This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HWfmde8r-hBU4VFAGONtTL14hGg.roa File: HWfmde8r-hBU4VFAGONtTL14hGg.roa (raw, json) Hash identifier: vAjf1+MJUK18m7TXg2jLeb9Pd+yupxd5+JR7U6KUhuw= Subject key identifier: 1D:67:E6:75:EF:2B:FA:10:54:E1:51:40:18:E3:6D:4C:BD:78:84:68 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783493EBFD199359D1B9B5F94B9701C2 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HWfmde8r-hBU4VFAGONtTL14hGg.roa Signing time: Thu 01 Jan 2026 06:17:50 +0000 ROA not before: Thu 01 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211353 IP address blocks: 193.182.243.0/24 maxlen: 24 193.182.244.0/24 maxlen: 24 193.183.85.0/24 maxlen: 24 194.14.27.0/24 maxlen: 24 194.103.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:93:eb:fd:19:93:59:d1:b9:b5:f9:4b:97:01:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d67e675ef2bfa1054e1514018e36d4cbd788468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f5:dd:16:1a:81:c7:38:d5:64:1a:89:0a:a2: 92:26:d6:fe:67:e6:98:a1:b5:e5:03:29:60:d2:71: 0f:fe:3e:f0:be:12:b8:67:55:01:c7:df:76:d1:da: 34:c6:f1:a1:ea:1a:34:e4:32:bd:97:02:53:d7:66: c6:c0:55:00:be:16:a8:59:ce:a2:52:70:2b:59:da: a0:69:ab:5b:51:67:4d:9b:15:4a:a3:ca:d6:42:06: 13:b1:8d:a2:b0:87:97:ac:0b:05:22:dc:a3:90:48: cb:2d:3e:e6:dd:fd:18:ac:bf:9c:9b:c3:78:88:d7: 93:85:a7:ef:d1:dc:a4:4c:f6:36:1f:90:f2:9b:56: 7e:b9:76:64:a3:b0:34:fa:8d:59:1d:f2:fe:fe:35: 82:24:cd:a5:76:f3:86:78:ee:44:c2:17:03:da:56: 5c:f9:c2:34:88:9a:85:8c:ec:b8:9d:2a:06:f7:fe: 66:58:b2:15:5d:71:29:8b:b7:3f:93:3b:80:f3:55: 00:fc:c4:63:4e:56:61:c0:ac:0f:8e:60:2e:3f:fb: c8:a1:64:37:59:8f:6a:d3:f5:62:ea:f7:83:c9:79: 55:cd:a5:3e:fc:47:c9:e5:f5:5e:88:45:11:0d:f8: 19:c2:72:18:46:43:8f:5f:40:0d:6b:05:b9:3d:c9: 84:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:67:E6:75:EF:2B:FA:10:54:E1:51:40:18:E3:6D:4C:BD:78:84:68 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HWfmde8r-hBU4VFAGONtTL14hGg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.182.243.0-193.182.244.255 193.183.85.0/24 194.14.27.0/24 194.103.46.0/24 Signature Algorithm: sha256WithRSAEncryption be:b2:02:8a:cd:79:32:7e:a3:f0:5a:d8:ef:e3:c7:72:a3:b6: 52:0c:5b:a0:0e:ea:0a:9f:1c:12:be:e8:32:96:96:b1:d4:91: 35:16:41:12:c8:e2:9d:32:b6:ef:db:52:9f:a2:b3:95:44:77: e0:0d:a6:59:ec:64:53:7f:b4:18:ce:e5:34:13:0d:df:43:78: fd:f2:4d:4f:68:70:30:fd:0a:34:07:90:b7:fd:4a:16:a3:3c: 40:a7:86:93:79:14:70:4b:15:65:2a:82:86:a3:97:98:a4:9c: be:9d:a9:b8:84:5a:68:bb:7d:27:70:f8:b7:1a:4a:4c:93:08: 51:91:92:67:1e:1c:69:67:e6:61:a8:c7:88:66:e4:76:2c:a2: 86:4f:7a:47:a2:f6:83:e0:14:d6:0b:0f:67:1d:b3:6b:47:b0: 02:92:f5:74:b7:14:df:15:70:ae:d3:a3:44:2a:22:b3:9e:30: 2e:be:ad:f6:18:33:be:ee:39:8f:0c:75:47:88:1e:b6:5e:60: 6f:92:33:fc:bb:c6:63:31:a2:fc:92:a1:49:ca:e0:da:df:4a: 6c:76:6c:fa:40:a3:01:03:29:60:60:5a:c1:2d:cf:e9:7e:f6: b7:f8:f8:c6:43:97:24:93:9b:fa:e9:a6:66:d5:68:46:b2:a7: 66:af:da:08 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt4NJPr/RmTWdG5tflLlwHCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDY3ZTY3NWVmMmJmYTEwNTRlMTUxNDAxOGUzNmQ0Y2JkNzg4NDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPXdFhqBxzjVZBqJCqKSJtb+Z+aY obXlAylg0nEP/j7wvhK4Z1UBx9920do0xvGh6ho05DK9lwJT12bGwFUAvhaoWc6i UnArWdqgaatbUWdNmxVKo8rWQgYTsY2isIeXrAsFItyjkEjLLT7m3f0YrL+cm8N4 iNeThafv0dykTPY2H5Dym1Z+uXZko7A0+o1ZHfL+/jWCJM2ldvOGeO5EwhcD2lZc +cI0iJqFjOy4nSoG9/5mWLIVXXEpi7c/kzuA81UA/MRjTlZhwKwPjmAuP/vIoWQ3 WY9q0/Vi6veDyXlVzaU+/EfJ5fVeiEURDfgZwnIYRkOPX0ANawW5PcmESQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFB1n5nXvK/oQVOFRQBjjbUy9eIRoMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvSFdmbWRlOHItaEJVNFZGQUdPTnRUTDE0aEdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBADBtvMD BADBtvQDBADBt1UDBADCDhsDBADCZy4wDQYJKoZIhvcNAQELBQADggEBAL6yAorN eTJ+o/Ba2O/jx3KjtlIMW6AO6gqfHBK+6DKWlrHUkTUWQRLI4p0ytu/bUp+is5VE d+ANplnsZFN/tBjO5TQTDd9DeP3yTU9ocDD9CjQHkLf9ShajPECnhpN5FHBLFWUq goajl5iknL6dqbiEWmi7fSdw+LcaSkyTCFGRkmceHGln5mGox4hm5HYsooZPekei 9oPgFNYLD2cds2tHsAKS9XS3FN8VcK7To0QqIrOeMC6+rfYYM77uOY8MdUeIHrZe YG+SM/y7xmMxovySoUnK4NrfSmx2bPpAowEDKWBgWsEtz+l+9rf4+MZDlySTm/rp pmbVaEayp2av2gg= -----END CERTIFICATE-----Generated at Sun Jan 25 11:01:57 2026 by rpki-client