This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/hm0yzTK0b7qXlzutucuPmlCxGCU.roa File: hm0yzTK0b7qXlzutucuPmlCxGCU.roa (raw, json) Hash identifier: hv0VBvVubXMhG6KhX/vN7Xc4XTlNc7CyGB6Tgv3eXXY= Subject key identifier: 86:6D:32:CD:32:B4:6F:BA:97:97:3B:AD:B9:CB:8F:9A:50:B1:18:25 Certificate issuer: /CN=ea53f33ccdfc5fe84b84c15f04322906991af9e7 Certificate serial: 019B797E4E294D9129E647A15B99FD0C511B Authority key identifier: EA:53:F3:3C:CD:FC:5F:E8:4B:84:C1:5F:04:32:29:06:99:1A:F9:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lPzPM38X-hLhMFfBDIpBpka-ec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/hm0yzTK0b7qXlzutucuPmlCxGCU.roa Signing time: Thu 01 Jan 2026 12:17:59 +0000 ROA not before: Thu 01 Jan 2026 12:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205581 IP address blocks: 185.213.36.0/24 maxlen: 24 185.213.37.0/24 maxlen: 24 185.213.38.0/24 maxlen: 24 185.213.39.0/24 maxlen: 24 2a0b:8240::/32 maxlen: 32 2a0b:8241::/32 maxlen: 32 2a0b:8242::/32 maxlen: 32 2a0b:8243::/32 maxlen: 32 2a0b:8244::/32 maxlen: 32 2a0b:8245::/32 maxlen: 32 2a0b:8246::/32 maxlen: 32 2a0b:8247::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.mft rsync://rpki.ripe.net/repository/DEFAULT/6lPzPM38X-hLhMFfBDIpBpka-ec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:4e:29:4d:91:29:e6:47:a1:5b:99:fd:0c:51:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea53f33ccdfc5fe84b84c15f04322906991af9e7 Validity Not Before: Jan 1 12:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=866d32cd32b46fba97973badb9cb8f9a50b11825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dc:e4:4e:7a:f4:51:d9:f1:a2:3d:31:27:26: 55:a3:03:b6:2c:34:fe:87:a1:79:9f:93:e4:a7:2c: be:d1:aa:cd:cf:62:63:53:c0:6b:e0:e0:05:b5:dc: 94:d3:7a:bb:66:c5:6a:a9:d8:4a:8d:54:58:82:72: 00:5d:a6:d7:62:02:e2:e9:4a:6b:8d:d3:e1:a1:f9: 3e:ad:46:05:55:f6:40:b6:8f:a8:e1:70:e3:57:92: 76:30:b9:10:63:c5:c8:b5:f0:74:79:b4:df:53:44: 9f:a1:ec:15:cb:cc:ff:dc:c4:16:47:52:37:67:01: e2:03:3e:5b:00:06:06:41:55:98:54:0d:5b:f5:06: 49:eb:58:34:84:c4:be:77:9a:b6:4e:fe:99:b9:4c: 4e:a6:e3:ed:ce:16:6a:d2:00:4f:6f:c7:f8:6c:21: f1:d1:0d:d1:a8:4e:03:b9:09:c7:f0:eb:47:7c:de: fb:6d:5b:17:5b:6e:b3:6b:a6:70:24:fd:df:53:b8: 90:5d:0b:f4:3c:dc:ba:28:5a:7d:29:f9:6a:2b:54: 61:a2:3f:7b:37:5b:9d:62:30:a9:7b:44:e3:7c:30: 01:85:7a:a9:22:d5:ef:df:84:a7:63:e6:52:cb:b5: 1d:80:fb:4a:75:67:fa:fb:8a:dc:de:8a:75:b1:21: 06:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6D:32:CD:32:B4:6F:BA:97:97:3B:AD:B9:CB:8F:9A:50:B1:18:25 X509v3 Authority Key Identifier: keyid:EA:53:F3:3C:CD:FC:5F:E8:4B:84:C1:5F:04:32:29:06:99:1A:F9:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lPzPM38X-hLhMFfBDIpBpka-ec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/hm0yzTK0b7qXlzutucuPmlCxGCU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.213.36.0/22 