This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/HAQ7BpYeCI11Q-zB5s9xRmO_8cs.roa File: HAQ7BpYeCI11Q-zB5s9xRmO_8cs.roa (raw, json) Hash identifier: sU5/NOU5DiC1d86GQV5S1pOP7IqudYFu3QsJXwJrLGs= Subject key identifier: 1C:04:3B:06:96:1E:08:8D:75:43:EC:C1:E6:CF:71:46:63:BF:F1:CB Certificate issuer: /CN=532d1e41424819bcc0cd637d8ee141fea585d00d Certificate serial: 019B797E0CB8D8F4E3C2A01E1B8116A3C9B0 Authority key identifier: 53:2D:1E:41:42:48:19:BC:C0:CD:63:7D:8E:E1:41:FE:A5:85:D0:0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uy0eQUJIGbzAzWN9juFB_qWF0A0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/HAQ7BpYeCI11Q-zB5s9xRmO_8cs.roa Signing time: Thu 01 Jan 2026 12:17:42 +0000 ROA not before: Thu 01 Jan 2026 12:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201405 IP address blocks: 185.49.48.0/24 maxlen: 24 2a04:b700:185a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/Uy0eQUJIGbzAzWN9juFB_qWF0A0.crl rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/Uy0eQUJIGbzAzWN9juFB_qWF0A0.mft rsync://rpki.ripe.net/repository/DEFAULT/Uy0eQUJIGbzAzWN9juFB_qWF0A0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:0c:b8:d8:f4:e3:c2:a0:1e:1b:81:16:a3:c9:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532d1e41424819bcc0cd637d8ee141fea585d00d Validity Not Before: Jan 1 12:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c043b06961e088d7543ecc1e6cf714663bff1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ef:2d:f3:c2:12:5d:ad:f3:42:de:5b:8e:42: 27:f5:0e:9b:60:28:19:9d:f2:61:77:65:fc:e3:81: b2:f7:1b:f8:d2:42:8b:66:ef:b7:ad:8b:2b:33:b1: f0:75:68:33:01:dc:6a:87:1c:71:b4:f7:be:c1:91: cc:34:0b:9b:d6:1e:64:86:b9:66:6b:75:24:08:9d: 98:0e:23:58:c7:a8:c1:47:1b:78:30:1e:42:0c:0f: 8f:4e:65:b0:62:87:38:9f:70:80:d1:90:0e:37:6a: ca:6e:d1:54:39:3e:1b:4d:31:30:1e:57:eb:05:cf: 0d:f7:33:7d:83:00:32:96:ed:48:84:af:32:69:fa: 27:b2:4e:33:29:35:a2:8f:47:ae:de:a0:48:05:30: a9:06:91:4a:b5:8e:fd:7f:28:f0:fb:f4:d0:91:09: 66:c7:bd:c2:ef:37:e6:62:af:f1:2b:ee:32:38:81: d7:1c:0b:ec:d6:1e:ea:d4:45:73:4a:55:7b:71:62: 8e:a2:49:f4:74:c0:74:13:17:9b:82:1e:b9:e8:49: eb:60:ed:6a:e8:e7:06:19:e8:48:66:6a:f2:21:8d: f3:7a:1f:72:2f:e2:e3:fd:3e:ec:e5:b0:5f:07:0e: 45:68:09:88:4f:d0:ba:de:13:05:41:1e:3c:be:80: 8b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:04:3B:06:96:1E:08:8D:75:43:EC:C1:E6:CF:71:46:63:BF:F1:CB X509v3 Authority Key Identifier: keyid:53:2D:1E:41:42:48:19:BC:C0:CD:63:7D:8E:E1:41:FE:A5:85:D0:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uy0eQUJIGbzAzWN9juFB_qWF0A0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/HAQ7BpYeCI11Q-zB5s9xRmO_8cs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/78c577-8f98-40b2-b01d-10777f9e3685/1/Uy0eQUJIGbzAzWN9juFB_qWF0A0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.49.48.0/24 