This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/HzYO-buF75hB5zVYXMJY2BNMTW0.roa File: HzYO-buF75hB5zVYXMJY2BNMTW0.roa (raw, json) Hash identifier: vc07hXobtB+S4rDqvY9nKi+QZ+Ftd+qb04XqCUoUKsg= Subject key identifier: 1F:36:0E:F9:BB:85:EF:98:41:E7:35:58:5C:C2:58:D8:13:4C:4D:6D Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21 Certificate serial: 019B7F1502D7C2DF2ED28705A44A1C480741 Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/HzYO-buF75hB5zVYXMJY2BNMTW0.roa Signing time: Fri 02 Jan 2026 14:20:41 +0000 ROA not before: Fri 02 Jan 2026 14:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198154 IP address blocks: 81.12.32.0/22 maxlen: 24 87.107.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:02:d7:c2:df:2e:d2:87:05:a4:4a:1c:48:07:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21 Validity Not Before: Jan 2 14:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f360ef9bb85ef9841e735585cc258d8134c4d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:58:cc:d9:8b:78:1d:3c:17:9c:39:70:3a:44: 28:26:56:5f:1f:47:4e:1f:6d:83:a5:dd:61:29:0b: f2:f8:53:98:f4:7b:69:cc:5a:07:14:fb:96:de:03: 19:33:e5:86:62:59:04:b8:f7:67:21:97:18:52:ed: 93:52:ec:08:22:ab:7e:ce:6e:bb:22:49:bd:08:4e: 23:d1:7e:dc:9b:f3:98:8e:3a:db:24:5a:4b:48:9f: 20:50:55:96:79:a0:b0:f6:1f:f2:44:20:fc:d1:cf: 07:ec:71:63:c0:5c:de:32:ac:78:b3:a7:ee:a6:09: 75:be:16:1d:f4:d8:38:23:61:c3:9d:b6:54:f0:79: b0:3e:a9:cf:d8:8c:c0:ec:3c:3c:96:8a:41:2a:6f: 1a:2b:1e:d3:fe:1f:da:3a:f0:3d:3b:97:68:77:58: 6c:b8:18:24:c5:81:d0:c8:e6:45:9c:e3:84:7d:6c: 72:3c:78:49:9e:74:79:0f:d9:6b:2f:14:ad:24:e1: 64:0e:f3:ec:09:c0:b5:46:e6:eb:6b:5d:37:3f:6e: 5b:0f:04:79:04:e7:ee:8f:32:63:52:7b:5a:c5:aa: 58:51:c2:dd:5d:01:80:17:4d:56:8f:f7:02:a8:50: 7f:d9:c7:de:91:70:38:b7:76:23:94:61:9a:dc:9b: eb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:36:0E:F9:BB:85:EF:98:41:E7:35:58:5C:C2:58:D8:13:4C:4D:6D X509v3 Authority Key Identifier: keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/HzYO-buF75hB5zVYXMJY2BNMTW0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.12.32.0/22 87.107.156.0/22 Signature Algorithm: sha256WithRSAEncryption c4:70:21:aa:29:6a:af:a3:fc:e5:5c:fb:d0:27:c5:23:92:17: 26:54:87:12:24:3a:7d:e5:80:dc:94:0d:da:9f:33:f7:1d:db: 83:c2:6e:f4:a7:cb:af:cf:03:5c:01:e1:7f:cc:f0:9d:6e:4a: de:ea:e6:8a:cb:03:2c:05:b8:02:99:39:2c:37:de:e8:d6:82: 99:ee:e8:8e:f3:6f:cd:83:f1:fb:25:60:0f:b7:3c:b4:8b:ef: bd:a7:7a:e0:9d:58:d0:cd:6a:16:ba:54:f1:3d:78:bd:be:26: 47:66:b4:36:52:b3:cc:96:e2:1a:f8:d4:0a:cf:85:0a:f8:11: 6b:11:c5:e7:50:d8:6b:af:f9:e6:d9:32:58:d8:11:75:d1:e7: bd:af:53:92:06:f2:46:f7:84:8a:50:f0:8b:78:f5:5f:59:48: 5a:10:00:e5:af:1a:0b:99:dc:4a:f5:66:2b:52:35:18:53:18: f9:e7:a8:b1:91:7a:4e:34:49:24:91:95:9c:bc:8b:d4:9a:7f: 96:f6:48:1c:5d:5b:64:10:4b:35:4a:8d:07:86:eb:c5:68:b6: a2:01:38:6f:7a:7d:77:9e:84:90:6c:b1:70:4c:0a:5c:d3:b9: bf:9f:60:c3:95:2b:5f:fc:b6:42:d7:4e:b7:d9:53:04:1f:50: ca:89:1b:4c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FQLXwt8u0ocFpEocSAdBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk ZDVjMjEwHhcNMjYwMTAyMTQyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjM2MGVmOWJiODVlZjk4NDFlNzM1NTg1Y2MyNThkODEzNGM0ZDZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVjM2Yt4HTwXnDlwOkQoJlZfH0dO H22Dpd1hKQvy+FOY9HtpzFoHFPuW3gMZM+WGYlkEuPdnIZcYUu2TUuwIIqt+zm67 Ikm9CE4j0X7cm/OYjjrbJFpLSJ8gUFWWeaCw9h/yRCD80c8H7HFjwFzeMqx4s6fu pgl1vhYd9Ng4I2HDnbZU8HmwPqnP2IzA7Dw8lopBKm8aKx7T/h/aOvA9O5dod1hs uBgkxYHQyOZFnOOEfWxyPHhJnnR5D9lrLxStJOFkDvPsCcC1Rubra103P25bDwR5 BOfujzJjUntaxapYUcLdXQGAF01Wj/cCqFB/2cfekXA4t3YjlGGa3JvrdQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFB82Dvm7he+YQec1WFzCWNgTTE1tMB8GA1UdIwQY MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt NzZiMzNlNGNlODIxLzEvSHpZTy1idUY3NWhCNXpWWVhNSlkyQk5NVFcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCUQwgAwQC V2ucMA0GCSqGSIb3DQEBCwUAA4IBAQDEcCGqKWqvo/zlXPvQJ8UjkhcmVIcSJDp9 5YDclA3anzP3HduDwm70p8uvzwNcAeF/zPCdbkre6uaKywMsBbgCmTksN97o1oKZ 7uiO82/Ng/H7JWAPtzy0i++9p3rgnVjQzWoWulTxPXi9viZHZrQ2UrPMluIa+NQK z4UK+BFrEcXnUNhrr/nm2TJY2BF10ee9r1OSBvJG94SKUPCLePVfWUhaEADlrxoL mdxK9WYrUjUYUxj556ixkXpONEkkkZWcvIvUmn+W9kgcXVtkEEs1So0HhuvFaLai AThven13noSQbLFwTApc07m/n2DDlStf/LZC10632VMEH1DKiRtM -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:19 2026 by rpki-client