This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/hhmzN128wuDiRBwUCjO9oZf28Hc.roa File: hhmzN128wuDiRBwUCjO9oZf28Hc.roa (raw, json) Hash identifier: qKwy9aO/5eDeYbjJqOLC4283+7+rAN2JwgIHL3S+j7c= Subject key identifier: 86:19:B3:37:5D:BC:C2:E0:E2:44:1C:14:0A:33:BD:A1:97:F6:F0:77 Certificate issuer: /CN=f71d4a4374df222ac3235b9602206d96bf1dac82 Certificate serial: 019B7AC848E55F2506A2E11D95E038BFA223 Authority key identifier: F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/hhmzN128wuDiRBwUCjO9oZf28Hc.roa Signing time: Thu 01 Jan 2026 18:18:24 +0000 ROA not before: Thu 01 Jan 2026 18:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 51.198.64.0/23 maxlen: 24 51.198.66.0/23 maxlen: 24 51.198.70.0/23 maxlen: 24 51.199.252.0/23 maxlen: 24 51.199.254.0/23 maxlen: 24 2a06:5901:8000::/40 maxlen: 48 2a06:5901:8100::/40 maxlen: 48 2a06:5901:8200::/40 maxlen: 48 2a06:5901:8300::/40 maxlen: 48 2a06:5901:8500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.mft rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:48:e5:5f:25:06:a2:e1:1d:95:e0:38:bf:a2:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f71d4a4374df222ac3235b9602206d96bf1dac82 Validity Not Before: Jan 1 18:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8619b3375dbcc2e0e2441c140a33bda197f6f077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ae:8d:26:c0:fb:ec:ec:fd:7f:91:12:44:61: 35:a7:d5:35:67:50:07:17:58:03:93:6c:be:6e:a8: 3b:09:48:a2:ab:4c:3b:5d:49:6e:31:48:91:0b:57: e8:62:d2:d3:58:82:87:99:cb:6b:29:9f:dc:52:2f: 49:a2:36:f0:10:1b:82:85:83:81:b8:14:8d:5a:4f: 1a:c4:37:a8:70:15:38:17:07:70:83:59:d5:27:6d: 72:9d:f3:10:e3:27:e2:92:12:e6:2a:bf:a5:a2:ba: a0:36:e9:65:64:a0:0a:d9:f4:51:de:ad:e3:05:e0: 8f:a0:1e:02:eb:89:a0:bc:66:d0:ff:cd:d0:b2:5d: 02:dc:fa:b3:94:66:10:f7:9a:04:7d:8c:d0:5a:3d: 03:89:5b:12:70:e2:76:da:1a:c2:a1:fb:4b:c7:65: 2e:80:bf:89:1f:00:a4:bb:6f:c7:98:0d:00:87:7c: a5:b6:ae:39:36:8d:ce:d0:49:a3:25:f6:46:e0:ad: e6:39:94:56:b6:06:b9:c4:d1:f9:27:07:ba:16:71: 83:65:57:10:a7:9a:c1:70:db:20:9b:25:c1:4b:e2: 31:5e:bf:ce:d0:80:fe:11:17:8c:70:c0:6d:54:60: fc:e0:58:9c:9e:71:a7:8c:6c:86:48:5f:b0:37:b4: f6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:19:B3:37:5D:BC:C2:E0:E2:44:1C:14:0A:33:BD:A1:97:F6:F0:77 X509v3 Authority Key Identifier: keyid:F7:1D:4A:43:74:DF:22:2A:C3:23:5B:96:02:20:6D:96:BF:1D:AC:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9x1KQ3TfIirDI1uWAiBtlr8drII.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/hhmzN128wuDiRBwUCjO9oZf28Hc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7739dc-1132-4837-9b85-e9ac2b00316a/1/9x1KQ3TfIirDI1uWAiBtlr8drII.