IPv6: 2a0b:8240::/29 Signature Algorithm: sha256WithRSAEncryption 91:76:4d:8f:f3:6d:27:21:d3:60:66:e5:fc:58:dd:af:6b:c5: d3:4e:c1:1d:f5:ef:ca:c5:f3:96:78:a3:9c:6a:47:b5:82:37: 2d:c1:4f:35:a0:f6:e4:f4:b1:fc:7c:de:54:f0:97:e3:a5:b3: 9c:b2:66:72:c0:14:d4:fa:65:ce:fe:e3:16:b7:7c:13:51:30: 89:dd:4b:aa:50:5d:2e:0b:1f:16:4e:d0:21:ef:be:9a:90:bf: 62:ad:f5:f1:50:86:90:2b:63:95:99:ad:2a:d2:f4:43:14:d6: a7:8c:06:ed:c1:96:ac:92:9f:3f:75:65:8b:d6:8d:40:d6:72: ff:4b:67:ed:ad:f1:23:3c:98:73:a2:d6:d7:bd:b0:07:e3:cb: 23:ac:5c:85:fa:e9:75:ef:c1:ed:59:4d:42:c5:f3:cc:a3:aa: 5a:c3:69:4f:df:58:56:58:fd:a0:14:56:c0:d4:2e:a2:71:ed: 7e:90:66:bb:3e:55:4e:05:ec:39:0f:67:66:ee:6e:86:6f:66: 67:59:43:80:1e:89:57:74:39:8a:87:24:19:98:97:ae:94:e1: fb:cb:e9:87:d1:76:d2:b4:26:e2:b8:ad:b5:c9:81:5f:b3:05: ed:49:68:29:ee:8e:c7:bb:89:48:06:60:7a:ed:ff:0d:34:82: ea:b9:b7:aa -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fk4pTZEp5kehW5n9DFEbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhNTNmMzNjY2RmYzVmZTg0Yjg0YzE1ZjA0MzIyOTA2OTkx YWY5ZTcwHhcNMjYwMTAxMTIxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjZkMzJjZDMyYjQ2ZmJhOTc5NzNiYWRiOWNiOGY5YTUwYjExODI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstzkTnr0Udnxoj0xJyZVowO2LDT+ h6F5n5Pkpyy+0arNz2JjU8Br4OAFtdyU03q7ZsVqqdhKjVRYgnIAXabXYgLi6Upr jdPhofk+rUYFVfZAto+o4XDjV5J2MLkQY8XItfB0ebTfU0SfoewVy8z/3MQWR1I3 ZwHiAz5bAAYGQVWYVA1b9QZJ61g0hMS+d5q2Tv6ZuUxOpuPtzhZq0gBPb8f4bCHx 0Q3RqE4DuQnH8OtHfN77bVsXW26za6ZwJP3fU7iQXQv0PNy6KFp9KflqK1Rhoj97 N1udYjCpe0TjfDABhXqpItXv34SnY+ZSy7UdgPtKdWf6+4rc3op1sSEGhQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIZtMs0ytG+6l5c7rbnLj5pQsRglMB8GA1UdIwQY MBaAFOpT8zzN/F/oS4TBXwQyKQaZGvnnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmxQelBNMzhYLWhMaE1GZkJESXBCcGthLWVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mOTUyOTgtZjkwOS00NWM5LTkxMDQt OGE0ZjYzZWE5YmYxLzEvaG0weXpUSzBiN3FYbHp1dHVjdVBtbEN4R0NVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9mOTUyOTgtZjkwOS00NWM5LTkxMDQtOGE0ZjYzZWE5YmYx LzEvNmxQelBNMzhYLWhMaE1GZkJESXBCcGthLWVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudUkMA0E AgACMAcDBQMqC4JAMA0GCSqGSIb3DQEBCwUAA4IBAQCRdk2P820nIdNgZuX8WN2v a8XTTsEd9e/KxfOWeKOcake1gjctwU81oPbk9LH8fN5U8JfjpbOcsmZywBTU+mXO /uMWt3wTUTCJ3UuqUF0uCx8WTtAh776akL9irfXxUIaQK2OVma0q0vRDFNanjAbt wZaskp8/dWWL1o1A1nL/S2ftrfEjPJhzotbXvbAH48sjrFyF+ul178HtWU1CxfPM o6paw2lP31hWWP2gFFbA1C6ice1+kGa7PlVOBew5D2dm7m6Gb2ZnWUOAHolXdDmK hyQZmJeulOH7y+mH0XbStCbiuK21yYFfswXtSWgp7o7Hu4lIBmB67f8NNILqubeq -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:40 2026 by rpki-client