This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/hs1mGbyytLZUcmmoRa1vmUrBtV0.roa File: hs1mGbyytLZUcmmoRa1vmUrBtV0.roa (raw, json) Hash identifier: Q7jJNRLIE/XZCLjYqKH3txSs09Wat8XFnoEvxouvOI8= Subject key identifier: 86:CD:66:19:BC:B2:B4:B6:54:72:69:A8:45:AD:6F:99:4A:C1:B5:5D Certificate issuer: /CN=2e0e338d73e758468456632f5bcaae07af0d8731 Certificate serial: 019B7F83C7E64F2C8F55ADC35FA906115706 Authority key identifier: 2E:0E:33:8D:73:E7:58:46:84:56:63:2F:5B:CA:AE:07:AF:0D:87:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lg4zjXPnWEaEVmMvW8quB68NhzE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/hs1mGbyytLZUcmmoRa1vmUrBtV0.roa Signing time: Fri 02 Jan 2026 16:21:41 +0000 ROA not before: Fri 02 Jan 2026 16:21:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13136 IP address blocks: 80.85.128.0/21 maxlen: 21 2a02:13d0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/Lg4zjXPnWEaEVmMvW8quB68NhzE.crl rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/Lg4zjXPnWEaEVmMvW8quB68NhzE.mft rsync://rpki.ripe.net/repository/DEFAULT/Lg4zjXPnWEaEVmMvW8quB68NhzE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:c7:e6:4f:2c:8f:55:ad:c3:5f:a9:06:11:57:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e0e338d73e758468456632f5bcaae07af0d8731 Validity Not Before: Jan 2 16:21:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86cd6619bcb2b4b6547269a845ad6f994ac1b55d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6a:8c:22:ac:21:17:64:28:ea:f1:55:a8:68: 04:3c:a4:08:a7:68:e1:67:9d:a6:d0:a8:cf:9d:c4: d1:5e:66:57:14:c9:82:58:3e:e0:7f:8b:c1:6d:ef: 5b:cc:b3:11:a8:fe:4e:f7:33:05:1a:b6:4b:6d:69: c3:ec:a5:ee:25:14:40:59:eb:c8:0b:da:04:d6:fc: 88:09:24:1b:ee:05:b7:5f:5a:d9:8e:73:69:3c:f2: b9:2d:7f:f4:b2:59:c0:c5:5f:78:ce:05:45:cc:17: 0b:50:0a:a3:ae:b1:a2:de:48:6e:e0:3e:f9:57:94: 24:26:71:b8:56:7c:24:25:12:51:cc:27:2f:84:b1: c8:8e:c5:db:2c:47:28:36:18:40:0d:ef:ac:99:95: de:b2:31:db:14:0c:da:1a:9b:54:2c:71:5a:44:64: d3:fc:c0:ff:39:94:0a:85:cf:91:96:81:a3:be:ab: 7f:bf:1f:25:d8:ed:b9:94:36:be:52:2d:f6:f8:0c: f1:d4:8f:a2:79:6e:9e:f8:1b:cd:e2:33:b0:80:ef: 1b:22:0f:9d:bf:62:b9:87:b4:ad:f7:13:38:be:04: aa:b3:f1:e4:a8:a8:73:5e:1a:86:30:b9:3e:c9:e9: d2:61:ed:67:35:b3:66:d0:c7:54:ab:08:20:e6:74: 6e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CD:66:19:BC:B2:B4:B6:54:72:69:A8:45:AD:6F:99:4A:C1:B5:5D X509v3 Authority Key Identifier: keyid:2E:0E:33:8D:73:E7:58:46:84:56:63:2F:5B:CA:AE:07:AF:0D:87:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lg4zjXPnWEaEVmMvW8quB68NhzE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/hs1mGbyytLZUcmmoRa1vmUrBtV0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/Lg4zjXPnWEaEVmMvW8quB68NhzE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.85.128.0/21 