This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fa5519-0e35-44cf-9d4f-2aea75c2df78/1/HRPEVsU7iC6tuMXxN0847HozIdU.roa File: HRPEVsU7iC6tuMXxN0847HozIdU.roa (raw, json) Hash identifier: OxioVmKvXuMqhvwUYbfZJ6I+5PFAi5Dfk98WAoviJGQ= Subject key identifier: 1D:13:C4:56:C5:3B:88:2E:AD:B8:C5:F1:37:4F:38:EC:7A:33:21:D5 Certificate issuer: /CN=4a4b513f7e446e0cd6dcfe56829bbc9fe498d3e8 Certificate serial: 019B775912E11CB830C698659BF382CEC378 Authority key identifier: 4A:4B:51:3F:7E:44:6E:0C:D6:DC:FE:56:82:9B:BC:9F:E4:98:D3:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SktRP35EbgzW3P5Wgpu8n-SY0-g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fa5519-0e35-44cf-9d4f-2aea75c2df78/1/HRPEVsU7iC6tuMXxN0847HozIdU.roa Signing time: Thu 01 Jan 2026 02:18:04 +0000 ROA not before: Thu 01 Jan 2026 02:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41696 IP address blocks: 89.221.176.0/20 maxlen: 24 2a02:e28::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/fa5519-0e35-44cf-9d4f-2aea75c2df78/1/SktRP35EbgzW3P5Wgpu8n-SY0-g.crl rsync://rpki.ripe.net/repository/DEFAULT/73/fa5519-0e35-44cf-9d4f-2aea75c2df78/1/SktRP35EbgzW3P5Wgpu8n-SY0-g.mft rsync://rpki.ripe.net/repository/DEFAULT/SktRP35EbgzW3P5Wgpu8n-SY0-g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:12:e1:1c:b8:30:c6:98:65:9b:f3:82:ce:c3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a4b513f7e446e0cd6dcfe56829bbc9fe498d3e8 Validity Not Before: Jan 1 02:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d13c456c53b882eadb8c5f1374f38ec7a3321d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:12:ae:b7:70:d9:00:2e:ff:aa:c0:97:08:8f: c2:08:9f:28:36:6a:28:b0:5a:3c:94:72:02:76:15: 16:fe:8a:ba:ac:e4:bd:14:4f:1a:fd:fc:5b:b7:70: 27:08:99:14:bd:40:62:9f:da:87:c7:91:5c:83:93: cc:c4:c4:50:ee:20:61:aa:e8:72:03:f1:2d:c0:f0: 07:8a:11:ef:6b:8e:68:08:71:59:10:db:f2:6a:22: 27:d5:b5:54:49:e3:0f:bd:6d:75:ec:e3:2a:5f:38: 2b:1b:88:df:bb:d7:bf:b3:55:b6:f9:2d:f7:15:68: 91:9b:61:08:3d:b3:86:03:1f:c8:e6:fe:2e:ae:02: df:00:ab:27:ca:57:1f:d8:a3:30:da:bd:cd:88:f2: ae:ea:9d:e0:74:db:34:1f:be:16:d0:72:b4:ce:6e: 64:00:79:2c:ec:33:87:f4:81:d8:5d:58:a5:87:9d: 22:ec:e6:4e:33:d6:5d:ea:2f:99:53:a9:cd:49:30: c2:98:bc:8b:f9:f4:f6:49:02:e8:ee:54:30:82:7b: 59:60:99:86:e4:fc:9d:0d:42:ea:a5:7f:f2:dd:8a: 73:cd:de:09:c2:d2:3c:79:28:e5:53:10:ea:1a:cb: 70:b1:bd:1d:a2:9b:af:0c:89:0e:72:9f:ac:78:b9: 6b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:13:C4:56:C5:3B:88:2E:AD:B8:C5:F1:37:4F:38:EC:7A:33:21:D5 X509v3 Authority Key Identifier: keyid:4A:4B:51:3F:7E:44:6E:0C:D6:DC:FE:56:82:9B:BC:9F:E4:98:D3:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SktRP35EbgzW3P5Wgpu8n-SY0-g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fa5519-0e35-44cf-9d4f-2aea75c2df78/1/HRPEVsU7iC6tuMXxN0847HozIdU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fa5519-0e35-44cf-9d4f-2aea75c2df78/1/SktRP35EbgzW3P5Wgpu8n-SY0-g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.221.176.0/20 