This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/HrUPMg6A27LayY1nzJVXakWil-8.roa File: HrUPMg6A27LayY1nzJVXakWil-8.roa (raw, json) Hash identifier: 6oiaD9+R084Ie04PfQ9j94YYcX9VFnuvxlsXJPk70DA= Subject key identifier: 1E:B5:0F:32:0E:80:DB:B2:DA:C9:8D:67:CC:95:57:6A:45:A2:97:EF Certificate issuer: /CN=ddd9770c307ea3960c8da268a8865a4a9fa634c9 Certificate serial: 019B77C72E7A3A80AD35A04FE3F53F1F4D06 Authority key identifier: DD:D9:77:0C:30:7E:A3:96:0C:8D:A2:68:A8:86:5A:4A:9F:A6:34:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dl3DDB-o5YMjaJoqIZaSp-mNMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/HrUPMg6A27LayY1nzJVXakWil-8.roa Signing time: Thu 01 Jan 2026 04:18:20 +0000 ROA not before: Thu 01 Jan 2026 04:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198949 IP address blocks: 193.34.56.0/24 maxlen: 24 193.34.57.0/24 maxlen: 24 193.34.58.0/24 maxlen: 24 193.34.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/3dl3DDB-o5YMjaJoqIZaSp-mNMk.crl rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/3dl3DDB-o5YMjaJoqIZaSp-mNMk.mft rsync://rpki.ripe.net/repository/DEFAULT/3dl3DDB-o5YMjaJoqIZaSp-mNMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 13:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:2e:7a:3a:80:ad:35:a0:4f:e3:f5:3f:1f:4d:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddd9770c307ea3960c8da268a8865a4a9fa634c9 Validity Not Before: Jan 1 04:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1eb50f320e80dbb2dac98d67cc95576a45a297ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e0:ac:6c:7f:e6:71:35:3e:d3:4f:2b:80:f6: 54:80:19:cf:05:e6:d7:5e:cf:6a:a5:12:41:a7:5a: 32:27:f5:25:9d:f6:8d:02:d4:be:70:b0:c2:c5:c7: a6:a1:c6:5a:d6:b7:ca:a6:7e:60:ab:2f:d2:15:a3: 60:bd:c0:40:6e:87:e9:56:af:8b:83:3c:ad:a8:dd: bd:85:eb:28:ef:d9:48:b2:8c:93:dc:1b:7f:fa:de: 13:b8:56:29:65:33:32:6c:58:d5:0c:4c:6e:f3:7f: a4:13:7a:82:bc:53:e1:9d:46:58:03:87:b5:9a:a3: 6f:75:bd:3b:6a:32:9b:71:88:a4:46:b1:0a:e0:40: dd:fc:ab:0d:9b:54:22:32:36:45:5a:3b:44:b6:b4: 20:6e:8a:7b:36:0e:3e:60:06:02:73:3b:4b:49:fd: 3e:4b:6f:d1:33:38:2f:b9:8a:ec:66:6e:33:d5:6a: cb:2d:f3:db:3f:88:31:06:df:d9:d8:3a:52:ae:79: 65:8b:ae:e0:6c:ce:3a:04:72:6c:2f:92:76:12:b7: 7b:fd:97:44:9c:4d:7a:65:04:04:3b:a4:db:b3:9b: 52:7b:62:05:80:8c:9c:3a:d2:25:b8:05:8f:ae:b9: 7c:13:63:28:63:9b:7d:82:77:76:c2:75:b9:8a:50: 19:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B5:0F:32:0E:80:DB:B2:DA:C9:8D:67:CC:95:57:6A:45:A2:97:EF X509v3 Authority Key Identifier: keyid:DD:D9:77:0C:30:7E:A3:96:0C:8D:A2:68:A8:86:5A:4A:9F:A6:34:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dl3DDB-o5YMjaJoqIZaSp-mNMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/HrUPMg6A27LayY1nzJVXakWil-8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/3dl3DDB-o5YMjaJoqIZaSp-mNMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.34.56.0/22 