This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/HnAH4hdPwphL9pnrJM2oi5WzFjM.roa File: HnAH4hdPwphL9pnrJM2oi5WzFjM.roa (raw, json) Hash identifier: SKK/yufvQ72Law3tDBhQYqMJ7CuB7oHAbYb1kLK3rog= Subject key identifier: 1E:70:07:E2:17:4F:C2:98:4B:F6:99:EB:24:CD:A8:8B:95:B3:16:33 Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad Certificate serial: 019A72A834D03CEFE798542139314ADA76BD Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/HnAH4hdPwphL9pnrJM2oi5WzFjM.roa Signing time: Tue 11 Nov 2025 11:23:37 +0000 ROA not before: Tue 11 Nov 2025 11:23:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 397423 IP address blocks: 45.143.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.mft rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 24 Nov 2025 06:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:72:a8:34:d0:3c:ef:e7:98:54:21:39:31:4a:da:76:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad Validity Not Before: Nov 11 11:23:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=1e7007e2174fc2984bf699eb24cda88b95b31633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:68:58:82:85:1e:10:28:8a:b5:5c:5a:03:f1: 26:3a:20:ec:ef:4e:e0:ce:b3:35:eb:01:9b:f2:45: 3c:80:56:8e:69:49:dc:d4:3f:9b:bd:e7:0d:1e:58: 47:e6:5e:60:a0:be:22:d7:7b:65:c3:35:5f:11:b5: b6:cd:74:89:e2:bd:6d:7e:d4:5d:d0:0a:c8:d9:0f: 19:96:d6:d4:93:20:22:75:4d:b3:5f:a6:ec:5e:a2: 0d:ec:2e:b0:ae:a9:bb:e9:db:04:81:29:15:5a:71: b9:9a:c5:66:14:ea:b4:13:f9:f8:51:23:38:a2:19: ae:d5:20:e8:17:23:5b:4f:78:17:df:96:ec:21:82: 46:9a:98:d5:8b:e2:9b:a6:38:24:6f:77:ba:84:85: b1:42:39:a2:38:61:01:78:4d:57:83:88:bc:1d:80: e3:43:24:2c:01:9a:e1:1f:b8:16:aa:c4:ba:e5:9e: 17:3c:dc:ee:15:f9:a5:d3:67:7c:c0:0c:87:50:a2: 69:17:09:35:b5:34:5d:e3:f9:e0:c9:ba:22:c6:ce: ab:64:9a:5b:07:82:af:54:d3:c6:87:01:56:d5:0f: e7:8f:dc:48:c7:53:cb:ae:64:00:04:05:d0:81:38: 1b:3b:9a:26:57:cd:1b:99:36:b7:79:d4:9b:25:99: 61:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:70:07:E2:17:4F:C2:98:4B:F6:99:EB:24:CD:A8:8B:95:B3:16:33 X509v3 Authority Key Identifier: keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/HnAH4hdPwphL9pnrJM2oi5WzFjM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.9.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:9d:06:d3:b7:9e:0f:87:62:12:c0:98:cc:81:f4:14:dc:36: 9d:96:0d:39:ad:5e:c0:39:73:61:66:37:98:e7:e8:d7:f5:47: 2e:f7:bf:eb:28:27:b7:5f:3a:2a:55:9f:51:d9:a4:98:56:7a: 59:1a:b0:ec:c4:34:72:4f:c0:b9:5e:25:14:74:ae:3c:8c:31: be:11:5f:fd:7a:27:1d:9c:62:2a:b9:9d:90:fa:b0:17:42:5d: 80:2d:0f:13:10:81:26:f9:d5:41:94:fa:13:33:4a:33:e6:f1: 9e:bc:25:23:eb:29:7e:d1:f0:79:f0:7f:98:2d:fc:40:70:50: 4b:10:d3:44:66:b5:96:8a:67:31:ea:63:cd:ec:19:bc:2b:9e: 35:d7:5e:ca:7d:89:c0:0a:6f:10:e4:8a:d9:7a:2c:b6:1b:bb: 5a:37:13:af:a4:15:68:1a:df:9e:42:c4:9c:70:b7:a0:b0:47: 19:92:70:e2:53:1c:e5:e2:b7:f7:d5:33:41:6a:c0:57:f9:8b: 2e:14:3c:18:3e:35:fc:d1:d1:91:8b:c9:e3:58:ec:f6:8b:40: 9d:64:7c:b5:6e:36:12:a0:71:07:bb:40:7b:7c:0d:71:4b:e5: 46:09:16:04:c6:59:06:ae:4f:e9:66:ac:77:4a:fd:7a:c7:a8: 0e:64:f1:c1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZpyqDTQPO/nmFQhOTFK2na9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmNDRkYmFjYTU2ZGFjMzE5NDAxZjY4YTUwZDkxN2Y1NDI0 NjExYWQwHhcNMjUxMTExMTEyMzM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTcwMDdlMjE3NGZjMjk4NGJmNjk5ZWIyNGNkYTg4Yjk1YjMxNjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmhYgoUeECiKtVxaA/EmOiDs707g zrM16wGb8kU8gFaOaUnc1D+bvecNHlhH5l5goL4i13tlwzVfEbW2zXSJ4r1tftRd 0ArI2Q8ZltbUkyAidU2zX6bsXqIN7C6wrqm76dsEgSkVWnG5msVmFOq0E/n4USM4 ohmu1SDoFyNbT3gX35bsIYJGmpjVi+Kbpjgkb3e6hIWxQjmiOGEBeE1Xg4i8HYDj QyQsAZrhH7gWqsS65Z4XPNzuFfml02d8wAyHUKJpFwk1tTRd4/ngyboixs6rZJpb B4KvVNPGhwFW1Q/nj9xIx1PLrmQABAXQgTgbO5omV80bmTa3edSbJZlhIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB5wB+IXT8KYS/aZ6yTNqIuVsxYzMB8GA1UdIwQY MBaAFP9E26ylbawxlAH2ilDZF/VCRhGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzBUYnJLVnRyREdVQWZhS1VOa1g5VUpHRWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81M2E5NDctZmQwMy00MDE0LTk4Mjct YzVkODk1MDgxOGVjLzEvSG5BSDRoZFB3cGhMOXBuckpNMm9pNVd6RmpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi81M2E5NDctZmQwMy00MDE0LTk4MjctYzVkODk1MDgxOGVj LzEvXzBUYnJLVnRyREdVQWZhS1VOa1g5VUpHRWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY8JMA0G CSqGSIb3DQEBCwUAA4IBAQBsnQbTt54Ph2ISwJjMgfQU3Dadlg05rV7AOXNhZjeY 5+jX9Ucu97/rKCe3XzoqVZ9R2aSYVnpZGrDsxDRyT8C5XiUUdK48jDG+EV/9eicd nGIquZ2Q+rAXQl2ALQ8TEIEm+dVBlPoTM0oz5vGevCUj6yl+0fB58H+YLfxAcFBL ENNEZrWWimcx6mPN7Bm8K541117KfYnACm8Q5IrZeiy2G7taNxOvpBVoGt+eQsSc cLegsEcZknDiUxzl4rf31TNBasBX+YsuFDwYPjX80dGRi8njWOz2i0CdZHy1bjYS oHEHu0B7fA1xS+VGCRYExlkGrk/pZqx3Sv16x6gOZPHB -----END CERTIFICATE-----Generated at Sun Nov 23 13:05:31 2025 by rpki-client