This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/a9916a-13bf-4770-8e44-58b6a5784ab7/1/HCSkn_s79dVRLP0NsGdsyRp7U8s.roa File: HCSkn_s79dVRLP0NsGdsyRp7U8s.roa (raw, json) Hash identifier: vA+6CL2dZEJQx3L3PcyWjNM/CFH05g+lZ0pmunKFANw= Subject key identifier: 1C:24:A4:9F:FB:3B:F5:D5:51:2C:FD:0D:B0:67:6C:C9:1A:7B:53:CB Certificate issuer: /CN=e8d062a969d2142bb8506a571180b45bd0fab934 Certificate serial: 019B7F856123570AAC574CCC0FD453CCF8B5 Authority key identifier: E8:D0:62:A9:69:D2:14:2B:B8:50:6A:57:11:80:B4:5B:D0:FA:B9:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6NBiqWnSFCu4UGpXEYC0W9D6uTQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/a9916a-13bf-4770-8e44-58b6a5784ab7/1/HCSkn_s79dVRLP0NsGdsyRp7U8s.roa Signing time: Fri 02 Jan 2026 16:23:26 +0000 ROA not before: Fri 02 Jan 2026 16:23:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24663 IP address blocks: 37.200.120.0/21 maxlen: 24 45.150.204.0/23 maxlen: 24 45.150.207.0/24 maxlen: 24 80.250.224.0/20 maxlen: 24 94.127.216.0/21 maxlen: 24 178.23.224.0/21 maxlen: 24 185.30.228.0/22 maxlen: 24 2a03:8080::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/a9916a-13bf-4770-8e44-58b6a5784ab7/1/6NBiqWnSFCu4UGpXEYC0W9D6uTQ.crl rsync://rpki.ripe.net/repository/DEFAULT/54/a9916a-13bf-4770-8e44-58b6a5784ab7/1/6NBiqWnSFCu4UGpXEYC0W9D6uTQ.mft rsync://rpki.ripe.net/repository/DEFAULT/6NBiqWnSFCu4UGpXEYC0W9D6uTQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:61:23:57:0a:ac:57:4c:cc:0f:d4:53:cc:f8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8d062a969d2142bb8506a571180b45bd0fab934 Validity Not Before: Jan 2 16:23:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c24a49ffb3bf5d5512cfd0db0676cc91a7b53cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:00:0d:e5:d7:0a:fd:86:e4:7b:04:b7:39:1a: 4c:a4:83:6f:f8:82:79:98:6b:98:a2:62:78:e8:85: f8:96:d9:84:d6:74:67:2d:dd:d2:d9:db:64:e1:62: 85:84:2f:48:a6:29:d5:98:e2:93:a4:85:02:57:c0: d3:c7:0a:d2:66:52:60:80:58:f7:15:c5:c5:53:38: 24:4f:e0:fa:97:30:1f:85:54:0f:a5:5d:e2:b5:0e: bb:a6:60:69:31:fa:06:2f:4e:a1:0c:6a:d1:38:0d: ef:6d:67:3d:9b:6c:1a:64:a0:1c:28:85:d3:9d:f7: f8:fc:8d:83:d4:a5:e8:98:04:8a:92:cb:a0:4a:fe: 98:ce:e6:cd:fe:cc:08:fc:ca:d6:04:1a:26:b0:72: 39:f2:a9:e4:a6:4f:27:f1:58:0e:4e:78:2b:ec:e6: 5d:37:fa:99:be:e1:75:00:69:61:7a:37:5b:5b:c8: 34:95:c9:ef:ec:81:72:d3:61:f2:2e:84:35:e4:54: 8f:9f:a5:3a:57:3b:a4:8d:22:fc:1d:b8:b3:10:b7: 24:8f:cd:c6:40:cf:48:34:de:50:3d:98:9b:65:1f: 32:a3:02:de:9a:33:05:dd:b2:6f:e3:d7:bc:1e:09: d4:ab:e0:61:0a:67:92:c8:e7:fe:bc:3d:0a:c0:08: 11:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:24:A4:9F:FB:3B:F5:D5:51:2C:FD:0D:B0:67:6C:C9:1A:7B:53:CB X509v3 Authority Key Identifier: keyid:E8:D0:62:A9:69:D2:14:2B:B8:50:6A:57:11:80:B4:5B:D0:FA:B9:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6NBiqWnSFCu4UGpXEYC0W9D6uTQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/a9916a-13bf-4770-8e44-58b6a5784ab7/1/HCSkn_s79dVRLP0NsGdsyRp7U8s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/a9916a-13bf-4770-8e44-58b6a5784ab7/1/6NBiqWnSFCu4UGpXEYC0W9D6uTQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.200.120.0/21 