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 51.198.64.0/22 51.198.70.0/23 51.199.252.0/22 IPv6: 2a06:5901:8000::/38 2a06:5901:8500::/40 Signature Algorithm: sha256WithRSAEncryption 57:ff:56:24:69:fe:f8:3e:1c:b3:6d:57:1e:c2:65:22:7c:2a: 8a:c0:10:8d:05:dc:67:cf:70:d8:20:d3:ce:fd:cb:66:4d:cf: ec:5a:48:7d:eb:94:ed:c8:d1:81:c4:d0:39:0a:0e:51:28:88: 66:c9:bf:98:b1:da:be:43:84:3f:93:e4:f3:95:34:5b:f1:4c: ea:f0:e2:f0:c6:df:a2:ff:21:34:b9:bc:f0:6c:eb:92:8d:c9: 04:f6:2e:59:ed:9b:54:a5:53:a3:47:2b:31:a0:e6:4b:0d:fb: 86:1f:f2:bc:6b:ad:11:5d:98:75:64:1e:44:f1:1e:b2:7f:3f: 4d:33:4a:eb:ae:6b:da:8d:9a:ab:13:10:ce:fa:f4:2a:a8:ad: c5:d0:e6:57:3d:c5:6a:5f:cb:90:44:d5:2a:d2:7c:ec:a0:4b: f9:f1:a4:b3:b9:bd:15:ca:4d:17:ea:e6:59:0d:7c:5c:81:90: ad:34:a8:11:3e:f8:22:27:6b:28:e3:19:28:7e:9b:54:8c:83: 0c:9f:e2:4a:25:65:c2:84:c6:b5:79:94:9a:ec:39:28:67:ec: 73:22:e8:81:36:58:ab:be:ff:b1:6b:b9:dd:f5:7f:44:5d:53: 98:4a:b2:ff:25:d9:0d:87:9c:3e:02:c1:f0:25:d9:cb:4e:32: 1c:b0:38:ab -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt6yEjlXyUGouEdleA4v6IjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MWQ0YTQzNzRkZjIyMmFjMzIzNWI5NjAyMjA2ZDk2YmYx ZGFjODIwHhcNMjYwMTAxMTgxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjE5YjMzNzVkYmNjMmUwZTI0NDFjMTQwYTMzYmRhMTk3ZjZmMDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3a6NJsD77Oz9f5ESRGE1p9U1Z1AH F1gDk2y+bqg7CUiiq0w7XUluMUiRC1foYtLTWIKHmctrKZ/cUi9JojbwEBuChYOB uBSNWk8axDeocBU4Fwdwg1nVJ21ynfMQ4yfikhLmKr+lorqgNullZKAK2fRR3q3j BeCPoB4C64mgvGbQ/83Qsl0C3PqzlGYQ95oEfYzQWj0DiVsScOJ22hrCoftLx2Uu gL+JHwCku2/HmA0Ah3yltq45No3O0EmjJfZG4K3mOZRWtga5xNH5Jwe6FnGDZVcQ p5rBcNsgmyXBS+IxXr/O0ID+EReMcMBtVGD84FicnnGnjGyGSF+wN7T2GQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFIYZszddvMLg4kQcFAozvaGX9vB3MB8GA1UdIwQY MBaAFPcdSkN03yIqwyNblgIgbZa/HayCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUt ZTlhYzJiMDAzMTZhLzEvaGhtek4xMjh3dURpUkJ3VUNqTzlvWmYyOEhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83NzM5ZGMtMTEzMi00ODM3LTliODUtZTlhYzJiMDAzMTZh LzEvOXgxS1EzVGZJaXJESTF1V0FpQnRscjhkcklJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAYBAIAATASAwQCM8ZAAwQB M8ZGAwQCM8f8MBYEAgACMBADBgIqBlkBgAMGACoGWQGFMA0GCSqGSIb3DQEBCwUA A4IBAQBX/1Ykaf74PhyzbVcewmUifCqKwBCNBdxnz3DYINPO/ctmTc/sWkh965Tt yNGBxNA5Cg5RKIhmyb+Ysdq+Q4Q/k+TzlTRb8Uzq8OLwxt+i/yE0ubzwbOuSjckE 9i5Z7ZtUpVOjRysxoOZLDfuGH/K8a60RXZh1ZB5E8R6yfz9NM0rrrmvajZqrExDO +vQqqK3F0OZXPcVqX8uQRNUq0nzsoEv58aSzub0Vyk0X6uZZDXxcgZCtNKgRPvgi J2so4xkofptUjIMMn+JKJWXChMa1eZSa7DkoZ+xzIuiBNlirvv+xa7nd9X9EXVOY SrL/JdkNh5w+AsHwJdnLTjIcsDir -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:16 2026 by rpki-client