This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/HNvn93VZrqPUOzKw1H1YD2pyedA.roa File: HNvn93VZrqPUOzKw1H1YD2pyedA.roa (raw, json) Hash identifier: a/aHC9NlvJNBqxvVRL9BkgXA6OzhMYDmNsk13btgq+A= Subject key identifier: 1C:DB:E7:F7:75:59:AE:A3:D4:3B:32:B0:D4:7D:58:0F:6A:72:79:D0 Certificate issuer: /CN=174737d8a484d12534ca40f8dd818a588c3b3de2 Certificate serial: 019B7B354372458284FBB5369C35721BC06F Authority key identifier: 17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/HNvn93VZrqPUOzKw1H1YD2pyedA.roa Signing time: Thu 01 Jan 2026 20:17:26 +0000 ROA not before: Thu 01 Jan 2026 20:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43201 IP address blocks: 193.228.160.0/22 maxlen: 22 193.228.160.0/23 maxlen: 23 193.228.160.0/24 maxlen: 24 193.228.161.0/24 maxlen: 24 193.228.162.0/23 maxlen: 23 193.228.162.0/24 maxlen: 24 193.228.163.0/24 maxlen: 24 2a0c:e1c0:2b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/F0c32KSE0SU0ykD43YGKWIw7PeI.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/F0c32KSE0SU0ykD43YGKWIw7PeI.mft rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 08:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:43:72:45:82:84:fb:b5:36:9c:35:72:1b:c0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=174737d8a484d12534ca40f8dd818a588c3b3de2 Validity Not Before: Jan 1 20:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cdbe7f77559aea3d43b32b0d47d580f6a7279d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:69:bb:ce:5f:f0:da:bd:50:47:27:a2:2f:0d: c8:a2:0c:e5:3a:e2:ec:e1:55:16:da:29:37:61:3c: d4:6e:2c:e0:71:31:1b:77:53:45:20:05:ba:ae:33: 83:0a:14:9b:e2:ca:4d:00:d5:a0:f7:62:62:e4:cf: 0d:b0:c8:7f:ee:a7:a1:9d:a8:9e:bb:e6:56:6b:24: d6:13:be:fc:73:8e:61:1d:68:f0:cc:51:e5:e4:98: 15:e4:4b:4c:62:fc:e5:db:3e:5a:3e:14:16:58:5c: be:54:ba:e7:0c:26:76:1c:86:39:82:46:f6:33:93: c5:85:8e:c5:5c:1c:06:8f:3c:e1:ab:ac:01:ab:23: ad:e5:45:6d:93:15:28:dd:cd:7b:06:2c:20:0f:d8: e3:f9:0f:7a:40:42:7b:42:bb:ae:44:0b:95:69:1f: 63:9a:e0:11:02:0c:3c:6f:88:60:aa:bf:2d:5d:54: 10:75:3a:c6:65:37:8a:46:a9:cd:74:b8:c5:35:ad: 28:59:b3:1e:d8:c2:63:2a:dc:1c:a9:c9:a4:67:9b: 0b:c3:84:fd:c1:28:08:e8:32:a8:84:22:44:05:24: e0:3e:20:65:3d:48:5a:00:85:45:ea:5d:16:1a:3d: cb:99:d5:51:ea:93:8b:f0:2b:51:6e:df:e0:22:fd: 68:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DB:E7:F7:75:59:AE:A3:D4:3B:32:B0:D4:7D:58:0F:6A:72:79:D0 X509v3 Authority Key Identifier: keyid:17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/HNvn93VZrqPUOzKw1H1YD2pyedA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/F0c32KSE0SU0ykD43YGKWIw7PeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.228.160.0/22 