This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/d88b46-6ef9-4624-8984-bfa6d340787a/1/HFBIVRwGpzJll63ZQliW3YvEwfQ.roa File: HFBIVRwGpzJll63ZQliW3YvEwfQ.roa (raw, json) Hash identifier: PpccMH3E3902HeGqkwDft0ieaZ/z+dKhMdg631pjCEg= Subject key identifier: 1C:50:48:55:1C:06:A7:32:65:97:AD:D9:42:58:96:DD:8B:C4:C1:F4 Certificate issuer: /CN=3f28b1bea0b5897723ea7c5fbbdd7ccd2952b05c Certificate serial: 019B7CECF833030480F223C9EDFB522C7427 Authority key identifier: 3F:28:B1:BE:A0:B5:89:77:23:EA:7C:5F:BB:DD:7C:CD:29:52:B0:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PyixvqC1iXcj6nxfu918zSlSsFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/d88b46-6ef9-4624-8984-bfa6d340787a/1/HFBIVRwGpzJll63ZQliW3YvEwfQ.roa Signing time: Fri 02 Jan 2026 04:17:43 +0000 ROA not before: Fri 02 Jan 2026 04:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44598 IP address blocks: 185.150.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/d88b46-6ef9-4624-8984-bfa6d340787a/1/PyixvqC1iXcj6nxfu918zSlSsFw.crl rsync://rpki.ripe.net/repository/DEFAULT/56/d88b46-6ef9-4624-8984-bfa6d340787a/1/PyixvqC1iXcj6nxfu918zSlSsFw.mft rsync://rpki.ripe.net/repository/DEFAULT/PyixvqC1iXcj6nxfu918zSlSsFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:f8:33:03:04:80:f2:23:c9:ed:fb:52:2c:74:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3f28b1bea0b5897723ea7c5fbbdd7ccd2952b05c Validity Not Before: Jan 2 04:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c5048551c06a7326597add9425896dd8bc4c1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b3:28:3a:8f:61:cf:21:fe:96:e4:16:09:bf: a3:76:f1:e8:96:e2:15:69:24:6a:d2:d7:f5:a6:52: 15:09:33:6b:a7:61:64:f7:79:8c:41:91:de:4e:12: 46:c2:66:61:59:e3:0b:dc:6c:8a:a3:b9:52:0c:a1: 76:db:8c:31:eb:9d:ed:44:cc:cc:36:f2:c1:bf:02: fb:0c:8b:2a:99:25:45:de:f5:83:b3:57:19:bc:87: 24:e2:c8:55:b1:5a:0e:24:cb:04:e0:7a:24:6b:bd: 40:19:c7:ac:74:d0:e1:c7:ff:6d:fe:3b:f1:79:6b: a1:fa:46:c7:3e:cf:11:01:6c:f4:e6:54:89:d5:0a: 61:75:ba:a4:72:52:08:95:56:ab:af:a7:bd:a8:10: e6:85:47:a8:c0:f0:e8:ee:03:58:e2:ca:1d:ad:1f: a3:69:8d:4e:4d:82:fe:73:65:04:6f:5a:d6:a1:55: d3:91:14:4d:c0:0c:cd:cb:e6:12:ef:f5:3f:42:d8: d2:eb:2e:8a:ec:37:49:77:95:69:3d:22:9a:38:a6: 62:2f:2a:b5:7a:b8:0e:2b:77:be:8e:bc:fa:b3:9c: 23:5a:e8:5e:96:ad:02:2b:9f:95:45:24:9f:4d:bf: 3f:2d:b4:61:4c:5b:f1:bf:16:e4:c4:36:3c:51:2d: a1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:50:48:55:1C:06:A7:32:65:97:AD:D9:42:58:96:DD:8B:C4:C1:F4 X509v3 Authority Key Identifier: keyid:3F:28:B1:BE:A0:B5:89:77:23:EA:7C:5F:BB:DD:7C:CD:29:52:B0:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PyixvqC1iXcj6nxfu918zSlSsFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d88b46-6ef9-4624-8984-bfa6d340787a/1/HFBIVRwGpzJll63ZQliW3YvEwfQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/d88b46-6ef9-4624-8984-bfa6d340787a/1/PyixvqC1iXcj6nxfu918zSlSsFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.150.92.