Signature Algorithm: sha256WithRSAEncryption cc:9a:77:ec:1f:2b:dd:f7:cf:ac:66:ce:69:d8:29:6d:fe:ba: 1b:c6:c4:6f:39:98:99:31:59:e2:68:3f:1f:14:38:7c:54:6c: 04:2b:b0:17:38:c2:35:17:3f:ec:d7:af:e2:96:08:45:a0:57: dc:d1:c7:d9:36:a2:23:62:b9:a9:f1:df:4a:99:92:d4:fe:03: 0e:53:92:05:c3:28:26:ab:41:b1:61:4a:fe:27:3b:07:46:c8: d5:ce:85:ce:34:e3:69:4a:d3:eb:38:22:17:65:30:56:78:df: 75:c6:74:04:ea:dc:d6:6f:77:1d:e3:3e:8d:68:29:c7:ab:61: e7:eb:6c:f8:55:f3:5c:6c:63:d6:89:3c:ed:db:27:46:6d:3d: bf:16:b6:c8:13:e3:f1:02:8c:4f:08:ae:b9:32:11:ad:a7:a1: ff:e3:99:3f:42:54:7c:91:b5:04:1b:63:26:23:8a:b0:d2:52: b5:68:d6:87:e4:af:51:af:bf:1b:74:6f:95:97:52:7e:92:61: 1a:d4:91:cb:76:9b:da:ba:75:26:b1:b2:c7:16:d1:28:ed:ce: 82:85:f6:0d:f2:8d:12:35:47:e4:56:e7:93:35:e3:e7:97:6a: f3:6c:04:ef:02:0a:ea:97:e9:cd:80:2d:e4:ac:30:9d:30:f0: 04:62:5a:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xy56OoCtNaBP4/U/H00GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkZDk3NzBjMzA3ZWEzOTYwYzhkYTI2OGE4ODY1YTRhOWZh NjM0YzkwHhcNMjYwMTAxMDQxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWI1MGYzMjBlODBkYmIyZGFjOThkNjdjYzk1NTc2YTQ1YTI5N2VmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleCsbH/mcTU+008rgPZUgBnPBebX Xs9qpRJBp1oyJ/UlnfaNAtS+cLDCxcemocZa1rfKpn5gqy/SFaNgvcBAbofpVq+L gzytqN29heso79lIsoyT3Bt/+t4TuFYpZTMybFjVDExu83+kE3qCvFPhnUZYA4e1 mqNvdb07ajKbcYikRrEK4EDd/KsNm1QiMjZFWjtEtrQgbop7Ng4+YAYCcztLSf0+ S2/RMzgvuYrsZm4z1WrLLfPbP4gxBt/Z2DpSrnlli67gbM46BHJsL5J2Erd7/ZdE nE16ZQQEO6Tbs5tSe2IFgIycOtIluAWPrrl8E2MoY5t9gnd2wnW5ilAZsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB61DzIOgNuy2smNZ8yVV2pFopfvMB8GA1UdIwQY MBaAFN3ZdwwwfqOWDI2iaKiGWkqfpjTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2RsM0REQi1vNVlNamFKb3FJWmFTcC1tTk1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80NDQ0YWItM2RhMy00MThiLWExMDUt ZjJmZTBkMDRiZmJmLzEvSHJVUE1nNkEyN0xheVkxbnpKVlhha1dpbC04LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My80NDQ0YWItM2RhMy00MThiLWExMDUtZjJmZTBkMDRiZmJm LzEvM2RsM0REQi1vNVlNamFKb3FJWmFTcC1tTk1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwSI4MA0G CSqGSIb3DQEBCwUAA4IBAQDMmnfsHyvd98+sZs5p2Clt/robxsRvOZiZMVniaD8f FDh8VGwEK7AXOMI1Fz/s16/ilghFoFfc0cfZNqIjYrmp8d9KmZLU/gMOU5IFwygm q0GxYUr+JzsHRsjVzoXONONpStPrOCIXZTBWeN91xnQE6tzWb3cd4z6NaCnHq2Hn 62z4VfNcbGPWiTzt2ydGbT2/FrbIE+PxAoxPCK65MhGtp6H/45k/QlR8kbUEG2Mm I4qw0lK1aNaH5K9Rr78bdG+Vl1J+kmEa1JHLdpvaunUmsbLHFtEo7c6ChfYN8o0S NUfkVueTNePnl2rzbATvAgrql+nNgC3krDCdMPAEYlrA -----END CERTIFICATE-----Generated at Wed Jan 7 22:30:41 2026 by rpki-client