This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/HRhnJs0rqSh4-uSE3UR_PKkUZFI.roa File: HRhnJs0rqSh4-uSE3UR_PKkUZFI.roa (raw, json) Hash identifier: LXksIEwMTfFfnm1hrgpaVNQMLwmyjyLCSI5cjH3cCWM= Subject key identifier: 1D:18:67:26:CD:2B:A9:28:78:FA:E4:84:DD:44:7F:3C:A9:14:64:52 Certificate issuer: /CN=82f18b80339d8ae637f4a02f335bbec7c8c26bde Certificate serial: 019B77587D48EA8989C541EC6FD8C88D28E0 Authority key identifier: 82:F1:8B:80:33:9D:8A:E6:37:F4:A0:2F:33:5B:BE:C7:C8:C2:6B:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvGLgDOdiuY39KAvM1u-x8jCa94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/HRhnJs0rqSh4-uSE3UR_PKkUZFI.roa Signing time: Thu 01 Jan 2026 02:17:26 +0000 ROA not before: Thu 01 Jan 2026 02:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50055 IP address blocks: 185.136.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/gvGLgDOdiuY39KAvM1u-x8jCa94.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/gvGLgDOdiuY39KAvM1u-x8jCa94.mft rsync://rpki.ripe.net/repository/DEFAULT/gvGLgDOdiuY39KAvM1u-x8jCa94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:7d:48:ea:89:89:c5:41:ec:6f:d8:c8:8d:28:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82f18b80339d8ae637f4a02f335bbec7c8c26bde Validity Not Before: Jan 1 02:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d186726cd2ba92878fae484dd447f3ca9146452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cc:91:11:8c:80:3b:65:76:c8:96:9c:f1:e4: 19:59:c9:60:ad:57:c3:ae:37:44:7c:9e:b0:80:f6: d1:13:bf:9d:e6:b3:c2:2f:fa:df:38:46:7d:79:1b: 96:79:5b:55:c4:78:9e:81:a7:62:be:12:35:b8:a2: 50:7d:87:ae:15:3e:70:4c:ab:46:17:b6:dd:08:40: b3:da:97:00:e4:03:73:97:5b:62:01:51:57:4c:c6: c9:74:64:33:bb:d4:fd:ff:fe:ba:b2:23:79:61:e3: 2f:88:30:bf:6f:cb:2b:40:5d:4f:dd:85:88:fa:8c: 2b:62:67:7c:f6:a7:aa:3c:04:5a:fe:07:64:e4:03: 8d:b8:a1:14:51:6c:a9:ba:71:6b:9f:bd:49:5c:41: b8:48:36:b2:c7:73:e4:5d:df:c2:a2:90:b4:4b:93: 09:32:bd:0e:7f:b0:a4:d3:03:5a:8c:47:d6:30:e4: ce:15:4d:c3:22:b0:3e:8f:39:44:00:95:81:3f:83: 0a:7a:6a:b5:a7:7f:7e:d8:a6:b1:ed:7f:ba:c6:e0: f2:75:b4:d0:c1:9f:3a:e6:60:fe:c7:ac:5f:9b:8b: 0a:d5:af:9c:3c:7f:98:73:60:6b:10:4d:96:7f:b7: d7:20:c3:db:e6:0a:1e:ea:09:ae:31:d9:d9:20:29: 8a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:67:26:CD:2B:A9:28:78:FA:E4:84:DD:44:7F:3C:A9:14:64:52 X509v3 Authority Key Identifier: keyid:82:F1:8B:80:33:9D:8A:E6:37:F4:A0:2F:33:5B:BE:C7:C8:C2:6B:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvGLgDOdiuY39KAvM1u-x8jCa94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/HRhnJs0rqSh4-uSE3UR_PKkUZFI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/65c2d9-80d4-459f-ae61-b5bd428f190c/1/gvGLgDOdiuY39KAvM1u-x8jCa94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.136.56.0/22 