This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/Hbb2tJo76oQa-wtw39RcEwlrnXM.roa File: Hbb2tJo76oQa-wtw39RcEwlrnXM.roa (raw, json) Hash identifier: zQKmQxHagrt8snJj/oZAtBi6Ifdl6mTU9nAZ70t8Osc= Subject key identifier: 1D:B6:F6:B4:9A:3B:EA:84:1A:FB:0B:70:DF:D4:5C:13:09:6B:9D:73 Certificate issuer: /CN=b0b56d10ccad9d69c01856be0afaa17ec682acbf Certificate serial: 019BEEE0FF889E4E06CC1EF49EB3C9446FF8 Authority key identifier: B0:B5:6D:10:CC:AD:9D:69:C0:18:56:BE:0A:FA:A1:7E:C6:82:AC:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/Hbb2tJo76oQa-wtw39RcEwlrnXM.roa Signing time: Sat 24 Jan 2026 07:21:21 +0000 ROA not before: Sat 24 Jan 2026 07:21:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44620 IP address blocks: 91.228.227.0/24 maxlen: 24 158.94.216.0/24 maxlen: 24 176.97.219.0/24 maxlen: 24 217.11.164.0/24 maxlen: 24 217.11.165.0/24 maxlen: 24 2a01:f900::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.mft rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ee:e0:ff:88:9e:4e:06:cc:1e:f4:9e:b3:c9:44:6f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0b56d10ccad9d69c01856be0afaa17ec682acbf Validity Not Before: Jan 24 07:21:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1db6f6b49a3bea841afb0b70dfd45c13096b9d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c9:d7:bb:93:9a:42:65:71:56:f6:6b:9e:56: 3a:a9:5f:40:d4:b1:48:6d:ee:29:70:9e:ac:b1:c6: 78:12:69:5f:5b:81:18:e1:e6:0e:4e:54:cf:6f:44: 46:02:b8:a3:44:04:ed:84:a2:9e:52:02:9c:d9:20: 2d:7a:5d:ed:a7:bf:2e:5e:3b:74:44:19:ef:b9:ef: 34:dc:a5:dc:11:df:66:1b:f9:e2:e4:3a:af:74:4a: 3a:9e:8c:40:e3:4c:9a:57:5c:88:bd:10:64:f0:d9: b7:1d:60:bd:62:78:8c:5a:0f:7b:81:16:f6:ad:3f: 41:d4:19:69:6c:d4:bf:30:81:b5:b5:c4:3d:03:f6: 9e:5d:f7:76:6f:66:43:12:27:48:33:1a:f6:05:58: da:c8:32:2c:44:03:73:db:06:8b:59:e3:f6:5e:04: 60:b1:3d:49:22:d1:bd:79:21:6d:02:ca:72:ec:99: f1:00:9f:f3:a5:43:18:e2:b7:9e:d2:2e:59:2a:ef: fd:d8:4d:94:a9:3c:e3:e9:4d:94:61:90:43:2e:a0: c0:b8:49:84:c9:8e:4a:b9:00:35:72:84:66:00:e2: 28:a4:34:16:5a:96:b8:a2:53:0f:a8:50:40:dd:d9: 94:00:b0:d5:78:33:f8:97:df:1e:01:6b:5c:1e:f9: 1d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B6:F6:B4:9A:3B:EA:84:1A:FB:0B:70:DF:D4:5C:13:09:6B:9D:73 X509v3 Authority Key Identifier: keyid:B0:B5:6D:10:CC:AD:9D:69:C0:18:56:BE:0A:FA:A1:7E:C6:82:AC:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/Hbb2tJo76oQa-wtw39RcEwlrnXM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.227.0/24 158.94.216.0/24 176.97.219.0/24 217.11.164.0/23 IPv6: 2a01:f900::/29 Signature Algorithm: sha256WithRSAEncryption 