This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/HtmUv1MImlT_Q2Ld2vBonJv4FQk.roa File: HtmUv1MImlT_Q2Ld2vBonJv4FQk.roa (raw, json) Hash identifier: rdQWy4NfeGzGEtDfCEAH9I7qgIEMNI8fOB5dq3BSkR0= Subject key identifier: 1E:D9:94:BF:53:08:9A:54:FF:43:62:DD:DA:F0:68:9C:9B:F8:15:09 Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c Certificate serial: 019B7B36185DB2C8D038187BE96FB002EEFF Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/HtmUv1MImlT_Q2Ld2vBonJv4FQk.roa Signing time: Thu 01 Jan 2026 20:18:21 +0000 ROA not before: Thu 01 Jan 2026 20:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214529 IP address blocks: 84.247.29.0/24 maxlen: 24 84.247.55.0/24 maxlen: 24 84.247.56.0/24 maxlen: 24 86.107.31.0/24 maxlen: 24 89.40.77.0/24 maxlen: 24 94.176.128.0/24 maxlen: 24 188.211.27.0/24 maxlen: 24 188.211.30.0/24 maxlen: 24 188.211.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:18:5d:b2:c8:d0:38:18:7b:e9:6f:b0:02:ee:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c Validity Not Before: Jan 1 20:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ed994bf53089a54ff4362dddaf0689c9bf81509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:17:89:43:f5:2e:db:a1:63:7d:75:cd:de:a4: 40:89:db:9c:61:3a:04:7e:1f:d8:f8:f1:14:01:1e: 36:af:5a:0c:8c:cc:12:07:cc:c5:8e:ca:9c:db:32: e2:a7:29:25:9c:5c:48:05:a7:22:8b:23:dd:52:99: f8:08:2f:37:61:30:be:10:95:87:9a:71:94:3d:66: 75:73:83:0c:d3:76:a9:22:84:b0:54:72:2a:89:30: 1d:a7:3a:51:cb:e7:82:86:6c:e6:6c:a6:ce:32:61: fd:e4:9d:75:a8:f6:b0:a8:87:63:38:64:fa:87:6d: 73:79:b5:d0:0e:17:b4:b0:99:b0:b6:3e:5c:0c:00: 24:b5:ed:ef:74:9b:50:ee:dc:1c:7d:79:55:32:d9: 57:b9:e8:cb:92:91:6f:9a:52:92:13:3c:33:60:2f: 05:da:5e:5d:b1:6a:8d:0a:ba:98:0b:1a:c1:d5:2f: 24:ab:2d:c0:3b:7e:a4:24:41:24:9f:21:5c:f7:7b: 5d:a3:fd:40:5e:95:48:80:2b:13:86:0d:7b:89:d1: 57:3d:ef:85:db:fd:d2:8c:55:08:04:21:8c:3c:35: bf:e6:99:7b:cd:be:22:35:27:65:ea:e1:32:69:30: 1d:cc:5e:74:48:c9:61:25:55:e9:af:61:af:3d:a8: 32:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D9:94:BF:53:08:9A:54:FF:43:62:DD:DA:F0:68:9C:9B:F8:15:09 X509v3 Authority Key Identifier: keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/HtmUv1MImlT_Q2Ld2vBonJv4FQk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.247.29.0/24 84.247.55.0-84.247.56.255 86.107.31.0/24 89.40.77.0/24 94.176.128.0/24 188.211.27.0/24 188.211.30.0/23 Signature Algorithm: sha256WithRSAEncryption 64:1d:45:19:74:74:e3:33:d1:76:11:be:8e:20:d8:20:39:84: 94:79:87:cf:45:69:46:17:7c:09:2b:23:68:6a:bb:d3:b6:c8: 0d:98:2d:e5:0b:8c:75:1b:ae:9f:b4:fc:d7:aa:71:f9:33:63: bb:23:67:cb:0e:8f:07:6a:59:7d:de:d2:6e:13:5d:d6:5b:e3: b8:87:b9:56:33:c4:90:c4:ec:44:08:21:57:4c:3d:08:29:b5: dc:da:dd:dd:0c:8b:74:d6:63:2b:b4:06:c7:51:3a:fb:6c:39: 04:1c:cb:0e:e2:93:fc:32:22:cf:83:df:b7:b1:ca:79:3f:6f: 7c:2b:01:4a:9c:c4:4f:3f:82:77:86:20:90:50:2f:6d:36:4b: 9d:ca:e2:3b:7d:66:e6:52:6c:20:b9:68:8a:c2:fd:78:d5:55: 22:cd:63:bf:85:46:98:12:a9:66:c2:6b:48:aa:f3:b0:86:8f: b4:ea:e1:2f:6f:61:a2:4a:73:c4:8f:ad:ac:23:e9:70:ed:02: 31:4a:6b:d1:7c:02:d6:c5:a6:5a:74:dd:0e:b2:81:fd:0b:54: a8:3f:82:0b:85:2c:b9:ae:52:1a:43:65:49:e3:0d:34:7c:0b: a5:a2:f7:9d:b5:f1:49:3b:32:e0:53:af:95:10:da:fd:fb:bb: be:9e:2e:d4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt7NhhdssjQOBh76W+wAu7/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkZjEzMmRmMTNlNGJlNTNkODI1MGM4YzQ4NDIwMjY0ZWVm NmMxNGMwHhcNMjYwMTAxMjAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWQ5OTRiZjUzMDg5YTU0ZmY0MzYyZGRkYWYwNjg5YzliZjgxNTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3heJQ/Uu26FjfXXN3qRAiducYToE fh/Y+PEUAR42r1oMjMwSB8zFjsqc2zLipyklnFxIBaciiyPdUpn4CC83YTC+EJWH mnGUPWZ1c4MM03apIoSwVHIqiTAdpzpRy+eChmzmbKbOMmH95J11qPawqIdjOGT6 h21zebXQDhe0sJmwtj5cDAAkte3vdJtQ7twcfXlVMtlXuejLkpFvmlKSEzwzYC8F 2l5dsWqNCrqYCxrB1S8kqy3AO36kJEEknyFc93tdo/1AXpVIgCsThg17idFXPe+F 2/3SjFUIBCGMPDW/5pl7zb4iNSdl6uEyaTAdzF50SMlhJVXpr2GvPagytQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFB7ZlL9TCJpU/0Ni3drwaJyb+BUJMB8GA1UdIwQY MBaAFH3xMt8T5L5T2CUMjEhCAmTu9sFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYt OTc3ODY3NGVkYzk3LzEvSHRtVXYxTUltbFRfUTJMZDJ2Qm9uSnY0RlFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYtOTc3ODY3NGVkYzk3 LzEvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQAVPcdMAwD BABU9zcDBABU9zgDBABWax8DBABZKE0DBABesIADBAC80xsDBAG80x4wDQYJKoZI hvcNAQELBQADggEBAGQdRRl0dOMz0XYRvo4g2CA5hJR5h89FaUYXfAkrI2hqu9O2 yA2YLeULjHUbrp+0/NeqcfkzY7sjZ8sOjwdqWX3e0m4TXdZb47iHuVYzxJDE7EQI IVdMPQgptdza3d0Mi3TWYyu0BsdROvtsOQQcyw7ik/wyIs+D37exynk/b3wrAUqc xE8/gneGIJBQL202S53K4jt9ZuZSbCC5aIrC/XjVVSLNY7+FRpgSqWbCa0iq87CG j7Tq4S9vYaJKc8SPrawj6XDtAjFKa9F8AtbFplp03Q6ygf0LVKg/gguFLLmuUhpD ZUnjDTR8C6Wi95218Uk7MuBTr5UQ2v37u76eLtQ= -----END CERTIFICATE-----Generated at Sun Jan 25 21:19:40 2026 by rpki-client