This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/HxA8indcAYi8lBDTHZnwWgbkAio.roa File: HxA8indcAYi8lBDTHZnwWgbkAio.roa (raw, json) Hash identifier: em1TlDQMm/m+whiE9c240Qp5U+ubPa/+m3LSAa1d6LI= Subject key identifier: 1F:10:3C:8A:77:5C:01:88:BC:94:10:D3:1D:99:F0:5A:06:E4:02:2A Certificate issuer: /CN=fc282a794b3f7ab4cd6feb6c5fd6b3d256afc461 Certificate serial: 019B7C123CF5A446BFA05B0336E8BDC81BB4 Authority key identifier: FC:28:2A:79:4B:3F:7A:B4:CD:6F:EB:6C:5F:D6:B3:D2:56:AF:C4:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_CgqeUs_erTNb-tsX9az0lavxGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/HxA8indcAYi8lBDTHZnwWgbkAio.roa Signing time: Fri 02 Jan 2026 00:18:48 +0000 ROA not before: Fri 02 Jan 2026 00:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.144.236.0/22 maxlen: 24 2a07:4407::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/_CgqeUs_erTNb-tsX9az0lavxGE.crl rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/_CgqeUs_erTNb-tsX9az0lavxGE.mft rsync://rpki.ripe.net/repository/DEFAULT/_CgqeUs_erTNb-tsX9az0lavxGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:3c:f5:a4:46:bf:a0:5b:03:36:e8:bd:c8:1b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc282a794b3f7ab4cd6feb6c5fd6b3d256afc461 Validity Not Before: Jan 2 00:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f103c8a775c0188bc9410d31d99f05a06e4022a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c8:ba:0d:16:db:3c:c1:d0:52:d9:b3:6c:17: 9a:59:44:a0:50:08:1d:ff:68:e8:3c:52:24:88:3d: 55:48:b3:a7:88:ee:1d:5b:a4:77:4f:ae:54:40:38: 19:c8:6a:47:be:21:f9:c7:7d:83:4c:24:eb:32:00: 93:53:d3:fc:a6:e4:dd:43:76:d3:1a:64:bc:02:7d: fc:e9:cd:9a:53:d5:b9:d4:fc:16:49:b2:d6:b2:66: 40:b5:b1:a0:44:d9:48:dc:ae:db:c0:97:37:13:6c: 8c:b2:ce:ac:e3:5d:2b:f2:fa:06:4c:40:0e:8d:6f: b6:18:21:85:f8:04:3c:4f:9e:c3:57:4e:9f:5e:db: 38:a1:8c:c9:36:26:6e:35:a7:40:e7:5a:94:8f:77: 9f:10:cb:8a:98:e4:8b:c2:3c:27:a6:12:c0:0e:b2: f8:80:07:6d:8d:ea:91:59:a3:d7:96:96:88:cd:09: 58:dc:79:51:75:94:ce:09:b4:de:ee:ef:58:bf:09: 8e:db:85:c8:3c:5a:32:28:4f:33:3d:be:bb:40:22: 83:36:08:75:30:29:a5:87:c5:fc:38:9e:6e:b5:0e: 14:da:8d:2b:01:5b:f6:6d:f0:dd:03:1f:fe:1a:ff: 24:6e:20:43:c2:b0:32:38:74:7c:a4:81:61:4b:1f: 8d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:10:3C:8A:77:5C:01:88:BC:94:10:D3:1D:99:F0:5A:06:E4:02:2A X509v3 Authority Key Identifier: keyid:FC:28:2A:79:4B:3F:7A:B4:CD:6F:EB:6C:5F:D6:B3:D2:56:AF:C4:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_CgqeUs_erTNb-tsX9az0lavxGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/HxA8indcAYi8lBDTHZnwWgbkAio.