40:d7:a6:bd:52:0c:62:ce:21:87:72:9b:0e:52:48:46:0c:c9: f0:f4:c9:f2:74:06:d5:e5:f1:32:72:6d:43:21:b2:d3:2c:10: 9c:ff:16:80:3c:f8:62:02:c1:8b:4f:ba:f5:91:e7:3a:57:4c: 49:f8:55:b9:9e:a6:3d:78:66:16:6c:63:b1:ee:6b:8f:03:d8: a3:21:ce:51:5a:79:7d:3c:61:14:45:a5:bd:2a:a2:f4:ca:cf: 72:a0:53:b9:70:d7:4d:14:2f:18:18:61:06:c6:6b:a7:61:02: 05:a4:c2:2d:c9:ce:b5:42:24:a6:22:52:32:8f:ab:9d:4d:74: 02:7a:bf:8f:7f:15:d7:e9:75:b5:88:94:86:71:c9:3d:10:0b: 85:11:3f:7b:a5:46:e3:aa:79:c7:07:fc:21:64:a6:21:3a:b4: e3:3d:d3:70:3e:35:d8:7d:a7:85:86:3e:bc:f6:92:8e:f8:37: 88:cc:35:18:87:e4:ce:80:77:30:93:05:22:b1:ec:f6:31:e6: bb:7c:74:4d:cb:bf:95:31:45:21:26:1a:79:ec:ea:b9:1e:27: 20:fa:55:79:03:9a:88:9d:56:65:d0:0b:e5:0f:f0:0d:64:a6: d0:2c:c7:69:91:09:42:56:ab:84:17:64:1c:57:d5:b5:14:eb: 5b:97:7a:30 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZvu4P+Ink4GzB70nrPJRG/4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYjU2ZDEwY2NhZDlkNjljMDE4NTZiZTBhZmFhMTdlYzY4 MmFjYmYwHhcNMjYwMTI0MDcyMTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZGI2ZjZiNDlhM2JlYTg0MWFmYjBiNzBkZmQ0NWMxMzA5NmI5ZDczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMnXu5OaQmVxVvZrnlY6qV9A1LFI be4pcJ6sscZ4EmlfW4EY4eYOTlTPb0RGArijRATthKKeUgKc2SAtel3tp78uXjt0 RBnvue803KXcEd9mG/ni5DqvdEo6noxA40yaV1yIvRBk8Nm3HWC9YniMWg97gRb2 rT9B1BlpbNS/MIG1tcQ9A/aeXfd2b2ZDEidIMxr2BVjayDIsRANz2waLWeP2XgRg sT1JItG9eSFtAspy7JnxAJ/zpUMY4ree0i5ZKu/92E2UqTzj6U2UYZBDLqDAuEmE yY5KuQA1coRmAOIopDQWWpa4olMPqFBA3dmUALDVeDP4l98eAWtcHvkdhQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFB229rSaO+qEGvsLcN/UXBMJa51zMB8GA1UdIwQY MBaAFLC1bRDMrZ1pwBhWvgr6oX7Ggqy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0xWdEVNeXRuV25BR0ZhLUN2cWhmc2FDckw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC82OTQwOWUtMWVjNC00ODlkLWI2MWYt YTE5Y2M4YTc2ZDA0LzEvSGJiMnRKbzc2b1FhLXd0dzM5UmNFd2xyblhNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC82OTQwOWUtMWVjNC00ODlkLWI2MWYtYTE5Y2M4YTc2ZDA0 LzEvc0xWdEVNeXRuV25BR0ZhLUN2cWhmc2FDckw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAW+TjAwQA nl7YAwQAsGHbAwQB2QukMA0EAgACMAcDBQMqAfkAMA0GCSqGSIb3DQEBCwUAA4IB AQBA16a9UgxiziGHcpsOUkhGDMnw9MnydAbV5fEycm1DIbLTLBCc/xaAPPhiAsGL T7r1kec6V0xJ+FW5nqY9eGYWbGOx7muPA9ijIc5RWnl9PGEURaW9KqL0ys9yoFO5 cNdNFC8YGGEGxmunYQIFpMItyc61QiSmIlIyj6udTXQCer+PfxXX6XW1iJSGcck9 EAuFET97pUbjqnnHB/whZKYhOrTjPdNwPjXYfaeFhj689pKO+DeIzDUYh+TOgHcw kwUisez2Mea7fHRNy7+VMUUhJhp57Oq5Hicg+lV5A5qInVZl0AvlD/ANZKbQLMdp kQlCVquEF2QcV9W1FOtbl3ow -----END CERTIFICATE-----Generated at Sun Jan 25 17:41:30 2026 by rpki-client