This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/710934-304b-4f5f-950e-12e8276fdac4/1/hnzz_PU7efQx6H153s8gnlp79IY.roa File: hnzz_PU7efQx6H153s8gnlp79IY.roa (raw, json) Hash identifier: n+Gty9V7GKTlH1GHsjEfP3vQhmL0KYOhTaCWQIcvZc8= Subject key identifier: 86:7C:F3:FC:F5:3B:79:F4:31:E8:7D:79:DE:CF:20:9E:5A:7B:F4:86 Certificate issuer: /CN=987277fc47d848fa5634ce8031a174fc249fa673 Certificate serial: 019B7E38DF269EC0D1F4C5978EF5AD395C9F Authority key identifier: 98:72:77:FC:47:D8:48:FA:56:34:CE:80:31:A1:74:FC:24:9F:A6:73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHJ3_EfYSPpWNM6AMaF0_CSfpnM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/710934-304b-4f5f-950e-12e8276fdac4/1/hnzz_PU7efQx6H153s8gnlp79IY.roa Signing time: Fri 02 Jan 2026 10:20:14 +0000 ROA not before: Fri 02 Jan 2026 10:20:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203217 IP address blocks: 185.194.8.0/22 maxlen: 24 2a0c:3440::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/710934-304b-4f5f-950e-12e8276fdac4/1/mHJ3_EfYSPpWNM6AMaF0_CSfpnM.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/710934-304b-4f5f-950e-12e8276fdac4/1/mHJ3_EfYSPpWNM6AMaF0_CSfpnM.mft rsync://rpki.ripe.net/repository/DEFAULT/mHJ3_EfYSPpWNM6AMaF0_CSfpnM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:df:26:9e:c0:d1:f4:c5:97:8e:f5:ad:39:5c:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=987277fc47d848fa5634ce8031a174fc249fa673 Validity Not Before: Jan 2 10:20:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=867cf3fcf53b79f431e87d79decf209e5a7bf486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bf:b4:ba:d5:f7:69:42:42:c0:fe:fb:1d:97: 76:75:ee:b6:05:3b:cd:2c:b1:43:ce:fb:e7:42:c3: 44:cc:5e:8a:f4:a9:f0:a1:12:94:d2:b9:49:1c:00: 07:e1:a1:52:c9:ff:ed:d6:fa:e7:9d:01:0b:a4:30: ff:57:7c:98:30:5d:e2:d0:a3:39:cd:ca:79:4a:22: af:db:42:fa:38:5b:87:15:4f:aa:5b:75:3c:16:8c: c4:2a:16:09:51:45:8c:0b:61:2b:70:a3:90:6d:6b: 0f:b8:5b:19:ea:a5:05:52:5f:26:0c:09:b9:60:23: 14:d5:24:fb:4f:f1:c4:8e:05:6b:3b:dd:ec:3d:2c: 28:c7:59:e4:82:08:b5:92:00:1f:e2:85:3c:dc:ce: 92:45:24:4b:ac:4b:cd:01:ee:c5:67:f0:90:2d:bd: 55:59:18:6b:7f:23:40:87:e7:3c:d6:df:a8:fd:40: a0:eb:26:7a:1b:17:2f:5f:28:e9:46:ab:d9:23:b1: c2:34:a4:44:f2:a9:7b:f8:c7:63:ec:52:2d:69:91: 8f:c3:da:f0:a7:9c:8f:2b:83:c2:ca:4a:95:af:b0: e8:98:d3:1f:44:0a:f5:8b:88:a0:59:b8:4f:dc:a3: 3f:d6:81:c5:9d:83:91:8b:8c:82:c3:b3:62:1e:0c: 85:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7C:F3:FC:F5:3B:79:F4:31:E8:7D:79:DE:CF:20:9E:5A:7B:F4:86 X509v3 Authority Key Identifier: keyid:98:72:77:FC:47:D8:48:FA:56:34:CE:80:31:A1:74:FC:24:9F:A6:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHJ3_EfYSPpWNM6AMaF0_CSfpnM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/710934-304b-4f5f-950e-12e8276fdac4/1/hnzz_PU7efQx6H153s8gnlp79IY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/710934-304b-4f5f-950e-12e8276fdac4/1/mHJ3_EfYSPpWNM6AMaF0_CSfpnM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.194.8.0/22 