This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Wd2HG9vw54B6fFGiEWpHfgIuwKg.roa File: Wd2HG9vw54B6fFGiEWpHfgIuwKg.roa (raw, json) Hash identifier: c3u/2R1YJ36H2KewjiGig/cAIg8E7gU6vRftto9iWFY= Subject key identifier: 59:DD:87:1B:DB:F0:E7:80:7A:7C:51:A2:11:6A:47:7E:02:2E:C0:A8 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019BEBEDD36400D66C56F578A35FA979D7C4 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Wd2HG9vw54B6fFGiEWpHfgIuwKg.roa Signing time: Fri 23 Jan 2026 17:36:30 +0000 ROA not before: Fri 23 Jan 2026 17:36:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216127 IP address blocks: 77.239.96.0/22 maxlen: 24 144.31.96.0/22 maxlen: 24 144.31.180.0/22 maxlen: 24 144.31.200.0/23 maxlen: 24 144.31.204.0/23 maxlen: 24 144.31.250.0/23 maxlen: 24 150.241.90.0/23 maxlen: 24 185.184.120.0/24 maxlen: 24 185.184.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:eb:ed:d3:64:00:d6:6c:56:f5:78:a3:5f:a9:79:d7:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 23 17:36:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59dd871bdbf0e7807a7c51a2116a477e022ec0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a8:c5:76:b3:f0:27:9d:22:8f:ff:7b:ef:2b: e4:3c:9a:a1:65:73:e1:08:f8:c0:b7:dd:e3:07:9d: 0d:1e:85:20:09:fe:fc:f2:3e:23:bb:b3:aa:8d:a0: f9:7b:34:92:0f:4b:71:55:5e:95:45:48:09:39:e0: 1e:76:df:cd:79:b6:a9:5d:4d:3c:6d:91:30:25:05: 36:55:b8:d0:85:f8:92:73:9c:cd:b9:00:6c:36:64: 2b:c3:b5:51:72:c6:e0:1c:3e:17:d0:05:1f:17:fb: 4b:92:69:ff:56:3c:a6:6d:4d:74:35:f9:f8:a6:2c: 5e:ed:ca:84:e1:bb:f5:a8:75:ca:98:07:38:7a:49: 25:13:37:9c:21:38:02:14:90:4e:d0:90:2a:d6:31: 2d:75:0a:46:26:34:b0:63:92:61:3b:6d:c1:c2:5c: fc:91:4e:bd:85:a6:e9:29:bc:6d:73:b7:11:93:15: bd:97:9a:6d:98:2e:d2:82:35:f8:6f:3e:a3:d3:1a: 47:27:2c:0b:d9:55:cb:78:0f:f5:67:de:39:c2:96: ef:6e:cc:d3:74:0d:a9:91:ab:54:6b:1b:80:82:32: 31:b7:80:a9:85:81:87:21:0c:f8:00:31:81:3d:df: d4:87:3f:a5:5f:1a:74:78:a9:63:d1:16:b3:7e:6b: 75:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DD:87:1B:DB:F0:E7:80:7A:7C:51:A2:11:6A:47:7E:02:2E:C0:A8 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/Wd2HG9vw54B6fFGiEWpHfgIuwKg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.239.96.0/22 144.31.96.0/22 144.31.180.0/22 144.31.200.0/23 144.31.204.0/23 144.31.250.0/23 150.241.90.0/23 185.184.120.0/23 Signature Algorithm: sha256WithRSAEncryption 75:ab:06:f4:37:3e:52:f3:02:e6:8b:d1:c1:79:66:e2:2a:bb: 53:83:5e:c2:1b:b3:70:24:39:82:a4:7b:4a:dc:8c:bf:d9:e6: 43:b6:29:d2:d6:ee:89:44:92:c2:29:82:5f:e2:24:44:0d:c9: 41:af:03:81:c4:bc:6c:3d:e7:50:0d:9a:bd:76:12:36:bf:b4: af:ff:d8:33:46:08:61:31:44:6b:02:c8:d6:64:45:6c:e1:c4: 4f:34:84:1b:bc:89:03:60:84:19:f7:40:48:59:c3:9c:62:79: 05:bb:05:6f:86:38:4b:54:f6:8d:9c:7e:a9:b2:f6:fd:b8:40: 80:d8:fd:b3:2a:a4:cb:a9:4c:d6:da:f7:13:df:78:c0:fc:c7: 25:7a:54:41:6e:6e:b0:ea:24:5b:36:c1:00:10:af:9c:bf:23: 97:66:c8:10:9d:36:9c:96:8a:86:25:b6:bb:f3:5d:ac:50:f2: 38:8c:16:2e:b9:08:0a:75:24:14:87:50:f6:50:88:36:af:9c: 87:8d:d0:87:d4:0a:da:cb:2c:16:59:31:9f:71:48:76:97:4f: 7b:f8:ee:a8:a0:70:12:74:dd:b3:53:6c:ee:ea:cb:66:b0:00: 50:75:3b:31:bd:18:65:9b:7a:d2:6a:19:e7:64:51:87:7c:85: cf:50:08:2e -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZvr7dNkANZsVvV4o1+pedfEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTIzMTczNjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWRkODcxYmRiZjBlNzgwN2E3YzUxYTIxMTZhNDc3ZTAyMmVjMGE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqjFdrPwJ50ij/977yvkPJqhZXPh CPjAt93jB50NHoUgCf788j4ju7OqjaD5ezSSD0txVV6VRUgJOeAedt/NebapXU08 bZEwJQU2VbjQhfiSc5zNuQBsNmQrw7VRcsbgHD4X0AUfF/tLkmn/VjymbU10Nfn4 pixe7cqE4bv1qHXKmAc4ekklEzecITgCFJBO0JAq1jEtdQpGJjSwY5JhO23Bwlz8 kU69habpKbxtc7cRkxW9l5ptmC7SgjX4bz6j0xpHJywL2VXLeA/1Z945wpbvbszT dA2pkatUaxuAgjIxt4CphYGHIQz4ADGBPd/Uhz+lXxp0eKlj0Razfmt17wIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFFndhxvb8OeAenxRohFqR34CLsCoMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvV2QySEc5dnc1NEI2ZkZHaUVXcEhmZ0l1d0tnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCTe9gAwQC kB9gAwQCkB+0AwQBkB/IAwQBkB/MAwQBkB/6AwQBlvFaAwQBubh4MA0GCSqGSIb3 DQEBCwUAA4IBAQB1qwb0Nz5S8wLmi9HBeWbiKrtTg17CG7NwJDmCpHtK3Iy/2eZD tinS1u6JRJLCKYJf4iREDclBrwOBxLxsPedQDZq9dhI2v7Sv/9gzRghhMURrAsjW ZEVs4cRPNIQbvIkDYIQZ90BIWcOcYnkFuwVvhjhLVPaNnH6psvb9uECA2P2zKqTL qUzW2vcT33jA/MclelRBbm6w6iRbNsEAEK+cvyOXZsgQnTacloqGJba7812sUPI4 jBYuuQgKdSQUh1D2UIg2r5yHjdCH1ArayywWWTGfcUh2l097+O6ooHASdN2zU2zu 6stmsABQdTsxvRhlm3rSahnnZFGHfIXPUAgu -----END CERTIFICATE-----Generated at Sun Jan 25 10:20:53 2026 by rpki-client