IPv6: 2a04:b700:185a::/48 Signature Algorithm: sha256WithRSAEncryption af:87:ce:43:dc:2d:d0:31:9e:9c:09:f0:3b:fc:78:e6:12:46: 22:57:66:5e:d9:bb:16:32:18:4c:63:9c:af:12:6c:d5:e1:0b: 4e:fb:2b:15:91:2d:cc:ac:c5:46:8e:38:a7:04:5f:cf:2a:44: 01:21:18:70:8a:e0:45:d5:29:c7:8c:4d:09:f0:83:97:8b:f9: a9:df:99:b1:ae:94:73:f2:78:01:05:a7:29:e3:b3:6a:53:e8: 20:70:dd:56:7e:7a:e3:2c:f0:ba:f5:95:a3:09:d3:26:12:3e: fc:53:dc:d6:5a:f8:bd:4c:a3:74:61:2d:8d:0a:52:97:1d:b5: df:3c:0a:df:4a:94:4c:a3:3d:5c:7b:d0:ee:c2:ed:b7:14:a9: 0d:b6:13:30:43:5e:76:6d:f9:16:f1:3f:03:ba:86:15:2c:1d: 21:49:e3:4a:26:1c:f9:f3:e5:59:b7:d6:48:8f:11:41:7c:7a: 53:7c:41:a0:80:ea:14:0b:ed:64:cf:a3:0c:af:31:98:43:b1: 42:fd:78:af:35:3a:97:89:50:48:c6:a4:c4:35:b7:e7:89:de: b5:ef:76:f9:82:5c:b8:6d:3c:66:ca:e3:a1:3d:4b:3b:42:ea: f4:35:3b:68:41:d1:dc:61:f4:59:88:f2:67:c8:76:3e:ab:94: db:09:af:3f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5fgy42PTjwqAeG4EWo8mwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMmQxZTQxNDI0ODE5YmNjMGNkNjM3ZDhlZTE0MWZlYTU4 NWQwMGQwHhcNMjYwMTAxMTIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzA0M2IwNjk2MWUwODhkNzU0M2VjYzFlNmNmNzE0NjYzYmZmMWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyO8t88ISXa3zQt5bjkIn9Q6bYCgZ nfJhd2X844Gy9xv40kKLZu+3rYsrM7HwdWgzAdxqhxxxtPe+wZHMNAub1h5khrlm a3UkCJ2YDiNYx6jBRxt4MB5CDA+PTmWwYoc4n3CA0ZAON2rKbtFUOT4bTTEwHlfr Bc8N9zN9gwAylu1IhK8yafonsk4zKTWij0eu3qBIBTCpBpFKtY79fyjw+/TQkQlm x73C7zfmYq/xK+4yOIHXHAvs1h7q1EVzSlV7cWKOokn0dMB0Exebgh656EnrYO1q 6OcGGehIZmryIY3zeh9yL+Lj/T7s5bBfBw5FaAmIT9C63hMFQR48voCLlwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFBwEOwaWHgiNdUPswebPcUZjv/HLMB8GA1UdIwQY MBaAFFMtHkFCSBm8wM1jfY7hQf6lhdANMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXkwZVFVSklHYnpBeldOOWp1RkJfcVdGMEEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC83OGM1NzctOGY5OC00MGIyLWIwMWQt MTA3NzdmOWUzNjg1LzEvSEFRN0JwWWVDSTExUS16QjVzOXhSbU9fOGNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC83OGM1NzctOGY5OC00MGIyLWIwMWQtMTA3NzdmOWUzNjg1 LzEvVXkwZVFVSklHYnpBeldOOWp1RkJfcVdGMEEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuTEwMA8E AgACMAkDBwAqBLcAGFowDQYJKoZIhvcNAQELBQADggEBAK+HzkPcLdAxnpwJ8Dv8 eOYSRiJXZl7ZuxYyGExjnK8SbNXhC077KxWRLcysxUaOOKcEX88qRAEhGHCK4EXV KceMTQnwg5eL+anfmbGulHPyeAEFpynjs2pT6CBw3VZ+euMs8Lr1laMJ0yYSPvxT 3NZa+L1Mo3RhLY0KUpcdtd88Ct9KlEyjPVx70O7C7bcUqQ22EzBDXnZt+RbxPwO6 hhUsHSFJ40omHPnz5Vm31kiPEUF8elN8QaCA6hQL7WTPowyvMZhDsUL9eK81OpeJ UEjGpMQ1t+eJ3rXvdvmCXLhtPGbK46E9SztC6vQ1O2hB0dxh9FmI8mfIdj6rlNsJ rz8= -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:49 2026 by rpki-client