IPv6: 2a0c:3440::/29 Signature Algorithm: sha256WithRSAEncryption 06:a0:4b:40:86:38:d9:c1:a8:39:e3:0e:31:65:bb:d5:8d:22: 54:63:fe:a0:18:c4:bb:88:1c:8f:4b:bf:95:1a:de:60:23:44: c0:4f:09:44:a6:1c:15:37:50:42:57:57:12:9b:b2:38:50:e8: 88:0d:1e:c3:8f:2c:f4:8c:f7:2f:5b:21:79:35:92:35:76:3e: af:20:66:b4:09:63:7e:e7:5d:75:41:6d:41:9a:11:0c:39:ec: a9:30:85:ce:4f:a1:32:4d:c4:8a:05:cc:89:ee:ff:1c:be:dd: fe:37:3f:b5:b2:6c:56:81:21:74:3e:d1:64:bc:06:c4:c0:25: 39:30:3c:ff:fc:42:54:4c:1b:ea:09:06:79:83:e7:e1:55:af: a2:9b:63:f9:3d:31:d9:00:d0:44:9e:7b:b8:5b:d4:77:2a:ac: ed:e6:7d:87:84:b5:d6:54:ce:44:c9:81:bb:74:ce:97:6a:71: f2:3e:72:22:6d:83:4b:29:dc:4e:63:0c:72:c5:3d:bd:b0:2d: 4b:a6:b9:82:22:b2:a0:6a:93:0d:b6:3f:ed:d8:b6:8b:10:1e: ab:83:9c:92:34:c5:0c:39:45:17:73:12:6d:00:38:a0:7e:2a: 7d:74:dc:da:8a:b3:1b:39:e6:7b:9a:2c:59:10:06:67:b4:4e: 53:40:32:47 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+ON8mnsDR9MWXjvWtOVyfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NzI3N2ZjNDdkODQ4ZmE1NjM0Y2U4MDMxYTE3NGZjMjQ5 ZmE2NzMwHhcNMjYwMTAyMTAyMDE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjdjZjNmY2Y1M2I3OWY0MzFlODdkNzlkZWNmMjA5ZTVhN2JmNDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwr+0utX3aUJCwP77HZd2de62BTvN LLFDzvvnQsNEzF6K9KnwoRKU0rlJHAAH4aFSyf/t1vrnnQELpDD/V3yYMF3i0KM5 zcp5SiKv20L6OFuHFU+qW3U8FozEKhYJUUWMC2ErcKOQbWsPuFsZ6qUFUl8mDAm5 YCMU1ST7T/HEjgVrO93sPSwox1nkggi1kgAf4oU83M6SRSRLrEvNAe7FZ/CQLb1V WRhrfyNAh+c81t+o/UCg6yZ6GxcvXyjpRqvZI7HCNKRE8ql7+Mdj7FItaZGPw9rw p5yPK4PCykqVr7DomNMfRAr1i4igWbhP3KM/1oHFnYORi4yCw7NiHgyF1wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIZ88/z1O3n0Meh9ed7PIJ5ae/SGMB8GA1UdIwQY MBaAFJhyd/xH2Ej6VjTOgDGhdPwkn6ZzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUhKM19FZllTUHBXTk02QU1hRjBfQ1NmcG5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi83MTA5MzQtMzA0Yi00ZjVmLTk1MGUt MTJlODI3NmZkYWM0LzEvaG56el9QVTdlZlF4NkgxNTNzOGdubHA3OUlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi83MTA5MzQtMzA0Yi00ZjVmLTk1MGUtMTJlODI3NmZkYWM0 LzEvbUhKM19FZllTUHBXTk02QU1hRjBfQ1NmcG5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucIIMA0E AgACMAcDBQMqDDRAMA0GCSqGSIb3DQEBCwUAA4IBAQAGoEtAhjjZwag54w4xZbvV jSJUY/6gGMS7iByPS7+VGt5gI0TATwlEphwVN1BCV1cSm7I4UOiIDR7Djyz0jPcv WyF5NZI1dj6vIGa0CWN+5111QW1BmhEMOeypMIXOT6EyTcSKBcyJ7v8cvt3+Nz+1 smxWgSF0PtFkvAbEwCU5MDz//EJUTBvqCQZ5g+fhVa+im2P5PTHZANBEnnu4W9R3 Kqzt5n2HhLXWVM5EyYG7dM6XanHyPnIibYNLKdxOYwxyxT29sC1LprmCIrKgapMN tj/t2LaLEB6rg5ySNMUMOUUXcxJtADigfip9dNzairMbOeZ7mixZEAZntE5TQDJH -----END CERTIFICATE-----Generated at Sun Jan 25 15:36:35 2026 by rpki-client