This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/HQ9in2gPerdxnIF0h-xK9cg53u8.roa File: HQ9in2gPerdxnIF0h-xK9cg53u8.roa (raw, json) Hash identifier: XzbavZekgRPq70hu9alvl/LqU0pRSF/b7Peoc0VfuYg= Subject key identifier: 1D:0F:62:9F:68:0F:7A:B7:71:9C:81:74:87:EC:4A:F5:C8:39:DE:EF Certificate issuer: /CN=97eac753379fd22ff6515033f513dc282463ad2d Certificate serial: 019B775892901F672467E5154F8559E607E0 Authority key identifier: 97:EA:C7:53:37:9F:D2:2F:F6:51:50:33:F5:13:DC:28:24:63:AD:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/HQ9in2gPerdxnIF0h-xK9cg53u8.roa Signing time: Thu 01 Jan 2026 02:17:31 +0000 ROA not before: Thu 01 Jan 2026 02:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21211 IP address blocks: 185.184.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/l-rHUzef0i_2UVAz9RPcKCRjrS0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/l-rHUzef0i_2UVAz9RPcKCRjrS0.mft rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:92:90:1f:67:24:67:e5:15:4f:85:59:e6:07:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97eac753379fd22ff6515033f513dc282463ad2d Validity Not Before: Jan 1 02:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d0f629f680f7ab7719c817487ec4af5c839deef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:3c:54:ca:94:2c:2f:52:fa:f8:f6:a2:8a: 92:27:ee:80:29:25:e4:d9:63:38:d4:13:bd:1b:83: 40:1b:be:7c:dc:2d:93:cc:26:94:bc:30:a0:25:a9: f5:87:a9:d3:b7:81:b1:86:61:91:eb:93:c9:42:0c: 87:e7:bd:23:32:72:b3:c8:ff:e3:c3:20:04:32:b9: 5d:2c:0b:65:f1:08:0a:d2:a0:1d:a2:13:f8:30:20: 28:8b:03:28:60:e4:c6:65:59:e8:39:11:5c:33:9f: 31:05:2e:db:42:46:e6:22:1a:ef:53:84:df:76:1d: 29:8e:6d:cb:90:70:ae:43:c5:98:18:b6:0b:aa:91: 2a:94:be:6b:fc:1e:c9:ba:e7:e2:13:15:84:ec:39: 64:4f:59:6c:b2:c8:02:8d:fd:fa:e9:27:ab:11:8b: ce:b3:78:ba:25:6d:bb:de:c7:8a:a1:07:58:ea:ec: de:61:db:d3:ec:86:4d:bd:e6:47:94:3d:a3:bb:74: bb:af:19:c4:75:08:b2:a1:e8:e7:45:86:d0:64:a4: d7:05:d9:9c:3b:a4:1a:87:38:67:1f:d0:c0:82:14: d3:7d:1e:2a:5e:13:0e:e1:6d:40:75:92:0e:aa:a4: 0d:82:ae:8e:1b:1a:4d:e7:88:2f:38:d0:fe:aa:14: 9b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0F:62:9F:68:0F:7A:B7:71:9C:81:74:87:EC:4A:F5:C8:39:DE:EF X509v3 Authority Key Identifier: keyid:97:EA:C7:53:37:9F:D2:2F:F6:51:50:33:F5:13:DC:28:24:63:AD:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-rHUzef0i_2UVAz9RPcKCRjrS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/HQ9in2gPerdxnIF0h-xK9cg53u8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4b08af-67db-42da-a094-ef590c1c8e12/1/l-rHUzef0i_2UVAz9RPcKCRjrS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.184.144.0/22 