This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/31cbc8-3c23-4bdf-83a4-bcd3302810e3/1/HWYj0Yf7UI2v4SI2DFohqiF03TQ.roa File: HWYj0Yf7UI2v4SI2DFohqiF03TQ.roa (raw, json) Hash identifier: 161NIRovwk7K/08FGjsTUbLJAR0H5vgFaLSQ618AUbc= Subject key identifier: 1D:66:23:D1:87:FB:50:8D:AF:E1:22:36:0C:5A:21:AA:21:74:DD:34 Certificate issuer: /CN=5a4acd21123f9e75a92a0e6d4b26f9e9c963675f Certificate serial: 019B79ED3EEE1DCDB15E2AF9AAEB449D545C Authority key identifier: 5A:4A:CD:21:12:3F:9E:75:A9:2A:0E:6D:4B:26:F9:E9:C9:63:67:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkrNIRI_nnWpKg5tSyb56cljZ18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/31cbc8-3c23-4bdf-83a4-bcd3302810e3/1/HWYj0Yf7UI2v4SI2DFohqiF03TQ.roa Signing time: Thu 01 Jan 2026 14:19:09 +0000 ROA not before: Thu 01 Jan 2026 14:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209959 IP address blocks: 185.215.92.0/22 maxlen: 22 2a02:fc40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/31cbc8-3c23-4bdf-83a4-bcd3302810e3/1/WkrNIRI_nnWpKg5tSyb56cljZ18.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/31cbc8-3c23-4bdf-83a4-bcd3302810e3/1/WkrNIRI_nnWpKg5tSyb56cljZ18.mft rsync://rpki.ripe.net/repository/DEFAULT/WkrNIRI_nnWpKg5tSyb56cljZ18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:3e:ee:1d:cd:b1:5e:2a:f9:aa:eb:44:9d:54:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5a4acd21123f9e75a92a0e6d4b26f9e9c963675f Validity Not Before: Jan 1 14:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d6623d187fb508dafe122360c5a21aa2174dd34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:b2:dd:70:05:1d:3d:f5:ba:83:38:b0:92: 03:33:d5:4e:c4:4e:76:01:46:b6:e1:a2:59:99:9f: a3:f1:35:97:d6:dc:9e:b5:03:7c:a2:60:b8:df:ec: 95:99:c9:5a:fc:a9:c1:71:32:2f:bf:e5:de:97:11: 7a:66:31:f3:d1:84:50:9b:9d:f3:e4:4e:88:4c:12: 3f:02:bc:92:07:a2:0c:d6:c6:d8:63:29:0c:8c:9f: f4:04:0e:14:24:ee:96:7b:56:4e:ad:60:8d:07:8e: ea:30:11:09:2b:55:33:90:76:2d:db:63:ac:c4:12: 82:81:ed:09:25:e7:1f:86:5c:da:37:62:47:dd:e1: 72:d2:cf:d7:84:07:6a:f2:2f:aa:6d:7f:5d:de:ea: 76:b6:70:7c:88:a6:34:fa:73:ec:79:31:34:45:e6: 89:e9:f1:cd:b9:81:84:cc:25:fb:95:46:50:52:ea: 4e:a6:d3:04:ff:3d:1d:70:4a:39:06:ed:22:06:16: 71:12:0e:90:36:85:01:ef:05:7d:6e:a5:07:f0:02: 6f:41:a1:1b:3f:1d:78:c5:66:ec:e1:2e:5e:54:1c: a8:cb:9d:7f:72:9d:90:c8:25:96:9b:d0:a2:4c:c5: 41:b7:68:21:46:a9:54:b7:9e:12:fc:dd:9f:f8:c4: 93:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:66:23:D1:87:FB:50:8D:AF:E1:22:36:0C:5A:21:AA:21:74:DD:34 X509v3 Authority Key Identifier: keyid:5A:4A:CD:21:12:3F:9E:75:A9:2A:0E:6D:4B:26:F9:E9:C9:63:67:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkrNIRI_nnWpKg5tSyb56cljZ18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/31cbc8-3c23-4bdf-83a4-bcd3302810e3/1/HWYj0Yf7UI2v4SI2DFohqiF03TQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/31cbc8-3c23-4bdf-83a4-bcd3302810e3/1/WkrNIRI_nnWpKg5tSyb56cljZ18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.215.92.0/22 