Signature Algorithm: sha256WithRSAEncryption 75:0d:d0:a3:7f:47:40:60:19:59:5b:70:82:44:b5:74:a2:50: 28:3d:f1:54:42:59:06:8f:fc:b4:5d:ad:b9:ca:9b:46:d3:3c: 41:d0:27:99:9d:c2:4b:67:6d:0c:b0:ed:f5:2f:eb:84:66:20: ae:a2:23:d4:2a:23:07:ea:55:b0:20:44:31:42:f4:f7:df:23: 12:b9:fa:da:ff:87:34:c1:64:11:80:8a:8a:32:d4:c5:b8:4a: 78:55:05:89:84:2f:47:22:78:dc:dd:5a:20:ad:29:3d:f6:11: 01:18:3c:a6:5e:0a:34:21:cb:7c:28:e1:a0:23:f4:d7:08:09: cf:d6:0d:4e:bd:78:e6:c0:3d:02:94:e0:6d:29:29:07:bf:50: ed:e2:44:4b:72:cb:78:08:98:0d:81:6b:b7:bb:0b:d4:a7:ae: 96:74:e6:f8:fc:57:66:81:63:ff:03:0e:47:e7:78:7f:f9:fb: 14:68:72:6f:d3:69:bb:ed:dc:b6:da:ff:48:8e:4f:9f:47:d9: db:de:c5:2b:e6:aa:7d:7d:02:20:5d:60:75:c9:ca:f0:a6:61: 3a:ab:39:3c:25:3c:3a:90:88:43:9c:64:ed:9c:37:50:50:f7: cb:b3:0b:9f:04:c1:90:7a:d9:e5:1c:dd:24:37:d5:9c:08:9f: 7d:9e:34:d4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WH1I6omJxUHsb9jIjSjgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyZjE4YjgwMzM5ZDhhZTYzN2Y0YTAyZjMzNWJiZWM3Yzhj MjZiZGUwHhcNMjYwMTAxMDIxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDE4NjcyNmNkMmJhOTI4NzhmYWU0ODRkZDQ0N2YzY2E5MTQ2NDUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsyREYyAO2V2yJac8eQZWclgrVfD rjdEfJ6wgPbRE7+d5rPCL/rfOEZ9eRuWeVtVxHiegadivhI1uKJQfYeuFT5wTKtG F7bdCECz2pcA5ANzl1tiAVFXTMbJdGQzu9T9//66siN5YeMviDC/b8srQF1P3YWI +owrYmd89qeqPARa/gdk5AONuKEUUWypunFrn71JXEG4SDayx3PkXd/CopC0S5MJ Mr0Of7Ck0wNajEfWMOTOFU3DIrA+jzlEAJWBP4MKemq1p39+2Kax7X+6xuDydbTQ wZ865mD+x6xfm4sK1a+cPH+Yc2BrEE2Wf7fXIMPb5goe6gmuMdnZICmKFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB0YZybNK6koePrkhN1EfzypFGRSMB8GA1UdIwQY MBaAFILxi4AznYrmN/SgLzNbvsfIwmveMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3ZHTGdET2RpdVkzOUtBdk0xdS14OGpDYTk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS82NWMyZDktODBkNC00NTlmLWFlNjEt YjViZDQyOGYxOTBjLzEvSFJobkpzMHJxU2g0LXVTRTNVUl9QS2tVWkZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS82NWMyZDktODBkNC00NTlmLWFlNjEtYjViZDQyOGYxOTBj LzEvZ3ZHTGdET2RpdVkzOUtBdk0xdS14OGpDYTk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYg4MA0G CSqGSIb3DQEBCwUAA4IBAQB1DdCjf0dAYBlZW3CCRLV0olAoPfFUQlkGj/y0Xa25 yptG0zxB0CeZncJLZ20MsO31L+uEZiCuoiPUKiMH6lWwIEQxQvT33yMSufra/4c0 wWQRgIqKMtTFuEp4VQWJhC9HInjc3VogrSk99hEBGDymXgo0Ict8KOGgI/TXCAnP 1g1OvXjmwD0ClOBtKSkHv1Dt4kRLcst4CJgNgWu3uwvUp66WdOb4/FdmgWP/Aw5H 53h/+fsUaHJv02m77dy22v9Ijk+fR9nb3sUr5qp9fQIgXWB1ycrwpmE6qzk8JTw6 kIhDnGTtnDdQUPfLswufBMGQetnlHN0kN9WcCJ99njTU -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:13 2026 by rpki-client