This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/hxPfoQ5zcHsvOrtnuhN1m95U5cU.roa File: hxPfoQ5zcHsvOrtnuhN1m95U5cU.roa (raw, json) Hash identifier: lliptOGwNH/8NzlTS+UvxhO5pR/n6bNmW4zrOP9Ic50= Subject key identifier: 87:13:DF:A1:0E:73:70:7B:2F:3A:BB:67:BA:13:75:9B:DE:54:E5:C5 Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Certificate serial: 019B7D5C772E78C33A9A02F525C3C530FFAF Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/hxPfoQ5zcHsvOrtnuhN1m95U5cU.roa Signing time: Fri 02 Jan 2026 06:19:30 +0000 ROA not before: Fri 02 Jan 2026 06:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211120 IP address blocks: 193.3.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:77:2e:78:c3:3a:9a:02:f5:25:c3:c5:30:ff:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Validity Not Before: Jan 2 06:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8713dfa10e73707b2f3abb67ba13759bde54e5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:68:ea:fd:08:60:e0:05:1d:73:21:cd:bb:62: 35:1d:af:0e:e1:04:e3:a7:3a:61:52:d2:38:c9:d9: bf:49:b1:3e:c0:dc:e6:56:e0:fc:be:a1:51:18:1f: 94:7c:df:b8:24:f3:8f:98:e0:13:bd:d0:5f:da:7f: 24:95:98:29:8e:fc:20:7e:59:97:29:64:96:10:4c: b7:68:fe:e5:a5:00:53:a5:4e:de:45:50:0c:b2:a5: 65:0f:5c:9b:64:e2:04:3b:15:fb:ce:e7:8d:d2:d1: c4:f9:3e:ae:9b:94:2b:8c:0d:2c:ac:74:a7:c3:bd: a2:54:d4:5d:12:e2:fb:b2:6b:b1:89:d5:f6:db:64: 13:f0:03:03:0d:41:e9:07:c2:99:e7:12:a3:05:58: 6d:2a:17:fb:81:c1:eb:8a:fb:6a:6d:ee:d0:5f:4e: 54:79:00:bc:f9:56:fc:87:f1:3d:f9:e7:b2:8f:db: fb:4d:c5:dc:54:56:a7:d7:19:58:01:4b:ae:d1:97: af:34:ec:cf:23:ee:b9:30:09:fb:4f:4b:fe:f8:9b: f9:87:b8:aa:3e:6c:61:6a:cb:8f:23:92:8b:07:4e: 89:62:6b:02:b1:a3:d0:b8:7d:4d:9b:ab:5b:30:3d: b7:64:c9:c0:a7:23:01:41:f0:3e:8d:b6:c3:ca:e8: 90:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:13:DF:A1:0E:73:70:7B:2F:3A:BB:67:BA:13:75:9B:DE:54:E5:C5 X509v3 Authority Key Identifier: keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/hxPfoQ5zcHsvOrtnuhN1m95U5cU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.3.44.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:44:b9:34:4d:2f:6f:92:ee:6d:88:08:27:2c:7b:76:b1:e8: ef:d3:6e:9f:05:e0:da:68:81:6e:a3:95:26:e5:80:af:a7:1d: 35:a3:b8:33:b9:f5:f3:41:8c:a6:fb:04:21:92:40:cf:24:c9: d9:f3:7f:b0:38:39:f9:9f:7e:02:52:3f:79:da:b4:14:28:21: 78:7e:59:ef:5f:89:ec:62:48:be:8a:94:92:3c:b8:52:db:1e: 31:38:31:42:3f:8d:04:c5:5f:7b:66:94:30:e3:41:c6:ac:cd: cf:12:52:38:8a:8e:53:07:35:52:f7:eb:b2:13:44:62:99:32: 02:78:23:0f:26:af:87:8d:38:86:ed:46:19:9b:96:37:74:f1: 1b:47:c8:34:d3:42:ce:78:07:52:32:4e:bf:0c:ff:54:bc:a1: ad:a7:a4:45:d0:f4:04:5f:a7:69:ba:f2:5a:43:0f:e9:96:7f: fe:0d:63:c2:b2:a1:d2:c3:22:70:4d:b3:02:28:e8:b9:b3:14: 76:2c:d4:65:b9:ce:12:0e:f7:fa:fa:ff:d4:d6:15:9a:aa:90: 7b:4d:91:df:7f:ce:fa:a9:e5:87:82:39:f6:20:27:a8:78:eb: 54:7d:dc:3d:52:56:e5:6f:ec:50:74:d4:d5:d7:cf:12:dc:9a: 98:fb:01:06 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XHcueMM6mgL1JcPFMP+vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1 YmE2ODEwHhcNMjYwMTAyMDYxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzEzZGZhMTBlNzM3MDdiMmYzYWJiNjdiYTEzNzU5YmRlNTRlNWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Wjq/Qhg4AUdcyHNu2I1Ha8O4QTj pzphUtI4ydm/SbE+wNzmVuD8vqFRGB+UfN+4JPOPmOATvdBf2n8klZgpjvwgflmX KWSWEEy3aP7lpQBTpU7eRVAMsqVlD1ybZOIEOxX7zueN0tHE+T6um5QrjA0srHSn w72iVNRdEuL7smuxidX222QT8AMDDUHpB8KZ5xKjBVhtKhf7gcHrivtqbe7QX05U eQC8+Vb8h/E9+eeyj9v7TcXcVFan1xlYAUuu0ZevNOzPI+65MAn7T0v++Jv5h7iq PmxhasuPI5KLB06JYmsCsaPQuH1Nm6tbMD23ZMnApyMBQfA+jbbDyuiQ/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIcT36EOc3B7Lzq7Z7oTdZveVOXFMB8GA1UdIwQY MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt YTg3NzNkZTc2OGY3LzEvaHhQZm9RNXpjSHN2T3J0bnVoTjFtOTVVNWNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3 LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQMsMA0G CSqGSIb3DQEBCwUAA4IBAQAbRLk0TS9vku5tiAgnLHt2sejv026fBeDaaIFuo5Um 5YCvpx01o7gzufXzQYym+wQhkkDPJMnZ83+wODn5n34CUj952rQUKCF4flnvX4ns Yki+ipSSPLhS2x4xODFCP40ExV97ZpQw40HGrM3PElI4io5TBzVS9+uyE0RimTIC eCMPJq+HjTiG7UYZm5Y3dPEbR8g000LOeAdSMk6/DP9UvKGtp6RF0PQEX6dpuvJa Qw/pln/+DWPCsqHSwyJwTbMCKOi5sxR2LNRluc4SDvf6+v/U1hWaqpB7TZHff876 qeWHgjn2ICeoeOtUfdw9Ulblb+xQdNTV188S3JqY+wEG -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:58 2026 by rpki-client