This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/hWEqgXM_UrfhtNd8HquKv7oK544.roa File: hWEqgXM_UrfhtNd8HquKv7oK544.roa (raw, json) Hash identifier: gp73VkIDVKkt5oSNst88ELnYTUChw8KjBBH34B/3UGQ= Subject key identifier: 85:61:2A:81:73:3F:52:B7:E1:B4:D7:7C:1E:AB:8A:BF:BA:0A:E7:8E Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d Certificate serial: 019B7C12EF0FCBCFF37BAA5336A0E391029A Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/hWEqgXM_UrfhtNd8HquKv7oK544.roa Signing time: Fri 02 Jan 2026 00:19:34 +0000 ROA not before: Fri 02 Jan 2026 00:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18679 IP address blocks: 195.65.10.0/24 maxlen: 24 195.65.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.mft rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:ef:0f:cb:cf:f3:7b:aa:53:36:a0:e3:91:02:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d Validity Not Before: Jan 2 00:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85612a81733f52b7e1b4d77c1eab8abfba0ae78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4a:2d:1f:8c:d6:ad:43:2e:90:f0:e8:cd:6e: 85:18:3f:69:75:f1:2f:0d:2c:e6:bc:80:86:07:f5: e1:c9:e8:9d:b2:47:de:ff:36:bb:e3:cc:f8:9f:78: b6:89:81:a8:3b:55:e5:ea:c5:08:3f:29:2b:7c:e3: a5:39:56:33:65:14:aa:dd:d9:75:75:94:eb:1b:aa: 1b:80:4a:9d:aa:14:2e:37:9a:0f:29:f9:ad:3a:ff: 23:60:8e:c9:0a:ed:9c:25:55:94:46:dd:9d:1a:10: 2d:88:cd:2c:1d:2a:6f:47:bb:2e:ea:0b:6c:3d:27: c5:1a:34:a2:4f:89:51:5e:fe:5a:82:e7:e2:a1:55: d1:93:4f:d7:13:a8:94:07:ce:90:d0:88:7d:53:64: 05:37:a1:64:3a:a7:20:fc:cc:5a:c7:2a:a5:5d:d9: 28:59:f1:06:3c:7b:d4:bd:28:ef:be:15:2c:bb:57: cb:3f:71:65:70:d8:4f:24:bc:b8:1a:a6:4f:cf:a1: 26:37:af:2e:eb:b5:b4:f1:94:7a:5d:d3:c9:cf:eb: 98:12:b0:21:48:1c:20:88:a7:4b:92:c9:a9:1a:57: af:8a:c4:15:2c:e5:4f:c0:f4:d2:f4:9f:cf:ce:a8: 38:2a:18:d9:af:95:a2:45:49:ae:5c:3b:34:0e:f6: a9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:61:2A:81:73:3F:52:B7:E1:B4:D7:7C:1E:AB:8A:BF:BA:0A:E7:8E X509v3 Authority Key Identifier: keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/hWEqgXM_UrfhtNd8HquKv7oK544.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.65.10.0/24 195.65.31.0/24 Signature Algorithm: sha256WithRSAEncryption 75:3b:e0:1b:c2:4f:5d:66:70:74:41:e0:1e:90:f5:06:83:8b: ee:b9:16:0f:e3:c1:50:25:b4:2d:f7:a2:b4:cc:74:e9:79:82: 0b:11:57:32:09:71:d8:c9:e0:69:6c:c3:ab:e2:34:fc:5c:74: dc:e3:a4:34:d9:86:ac:37:bf:80:d7:0a:11:f1:d3:c8:92:24: 09:d0:72:f2:10:f8:2e:d4:62:59:30:ce:b8:d1:91:ce:15:33: 00:55:48:57:ed:38:0a:81:67:d5:0b:72:b6:a3:23:4e:06:a8: 83:73:75:c0:66:9a:e5:74:c9:c0:1a:b4:f5:bc:fd:9a:53:25: 88:e2:c4:d2:17:4c:77:73:db:de:be:c6:39:64:c8:8e:39:34: 70:bf:d0:ad:a5:7d:f4:95:a0:56:f9:29:ba:d0:2b:50:6a:7e: db:86:e4:e3:73:6a:e0:ba:47:0d:ca:0b:2c:37:a7:6a:98:c7: 83:aa:5f:a9:63:b7:c6:3d:f8:f5:1b:b5:97:f9:14:76:f1:a3: 0a:24:76:65:d3:ce:ba:e9:c5:01:67:3c:23:80:2f:23:ff:61: 87:2a:e8:4d:67:ae:8f:df:19:01:f1:b3:85:d9:43:b3:d6:1b: ed:46:a6:ae:54:78:00:8b:6b:b2:bc:20:b7:08:37:99:d7:dc: 4c:a4:b5:98 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Eu8Py8/ze6pTNqDjkQKaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy MDRjOGQwHhcNMjYwMTAyMDAxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NTYxMmE4MTczM2Y1MmI3ZTFiNGQ3N2MxZWFiOGFiZmJhMGFlNzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00otH4zWrUMukPDozW6FGD9pdfEv DSzmvICGB/Xhyeidskfe/za748z4n3i2iYGoO1Xl6sUIPykrfOOlOVYzZRSq3dl1 dZTrG6obgEqdqhQuN5oPKfmtOv8jYI7JCu2cJVWURt2dGhAtiM0sHSpvR7su6gts PSfFGjSiT4lRXv5agufioVXRk0/XE6iUB86Q0Ih9U2QFN6FkOqcg/MxaxyqlXdko WfEGPHvUvSjvvhUsu1fLP3FlcNhPJLy4GqZPz6EmN68u67W08ZR6XdPJz+uYErAh SBwgiKdLksmpGlevisQVLOVPwPTS9J/Pzqg4KhjZr5WiRUmuXDs0DvapYQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIVhKoFzP1K34bTXfB6rir+6CueOMB8GA1UdIwQY MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt YmQxOTI2NzZjOWJiLzEvaFdFcWdYTV9VcmZodE5kOEhxdUt2N29LNTQ0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw0EKAwQA w0EfMA0GCSqGSIb3DQEBCwUAA4IBAQB1O+Abwk9dZnB0QeAekPUGg4vuuRYP48FQ JbQt96K0zHTpeYILEVcyCXHYyeBpbMOr4jT8XHTc46Q02YasN7+A1woR8dPIkiQJ 0HLyEPgu1GJZMM640ZHOFTMAVUhX7TgKgWfVC3K2oyNOBqiDc3XAZprldMnAGrT1 vP2aUyWI4sTSF0x3c9vevsY5ZMiOOTRwv9CtpX30laBW+Sm60CtQan7bhuTjc2rg ukcNygssN6dqmMeDql+pY7fGPfj1G7WX+RR28aMKJHZl08666cUBZzwjgC8j/2GH KuhNZ66P3xkB8bOF2UOz1hvtRqauVHgAi2uyvCC3CDeZ19xMpLWY -----END CERTIFICATE-----Generated at Mon Jan 26 17:44:43 2026 by rpki-client