IPv6: 2a02:fc40::/29 Signature Algorithm: sha256WithRSAEncryption 4a:4f:ed:4e:cd:e5:a5:8f:5a:ad:a6:cb:39:ca:20:9f:03:82: 85:10:79:ea:dc:38:63:78:03:3c:db:26:b6:4d:0a:6a:68:cf: 8c:2c:5c:88:aa:98:7b:73:9f:9e:b5:bd:0f:b8:45:a4:e9:2f: 38:2d:91:46:a3:02:5e:45:5c:f1:ea:5f:63:25:8e:1c:db:9c: af:68:b6:ab:6f:e7:d1:2f:c4:cf:34:14:5c:43:e0:52:84:7e: 30:7d:8c:ec:48:8d:1f:f9:66:89:fd:a8:c3:7e:b1:55:14:6f: 37:ca:e1:47:12:50:bc:9a:69:a8:de:ad:f1:4e:7d:d4:28:de: 6b:81:26:67:fc:2e:af:8b:b2:a0:f5:bb:a0:94:72:c6:22:19: 35:24:a6:ec:ac:f2:1d:90:b4:5e:d8:7b:2b:0b:2b:73:fa:b0: ed:63:6b:ef:a7:fd:cc:2b:9d:10:19:d3:1e:32:54:b1:c6:14: d7:f3:2f:bc:ab:ff:a5:b6:c9:44:9d:43:b2:e7:57:5b:d7:f3: c7:60:6f:fe:aa:1b:bc:6a:ee:53:c7:0f:92:81:c8:11:6e:31: 47:8e:fa:c2:d9:92:11:86:54:16:ff:8c:78:fa:6e:0a:1a:1a: d0:79:86:12:14:e5:2b:cd:ad:d5:74:db:ee:5b:a6:79:49:c6: 07:57:e2:95 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57T7uHc2xXir5qutEnVRcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhNGFjZDIxMTIzZjllNzVhOTJhMGU2ZDRiMjZmOWU5Yzk2 MzY3NWYwHhcNMjYwMTAxMTQxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDY2MjNkMTg3ZmI1MDhkYWZlMTIyMzYwYzVhMjFhYTIxNzRkZDM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuX+y3XAFHT31uoM4sJIDM9VOxE52 AUa24aJZmZ+j8TWX1tyetQN8omC43+yVmcla/KnBcTIvv+XelxF6ZjHz0YRQm53z 5E6ITBI/ArySB6IM1sbYYykMjJ/0BA4UJO6We1ZOrWCNB47qMBEJK1UzkHYt22Os xBKCge0JJecfhlzaN2JH3eFy0s/XhAdq8i+qbX9d3up2tnB8iKY0+nPseTE0ReaJ 6fHNuYGEzCX7lUZQUupOptME/z0dcEo5Bu0iBhZxEg6QNoUB7wV9bqUH8AJvQaEb Px14xWbs4S5eVByoy51/cp2QyCWWm9CiTMVBt2ghRqlUt54S/N2f+MSTjQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB1mI9GH+1CNr+EiNgxaIaohdN00MB8GA1UdIwQY MBaAFFpKzSESP551qSoObUsm+enJY2dfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2tyTklSSV9ubldwS2c1dFN5YjU2Y2xqWjE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8zMWNiYzgtM2MyMy00YmRmLTgzYTQt YmNkMzMwMjgxMGUzLzEvSFdZajBZZjdVSTJ2NFNJMkRGb2hxaUYwM1RRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8zMWNiYzgtM2MyMy00YmRmLTgzYTQtYmNkMzMwMjgxMGUz LzEvV2tyTklSSV9ubldwS2c1dFN5YjU2Y2xqWjE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuddcMA0E AgACMAcDBQMqAvxAMA0GCSqGSIb3DQEBCwUAA4IBAQBKT+1OzeWlj1qtpss5yiCf A4KFEHnq3DhjeAM82ya2TQpqaM+MLFyIqph7c5+etb0PuEWk6S84LZFGowJeRVzx 6l9jJY4c25yvaLarb+fRL8TPNBRcQ+BShH4wfYzsSI0f+WaJ/ajDfrFVFG83yuFH ElC8mmmo3q3xTn3UKN5rgSZn/C6vi7Kg9buglHLGIhk1JKbsrPIdkLRe2HsrCytz +rDtY2vvp/3MK50QGdMeMlSxxhTX8y+8q/+ltslEnUOy51db1/PHYG/+qhu8au5T xw+SgcgRbjFHjvrC2ZIRhlQW/4x4+m4KGhrQeYYSFOUrza3VdNvuW6Z5ScYHV+KV -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:23 2026 by rpki-client