This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/HBckW3ER80MSeSiwpy-Z-q1qiGA.roa File: HBckW3ER80MSeSiwpy-Z-q1qiGA.roa (raw, json) Hash identifier: QBBHo4qiNBL+JHuv6YtHpt1D3ezGsz5yopdFgNvM84U= Subject key identifier: 1C:17:24:5B:71:11:F3:43:12:79:28:B0:A7:2F:99:FA:AD:6A:88:60 Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df Certificate serial: 019B7E37F755428071ED3AA3055D1A757E5C Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/HBckW3ER80MSeSiwpy-Z-q1qiGA.roa Signing time: Fri 02 Jan 2026 10:19:15 +0000 ROA not before: Fri 02 Jan 2026 10:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21413 IP address blocks: 153.96.26.0/24 maxlen: 24 192.44.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.mft rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:f7:55:42:80:71:ed:3a:a3:05:5d:1a:75:7e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df Validity Not Before: Jan 2 10:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c17245b7111f343127928b0a72f99faad6a8860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:89:26:33:7c:19:93:fd:0d:f0:c2:b9:3b: 63:20:87:fc:d4:03:41:6f:79:c7:3d:cc:70:4d:12: 44:c3:fb:c9:0e:a6:bd:54:59:6e:e8:de:ca:22:46: ed:88:4a:74:7a:d0:71:56:3f:f7:68:67:cb:9a:bc: fc:5d:3f:dd:5a:df:8e:7e:e9:b4:bf:ed:79:5f:b1: be:61:c0:c8:10:8c:c3:1a:cc:f7:8d:d8:c1:0b:4e: 9b:4c:ee:2e:4c:33:01:0c:eb:25:c2:3b:7d:93:38: 6d:e4:df:bf:e9:13:b2:98:cf:94:b3:9e:e8:2d:5e: 4a:b9:e6:d3:fa:8e:dd:ef:ab:d7:7e:1c:bb:3f:c6: ac:2b:87:d7:3f:9d:40:c4:2b:58:b0:0a:4f:26:0b: 28:c5:72:f2:f8:66:08:b8:1e:c3:59:65:cc:cd:e5: 6c:bc:a1:5e:23:a1:cf:10:73:60:a7:9a:1f:8c:f9: 43:21:11:ce:38:47:f6:26:e9:87:cd:c7:5f:00:c0: 80:13:5c:7e:00:eb:d6:b7:12:91:56:94:9f:3e:52: 88:0a:37:54:95:21:01:54:8e:7c:c4:6f:1a:c8:f0: 5c:39:cb:ff:f7:2c:e5:ce:6f:71:9e:c2:aa:42:72: d0:50:04:ca:1d:e0:4f:12:44:4f:ba:3c:85:4f:b6: 55:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:17:24:5B:71:11:F3:43:12:79:28:B0:A7:2F:99:FA:AD:6A:88:60 X509v3 Authority Key Identifier: keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/HBckW3ER80MSeSiwpy-Z-q1qiGA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.96.26.0/24 192.44.4.0/24 Signature Algorithm: sha256WithRSAEncryption 02:86:be:82:18:66:f1:29:6e:23:50:9e:23:11:13:ad:8d:a6: fe:87:15:df:31:4e:54:22:51:58:bd:ff:55:1a:56:70:4d:7a: 79:d8:54:ea:45:2a:0c:84:27:88:8f:f6:41:e9:6f:f4:f5:9f: f0:e9:92:e4:d9:70:b1:64:2c:90:ca:af:5c:9c:5c:16:1f:a9: d0:50:c7:61:54:4f:84:18:70:6c:74:e8:89:ae:d1:d3:1f:ea: 50:2c:9f:64:24:05:00:44:31:83:b3:a9:0f:bc:06:5d:96:cd: 23:0d:ac:9d:84:64:af:1a:66:41:40:c4:dc:69:f6:d5:1a:20: a9:00:fb:a7:36:93:bd:17:95:23:79:a3:85:df:ba:b2:fe:2c: 3a:cc:69:88:85:c8:6c:d6:18:fb:34:63:e0:f3:be:e8:b0:3a: d4:56:d8:ee:8f:e8:4f:70:50:bb:09:a9:8a:18:d6:a4:4a:62: ca:62:40:0b:59:b0:bc:85:ec:6c:88:a7:aa:e5:bf:26:17:32: ee:ea:91:de:ec:21:47:80:6b:be:32:af:86:42:4b:34:b2:aa: d2:11:bd:67:58:ce:30:17:04:f8:1a:a6:93:c8:6b:73:c6:e2: 5a:62:1a:c6:0e:e6:be:25:f4:80:34:e0:27:3d:34:ec:6d:0e: 7b:d0:65:30 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N/dVQoBx7TqjBV0adX5cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2 NDIwZGYwHhcNMjYwMTAyMTAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzE3MjQ1YjcxMTFmMzQzMTI3OTI4YjBhNzJmOTlmYWFkNmE4ODYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJ6JJjN8GZP9DfDCuTtjIIf81ANB b3nHPcxwTRJEw/vJDqa9VFlu6N7KIkbtiEp0etBxVj/3aGfLmrz8XT/dWt+Ofum0 v+15X7G+YcDIEIzDGsz3jdjBC06bTO4uTDMBDOslwjt9kzht5N+/6ROymM+Us57o LV5KuebT+o7d76vXfhy7P8asK4fXP51AxCtYsApPJgsoxXLy+GYIuB7DWWXMzeVs vKFeI6HPEHNgp5ofjPlDIRHOOEf2JumHzcdfAMCAE1x+AOvWtxKRVpSfPlKICjdU lSEBVI58xG8ayPBcOcv/9yzlzm9xnsKqQnLQUATKHeBPEkRPujyFT7ZVkQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBwXJFtxEfNDEnkosKcvmfqtaohgMB8GA1UdIwQY MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct YWQ4ZmJlYWE4ZGQ5LzEvSEJja1czRVI4ME1TZVNpd3B5LVotcTFxaUdBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTctYWQ4ZmJlYWE4ZGQ5 LzEvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAmWAaAwQA wCwEMA0GCSqGSIb3DQEBCwUAA4IBAQAChr6CGGbxKW4jUJ4jEROtjab+hxXfMU5U IlFYvf9VGlZwTXp52FTqRSoMhCeIj/ZB6W/09Z/w6ZLk2XCxZCyQyq9cnFwWH6nQ UMdhVE+EGHBsdOiJrtHTH+pQLJ9kJAUARDGDs6kPvAZdls0jDaydhGSvGmZBQMTc afbVGiCpAPunNpO9F5UjeaOF37qy/iw6zGmIhchs1hj7NGPg877osDrUVtjuj+hP cFC7CamKGNakSmLKYkALWbC8hexsiKeq5b8mFzLu6pHe7CFHgGu+Mq+GQks0sqrS Eb1nWM4wFwT4GqaTyGtzxuJaYhrGDua+JfSANOAnPTTsbQ570GUw -----END CERTIFICATE-----Generated at Wed Jan 21 14:40:58 2026 by rpki-client