IPv6: 2a0c:e1c0:2b4::/48 Signature Algorithm: sha256WithRSAEncryption 29:d5:b5:71:6c:0f:94:57:4e:57:5d:aa:8a:da:31:00:a1:cb: cf:c8:40:34:cc:19:bf:13:af:b8:47:9d:4c:18:d7:5c:f2:b6: 7b:48:14:97:3a:43:5a:23:ca:7d:2e:a4:07:d4:a6:fa:0e:3b: 1d:41:53:ba:9e:7c:a2:1d:03:b1:dc:ec:dd:c8:bc:02:11:85: 4c:5f:96:0c:cb:ef:1b:a7:f6:25:57:93:2b:13:49:75:f2:b5: 61:f3:76:fc:1b:e8:da:b3:1d:6a:0b:4a:8b:e9:14:22:28:c9: 33:8b:f8:69:71:30:0c:32:e3:6d:48:17:3e:e9:c7:e9:bb:d2: 1e:f5:4d:fa:7c:3e:00:d3:03:91:55:07:6d:b3:1c:28:48:35: b0:51:eb:e4:f2:59:5d:74:df:8c:28:69:7d:86:cd:34:a6:c7: 96:be:26:be:ec:80:6f:2d:54:4e:ac:86:7a:60:84:4f:30:e9: 33:b9:62:3f:0d:fb:6b:51:ce:ff:57:d0:cd:3f:13:55:c0:ca: d6:43:6e:18:17:66:e1:98:8a:0a:58:a1:7e:e4:b0:bc:1e:54: cd:60:26:ec:46:64:0f:23:de:9b:0a:d4:e7:00:fe:2c:c2:73: 80:7c:9a:1e:cf:47:41:b9:8d:ad:c8:ab:34:71:a3:a3:df:60: b3:ee:da:cb -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7NUNyRYKE+7U2nDVyG8BvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NDczN2Q4YTQ4NGQxMjUzNGNhNDBmOGRkODE4YTU4OGMz YjNkZTIwHhcNMjYwMTAxMjAxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2RiZTdmNzc1NTlhZWEzZDQzYjMyYjBkNDdkNTgwZjZhNzI3OWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWm7zl/w2r1QRyeiLw3IogzlOuLs 4VUW2ik3YTzUbizgcTEbd1NFIAW6rjODChSb4spNANWg92Ji5M8NsMh/7qehnaie u+ZWayTWE778c45hHWjwzFHl5JgV5EtMYvzl2z5aPhQWWFy+VLrnDCZ2HIY5gkb2 M5PFhY7FXBwGjzzhq6wBqyOt5UVtkxUo3c17BiwgD9jj+Q96QEJ7QruuRAuVaR9j muARAgw8b4hgqr8tXVQQdTrGZTeKRqnNdLjFNa0oWbMe2MJjKtwcqcmkZ5sLw4T9 wSgI6DKohCJEBSTgPiBlPUhaAIVF6l0WGj3LmdVR6pOL8CtRbt/gIv1ovQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFBzb5/d1Wa6j1DsysNR9WA9qcnnQMB8GA1UdIwQY MBaAFBdHN9ikhNElNMpA+N2BiliMOz3iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjBjMzJLU0UwU1UweWtENDNZR0tXSXc3UGVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xOTMyNGEtMDYxNi00NWQ0LTliNTMt N2I3NDZlYTFhYjgyLzEvSE52bjkzVlpycVBVT3pLdzFIMVlEMnB5ZWRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8xOTMyNGEtMDYxNi00NWQ0LTliNTMtN2I3NDZlYTFhYjgy LzEvRjBjMzJLU0UwU1UweWtENDNZR0tXSXc3UGVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCweSgMA8E AgACMAkDBwAqDOHAArQwDQYJKoZIhvcNAQELBQADggEBACnVtXFsD5RXTlddqora MQChy8/IQDTMGb8Tr7hHnUwY11zytntIFJc6Q1ojyn0upAfUpvoOOx1BU7qefKId A7Hc7N3IvAIRhUxflgzL7xun9iVXkysTSXXytWHzdvwb6NqzHWoLSovpFCIoyTOL +GlxMAwy421IFz7px+m70h71Tfp8PgDTA5FVB22zHChINbBR6+TyWV1034woaX2G zTSmx5a+Jr7sgG8tVE6shnpghE8w6TO5Yj8N+2tRzv9X0M0/E1XAytZDbhgXZuGY igpYoX7ksLweVM1gJuxGZA8j3psK1OcA/izCc4B8mh7PR0G5ja3IqzRxo6PfYLPu 2ss= -----END CERTIFICATE-----Generated at Thu Jan 15 17:01:05 2026 by rpki-client