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/_CgqeUs_erTNb-tsX9az0lavxGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.144.236.0/22 IPv6: 2a07:4407::/32 Signature Algorithm: sha256WithRSAEncryption b1:08:6a:27:be:57:8f:39:79:40:39:27:e8:27:27:86:eb:6e: e4:c8:34:f5:d7:dd:62:f9:e9:80:3a:79:64:0b:4f:24:0d:68: 56:af:3a:45:0d:2a:bc:95:c6:c5:9e:87:b0:91:00:df:3d:42: 8a:a5:5a:1a:1b:e7:ab:86:b0:5a:e1:da:1f:ba:86:a6:c0:02: b9:3e:09:c6:88:bf:b0:b0:de:c5:29:91:9a:a7:bc:0a:81:1f: a9:1b:30:c2:0f:c1:5b:90:85:c0:9d:6c:5d:3f:f2:6a:6f:e9: 1e:70:5b:1d:33:03:7f:11:51:b8:3e:fb:ff:d7:51:a5:0f:3b: 7d:f3:33:d5:56:9e:12:ba:16:e4:eb:23:f0:cc:bd:57:1f:cc: 3e:74:bc:f5:74:c2:a6:22:e6:d4:da:63:44:67:70:7d:58:79: 07:78:3d:95:7a:ba:5b:0d:9e:70:37:b1:11:2a:80:6d:25:4a: 62:b5:95:97:ba:b8:b9:89:a0:27:61:00:4e:6a:ad:63:c4:52: 6a:f9:ee:ca:bb:c9:ee:2d:69:8c:58:cb:97:1c:e0:83:62:f5: 02:74:21:88:30:ee:96:3c:f7:9c:13:2e:f9:d5:b3:f8:23:fa: 31:44:f7:05:74:61:c6:4c:a3:5d:88:ac:2f:2f:06:3b:83:c6: e1:7a:76:25 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8Ejz1pEa/oFsDNui9yBu0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjMjgyYTc5NGIzZjdhYjRjZDZmZWI2YzVmZDZiM2QyNTZh ZmM0NjEwHhcNMjYwMTAyMDAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjEwM2M4YTc3NWMwMTg4YmM5NDEwZDMxZDk5ZjA1YTA2ZTQwMjJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvci6DRbbPMHQUtmzbBeaWUSgUAgd /2joPFIkiD1VSLOniO4dW6R3T65UQDgZyGpHviH5x32DTCTrMgCTU9P8puTdQ3bT GmS8An386c2aU9W51PwWSbLWsmZAtbGgRNlI3K7bwJc3E2yMss6s410r8voGTEAO jW+2GCGF+AQ8T57DV06fXts4oYzJNiZuNadA51qUj3efEMuKmOSLwjwnphLADrL4 gAdtjeqRWaPXlpaIzQlY3HlRdZTOCbTe7u9YvwmO24XIPFoyKE8zPb67QCKDNgh1 MCmlh8X8OJ5utQ4U2o0rAVv2bfDdAx/+Gv8kbiBDwrAyOHR8pIFhSx+NsQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB8QPIp3XAGIvJQQ0x2Z8FoG5AIqMB8GA1UdIwQY MBaAFPwoKnlLP3q0zW/rbF/Ws9JWr8RhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0NncWVVc19lclROYi10c1g5YXowbGF2eEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9lNDg1ZTEtYTY1Zi00M2Q0LWI1NzIt ZDMzMjZjNTliY2QyLzEvSHhBOGluZGNBWWk4bEJEVEhabndXZ2JrQWlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9lNDg1ZTEtYTY1Zi00M2Q0LWI1NzItZDMzMjZjNTliY2Qy LzEvX0NncWVVc19lclROYi10c1g5YXowbGF2eEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZDsMA0E AgACMAcDBQAqB0QHMA0GCSqGSIb3DQEBCwUAA4IBAQCxCGonvlePOXlAOSfoJyeG 627kyDT1191i+emAOnlkC08kDWhWrzpFDSq8lcbFnoewkQDfPUKKpVoaG+erhrBa 4dofuoamwAK5PgnGiL+wsN7FKZGap7wKgR+pGzDCD8FbkIXAnWxdP/Jqb+kecFsd MwN/EVG4Pvv/11GlDzt98zPVVp4Suhbk6yPwzL1XH8w+dLz1dMKmIubU2mNEZ3B9 WHkHeD2VerpbDZ5wN7ERKoBtJUpitZWXuri5iaAnYQBOaq1jxFJq+e7Ku8nuLWmM WMuXHOCDYvUCdCGIMO6WPPecEy751bP4I/oxRPcFdGHGTKNdiKwvLwY7g8bhenYl -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:13 2026 by rpki-client