This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/hHmzA93aux1W073DQ0oEBEGbVdY.roa File: hHmzA93aux1W073DQ0oEBEGbVdY.roa (raw, json) Hash identifier: OPyr1yuN3XWDxdZPVJqJI5x57XcIZJ6bEMyQJg7BFN8= Subject key identifier: 84:79:B3:03:DD:DA:BB:1D:56:D3:BD:C3:43:4A:04:04:41:9B:55:D6 Certificate issuer: /CN=2e252a477242fb45f20bb08020a403a2bb466a9b Certificate serial: 019C097CFC03D71EBCDE96D40BF70DD7984B Authority key identifier: 2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/hHmzA93aux1W073DQ0oEBEGbVdY.roa Signing time: Thu 29 Jan 2026 11:21:51 +0000 ROA not before: Thu 29 Jan 2026 11:21:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207251 IP address blocks: 31.171.104.0/22 maxlen: 22 85.132.32.0/22 maxlen: 22 85.132.42.0/24 maxlen: 24 85.132.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.mft rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Feb 2026 03:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:09:7c:fc:03:d7:1e:bc:de:96:d4:0b:f7:0d:d7:98:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e252a477242fb45f20bb08020a403a2bb466a9b Validity Not Before: Jan 29 11:21:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8479b303dddabb1d56d3bdc3434a0404419b55d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:2e:6b:c2:59:b5:1a:a3:33:94:f6:19:3d: 51:27:43:30:5e:2a:21:37:0e:8d:84:be:2a:76:7f: 3c:63:ac:68:5a:11:d1:f4:d9:97:75:71:5a:51:b4: d4:f0:ff:98:97:cb:56:67:c5:f9:2f:09:f6:a4:c2: 2c:f5:36:17:b5:16:f5:62:af:2b:19:ce:55:e9:b7: 5d:06:65:17:cd:30:2a:0d:57:0b:1f:9d:b9:4a:8d: 80:bd:17:5e:8b:f0:c0:18:27:ac:83:ee:4a:c0:92: 18:7a:21:00:46:3f:d5:0b:2e:ad:de:1a:7e:0d:ec: 09:a5:51:36:8c:c9:c4:c3:c5:cf:06:28:2d:ad:d3: 96:6c:5b:22:f0:82:63:70:c2:f9:41:34:51:2d:7b: 69:00:58:03:7a:2a:a3:cf:6b:bd:ae:c6:42:e7:ab: 08:a0:06:4d:9d:59:b6:de:7f:fb:94:68:6c:b1:d5: 12:46:37:f2:8e:3d:84:92:9d:87:ba:a4:51:04:df: 0e:cd:93:14:51:ba:81:e6:df:f9:4c:71:02:e2:80: f1:5d:a5:0e:cb:23:9c:39:50:0d:31:02:49:a8:e2: 4b:dd:9c:49:04:94:07:05:35:30:86:c0:35:b5:b9: 57:44:9c:28:4f:d1:d0:08:97:fc:54:92:2e:ec:87: 1a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:79:B3:03:DD:DA:BB:1D:56:D3:BD:C3:43:4A:04:04:41:9B:55:D6 X509v3 Authority Key Identifier: keyid:2E:25:2A:47:72:42:FB:45:F2:0B:B0:80:20:A4:03:A2:BB:46:6A:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LiUqR3JC-0XyC7CAIKQDortGaps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/hHmzA93aux1W073DQ0oEBEGbVdY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b10562-26a1-4645-8d2b-16f146bef995/1/LiUqR3JC-0XyC7CAIKQDortGaps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.171.104.0/22 