This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/hrnLYiX_lMVabWsaWy1YNdnH5lo.roa File: hrnLYiX_lMVabWsaWy1YNdnH5lo.roa (raw, json) Hash identifier: A8isPHXQiSnhKMitypfxPpvT5h+QDttKZkJpOSldfqg= Subject key identifier: 86:B9:CB:62:25:FF:94:C5:5A:6D:6B:1A:5B:2D:58:35:D9:C7:E6:5A Certificate issuer: /CN=97ecfbb3550bf2c7674cc52e9cbbf3a933f5e778 Certificate serial: 019B7F14FD9B3DB5D55E095ED941CC6BC6B6 Authority key identifier: 97:EC:FB:B3:55:0B:F2:C7:67:4C:C5:2E:9C:BB:F3:A9:33:F5:E7:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-z7s1UL8sdnTMUunLvzqTP153g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/hrnLYiX_lMVabWsaWy1YNdnH5lo.roa Signing time: Fri 02 Jan 2026 14:20:40 +0000 ROA not before: Fri 02 Jan 2026 14:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205362 IP address blocks: 80.240.106.0/24 maxlen: 24 128.0.42.0/23 maxlen: 23 128.0.42.0/24 maxlen: 24 128.0.43.0/24 maxlen: 24 185.216.4.0/22 maxlen: 22 185.216.4.0/24 maxlen: 24 185.216.5.0/24 maxlen: 24 185.216.6.0/24 maxlen: 24 185.216.7.0/24 maxlen: 24 188.212.251.0/24 maxlen: 24 188.215.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/l-z7s1UL8sdnTMUunLvzqTP153g.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/l-z7s1UL8sdnTMUunLvzqTP153g.mft rsync://rpki.ripe.net/repository/DEFAULT/l-z7s1UL8sdnTMUunLvzqTP153g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:fd:9b:3d:b5:d5:5e:09:5e:d9:41:cc:6b:c6:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ecfbb3550bf2c7674cc52e9cbbf3a933f5e778 Validity Not Before: Jan 2 14:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=86b9cb6225ff94c55a6d6b1a5b2d5835d9c7e65a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:a1:e2:b2:5c:d5:bc:e3:ca:6d:33:93:11:f9: 68:6e:28:2d:28:78:88:d7:13:c9:30:6e:5a:55:68: eb:46:6e:3e:48:cd:18:5a:f7:2c:b7:81:69:c6:71: 07:7b:51:4b:0b:3e:db:81:d5:04:10:97:82:71:92: a2:aa:9a:78:2c:b1:42:21:80:95:88:79:c9:14:48: 54:3e:42:f4:7c:19:71:68:85:8d:71:f6:b0:f4:e3: d4:60:4c:99:47:e8:dc:fb:27:0a:e5:9d:74:c3:d0: 65:d7:0c:c5:16:1f:46:43:25:6c:0b:04:d8:0b:60: eb:09:33:06:45:48:92:6b:bf:88:1b:d5:d2:90:56: c8:80:5d:84:3c:b3:ed:9d:fe:b8:93:18:21:03:5e: eb:54:72:c3:11:4d:af:ed:6e:24:57:f4:ad:6e:ab: e5:c2:6e:ac:f3:90:89:4c:d4:60:0d:d2:86:1d:7d: f9:91:8a:53:75:87:e3:4a:45:7e:85:ff:e1:28:42: 00:96:cb:71:09:d4:99:11:80:9a:a0:77:aa:14:0d: 03:e9:70:d2:65:da:92:b7:cf:38:d9:69:7b:e0:1f: 1c:74:56:64:ec:67:28:e8:cf:e4:9e:8e:f7:57:1e: 2b:be:d9:7a:65:90:d6:40:86:b5:11:6f:cf:fb:35: 22:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B9:CB:62:25:FF:94:C5:5A:6D:6B:1A:5B:2D:58:35:D9:C7:E6:5A X509v3 Authority Key Identifier: keyid:97:EC:FB:B3:55:0B:F2:C7:67:4C:C5:2E:9C:BB:F3:A9:33:F5:E7:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-z7s1UL8sdnTMUunLvzqTP153g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/hrnLYiX_lMVabWsaWy1YNdnH5lo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/1c0ea6-a6df-4522-8bc9-8c511698fcae/1/l-z7s1UL8sdnTMUunLvzqTP153g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.240.106.0/24 