IPv6: 2a02:13d0::/29 Signature Algorithm: sha256WithRSAEncryption 38:17:f1:9c:0d:e4:00:52:21:7e:32:de:13:47:22:80:c8:fa: b3:93:e8:62:3d:aa:83:f8:91:81:b5:c3:37:e3:ae:fd:17:6a: c8:a0:74:1b:27:f1:3c:e6:0d:15:2e:d4:f6:2b:0c:d7:39:bc: 85:c6:fb:5d:b4:7f:89:c2:64:c6:83:37:2f:c4:b1:9b:e0:f2: 58:9e:a7:89:c0:90:0e:7b:23:1f:63:3b:73:8d:92:61:ba:11: fc:ee:59:a3:d9:3c:10:15:47:14:a3:80:63:d8:90:db:c6:1f: e2:cc:95:b7:22:16:06:15:19:86:b4:78:84:33:81:65:b4:68: 1d:df:fe:fb:34:7a:31:be:f5:0c:b4:b6:d5:c0:19:f0:73:ad: 30:ee:86:2d:7e:38:e5:9d:79:cd:89:62:e1:b2:c9:41:f1:06: 58:10:90:d9:6d:36:09:4d:9d:f9:fa:3a:0b:a0:07:72:dc:3b: 73:39:e2:7b:18:b9:5e:32:37:b1:0a:1b:59:e9:42:db:60:13: db:70:a7:8f:ef:06:9d:bc:fe:ea:32:5d:4f:c0:51:e9:48:a4: 22:4f:46:22:ae:53:96:c2:9a:79:33:5f:7a:9a:75:05:dd:4b: d5:bf:a5:13:bb:66:d8:7f:c0:01:a4:a5:0f:0e:d6:8d:68:a4: 2a:48:50:27 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/g8fmTyyPVa3DX6kGEVcGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlMGUzMzhkNzNlNzU4NDY4NDU2NjMyZjViY2FhZTA3YWYw ZDg3MzEwHhcNMjYwMTAyMTYyMTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmNkNjYxOWJjYjJiNGI2NTQ3MjY5YTg0NWFkNmY5OTRhYzFiNTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2qMIqwhF2Qo6vFVqGgEPKQIp2jh Z52m0KjPncTRXmZXFMmCWD7gf4vBbe9bzLMRqP5O9zMFGrZLbWnD7KXuJRRAWevI C9oE1vyICSQb7gW3X1rZjnNpPPK5LX/0slnAxV94zgVFzBcLUAqjrrGi3khu4D75 V5QkJnG4VnwkJRJRzCcvhLHIjsXbLEcoNhhADe+smZXesjHbFAzaGptULHFaRGTT /MD/OZQKhc+RloGjvqt/vx8l2O25lDa+Ui32+Azx1I+ieW6e+BvN4jOwgO8bIg+d v2K5h7St9xM4vgSqs/HkqKhzXhqGMLk+yenSYe1nNbNm0MdUqwgg5nRufQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIbNZhm8srS2VHJpqEWtb5lKwbVdMB8GA1UdIwQY MBaAFC4OM41z51hGhFZjL1vKrgevDYcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGc0empYUG5XRWFFVm1Ndlc4cXVCNjhOaHpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy84MTExMDgtZThmNy00N2FmLWJjOGIt YTViNzgzMWE4Y2UxLzEvaHMxbUdieXl0TFpVY21tb1JhMXZtVXJCdFYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy84MTExMDgtZThmNy00N2FmLWJjOGItYTViNzgzMWE4Y2Ux LzEvTGc0empYUG5XRWFFVm1Ndlc4cXVCNjhOaHpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDUFWAMA0E AgACMAcDBQMqAhPQMA0GCSqGSIb3DQEBCwUAA4IBAQA4F/GcDeQAUiF+Mt4TRyKA yPqzk+hiPaqD+JGBtcM34679F2rIoHQbJ/E85g0VLtT2KwzXObyFxvtdtH+JwmTG gzcvxLGb4PJYnqeJwJAOeyMfYztzjZJhuhH87lmj2TwQFUcUo4Bj2JDbxh/izJW3 IhYGFRmGtHiEM4FltGgd3/77NHoxvvUMtLbVwBnwc60w7oYtfjjlnXnNiWLhsslB 8QZYEJDZbTYJTZ35+joLoAdy3DtzOeJ7GLleMjexChtZ6ULbYBPbcKeP7wadvP7q Ml1PwFHpSKQiT0YirlOWwpp5M196mnUF3UvVv6UTu2bYf8ABpKUPDtaNaKQqSFAn -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:01 2026 by rpki-client