This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e06916-9003-4195-b0f2-ee1ea636ed4f/1/HLXrwT45MTMa_mhCV00Hv0aHA2k.roa File: HLXrwT45MTMa_mhCV00Hv0aHA2k.roa (raw, json) Hash identifier: rkZE6mPZWfH9GMHGmnUqFvkyHWkjWIxlqyhyBnTw+1k= Subject key identifier: 1C:B5:EB:C1:3E:39:31:33:1A:FE:68:42:57:4D:07:BF:46:87:03:69 Certificate issuer: /CN=7af51229773af9157e317160f9dc800f381e0b2b Certificate serial: 019B79ECCA0A4B1EB255626FA468EDC02E9F Authority key identifier: 7A:F5:12:29:77:3A:F9:15:7E:31:71:60:F9:DC:80:0F:38:1E:0B:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evUSKXc6-RV-MXFg-dyADzgeCys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e06916-9003-4195-b0f2-ee1ea636ed4f/1/HLXrwT45MTMa_mhCV00Hv0aHA2k.roa Signing time: Thu 01 Jan 2026 14:18:39 +0000 ROA not before: Thu 01 Jan 2026 14:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8888 IP address blocks: 78.31.211.0/24 maxlen: 24 94.124.79.0/24 maxlen: 24 146.19.0.0/24 maxlen: 24 146.19.145.0/24 maxlen: 24 2a11::/32 maxlen: 48 2a11:3::/32 maxlen: 48 2a11:4::/30 maxlen: 48 2a11:8080::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e06916-9003-4195-b0f2-ee1ea636ed4f/1/evUSKXc6-RV-MXFg-dyADzgeCys.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/e06916-9003-4195-b0f2-ee1ea636ed4f/1/evUSKXc6-RV-MXFg-dyADzgeCys.mft rsync://rpki.ripe.net/repository/DEFAULT/evUSKXc6-RV-MXFg-dyADzgeCys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:ca:0a:4b:1e:b2:55:62:6f:a4:68:ed:c0:2e:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7af51229773af9157e317160f9dc800f381e0b2b Validity Not Before: Jan 1 14:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cb5ebc13e3931331afe6842574d07bf46870369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e0:e2:ba:76:6e:cd:fe:79:5d:29:8b:4b:48: 8e:ea:cd:6a:f9:df:f3:31:9f:b5:3d:03:19:b6:85: d8:a1:7b:1f:6e:1e:27:bf:c6:3a:b2:af:04:1e:27: 25:c5:7a:ab:70:01:a3:35:80:96:b2:3b:85:ee:ad: b7:82:55:05:a9:8d:30:e5:ab:7d:87:0d:28:6a:2b: c5:a8:57:f3:04:36:9e:81:a5:15:51:18:e3:f0:cf: 35:08:e9:22:66:b3:b5:bc:b1:70:de:73:4e:f6:46: 89:d6:e4:8c:ad:ee:f8:7b:15:c5:aa:e6:dc:c2:4c: 8f:fc:7f:f9:a2:2f:5b:b8:57:7e:cc:a3:e7:a8:77: eb:95:af:ca:f8:ec:06:72:c1:19:4e:20:ae:55:9a: b3:5d:bf:ad:46:86:f4:f0:91:c9:a3:9c:d6:c3:3e: 26:39:64:31:de:ae:0c:2c:cf:99:66:ae:a0:a0:de: 6a:f8:2f:7f:90:c7:b7:15:1a:15:78:f8:e5:26:92: 83:4b:c6:ea:0d:94:b4:42:e6:64:1c:d0:8f:7e:97: 13:b6:a9:53:2d:f6:0c:91:20:5e:a9:8c:2f:27:65: ac:80:68:bf:a8:d5:fa:63:8c:38:0f:6f:64:23:92: f4:a6:4a:e6:0a:e6:3c:20:df:bd:51:19:ca:74:62: 9d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B5:EB:C1:3E:39:31:33:1A:FE:68:42:57:4D:07:BF:46:87:03:69 X509v3 Authority Key Identifier: keyid:7A:F5:12:29:77:3A:F9:15:7E:31:71:60:F9:DC:80:0F:38:1E:0B:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evUSKXc6-RV-MXFg-dyADzgeCys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e06916-9003-4195-b0f2-ee1ea636ed4f/1/HLXrwT45MTMa_mhCV00Hv0aHA2k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e06916-9003-4195-b0f2-ee1ea636ed4f/1/evUSKXc6-RV-MXFg-dyADzgeCys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.31.211.0/24 