45.150.204.0/23 45.150.207.0/24 80.250.224.0/20 94.127.216.0/21 178.23.224.0/21 185.30.228.0/22 IPv6: 2a03:8080::/32 Signature Algorithm: sha256WithRSAEncryption 4b:84:c2:8a:76:34:47:08:76:2a:3f:71:09:99:1c:37:71:24: 0e:2a:1b:88:5b:ac:35:d8:42:1d:b4:39:b5:23:cf:e7:b0:3b: 04:5e:e1:3c:1d:06:3f:2e:85:5c:d9:8a:ac:dc:dd:f4:74:30: 7b:0e:99:fb:6e:bd:66:1f:3d:c8:81:13:fd:d0:04:1b:62:ab: 58:56:88:e2:c6:19:eb:5c:0f:00:53:71:63:f7:3b:ab:af:fb: 11:40:c4:cd:89:9b:cc:d6:d3:f9:4c:47:8b:ba:6e:f0:76:ee: 9b:59:cf:a3:e3:33:7f:a4:e8:14:48:09:c7:1f:ec:b2:7c:7f: 9a:25:19:de:b9:48:ac:9a:29:80:a9:f9:7c:92:fa:6c:e5:35: 19:7b:44:d3:b8:f3:d0:39:76:a3:6e:25:45:58:71:7f:eb:64: b7:fd:ae:ba:1a:68:1e:08:18:84:34:e3:b7:28:9e:7e:e1:52: b8:59:ac:ea:fb:1d:19:bc:fa:19:96:03:59:78:e9:5a:1d:31: ce:41:69:d6:c8:d3:f2:f5:d9:94:de:75:48:01:7b:a6:67:b8: ef:12:33:f4:c9:6b:82:85:aa:62:43:63:9d:36:5c:ae:00:c7: f9:49:02:24:b6:04:5b:ea:f8:9c:1b:56:f2:55:34:5d:6b:22: bf:13:04:98 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt/hWEjVwqsV0zMD9RTzPi1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4ZDA2MmE5NjlkMjE0MmJiODUwNmE1NzExODBiNDViZDBm YWI5MzQwHhcNMjYwMTAyMTYyMzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzI0YTQ5ZmZiM2JmNWQ1NTEyY2ZkMGRiMDY3NmNjOTFhN2I1M2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wAN5dcK/YbkewS3ORpMpINv+IJ5 mGuYomJ46IX4ltmE1nRnLd3S2dtk4WKFhC9IpinVmOKTpIUCV8DTxwrSZlJggFj3 FcXFUzgkT+D6lzAfhVQPpV3itQ67pmBpMfoGL06hDGrROA3vbWc9m2waZKAcKIXT nff4/I2D1KXomASKksugSv6YzubN/swI/MrWBBomsHI58qnkpk8n8VgOTngr7OZd N/qZvuF1AGlhejdbW8g0lcnv7IFy02HyLoQ15FSPn6U6VzukjSL8HbizELckj83G QM9INN5QPZibZR8yowLemjMF3bJv49e8HgnUq+BhCmeSyOf+vD0KwAgRIQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFBwkpJ/7O/XVUSz9DbBnbMkae1PLMB8GA1UdIwQY MBaAFOjQYqlp0hQruFBqVxGAtFvQ+rk0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk5CaXFXblNGQ3U0VUdwWEVZQzBXOUQ2dVRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9hOTkxNmEtMTNiZi00NzcwLThlNDQt NThiNmE1Nzg0YWI3LzEvSENTa25fczc5ZFZSTFAwTnNHZHN5UnA3VThzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9hOTkxNmEtMTNiZi00NzcwLThlNDQtNThiNmE1Nzg0YWI3 LzEvNk5CaXFXblNGQ3U0VUdwWEVZQzBXOUQ2dVRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQDJch4AwQB LZbMAwQALZbPAwQEUPrgAwQDXn/YAwQDshfgAwQCuR7kMA0EAgACMAcDBQAqA4CA MA0GCSqGSIb3DQEBCwUAA4IBAQBLhMKKdjRHCHYqP3EJmRw3cSQOKhuIW6w12EId tDm1I8/nsDsEXuE8HQY/LoVc2Yqs3N30dDB7Dpn7br1mHz3IgRP90AQbYqtYVoji xhnrXA8AU3Fj9zurr/sRQMTNiZvM1tP5TEeLum7wdu6bWc+j4zN/pOgUSAnHH+yy fH+aJRneuUismimAqfl8kvps5TUZe0TTuPPQOXajbiVFWHF/62S3/a66GmgeCBiE NOO3KJ5+4VK4Wazq+x0ZvPoZlgNZeOlaHTHOQWnWyNPy9dmU3nVIAXumZ7jvEjP0 yWuChapiQ2OdNlyuAMf5SQIktgRb6vicG1byVTRdayK/EwSY -----END CERTIFICATE-----Generated at Mon Feb 9 19:38:34 2026 by rpki-client