This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HatkGo__l7-ssnaAxmvs2jWXPH0.roa File: HatkGo__l7-ssnaAxmvs2jWXPH0.roa (raw, json) Hash identifier: LkDHLrHwlBl9bVibKzjeiHfiOzhqQ0RaUOV5OAcCehY= Subject key identifier: 1D:AB:64:1A:8F:FF:97:BF:AC:B2:76:80:C6:6B:EC:DA:35:97:3C:7D Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C130BAAEAFFA9BFEB50898EB5A96332 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HatkGo__l7-ssnaAxmvs2jWXPH0.roa Signing time: Fri 02 Jan 2026 00:19:41 +0000 ROA not before: Fri 02 Jan 2026 00:19:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215375 IP address blocks: 5.83.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:0b:aa:ea:ff:a9:bf:eb:50:89:8e:b5:a9:63:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1dab641a8fff97bfacb27680c66becda35973c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9a:6f:e6:7d:82:45:ae:ec:f7:aa:80:01:86: 29:45:e7:14:78:96:ff:bc:36:cc:84:2f:0d:3e:e4: b9:8a:77:75:7e:b2:ff:30:ff:32:62:8f:df:0a:ea: 12:ec:c7:48:ee:d6:e0:7a:04:b2:81:92:76:7a:1f: 51:16:1d:7e:67:57:76:8c:80:8e:df:dd:ca:bd:76: 2d:6e:d8:ce:ee:d6:d2:2f:03:4a:a0:09:e9:2c:7e: 5d:aa:35:48:01:d2:bb:b4:ca:4e:51:e2:1c:7c:b4: 73:63:26:19:cb:1d:13:80:b9:5d:67:bc:02:37:d9: b9:7c:95:13:e6:49:e4:f6:3e:c4:cf:7c:67:d0:87: 30:6e:b2:aa:cc:42:5b:92:86:9b:94:e7:25:60:86: c4:d7:58:d8:2a:34:70:b4:8a:d9:a9:b8:9e:42:41: d1:31:0d:34:df:af:de:58:bc:4c:a7:6b:bb:7d:6e: 50:57:38:91:5a:9d:d5:dd:e9:59:3c:06:b0:52:16: 1e:ee:51:35:ff:52:7d:2e:0e:49:82:d9:68:a4:4d: e6:af:5c:6a:cf:0d:e7:25:cd:8f:d5:6e:1f:33:7b: 58:d8:e8:9a:cc:cd:3f:51:0f:74:32:1c:9c:96:0a: 0e:a8:21:91:f9:d9:87:f8:3e:ba:73:dd:76:9a:83: 56:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AB:64:1A:8F:FF:97:BF:AC:B2:76:80:C6:6B:EC:DA:35:97:3C:7D X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HatkGo__l7-ssnaAxmvs2jWXPH0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.154.0/24 Signature Algorithm: sha256WithRSAEncryption 83:5e:37:0b:dd:a4:06:ae:51:9d:44:77:37:82:7a:3b:c3:2d: 34:c3:fa:27:a5:07:00:c0:11:7e:75:c9:43:00:14:f1:d7:73: ae:f3:36:ac:77:ef:51:ac:7e:8d:25:25:2d:b9:79:95:80:74: fc:ee:45:e6:8e:ca:cd:be:38:37:15:33:d6:49:ab:9a:5a:d8: 22:77:a4:2a:ba:e0:ff:75:66:cc:b5:61:6f:27:a0:3f:d9:a6: 51:02:63:01:c9:b5:26:41:7e:51:ad:06:94:5a:33:90:7c:a4: 37:fa:a4:76:0b:82:f9:2a:f2:5f:b2:6d:65:c7:c5:55:13:e3: b9:1a:89:f2:08:0b:33:5a:54:2a:59:45:7c:33:41:e4:73:d3: cb:30:d7:87:45:b5:3c:e3:93:92:eb:45:6a:bf:01:0e:20:d0: 14:9d:aa:c5:98:80:94:ed:2e:f5:cd:7e:97:8e:68:87:ba:fc: 80:e6:70:7e:4e:63:58:04:54:9a:33:84:96:d6:78:df:df:03: 0e:8f:73:0b:26:6f:e2:6e:36:06:e1:ed:38:0e:aa:cf:d0:af: 13:5f:5f:03:68:f9:0a:2f:d6:dd:6c:03:cd:d3:0f:22:79:a4: 48:de:97:a9:35:f8:44:ed:e2:dd:5c:43:f8:9f:47:82:4a:2c: 77:ad:33:f7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ewuq6v+pv+tQiY61qWMyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZGFiNjQxYThmZmY5N2JmYWNiMjc2ODBjNjZiZWNkYTM1OTczYzdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZpv5n2CRa7s96qAAYYpRecUeJb/ vDbMhC8NPuS5ind1frL/MP8yYo/fCuoS7MdI7tbgegSygZJ2eh9RFh1+Z1d2jICO 393KvXYtbtjO7tbSLwNKoAnpLH5dqjVIAdK7tMpOUeIcfLRzYyYZyx0TgLldZ7wC N9m5fJUT5knk9j7Ez3xn0IcwbrKqzEJbkoablOclYIbE11jYKjRwtIrZqbieQkHR MQ0036/eWLxMp2u7fW5QVziRWp3V3elZPAawUhYe7lE1/1J9Lg5JgtlopE3mr1xq zw3nJc2P1W4fM3tY2OiazM0/UQ90MhyclgoOqCGR+dmH+D66c912moNW2QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB2rZBqP/5e/rLJ2gMZr7No1lzx9MB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvSGF0a0dvX19sNy1zc25hQXhtdnMyaldYUEgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVOaMA0G CSqGSIb3DQEBCwUAA4IBAQCDXjcL3aQGrlGdRHc3gno7wy00w/onpQcAwBF+dclD ABTx13Ou8zasd+9RrH6NJSUtuXmVgHT87kXmjsrNvjg3FTPWSauaWtgid6QquuD/ dWbMtWFvJ6A/2aZRAmMBybUmQX5RrQaUWjOQfKQ3+qR2C4L5KvJfsm1lx8VVE+O5 GonyCAszWlQqWUV8M0Hkc9PLMNeHRbU845OS60VqvwEOINAUnarFmICU7S71zX6X jmiHuvyA5nB+TmNYBFSaM4SW1njf3wMOj3MLJm/ibjYG4e04DqrP0K8TX18DaPkK L9bdbAPN0w8ieaRI3pepNfhE7eLdXEP4n0eCSix3rTP3 -----END CERTIFICATE-----Generated at Mon Jan 19 19:56:31 2026 by rpki-client