This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e4c7c7-57ed-45e6-9fcf-e7241049745a/1/hEPLWwWf7jJuBwfcBot8uZscUzg.roa File: hEPLWwWf7jJuBwfcBot8uZscUzg.roa (raw, json) Hash identifier: MqR78deoycBbmzcw7LAPrygstqswKZFRL7vJYn9//Dk= Subject key identifier: 84:43:CB:5B:05:9F:EE:32:6E:07:07:DC:06:8B:7C:B9:9B:1C:53:38 Certificate issuer: /CN=8f9ed2188da9ecada1149145aefa49726fe01e96 Certificate serial: 019B79ECB6FB493C2E165A08CD325054D3DA Authority key identifier: 8F:9E:D2:18:8D:A9:EC:AD:A1:14:91:45:AE:FA:49:72:6F:E0:1E:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j57SGI2p7K2hFJFFrvpJcm_gHpY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e4c7c7-57ed-45e6-9fcf-e7241049745a/1/hEPLWwWf7jJuBwfcBot8uZscUzg.roa Signing time: Thu 01 Jan 2026 14:18:35 +0000 ROA not before: Thu 01 Jan 2026 14:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202883 IP address blocks: 185.151.216.0/24 maxlen: 24 185.151.217.0/24 maxlen: 24 185.151.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/e4c7c7-57ed-45e6-9fcf-e7241049745a/1/j57SGI2p7K2hFJFFrvpJcm_gHpY.crl rsync://rpki.ripe.net/repository/DEFAULT/18/e4c7c7-57ed-45e6-9fcf-e7241049745a/1/j57SGI2p7K2hFJFFrvpJcm_gHpY.mft rsync://rpki.ripe.net/repository/DEFAULT/j57SGI2p7K2hFJFFrvpJcm_gHpY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:b6:fb:49:3c:2e:16:5a:08:cd:32:50:54:d3:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f9ed2188da9ecada1149145aefa49726fe01e96 Validity Not Before: Jan 1 14:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8443cb5b059fee326e0707dc068b7cb99b1c5338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fc:27:83:cd:5b:ac:08:83:a1:8d:b6:b5:c2: c2:c8:12:c6:48:59:6f:3f:81:6a:49:77:6d:8b:6b: 2b:83:98:15:0c:35:a9:f8:60:e6:e9:1a:f1:3b:d9: 8d:10:f8:92:3b:56:ed:fd:a0:75:1b:b1:ee:4c:12: ea:7a:7e:ed:ff:8d:7e:a5:82:33:e6:ae:6a:e1:b8: 3c:a0:09:fc:cb:91:af:e3:f7:d3:9d:4a:1d:1d:4c: df:67:17:a0:e3:f1:23:82:82:32:1b:1e:0f:d5:d2: 12:ea:d2:ff:df:7a:0c:9e:c1:ce:d2:bb:13:fe:af: 28:75:89:93:58:62:8b:ad:18:90:af:25:33:51:46: e7:c2:68:c9:40:af:1c:3f:09:8f:99:2a:52:5e:b4: 37:00:ea:88:6b:3c:80:49:0d:0d:15:a9:6f:83:3d: f1:21:e7:db:d4:27:8f:e3:50:26:42:ed:c3:cf:80: a8:2d:57:4a:61:a4:b5:db:3f:c8:ac:0d:75:4e:45: a6:55:1f:5b:e5:4b:fd:30:1d:ef:26:f0:20:98:06: b5:b5:55:58:5e:1c:a8:e4:67:1b:34:d9:f2:4a:a0: fc:ef:53:d1:a7:c3:af:e4:f7:ee:4d:8b:67:55:15: c9:c8:c4:3e:5d:cb:18:83:64:ee:fa:26:02:e8:d8: c5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:43:CB:5B:05:9F:EE:32:6E:07:07:DC:06:8B:7C:B9:9B:1C:53:38 X509v3 Authority Key Identifier: keyid:8F:9E:D2:18:8D:A9:EC:AD:A1:14:91:45:AE:FA:49:72:6F:E0:1E:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j57SGI2p7K2hFJFFrvpJcm_gHpY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e4c7c7-57ed-45e6-9fcf-e7241049745a/1/hEPLWwWf7jJuBwfcBot8uZscUzg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e4c7c7-57ed-45e6-9fcf-e7241049745a/1/j57SGI2p7K2hFJFFrvpJcm_gHpY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.151.216.0-185.151.218.255 Signature Algorithm: sha256WithRSAEncryption 45:38:29:8f:48:9f:53:50:06:58:3d:18:d5:a0:5c:78:8b:4a: 03:29:5a:bf:c3:8e:39:20:e9:11:c5:df:52:de:54:a7:a7:22: 8a:a5:25:da:52:b7:28:89:ca:d3:62:18:b4:9a:06:63:ea:8f: f8:34:0d:9c:28:6f:6a:7c:88:cf:00:87:1c:66:36:e0:de:38: 70:c3:28:8b:bb:78:cc:bd:b8:c9:bf:12:6b:73:ed:a3:c4:b8: 21:0b:87:19:a9:3a:85:ed:13:a6:25:9c:1f:96:ab:62:6f:22: 1b:51:53:a4:52:1d:6d:84:e0:19:51:0b:32:3c:32:3c:ad:ae: cd:d0:44:b1:0f:72:21:15:cc:60:87:03:f0:4f:28:8b:ba:5a: 0b:58:45:e4:20:8c:7f:0b:3a:ec:94:2b:8c:a2:19:30:6b:46: 6d:b3:5a:be:a4:f9:38:74:14:da:90:57:0d:05:5a:4e:73:4c: ec:7b:df:3a:ff:f4:f2:d1:83:a6:ec:47:17:e2:f2:c5:e6:f7: 34:e2:a1:95:11:52:b6:7b:d4:d2:05:d2:44:5d:d7:31:1f:c4: 0d:f0:fa:95:8c:e2:bf:79:c7:13:a4:9b:1e:4a:fc:1b:a5:69: 05:f2:ed:3b:ae:8a:3f:fd:e3:b2:ae:dd:fe:1c:89:48:d6:98: aa:06:ac:83 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt57Lb7STwuFloIzTJQVNPaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmOWVkMjE4OGRhOWVjYWRhMTE0OTE0NWFlZmE0OTcyNmZl MDFlOTYwHhcNMjYwMTAxMTQxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDQzY2I1YjA1OWZlZTMyNmUwNzA3ZGMwNjhiN2NiOTliMWM1MzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfwng81brAiDoY22tcLCyBLGSFlv P4FqSXdti2srg5gVDDWp+GDm6RrxO9mNEPiSO1bt/aB1G7HuTBLqen7t/41+pYIz 5q5q4bg8oAn8y5Gv4/fTnUodHUzfZxeg4/EjgoIyGx4P1dIS6tL/33oMnsHO0rsT /q8odYmTWGKLrRiQryUzUUbnwmjJQK8cPwmPmSpSXrQ3AOqIazyASQ0NFalvgz3x Iefb1CeP41AmQu3Dz4CoLVdKYaS12z/IrA11TkWmVR9b5Uv9MB3vJvAgmAa1tVVY Xhyo5GcbNNnySqD871PRp8Ov5PfuTYtnVRXJyMQ+XcsYg2Tu+iYC6NjF5wIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFIRDy1sFn+4ybgcH3AaLfLmbHFM4MB8GA1UdIwQY MBaAFI+e0hiNqeytoRSRRa76SXJv4B6WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajU3U0dJMnA3SzJoRkpGRnJ2cEpjbV9nSHBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lNGM3YzctNTdlZC00NWU2LTlmY2Yt ZTcyNDEwNDk3NDVhLzEvaEVQTFd3V2Y3akp1QndmY0JvdDh1WnNjVXpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9lNGM3YzctNTdlZC00NWU2LTlmY2YtZTcyNDEwNDk3NDVh LzEvajU3U0dJMnA3SzJoRkpGRnJ2cEpjbV9nSHBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAO5l9gD BAC5l9owDQYJKoZIhvcNAQELBQADggEBAEU4KY9In1NQBlg9GNWgXHiLSgMpWr/D jjkg6RHF31LeVKenIoqlJdpStyiJytNiGLSaBmPqj/g0DZwob2p8iM8AhxxmNuDe OHDDKIu7eMy9uMm/Emtz7aPEuCELhxmpOoXtE6YlnB+Wq2JvIhtRU6RSHW2E4BlR CzI8Mjytrs3QRLEPciEVzGCHA/BPKIu6WgtYReQgjH8LOuyUK4yiGTBrRm2zWr6k +Th0FNqQVw0FWk5zTOx73zr/9PLRg6bsRxfi8sXm9zTioZURUrZ71NIF0kRd1zEf xA3w+pWM4r95xxOkmx5K/BulaQXy7Tuuij/947Ku3f4ciUjWmKoGrIM= -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:42 2026 by rpki-client