This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/HoQ127PMQ46C1afRVUl38lwV-mc.roa File: HoQ127PMQ46C1afRVUl38lwV-mc.roa (raw, json) Hash identifier: EPImSMK5AEzmb20myPwr0VhWDnK9rma59iv9yy2Zj0Y= Subject key identifier: 1E:84:35:DB:B3:CC:43:8E:82:D5:A7:D1:55:49:77:F2:5C:15:FA:67 Certificate issuer: /CN=724ea41878ee9137e7c93d6dcd31d020ec3fe461 Certificate serial: 019B79EC29323FD04321E6BFA84A15140E67 Authority key identifier: 72:4E:A4:18:78:EE:91:37:E7:C9:3D:6D:CD:31:D0:20:EC:3F:E4:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ck6kGHjukTfnyT1tzTHQIOw_5GE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/HoQ127PMQ46C1afRVUl38lwV-mc.roa Signing time: Thu 01 Jan 2026 14:17:58 +0000 ROA not before: Thu 01 Jan 2026 14:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215396 IP address blocks: 185.52.17.0/24 maxlen: 24 194.32.114.0/23 maxlen: 23 194.32.114.0/24 maxlen: 24 194.32.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/ck6kGHjukTfnyT1tzTHQIOw_5GE.crl rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/ck6kGHjukTfnyT1tzTHQIOw_5GE.mft rsync://rpki.ripe.net/repository/DEFAULT/ck6kGHjukTfnyT1tzTHQIOw_5GE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:29:32:3f:d0:43:21:e6:bf:a8:4a:15:14:0e:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=724ea41878ee9137e7c93d6dcd31d020ec3fe461 Validity Not Before: Jan 1 14:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e8435dbb3cc438e82d5a7d1554977f25c15fa67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5b:88:f8:1b:c9:a0:00:a6:07:fc:2c:7d:20: 17:20:d9:7e:ed:71:22:5f:d4:f8:9b:58:b1:40:af: b9:3a:34:53:ce:34:a5:34:fc:08:31:a1:fb:59:a6: a2:fe:5e:64:50:05:1d:41:7e:25:a9:a5:04:1c:60: aa:31:50:2d:5e:c6:c9:23:32:58:d1:ba:df:39:ea: e2:de:4f:8d:57:cd:d5:08:e1:68:d1:4b:5e:0e:4e: e3:dc:6d:2a:4c:2b:2f:8f:7d:3c:46:8e:62:ce:c9: f8:4d:c4:fd:d0:fb:af:5f:af:17:7f:98:69:aa:2f: 5e:fc:06:8a:bb:7e:91:e1:8c:91:ab:a5:ff:23:fe: 93:0a:70:0c:4e:7b:12:bb:9b:f5:cc:ce:f1:2c:33: 61:5d:a9:61:06:0e:c2:a7:91:21:b0:47:f1:81:14: 94:e4:ef:3b:a9:24:34:12:34:29:c5:1f:5c:6c:c1: 09:0f:82:5a:15:17:d7:17:dc:ca:fc:c8:44:d6:7a: f0:38:fb:08:93:7b:17:46:19:6e:e2:f5:71:db:d2: cd:52:a0:d3:d9:2f:e3:a6:e7:68:74:53:62:45:39: ac:a6:45:27:b6:8f:f0:88:ec:68:8a:84:43:a1:38: 16:6e:35:67:48:d8:d0:af:26:0e:92:01:37:df:aa: f3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:84:35:DB:B3:CC:43:8E:82:D5:A7:D1:55:49:77:F2:5C:15:FA:67 X509v3 Authority Key Identifier: keyid:72:4E:A4:18:78:EE:91:37:E7:C9:3D:6D:CD:31:D0:20:EC:3F:E4:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ck6kGHjukTfnyT1tzTHQIOw_5GE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/HoQ127PMQ46C1afRVUl38lwV-mc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/ck6kGHjukTfnyT1tzTHQIOw_5GE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.52.17.0/24 