This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/65aaf4-a005-451b-9026-dff3519b2a06/1/HmNqE0h2Fdp2DXd4XO_8pqpFAsM.roa File: HmNqE0h2Fdp2DXd4XO_8pqpFAsM.roa (raw, json) Hash identifier: +R7voTq5Oy//ohBpR1uYG9F4X7IsrLd7JvniEXqhDlQ= Subject key identifier: 1E:63:6A:13:48:76:15:DA:76:0D:77:78:5C:EF:FC:A6:AA:45:02:C3 Certificate issuer: /CN=5283cb4b810e6c592e7479afa42118f755c7f87e Certificate serial: 019B7C13119CBA2CA72A117BE51ACD2F0CAE Authority key identifier: 52:83:CB:4B:81:0E:6C:59:2E:74:79:AF:A4:21:18:F7:55:C7:F8:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoPLS4EObFkudHmvpCEY91XH-H4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/65aaf4-a005-451b-9026-dff3519b2a06/1/HmNqE0h2Fdp2DXd4XO_8pqpFAsM.roa Signing time: Fri 02 Jan 2026 00:19:43 +0000 ROA not before: Fri 02 Jan 2026 00:19:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41369 IP address blocks: 194.48.220.0/22 maxlen: 22 2a0c:c6c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/65aaf4-a005-451b-9026-dff3519b2a06/1/UoPLS4EObFkudHmvpCEY91XH-H4.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/65aaf4-a005-451b-9026-dff3519b2a06/1/UoPLS4EObFkudHmvpCEY91XH-H4.mft rsync://rpki.ripe.net/repository/DEFAULT/UoPLS4EObFkudHmvpCEY91XH-H4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:11:9c:ba:2c:a7:2a:11:7b:e5:1a:cd:2f:0c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5283cb4b810e6c592e7479afa42118f755c7f87e Validity Not Before: Jan 2 00:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e636a13487615da760d77785ceffca6aa4502c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a3:8d:7a:02:99:48:2f:07:a6:74:04:78:bb: ed:f5:f9:6b:44:d4:fc:c9:e7:0f:69:e2:26:70:a3: 79:c3:28:07:5b:98:b3:2c:a7:47:7d:2e:2e:15:71: 80:ab:3e:9e:b5:b0:3c:e6:65:bf:a4:ca:47:c3:1f: 42:cf:75:cb:8b:77:bc:a3:14:32:1d:f2:62:76:e4: 0d:d7:90:77:94:ea:9f:72:b1:24:83:d5:fd:32:c8: 93:66:cb:86:f8:50:dc:d2:81:fd:a1:e2:bf:33:74: 6f:0c:3a:21:24:3e:c8:35:05:5a:f5:c8:ea:b8:3e: 32:d6:2e:fe:7f:e8:69:b2:e1:52:59:27:51:5a:9e: f5:dd:f4:54:a5:e1:40:ee:dd:8e:01:b5:fd:ee:56: af:34:0d:88:ce:0c:a0:79:9b:a5:30:fc:6d:0b:24: 30:c5:bc:20:7f:44:74:ca:c3:d6:9a:97:1d:cb:f5: 57:f2:49:72:3c:be:8e:4a:d0:f9:63:39:f9:5e:fe: 3d:fe:e0:b0:e9:dc:e1:be:4d:4a:ac:f2:c3:95:8d: 0d:25:84:28:1c:e1:c1:be:61:c8:7b:dd:fc:5c:33: 26:f1:4d:ad:00:82:4a:29:27:13:a1:08:78:f5:bb: b4:9d:a1:52:1a:ce:ae:60:e7:70:e0:ef:34:8d:b5: bb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:63:6A:13:48:76:15:DA:76:0D:77:78:5C:EF:FC:A6:AA:45:02:C3 X509v3 Authority Key Identifier: keyid:52:83:CB:4B:81:0E:6C:59:2E:74:79:AF:A4:21:18:F7:55:C7:F8:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoPLS4EObFkudHmvpCEY91XH-H4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/65aaf4-a005-451b-9026-dff3519b2a06/1/HmNqE0h2Fdp2DXd4XO_8pqpFAsM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/65aaf4-a005-451b-9026-dff3519b2a06/1/UoPLS4EObFkudHmvpCEY91XH-H4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.48.220.0/22 