85.132.32.0/22 85.132.42.0/24 85.132.45.0/24 Signature Algorithm: sha256WithRSAEncryption 07:85:3e:42:3a:67:90:8e:13:25:e8:59:01:15:7f:f7:b1:35: 13:63:76:17:5e:71:39:8e:44:79:e7:fb:4a:97:0d:3e:88:54: 3e:3c:80:6e:46:89:a7:6a:81:65:87:57:e7:93:8e:33:fd:83: e0:74:ae:56:d1:f5:3e:43:c1:08:5a:f3:0f:b0:f2:08:d2:ee: 16:77:bb:ba:cf:8d:03:8f:d7:59:1f:de:59:0f:90:6f:95:e3: f4:df:10:9b:9a:29:04:43:0f:2f:9a:bf:99:a0:02:28:32:5f: 6f:54:29:a7:e5:95:8a:3f:be:44:a5:21:15:5b:b6:2e:8b:23: 05:31:97:b6:33:a0:5e:81:70:63:5f:7b:ec:b8:82:fd:f2:75: ed:ec:b8:20:38:b7:e9:f7:a3:d6:28:ce:19:b1:21:1a:64:6c: dd:89:cb:34:24:fc:7f:e3:46:42:94:fb:a1:c9:a5:eb:dc:f6: 1b:08:3e:6e:94:20:96:0f:b9:59:0c:8a:db:02:e1:7b:d7:1b: 2e:68:e9:d9:4a:90:7e:0b:c1:9c:53:f7:05:a8:c1:18:d4:e3: 44:8c:2d:b1:bb:99:e2:f9:37:b6:81:58:2b:39:3f:5c:be:c5: a3:2b:09:87:86:fb:42:3d:fd:eb:16:ae:c3:22:0e:88:7e:15: ec:ab:58:28 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZwJfPwD1x683pbUC/cN15hLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlMjUyYTQ3NzI0MmZiNDVmMjBiYjA4MDIwYTQwM2EyYmI0 NjZhOWIwHhcNMjYwMTI5MTEyMTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NDc5YjMwM2RkZGFiYjFkNTZkM2JkYzM0MzRhMDQwNDQxOWI1NWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuukua8JZtRqjM5T2GT1RJ0MwXioh Nw6NhL4qdn88Y6xoWhHR9NmXdXFaUbTU8P+Yl8tWZ8X5Lwn2pMIs9TYXtRb1Yq8r Gc5V6bddBmUXzTAqDVcLH525So2AvRdei/DAGCesg+5KwJIYeiEARj/VCy6t3hp+ DewJpVE2jMnEw8XPBigtrdOWbFsi8IJjcML5QTRRLXtpAFgDeiqjz2u9rsZC56sI oAZNnVm23n/7lGhssdUSRjfyjj2Ekp2HuqRRBN8OzZMUUbqB5t/5THEC4oDxXaUO yyOcOVANMQJJqOJL3ZxJBJQHBTUwhsA1tblXRJwoT9HQCJf8VJIu7IcaSwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFIR5swPd2rsdVtO9w0NKBARBm1XWMB8GA1UdIwQY MBaAFC4lKkdyQvtF8guwgCCkA6K7RmqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGlVcVIzSkMtMFh5QzdDQUlLUURvcnRHYXBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iMTA1NjItMjZhMS00NjQ1LThkMmIt MTZmMTQ2YmVmOTk1LzEvaEhtekE5M2F1eDFXMDczRFEwb0VCRUdiVmRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9iMTA1NjItMjZhMS00NjQ1LThkMmItMTZmMTQ2YmVmOTk1 LzEvTGlVcVIzSkMtMFh5QzdDQUlLUURvcnRHYXBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCH6toAwQC VYQgAwQAVYQqAwQAVYQtMA0GCSqGSIb3DQEBCwUAA4IBAQAHhT5COmeQjhMl6FkB FX/3sTUTY3YXXnE5jkR55/tKlw0+iFQ+PIBuRomnaoFlh1fnk44z/YPgdK5W0fU+ Q8EIWvMPsPII0u4Wd7u6z40Dj9dZH95ZD5BvleP03xCbmikEQw8vmr+ZoAIoMl9v VCmn5ZWKP75EpSEVW7YuiyMFMZe2M6BegXBjX3vsuIL98nXt7LggOLfp96PWKM4Z sSEaZGzdics0JPx/40ZClPuhyaXr3PYbCD5ulCCWD7lZDIrbAuF71xsuaOnZSpB+ C8GcU/cFqMEY1ONEjC2xu5ni+Te2gVgrOT9cvsWjKwmHhvtCPf3rFq7DIg6IfhXs q1go -----END CERTIFICATE-----Generated at Tue Feb 3 12:39:42 2026 by rpki-client