IPv6: 2a02:e28::/32 Signature Algorithm: sha256WithRSAEncryption 1f:cb:1d:79:24:7a:91:b2:0b:1d:c9:7b:9a:b7:ca:7e:cf:2d: ee:2b:33:51:8c:07:33:5b:40:17:d0:c1:40:ba:0a:50:f7:c1: 0e:1f:55:9a:6e:c5:93:a9:f5:61:07:bf:4d:4b:a2:f7:cf:dc: 5e:a9:31:20:84:89:54:64:fa:b5:58:f9:2f:bb:d5:1e:d0:2b: fc:0d:9f:73:b0:d1:f0:95:1b:b3:08:ca:51:62:50:5d:4e:7e: 2b:3a:6a:61:fb:c3:7c:cd:ec:d0:81:b5:eb:f6:83:c4:46:37: 77:18:6b:8b:77:89:2b:4d:0a:4f:2b:97:54:01:b4:66:9e:69: a3:b4:df:a5:f6:7d:c9:2c:7c:57:06:dc:a8:af:14:9f:93:82: 6e:d3:ef:b6:03:fe:4b:43:36:f3:9a:49:6c:30:86:85:38:93: 0c:12:cf:74:16:0d:1a:e0:41:bb:47:23:ae:30:cc:71:4d:c9: 0c:8d:81:34:0e:aa:85:00:e5:d0:ac:b4:dd:51:c0:27:6a:3f: ff:bc:dd:4d:07:7e:d1:bb:fc:bd:e1:d2:c9:f6:37:ab:62:e4: 2a:7a:a9:e7:bc:26:56:56:96:65:e6:a1:c1:ff:6f:04:bd:01: ca:61:52:35:65:81:ff:7b:61:81:a6:a6:70:66:7d:33:ba:63: a0:51:1e:06 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WRLhHLgwxphlm/OCzsN4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNGI1MTNmN2U0NDZlMGNkNmRjZmU1NjgyOWJiYzlmZTQ5 OGQzZTgwHhcNMjYwMTAxMDIxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDEzYzQ1NmM1M2I4ODJlYWRiOGM1ZjEzNzRmMzhlYzdhMzMyMWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxKut3DZAC7/qsCXCI/CCJ8oNmoo sFo8lHICdhUW/oq6rOS9FE8a/fxbt3AnCJkUvUBin9qHx5Fcg5PMxMRQ7iBhquhy A/EtwPAHihHva45oCHFZENvyaiIn1bVUSeMPvW117OMqXzgrG4jfu9e/s1W2+S33 FWiRm2EIPbOGAx/I5v4urgLfAKsnylcf2KMw2r3NiPKu6p3gdNs0H74W0HK0zm5k AHks7DOH9IHYXVilh50i7OZOM9Zd6i+ZU6nNSTDCmLyL+fT2SQLo7lQwgntZYJmG 5PydDULqpX/y3Ypzzd4JwtI8eSjlUxDqGstwsb0dopuvDIkOcp+seLlrBQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB0TxFbFO4gurbjF8TdPOOx6MyHVMB8GA1UdIwQY MBaAFEpLUT9+RG4M1tz+VoKbvJ/kmNPoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2t0UlAzNUViZ3pXM1A1V2dwdThuLVNZMC1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mYTU1MTktMGUzNS00NGNmLTlkNGYt MmFlYTc1YzJkZjc4LzEvSFJQRVZzVTdpQzZ0dU1YeE4wODQ3SG96SWRVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9mYTU1MTktMGUzNS00NGNmLTlkNGYtMmFlYTc1YzJkZjc4 LzEvU2t0UlAzNUViZ3pXM1A1V2dwdThuLVNZMC1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEWd2wMA0E AgACMAcDBQAqAg4oMA0GCSqGSIb3DQEBCwUAA4IBAQAfyx15JHqRsgsdyXuat8p+ zy3uKzNRjAczW0AX0MFAugpQ98EOH1WabsWTqfVhB79NS6L3z9xeqTEghIlUZPq1 WPkvu9Ue0Cv8DZ9zsNHwlRuzCMpRYlBdTn4rOmph+8N8zezQgbXr9oPERjd3GGuL d4krTQpPK5dUAbRmnmmjtN+l9n3JLHxXBtyorxSfk4Ju0++2A/5LQzbzmklsMIaF OJMMEs90Fg0a4EG7RyOuMMxxTckMjYE0DqqFAOXQrLTdUcAnaj//vN1NB37Ru/y9 4dLJ9jerYuQqeqnnvCZWVpZl5qHB/28EvQHKYVI1ZYH/e2GBpqZwZn0zumOgUR4G -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:46 2026 by rpki-client