:90:95:11:30:40:8f:fa:d0:d1:7f:55:f8:c9:7d: 8d:ba:09:2b:f9:ea:d1:50:3d:c6:be:59:c1:ec:8f: 91:a7:6a:be:e6:cd:ff:04:e2:71:5b:8f:b8:c7:75: 34:3d:b6:f8:21:fe:86:e3:e4:64:08:15:f3:96:4e: 95:71:6c:12:dc:dd:73:0d:80:0c:6d:ad:09:2c:a2: 80:a3:c9:b4:de:b6:5f:96:4e:49:90:33:80:95:7c: b0:b6:a4:bf:5e:27:1e:d9:47:bd:dd:69:aa:3a:15: 99:42:6f:1c:eb:00:a6:77:5f:4a:b3:44:01:0a:d1: 59:9f:bf:87:cd:7b:f9:bb:25:f1:f9:97:df:f2:c9: 50:ce:ab:68:d6:a1:39:83:36:37:20:4a:ca:69:4a: 32:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8B:CA:09:CC:3E:6C:0A:82:A5:DD:4D:BE:A3:76:7C:B0:AE:2B:F7 X509v3 Authority Key Identifier: keyid:A9:36:16:36:56:93:FB:65:02:CB:4D:68:7B:B6:67:47:B1:A2:FD:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qTYWNlaT-2UCy01oe7ZnR7Gi_XQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ceb187-7486-404c-a1dc-09129872e143/1/HYvKCcw-bAqCpd1NvqN2fLCuK_c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ceb187-7486-404c-a1dc-09129872e143/1/qTYWNlaT-2UCy01oe7ZnR7Gi_XQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.192.32.0/23 Signature Algorithm: sha256WithRSAEncryption a0:f5:5f:80:5c:30:ee:4c:a3:b6:fe:6f:b5:db:76:2f:4c:8b: e0:e2:db:21:7f:68:da:cf:cf:5c:9e:dc:67:98:d2:28:0c:d5: 86:a9:61:e3:c6:92:3b:8f:e1:ed:0a:18:77:3f:7e:02:9a:05: a4:a7:47:91:c7:18:28:b6:5e:ac:2f:d0:62:94:9a:00:3b:70: c6:cf:5d:7c:fd:b3:07:fe:4f:52:50:c9:20:b4:5a:47:6a:85: 2e:fd:62:7a:c6:15:26:04:f6:e4:11:fb:7b:6c:d9:72:48:b7: 7b:c8:03:23:0c:65:78:64:2a:a8:a5:dd:2f:e5:37:2c:c1:2f: 42:b9:0c:7b:47:9b:c6:0c:09:c6:8c:d6:e6:0b:ea:10:18:d3: 8e:d8:5d:36:45:5f:8e:cd:5e:56:46:8f:63:04:96:f4:e8:99: cb:44:41:99:72:6d:06:95:d6:f7:22:5c:fd:d6:11:84:2f:7c: d2:94:4a:2f:05:f4:8f:e8:3e:8e:2c:81:71:68:4a:cd:d3:f6: 24:da:09:f8:63:5a:ec:0a:a5:b5:ab:99:d7:f5:41:fc:b2:c0: 4c:62:05:cd:88:4d:fe:2e:3a:8a:76:19:90:52:af:6a:5f:ff: 27:0d:0f:9f:76:14:41:24:28:10:3e:91:c5:48:3b:6e:58:98: d3:85:d0:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6Wm6eMRrcnscz2lK3YBNvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5MzYxNjM2NTY5M2ZiNjUwMmNiNGQ2ODdiYjY2NzQ3YjFh MmZkNzQwHhcNMjYwMTAxMTYxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDhiY2EwOWNjM2U2YzBhODJhNWRkNGRiZWEzNzY3Y2IwYWUyYmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgUunEW2DGw36/B/WJ5uysuJDpMy cmfIe8RZNaWGN7D0kp6gAyipU+u6qEC0lBm708vjvS/G7RyvtL3FE+WjA+mKO+b/ IxdCPQutzFJteaHhCdZBnFq/bm6Dz/bOxga9JJO/V+uvzPuRkJURMECP+tDRf1X4 yX2Nugkr+erRUD3GvlnB7I+Rp2q+5s3/BOJxW4+4x3U0Pbb4If6G4+RkCBXzlk6V cWwS3N1zDYAMba0JLKKAo8m03rZflk5JkDOAlXywtqS/Xice2Ue93WmqOhWZQm8c 6wCmd19Ks0QBCtFZn7+HzXv5uyXx+Zff8slQzqto1qE5gzY3IErKaUoybQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB2LygnMPmwKgqXdTb6jdnywriv3MB8GA1UdIwQY MBaAFKk2FjZWk/tlAstNaHu2Z0exov10MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVRZV05sYVQtMlVDeTAxb2U3Wm5SN0dpX1hRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9jZWIxODctNzQ4Ni00MDRjLWExZGMt MDkxMjk4NzJlMTQzLzEvSFl2S0Njdy1iQXFDcGQxTnZxTjJmTEN1S19jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9jZWIxODctNzQ4Ni00MDRjLWExZGMtMDkxMjk4NzJlMTQz LzEvcVRZV05sYVQtMlVDeTAxb2U3Wm5SN0dpX1hRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwcAgMA0G CSqGSIb3DQEBCwUAA4IBAQCg9V+AXDDuTKO2/m+123YvTIvg4tshf2jaz89cntxn mNIoDNWGqWHjxpI7j+HtChh3P34CmgWkp0eRxxgotl6sL9BilJoAO3DGz118/bMH /k9SUMkgtFpHaoUu/WJ6xhUmBPbkEft7bNlySLd7yAMjDGV4ZCqopd0v5TcswS9C uQx7R5vGDAnGjNbmC+oQGNOO2F02RV+OzV5WRo9jBJb06JnLREGZcm0Gldb3Ilz9 1hGEL3zSlEovBfSP6D6OLIFxaErN0/Yk2gn4Y1rsCqW1q5nX9UH8ssBMYgXNiE3+ LjqKdhmQUq9qX/8nDQ+fdhRBJCgQPpHFSDtuWJjThdDA -----END CERTIFICATE-----Generated at Sun Jan 25 11:42:48 2026 by rpki-client