This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa File: HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa (raw, json) Hash identifier: cUV79+nq1UfEgnpECvrj1jXV8gIvKA75fQt4Y8wK7Xg= Subject key identifier: 1C:62:77:64:49:CD:93:76:29:56:3A:79:D6:E1:56:ED:F5:51:2E:07 Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0 Certificate serial: 019B7BA38E55EAA5EF8A1E8CA6B37E59CEF3 Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa Signing time: Thu 01 Jan 2026 22:17:54 +0000 ROA not before: Thu 01 Jan 2026 22:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2202 IP address blocks: 193.56.108.0/24 maxlen: 24 193.56.109.0/24 maxlen: 24 193.56.110.0/24 maxlen: 24 193.56.111.0/24 maxlen: 24 193.56.228.0/24 maxlen: 24 193.56.229.0/24 maxlen: 24 193.56.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:8e:55:ea:a5:ef:8a:1e:8c:a6:b3:7e:59:ce:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0 Validity Not Before: Jan 1 22:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c62776449cd937629563a79d6e156edf5512e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c7:3a:66:f4:99:a8:d9:00:95:e6:90:4a:e6: 99:79:45:a1:5d:95:2e:6b:f4:3f:09:f9:c6:c3:63: 64:cd:3c:19:c3:1f:95:7e:bf:93:9a:89:2e:18:68: c7:ce:d6:a0:ee:a5:ea:d1:80:3f:ad:53:56:4e:29: 1d:50:1a:fb:92:dd:f4:2f:66:b3:6d:6c:a9:e9:33: 16:1d:18:9d:4a:8b:15:0a:54:d1:6c:08:4d:3a:4c: b1:e5:8b:90:2b:d7:fc:6c:a2:97:4a:37:7d:ef:f5: b7:20:1f:36:72:18:4a:89:1c:46:e2:79:94:38:04: ed:5d:25:dd:0b:27:7d:6b:b2:d7:7b:6c:e9:5a:dd: bc:d3:07:93:2d:9d:fb:c0:be:a5:dc:a2:e8:41:bf: 1f:e4:fc:f0:ae:a4:12:7d:6a:5f:2e:64:ee:0a:00: 46:33:d8:cc:0a:75:29:e2:40:0a:4c:1a:ff:9d:71: 56:3d:0c:48:bd:53:56:5c:11:ea:85:3a:a2:28:7b: 12:9e:e2:8d:9c:32:86:44:8f:44:36:72:ac:9d:ef: 76:e7:3e:3a:27:73:d5:ab:f1:59:e8:fa:c3:2b:1c: db:21:67:4c:94:c9:4a:3e:38:03:5a:c6:c2:f0:83: 22:a5:80:a4:69:b7:7b:7b:cf:19:7e:70:2c:56:e9: 24:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:62:77:64:49:CD:93:76:29:56:3A:79:D6:E1:56:ED:F5:51:2E:07 X509v3 Authority Key Identifier: keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HGJ3ZEnNk3YpVjp51uFW7fVRLgc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.56.108.0/22 193.56.228.0-193.56.230.255 Signature Algorithm: sha256WithRSAEncryption 0d:98:32:1f:da:7c:e7:db:8a:a2:20:36:1a:68:de:a2:1f:40: 1a:69:22:52:20:bf:97:88:8f:0e:84:29:06:91:fd:e0:a3:d0: 19:cd:5b:6d:f4:d0:4b:91:0b:b6:ed:3e:ca:54:8f:99:47:6f: 3f:27:96:19:d4:7b:11:1f:0e:6f:ee:50:9c:8a:69:bc:2a:a7: 7d:7d:3d:f7:fb:65:ce:98:e5:0b:a5:e4:42:65:12:de:a8:48: 46:66:46:36:57:58:91:44:53:76:33:63:c6:1e:fb:d7:c7:1c: 47:4c:c8:d7:fc:04:8e:33:4e:cb:fa:9d:2f:49:50:f7:eb:b5: cd:dd:37:aa:40:01:5b:f4:11:df:0d:62:32:9b:bd:09:e1:d7: ff:bb:95:77:b4:3f:fb:21:41:e2:7f:60:66:36:2d:8e:7a:4b: 80:4c:ef:e5:ac:35:b1:a4:2b:7e:66:87:5d:04:d1:fb:70:6a: 35:6c:97:55:59:4f:ff:3b:63:84:3d:cf:9e:2d:30:86:1a:53: fe:3f:0b:3f:43:2b:e0:99:48:33:80:72:6c:47:f9:43:a8:68: d4:ce:10:9c:99:39:a4:52:a1:f6:46:23:d2:17:78:84:1d:33: 9d:43:7c:48:cb:f2:09:27:1c:ac:10:5c:2a:db:23:66:5e:60: f3:6f:9c:79 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt7o45V6qXvih6MprN+Wc7zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMWM1MmYxNTUyZjZlYTBmMDY0ZDdhM2I3OWRiNWMxY2Yx NjZiZDAwHhcNMjYwMTAxMjIxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzYyNzc2NDQ5Y2Q5Mzc2Mjk1NjNhNzlkNmUxNTZlZGY1NTEyZTA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApsc6ZvSZqNkAleaQSuaZeUWhXZUu a/Q/CfnGw2NkzTwZwx+Vfr+TmokuGGjHztag7qXq0YA/rVNWTikdUBr7kt30L2az bWyp6TMWHRidSosVClTRbAhNOkyx5YuQK9f8bKKXSjd97/W3IB82chhKiRxG4nmU OATtXSXdCyd9a7LXe2zpWt280weTLZ37wL6l3KLoQb8f5PzwrqQSfWpfLmTuCgBG M9jMCnUp4kAKTBr/nXFWPQxIvVNWXBHqhTqiKHsSnuKNnDKGRI9ENnKsne925z46 J3PVq/FZ6PrDKxzbIWdMlMlKPjgDWsbC8IMipYCkabd7e88ZfnAsVukkUwIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFBxid2RJzZN2KVY6edbhVu31US4HMB8GA1UdIwQY MBaAFB0cUvFVL26g8GTXo7edtcHPFmvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82NGY1MzktZmVkYS00OWZjLWE5MjIt MjAxZDVhOWJiOGFhLzEvSEdKM1pFbk5rM1lwVmpwNTF1Rlc3ZlZSTGdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS82NGY1MzktZmVkYS00OWZjLWE5MjItMjAxZDVhOWJiOGFh LzEvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCwThsMAwD BALBOOQDBADBOOYwDQYJKoZIhvcNAQELBQADggEBAA2YMh/afOfbiqIgNhpo3qIf QBppIlIgv5eIjw6EKQaR/eCj0BnNW2300EuRC7btPspUj5lHbz8nlhnUexEfDm/u UJyKabwqp319Pff7Zc6Y5Qul5EJlEt6oSEZmRjZXWJFEU3YzY8Ye+9fHHEdMyNf8 BI4zTsv6nS9JUPfrtc3dN6pAAVv0Ed8NYjKbvQnh1/+7lXe0P/shQeJ/YGY2LY56 S4BM7+WsNbGkK35mh10E0ftwajVsl1VZT/87Y4Q9z54tMIYaU/4/Cz9DK+CZSDOA cmxH+UOoaNTOEJyZOaRSofZGI9IXeIQdM51DfEjL8gknHKwQXCrbI2ZeYPNvnHk= -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:16 2026 by rpki-client