94.124.79.0/24 146.19.0.0/24 146.19.145.0/24 IPv6: 2a11::/32 2a11:3::-2a11:7:ffff:ffff:ffff:ffff:ffff:ffff 2a11:8080::/29 Signature Algorithm: sha256WithRSAEncryption 3e:15:ea:98:ce:00:6e:89:c4:ab:f1:97:2b:5a:8f:3a:ec:52: 58:0e:fa:c4:45:af:1f:cd:a0:84:c0:e4:9b:73:71:51:27:c1: cd:12:6d:fc:3b:f4:cc:8d:e8:bf:f1:24:d3:e3:f8:3c:88:c4: d7:92:74:c5:36:a6:d5:c8:13:17:a8:1c:95:69:b0:af:bc:55: 0f:ee:46:e3:bf:a8:2f:d9:3e:ae:35:62:ff:ab:67:38:aa:37: d4:b9:d7:d6:72:d7:be:f9:d8:80:ca:f1:20:5c:f5:a6:7e:aa: 50:03:6e:98:1b:f4:5a:4c:a3:b1:b7:de:5a:27:91:af:14:65: d7:48:98:45:97:18:19:60:fa:50:73:75:73:3a:8c:34:c1:27: 32:f0:61:6d:dd:f5:ed:6a:2b:e6:91:7f:28:c8:1a:da:ac:4d: cc:12:93:a6:5d:d7:65:61:22:c3:68:68:95:5a:fd:be:f3:47: 76:f7:9d:76:f7:f9:17:a7:0f:ca:90:50:81:bc:c6:24:18:2d: 20:e4:52:d0:90:1b:39:08:dd:1f:39:61:e6:f6:02:e7:9b:d3: b2:09:1c:f8:1b:55:06:f6:bf:4b:d9:ff:66:b6:71:55:50:60: 2f:8c:7f:10:44:c9:1f:02:94:28:ee:45:36:6e:b3:eb:07:2b: 9c:65:88:c1 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt57MoKSx6yVWJvpGjtwC6fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhZjUxMjI5NzczYWY5MTU3ZTMxNzE2MGY5ZGM4MDBmMzgx ZTBiMmIwHhcNMjYwMTAxMTQxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2I1ZWJjMTNlMzkzMTMzMWFmZTY4NDI1NzRkMDdiZjQ2ODcwMzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9eDiunZuzf55XSmLS0iO6s1q+d/z MZ+1PQMZtoXYoXsfbh4nv8Y6sq8EHiclxXqrcAGjNYCWsjuF7q23glUFqY0w5at9 hw0oaivFqFfzBDaegaUVURjj8M81COkiZrO1vLFw3nNO9kaJ1uSMre74exXFqubc wkyP/H/5oi9buFd+zKPnqHfrla/K+OwGcsEZTiCuVZqzXb+tRob08JHJo5zWwz4m OWQx3q4MLM+ZZq6goN5q+C9/kMe3FRoVePjlJpKDS8bqDZS0QuZkHNCPfpcTtqlT LfYMkSBeqYwvJ2WsgGi/qNX6Y4w4D29kI5L0pkrmCuY8IN+9URnKdGKd+QIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFBy168E+OTEzGv5oQldNB79GhwNpMB8GA1UdIwQY MBaAFHr1Eil3OvkVfjFxYPncgA84HgsrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXZVU0tYYzYtUlYtTVhGZy1keUFEemdlQ3lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lMDY5MTYtOTAwMy00MTk1LWIwZjIt ZWUxZWE2MzZlZDRmLzEvSExYcndUNDVNVE1hX21oQ1YwMEh2MGFIQTJrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9lMDY5MTYtOTAwMy00MTk1LWIwZjItZWUxZWE2MzZlZDRm LzEvZXZVU0tYYzYtUlYtTVhGZy1keUFEemdlQ3lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjAeBAIAATAYAwQATh/TAwQA XnxPAwQAkhMAAwQAkhORMCQEAgACMB4DBQAqEQAAMA4DBQAqEQADAwUDKhEAAAMF AyoRgIAwDQYJKoZIhvcNAQELBQADggEBAD4V6pjOAG6JxKvxlytajzrsUlgO+sRF rx/NoITA5JtzcVEnwc0Sbfw79MyN6L/xJNPj+DyIxNeSdMU2ptXIExeoHJVpsK+8 VQ/uRuO/qC/ZPq41Yv+rZziqN9S519Zy17752IDK8SBc9aZ+qlADbpgb9FpMo7G3 3lonka8UZddImEWXGBlg+lBzdXM6jDTBJzLwYW3d9e1qK+aRfyjIGtqsTcwSk6Zd 12VhIsNoaJVa/b7zR3b3nXb3+RenD8qQUIG8xiQYLSDkUtCQGzkI3R85Yeb2Aueb 07IJHPgbVQb2v0vZ/2a2cVVQYC+MfxBEyR8ClCjuRTZus+sHK5xliME= -----END CERTIFICATE-----Generated at Wed Jan 21 13:49:19 2026 by rpki-client