Signature Algorithm: sha256WithRSAEncryption 23:ee:78:4d:33:2a:e9:1f:32:59:4c:d8:53:48:87:c6:c4:c0: aa:bb:08:f0:d5:3f:89:e7:e6:13:f1:c5:ee:3b:78:39:63:b0: 95:98:29:6a:90:f3:9f:c1:47:85:43:68:91:24:77:c1:f8:bc: 86:f3:a2:0d:82:d6:12:79:9c:6f:05:ed:fb:ba:75:34:02:04: b9:b2:d4:26:b8:c3:02:ec:25:3b:76:c9:aa:f8:91:5a:fc:ff: f2:cc:dd:33:02:2d:91:12:a7:1a:f0:87:32:28:b8:75:2c:f6: 53:d4:43:e4:ba:d8:f8:3c:cb:24:73:ad:cd:d1:a3:58:0b:4d: d4:fa:ce:a9:6d:da:d6:ea:5e:af:b0:92:45:25:74:a5:52:8d: aa:47:88:ba:a8:98:8f:e7:b3:8d:7c:bf:60:e3:47:d7:6f:d5: ee:4b:26:d9:09:0e:b8:4a:69:fe:db:ca:8a:2e:97:1b:d3:f5: 33:48:33:5b:c8:8f:f0:3a:9b:2e:78:94:51:cd:bf:4d:c9:a2: a6:38:5c:63:ad:f8:ad:19:4d:17:99:00:af:f8:5d:b4:01:b8: d7:79:51:31:2d:09:22:c9:6a:e9:cf:7b:e4:39:5f:ed:78:17: 57:9b:36:c6:49:d6:2e:cc:cc:ec:1d:43:a1:dd:b7:97:38:a4: 1d:ba:7a:08 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WJKQH2ckZ+UVT4VZ5gfgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3ZWFjNzUzMzc5ZmQyMmZmNjUxNTAzM2Y1MTNkYzI4MjQ2 M2FkMmQwHhcNMjYwMTAxMDIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDBmNjI5ZjY4MGY3YWI3NzE5YzgxNzQ4N2VjNGFmNWM4MzlkZWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8o8VMqULC9S+vj2ooqSJ+6AKSXk 2WM41BO9G4NAG7583C2TzCaUvDCgJan1h6nTt4GxhmGR65PJQgyH570jMnKzyP/j wyAEMrldLAtl8QgK0qAdohP4MCAoiwMoYOTGZVnoORFcM58xBS7bQkbmIhrvU4Tf dh0pjm3LkHCuQ8WYGLYLqpEqlL5r/B7JuufiExWE7DlkT1lsssgCjf366SerEYvO s3i6JW273seKoQdY6uzeYdvT7IZNveZHlD2ju3S7rxnEdQiyoejnRYbQZKTXBdmc O6QahzhnH9DAghTTfR4qXhMO4W1AdZIOqqQNgq6OGxpN54gvOND+qhSb3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB0PYp9oD3q3cZyBdIfsSvXIOd7vMB8GA1UdIwQY MBaAFJfqx1M3n9Iv9lFQM/UT3CgkY60tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbC1ySFV6ZWYwaV8yVVZBejlSUGNLQ1JqclMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC80YjA4YWYtNjdkYi00MmRhLWEwOTQt ZWY1OTBjMWM4ZTEyLzEvSFE5aW4yZ1BlcmR4bklGMGgteEs5Y2c1M3U4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC80YjA4YWYtNjdkYi00MmRhLWEwOTQtZWY1OTBjMWM4ZTEy LzEvbC1ySFV6ZWYwaV8yVVZBejlSUGNLQ1JqclMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubiQMA0G CSqGSIb3DQEBCwUAA4IBAQAj7nhNMyrpHzJZTNhTSIfGxMCquwjw1T+J5+YT8cXu O3g5Y7CVmClqkPOfwUeFQ2iRJHfB+LyG86INgtYSeZxvBe37unU0AgS5stQmuMMC 7CU7dsmq+JFa/P/yzN0zAi2REqca8IcyKLh1LPZT1EPkutj4PMskc63N0aNYC03U +s6pbdrW6l6vsJJFJXSlUo2qR4i6qJiP57ONfL9g40fXb9XuSybZCQ64Smn+28qK Lpcb0/UzSDNbyI/wOpsueJRRzb9NyaKmOFxjrfitGU0XmQCv+F20AbjXeVExLQki yWrpz3vkOV/teBdXmzbGSdYuzMzsHUOh3beXOKQdunoI -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:23 2026 by rpki-client