IPv6: 2a0c:c6c0::/29 Signature Algorithm: sha256WithRSAEncryption 60:6d:b1:20:94:0c:9c:dc:0b:ec:a0:a6:41:8c:89:e9:dc:03: b9:d8:65:c8:55:7c:8b:75:a4:03:6e:47:84:37:41:7c:6a:3c: 7c:7b:72:1a:58:06:02:54:d1:d2:16:9c:b5:5c:4d:64:8a:c2: 02:f1:aa:87:03:68:59:61:20:67:c7:05:fc:e0:dd:e7:3b:40: 4f:1a:2e:55:a9:00:2a:fc:ee:50:fe:ee:08:b5:5e:ec:27:95: 64:c6:6c:7f:c6:ca:1a:51:8c:2b:30:f4:15:4f:87:bd:48:68: 7a:f0:76:6b:27:7f:fb:b9:8c:32:2c:95:a6:79:b2:21:88:de: b1:e3:c3:43:b3:3e:db:cf:8c:c7:25:5d:6e:f2:8d:6a:2a:f5: fe:fe:72:cb:bf:9c:93:2c:3d:69:25:f4:36:a5:80:97:8c:7e: 06:cb:78:0c:9d:f3:c3:d2:c5:bf:ef:47:82:73:06:96:42:99: e4:b9:64:11:1f:90:c4:61:f4:0b:43:06:a1:5c:91:03:18:bc: 66:0c:0b:54:ab:cc:db:78:06:f6:57:47:d1:5f:e4:35:0b:65: ec:4e:1d:eb:0f:68:df:01:be:8b:28:b6:19:e5:94:3d:f3:12: 02:4c:58:a7:64:9b:9d:a4:8b:c5:e0:6e:3a:6b:34:dc:5c:24: c2:29:70:ac -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8ExGcuiynKhF75RrNLwyuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyODNjYjRiODEwZTZjNTkyZTc0NzlhZmE0MjExOGY3NTVj N2Y4N2UwHhcNMjYwMTAyMDAxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTYzNmExMzQ4NzYxNWRhNzYwZDc3Nzg1Y2VmZmNhNmFhNDUwMmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaONegKZSC8HpnQEeLvt9flrRNT8 yecPaeImcKN5wygHW5izLKdHfS4uFXGAqz6etbA85mW/pMpHwx9Cz3XLi3e8oxQy HfJiduQN15B3lOqfcrEkg9X9MsiTZsuG+FDc0oH9oeK/M3RvDDohJD7INQVa9cjq uD4y1i7+f+hpsuFSWSdRWp713fRUpeFA7t2OAbX97lavNA2IzgygeZulMPxtCyQw xbwgf0R0ysPWmpcdy/VX8klyPL6OStD5Yzn5Xv49/uCw6dzhvk1KrPLDlY0NJYQo HOHBvmHIe938XDMm8U2tAIJKKScToQh49bu0naFSGs6uYOdw4O80jbW7TQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB5jahNIdhXadg13eFzv/KaqRQLDMB8GA1UdIwQY MBaAFFKDy0uBDmxZLnR5r6QhGPdVx/h+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW9QTFM0RU9iRmt1ZEhtdnBDRVk5MVhILUg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS82NWFhZjQtYTAwNS00NTFiLTkwMjYt ZGZmMzUxOWIyYTA2LzEvSG1OcUUwaDJGZHAyRFhkNFhPXzhwcXBGQXNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS82NWFhZjQtYTAwNS00NTFiLTkwMjYtZGZmMzUxOWIyYTA2 LzEvVW9QTFM0RU9iRmt1ZEhtdnBDRVk5MVhILUg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwjDcMA0E AgACMAcDBQMqDMbAMA0GCSqGSIb3DQEBCwUAA4IBAQBgbbEglAyc3AvsoKZBjInp 3AO52GXIVXyLdaQDbkeEN0F8ajx8e3IaWAYCVNHSFpy1XE1kisIC8aqHA2hZYSBn xwX84N3nO0BPGi5VqQAq/O5Q/u4ItV7sJ5Vkxmx/xsoaUYwrMPQVT4e9SGh68HZr J3/7uYwyLJWmebIhiN6x48NDsz7bz4zHJV1u8o1qKvX+/nLLv5yTLD1pJfQ2pYCX jH4Gy3gMnfPD0sW/70eCcwaWQpnkuWQRH5DEYfQLQwahXJEDGLxmDAtUq8zbeAb2 V0fRX+Q1C2XsTh3rD2jfAb6LKLYZ5ZQ98xICTFinZJudpIvF4G46azTcXCTCKXCs -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:50 2026 by rpki-client