128.0.42.0/23 185.216.4.0/22 188.212.251.0/24 188.215.32.0/24 Signature Algorithm: sha256WithRSAEncryption 94:49:5e:cc:d3:9b:44:58:86:85:5c:30:a7:0e:3e:14:7b:0d: b8:f5:56:ce:1a:32:13:80:8d:f5:64:b1:5d:d4:7f:bf:04:73: 55:24:08:33:bd:57:5e:79:69:74:14:57:3b:19:b2:91:96:f4: f3:55:13:75:2a:d0:cf:2e:22:1a:3c:d6:5f:ec:75:5f:61:ed: 0a:77:97:68:1a:4e:cf:e6:ae:cf:d4:b3:65:7b:85:26:25:4e: 80:bd:81:f1:02:14:aa:3b:07:c4:18:e5:bd:60:4b:03:ce:c5: 80:ab:b7:37:b4:93:96:11:73:f9:cb:86:86:36:ca:27:da:a7: bd:a1:40:7b:cc:70:df:e2:dd:a2:95:6f:e1:f6:ed:75:3a:08: 82:2d:5b:db:04:b9:ca:bd:5d:88:a5:a7:7c:01:1f:92:ee:86: 7d:4f:f6:d8:d8:01:12:ba:21:40:a0:52:7a:a3:4b:90:e7:02: 92:a4:76:87:17:33:79:d0:29:2e:20:b5:2f:42:a9:1b:24:c5: 08:58:83:c0:cf:1b:62:a4:0d:b7:36:db:34:8a:b4:b1:c5:f2: 35:9e:e9:27:75:8e:3f:a9:78:3d:80:af:ea:a4:85:cf:9e:89: 2a:7f:70:9d:52:6c:97:97:9a:ba:6d:8b:4c:79:ca:05:20:b9: d6:7f:7a:20 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/FP2bPbXVXgle2UHMa8a2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3ZWNmYmIzNTUwYmYyYzc2NzRjYzUyZTljYmJmM2E5MzNm NWU3NzgwHhcNMjYwMTAyMTQyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NmI5Y2I2MjI1ZmY5NGM1NWE2ZDZiMWE1YjJkNTgzNWQ5YzdlNjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhKHislzVvOPKbTOTEflobigtKHiI 1xPJMG5aVWjrRm4+SM0YWvcst4FpxnEHe1FLCz7bgdUEEJeCcZKiqpp4LLFCIYCV iHnJFEhUPkL0fBlxaIWNcfaw9OPUYEyZR+jc+ycK5Z10w9Bl1wzFFh9GQyVsCwTY C2DrCTMGRUiSa7+IG9XSkFbIgF2EPLPtnf64kxghA17rVHLDEU2v7W4kV/Stbqvl wm6s85CJTNRgDdKGHX35kYpTdYfjSkV+hf/hKEIAlstxCdSZEYCaoHeqFA0D6XDS ZdqSt8842Wl74B8cdFZk7Gco6M/kno73Vx4rvtl6ZZDWQIa1EW/P+zUiUQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFIa5y2Il/5TFWm1rGlstWDXZx+ZaMB8GA1UdIwQY MBaAFJfs+7NVC/LHZ0zFLpy786kz9ed4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbC16N3MxVUw4c2RuVE1VdW5MdnpxVFAxNTNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8xYzBlYTYtYTZkZi00NTIyLThiYzkt OGM1MTE2OThmY2FlLzEvaHJuTFlpWF9sTVZhYldzYVd5MVlOZG5INWxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8xYzBlYTYtYTZkZi00NTIyLThiYzktOGM1MTE2OThmY2Fl LzEvbC16N3MxVUw4c2RuVE1VdW5MdnpxVFAxNTNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAUPBqAwQB gAAqAwQCudgEAwQAvNT7AwQAvNcgMA0GCSqGSIb3DQEBCwUAA4IBAQCUSV7M05tE WIaFXDCnDj4Uew249VbOGjITgI31ZLFd1H+/BHNVJAgzvVdeeWl0FFc7GbKRlvTz VRN1KtDPLiIaPNZf7HVfYe0Kd5doGk7P5q7P1LNle4UmJU6AvYHxAhSqOwfEGOW9 YEsDzsWAq7c3tJOWEXP5y4aGNson2qe9oUB7zHDf4t2ilW/h9u11OgiCLVvbBLnK vV2Ipad8AR+S7oZ9T/bY2AESuiFAoFJ6o0uQ5wKSpHaHFzN50CkuILUvQqkbJMUI WIPAzxtipA23Nts0irSxxfI1nukndY4/qXg9gK/qpIXPnokqf3CdUmyXl5q6bYtM ecoFILnWf3og -----END CERTIFICATE-----Generated at Tue Feb 10 06:28:40 2026 by rpki-client