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:a6:6b:ee:39:58:de:9b:a8:b2:80:fe:9e:90:66:b6:bb:c4: fd:55:7a:d6:99:d4:d4:ff:07:81:7f:39:a6:67:45:96:7b:1d: 19:28:4d:e7:33:03:84:93:cc:f6:58:8c:85:f9:cf:bb:5b:2f: 78:a7:90:66:2a:c9:fe:68:cf:bb:3f:dd:10:52:ef:9e:57:77: 47:cd:8f:19:64:85:06:9f:1c:e6:53:34:0e:f7:ee:11:67:52: e9:f9:1c:33:cc:68:3e:d1:2b:de:5a:70:d0:64:f3:84:93:1a: 26:10:2b:11:6f:fe:d8:7a:76:ba:fd:81:8b:c4:ce:a7:2f:93: 3c:de:d9:f0:42:8b:e9:a4:cd:cb:7c:42:07:5b:6a:f9:2e:6e: 99:cb:2c:4a:b6:c3:6d:e9:57:3e:2f:30:25:57:90:ac:a9:d7: d0:3a:19:21:3b:b0:22:c1:0c:8f:a7:57:8b:19:b0:87:24:b5: 43:77:80:10:55:e0:90:cc:d9:94:4b:38:78:08:d0:97:f2:44: fa:c2:bf:77:62:19:aa:12:36:f8:cc:4a:8b:8d:d1:95:6e:c0: fd:62:5a:33:cf:06:50:b4:79:ef:a7:35:cc:a3:58:9c:e8:99: 32:03:e3:fe:51:ec:b5:7d:91:f7:21:10:49:e2:21:cb:98:04: 2d:86:6b:23 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87PgzAwSA8iPJ7ftSLHQnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmMjhiMWJlYTBiNTg5NzcyM2VhN2M1ZmJiZGQ3Y2NkMjk1 MmIwNWMwHhcNMjYwMTAyMDQxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzUwNDg1NTFjMDZhNzMyNjU5N2FkZDk0MjU4OTZkZDhiYzRjMWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrMoOo9hzyH+luQWCb+jdvHoluIV aSRq0tf1plIVCTNrp2Fk93mMQZHeThJGwmZhWeML3GyKo7lSDKF224wx653tRMzM NvLBvwL7DIsqmSVF3vWDs1cZvIck4shVsVoOJMsE4Hoka71AGcesdNDhx/9t/jvx eWuh+kbHPs8RAWz05lSJ1QphdbqkclIIlVarr6e9qBDmhUeowPDo7gNY4sodrR+j aY1OTYL+c2UEb1rWoVXTkRRNwAzNy+YS7/U/QtjS6y6K7DdJd5VpPSKaOKZiLyq1 ergOK3e+jrz6s5wjWuhelq0CK5+VRSSfTb8/LbRhTFvxvxbkxDY8US2h4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBxQSFUcBqcyZZet2UJYlt2LxMH0MB8GA1UdIwQY MBaAFD8osb6gtYl3I+p8X7vdfM0pUrBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHlpeHZxQzFpWGNqNm54ZnU5MTh6U2xTc0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9kODhiNDYtNmVmOS00NjI0LTg5ODQt YmZhNmQzNDA3ODdhLzEvSEZCSVZSd0dwekpsbDYzWlFsaVczWXZFd2ZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9kODhiNDYtNmVmOS00NjI0LTg5ODQtYmZhNmQzNDA3ODdh LzEvUHlpeHZxQzFpWGNqNm54ZnU5MTh6U2xTc0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZZcMA0G CSqGSIb3DQEBCwUAA4IBAQBMpmvuOVjem6iygP6ekGa2u8T9VXrWmdTU/weBfzmm Z0WWex0ZKE3nMwOEk8z2WIyF+c+7Wy94p5BmKsn+aM+7P90QUu+eV3dHzY8ZZIUG nxzmUzQO9+4RZ1Lp+RwzzGg+0SveWnDQZPOEkxomECsRb/7Yena6/YGLxM6nL5M8 3tnwQovppM3LfEIHW2r5Lm6ZyyxKtsNt6Vc+LzAlV5CsqdfQOhkhO7AiwQyPp1eL GbCHJLVDd4AQVeCQzNmUSzh4CNCX8kT6wr93YhmqEjb4zEqLjdGVbsD9YlozzwZQ tHnvpzXMo1ic6JkyA+P+Uey1fZH3IRBJ4iHLmAQthmsj -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:59 2026 by rpki-client