This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/HizlzTiqTuK5yatK99t0S4irGGY.roa File: HizlzTiqTuK5yatK99t0S4irGGY.roa (raw, json) Hash identifier: e6yJe+XRznL1kEYGrcT8TWqS3RNROSK/qwM9VbNmNQM= Subject key identifier: 1E:2C:E5:CD:38:AA:4E:E2:B9:C9:AB:4A:F7:DB:74:4B:88:AB:18:66 Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f Certificate serial: 019B79ED19CA0D82627A132F451B4286F1C4 Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/HizlzTiqTuK5yatK99t0S4irGGY.roa Signing time: Thu 01 Jan 2026 14:19:00 +0000 ROA not before: Thu 01 Jan 2026 14:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59832 IP address blocks: 193.59.104.0/22 maxlen: 24 193.59.104.0/23 maxlen: 23 193.59.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:19:ca:0d:82:62:7a:13:2f:45:1b:42:86:f1:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f Validity Not Before: Jan 1 14:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e2ce5cd38aa4ee2b9c9ab4af7db744b88ab1866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a0:a4:a5:6b:72:30:84:90:09:f4:2f:19:eb: 5f:5e:91:28:6b:4f:bb:7c:e2:22:36:91:ea:e3:55: 8a:ac:04:3a:3e:40:4b:8b:15:3d:0c:96:0d:18:a1: b8:e7:77:41:3f:58:b7:f8:c6:37:65:e7:db:bc:21: 32:15:dc:11:b5:52:a0:78:96:de:d2:ee:de:d0:fb: 6b:60:d6:4a:2f:24:98:3c:23:af:1f:1c:45:41:c6: 2f:ff:8c:6f:27:50:2b:77:d6:f5:4e:18:00:eb:54: 7b:f1:9e:92:66:95:cd:f7:65:b9:73:01:68:c4:8b: d5:e9:1c:bf:6b:fc:a5:1b:78:bc:d1:0e:5a:d4:b7: c1:e0:07:d7:5f:a4:61:03:c3:bd:79:e2:89:6a:7b: 35:3a:1a:02:91:80:ea:27:94:7a:0b:89:4c:17:66: d2:00:86:ef:37:53:83:46:a4:23:52:c4:6e:50:1d: 95:3a:9e:1c:32:7b:f8:e5:dc:8c:5b:a2:44:d2:7b: b5:c5:28:65:b6:a0:34:47:cb:e3:db:d8:72:7b:90: 2c:9f:cb:b5:fc:d9:d6:93:e7:22:5e:fb:48:f0:6e: 3b:f4:8d:85:8b:5e:02:13:3a:dd:62:3c:d2:a3:20: 72:54:a0:99:ed:f4:8b:47:e5:28:f5:36:b7:0d:7a: 99:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2C:E5:CD:38:AA:4E:E2:B9:C9:AB:4A:F7:DB:74:4B:88:AB:18:66 X509v3 Authority Key Identifier: keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/HizlzTiqTuK5yatK99t0S4irGGY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.59.104.0/22 193.59.111.0/24 Signature Algorithm: sha256WithRSAEncryption 28:13:7b:90:0d:36:95:39:15:df:44:61:39:41:a9:a7:9e:97: 8b:75:de:0d:60:fb:a2:24:27:35:10:8d:c4:a6:53:4a:22:79: ca:b3:7a:77:2b:c3:3c:ac:5f:6b:29:44:9a:29:af:e3:7b:fa: ba:83:29:0b:8c:fe:86:10:a5:d6:b5:e3:62:c1:a1:16:25:a2: ad:7a:14:bf:fc:8e:73:3c:e3:ae:7a:59:a9:f3:3b:54:ce:87: 05:d6:3e:b6:35:9b:1a:9a:03:3f:5b:91:1f:58:db:ce:f3:d3: 43:de:80:7c:4f:b0:07:cd:16:80:ed:37:05:0b:3e:e6:d9:90: c1:28:c6:2c:78:71:56:75:fb:05:90:d9:60:a5:c1:97:8a:07: 9f:00:7d:e3:3e:ed:06:04:71:4d:21:29:28:b9:c5:67:37:a6: 16:28:5d:85:0d:65:01:8d:6d:79:e8:6c:70:e8:b4:f8:67:68: 0d:af:ef:26:0c:ea:a6:50:da:17:7e:48:db:0f:75:35:e0:18: 96:7e:df:07:4d:c3:96:b8:c3:66:b4:5e:77:25:c0:dd:11:ef: a2:c1:a2:7c:2a:4f:86:59:bb:c4:2b:c9:34:f7:24:35:e2:1e: 28:8a:2d:30:a8:64:53:8a:bb:c0:19:37:77:62:0f:c6:f4:62: bb:7d:22:50 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57RnKDYJiehMvRRtChvHEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw MTE4OGYwHhcNMjYwMTAxMTQxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTJjZTVjZDM4YWE0ZWUyYjljOWFiNGFmN2RiNzQ0Yjg4YWIxODY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6CkpWtyMISQCfQvGetfXpEoa0+7 fOIiNpHq41WKrAQ6PkBLixU9DJYNGKG453dBP1i3+MY3ZefbvCEyFdwRtVKgeJbe 0u7e0PtrYNZKLySYPCOvHxxFQcYv/4xvJ1Ard9b1ThgA61R78Z6SZpXN92W5cwFo xIvV6Ry/a/ylG3i80Q5a1LfB4AfXX6RhA8O9eeKJans1OhoCkYDqJ5R6C4lMF2bS AIbvN1ODRqQjUsRuUB2VOp4cMnv45dyMW6JE0nu1xShltqA0R8vj29hye5Asn8u1 /NnWk+ciXvtI8G479I2Fi14CEzrdYjzSoyByVKCZ7fSLR+Uo9Ta3DXqZYwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFB4s5c04qk7iucmrSvfbdEuIqxhmMB8GA1UdIwQY MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt YzA2NzFiZjRjZjNlLzEvSGl6bHpUaXFUdUs1eWF0Szk5dDBTNGlyR0dZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwTtoAwQA wTtvMA0GCSqGSIb3DQEBCwUAA4IBAQAoE3uQDTaVORXfRGE5QamnnpeLdd4NYPui JCc1EI3EplNKInnKs3p3K8M8rF9rKUSaKa/je/q6gykLjP6GEKXWteNiwaEWJaKt ehS//I5zPOOuelmp8ztUzocF1j62NZsamgM/W5EfWNvO89ND3oB8T7AHzRaA7TcF Cz7m2ZDBKMYseHFWdfsFkNlgpcGXigefAH3jPu0GBHFNISkoucVnN6YWKF2FDWUB jW156Gxw6LT4Z2gNr+8mDOqmUNoXfkjbD3U14BiWft8HTcOWuMNmtF53JcDdEe+i waJ8Kk+GWbvEK8k09yQ14h4oii0wqGRTirvAGTd3Yg/G9GK7fSJQ -----END CERTIFICATE-----Generated at Mon Jan 26 23:23:02 2026 by rpki-client