194.32.114.0/23 Signature Algorithm: sha256WithRSAEncryption 87:f9:53:89:d8:8b:21:dc:75:58:5f:12:e6:d3:d0:6c:59:de: 69:0c:1b:63:03:d3:1a:aa:da:46:b8:c2:13:26:33:3e:30:7e: 04:e3:db:3d:83:50:54:ec:d2:3a:0c:30:af:13:37:46:bc:33: 53:d4:bc:87:a1:8a:0d:df:e9:ae:75:09:91:8d:fe:1c:c6:18: 09:a9:1d:5c:c8:58:cb:d5:7e:15:09:5b:c0:95:58:bd:61:96: cf:8c:db:01:37:6d:a7:02:96:63:77:bc:6b:c9:bd:6e:0c:0e: 6e:e2:0d:92:f0:ff:2c:7f:3d:42:4c:f3:07:f2:50:38:e8:01: cc:ff:af:44:df:54:40:3e:70:d7:81:7b:dc:21:17:0a:8b:e0: a6:b6:1d:73:2c:47:0b:c4:fe:77:0d:6d:6e:af:8d:d4:35:8e: 26:5c:c7:2b:91:a4:52:9e:ff:32:68:09:cc:f8:0b:fa:04:d3: b7:9f:39:0b:f6:65:42:17:b2:62:7b:ff:10:cb:b0:72:4a:77: 29:c8:da:56:76:e0:31:b0:09:c4:09:02:27:73:99:f2:d7:b0: 37:29:34:09:2c:35:a2:8a:ac:d9:71:29:54:cc:8a:87:18:e4: 08:e5:55:00:11:e8:70:4c:49:6e:c2:54:1a:86:10:ce:9d:2a: 74:e4:df:ae -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57CkyP9BDIea/qEoVFA5nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNGVhNDE4NzhlZTkxMzdlN2M5M2Q2ZGNkMzFkMDIwZWMz ZmU0NjEwHhcNMjYwMTAxMTQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTg0MzVkYmIzY2M0MzhlODJkNWE3ZDE1NTQ5NzdmMjVjMTVmYTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzluI+BvJoACmB/wsfSAXINl+7XEi X9T4m1ixQK+5OjRTzjSlNPwIMaH7Waai/l5kUAUdQX4lqaUEHGCqMVAtXsbJIzJY 0brfOeri3k+NV83VCOFo0UteDk7j3G0qTCsvj308Ro5izsn4TcT90PuvX68Xf5hp qi9e/AaKu36R4YyRq6X/I/6TCnAMTnsSu5v1zM7xLDNhXalhBg7Cp5EhsEfxgRSU 5O87qSQ0EjQpxR9cbMEJD4JaFRfXF9zK/MhE1nrwOPsIk3sXRhlu4vVx29LNUqDT 2S/jpudodFNiRTmspkUnto/wiOxoioRDoTgWbjVnSNjQryYOkgE336rzxwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFB6ENduzzEOOgtWn0VVJd/JcFfpnMB8GA1UdIwQY MBaAFHJOpBh47pE358k9bc0x0CDsP+RhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2s2a0dIanVrVGZueVQxdHpUSFFJT3dfNUdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jMjU0ZWYtMzRlNi00OGNkLTk2MjAt OGQzM2IyYTJmZGU4LzEvSG9RMTI3UE1RNDZDMWFmUlZVbDM4bHdWLW1jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9jMjU0ZWYtMzRlNi00OGNkLTk2MjAtOGQzM2IyYTJmZGU4 LzEvY2s2a0dIanVrVGZueVQxdHpUSFFJT3dfNUdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuTQRAwQB wiByMA0GCSqGSIb3DQEBCwUAA4IBAQCH+VOJ2Ish3HVYXxLm09BsWd5pDBtjA9Ma qtpGuMITJjM+MH4E49s9g1BU7NI6DDCvEzdGvDNT1LyHoYoN3+mudQmRjf4cxhgJ qR1cyFjL1X4VCVvAlVi9YZbPjNsBN22nApZjd7xryb1uDA5u4g2S8P8sfz1CTPMH 8lA46AHM/69E31RAPnDXgXvcIRcKi+Cmth1zLEcLxP53DW1ur43UNY4mXMcrkaRS nv8yaAnM+Av6BNO3nzkL9mVCF7Jie/8Qy7BySncpyNpWduAxsAnECQInc5ny17A3 KTQJLDWiiqzZcSlUzIqHGOQI5VUAEehwTEluwlQahhDOnSp05N+u -----END CERTIFICATE-----Generated at Mon Feb 9 22:14:55 2026 by rpki-client