This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8c9067-cc6d-4c4a-b661-37d15719a2d0/1/HpNoPyQg0FUOf8oxwArXB82edsU.roa File: HpNoPyQg0FUOf8oxwArXB82edsU.roa (raw, json) Hash identifier: 90HgYD+gZxel+odW0C1ibu7Dxis/Nvml6GTHNV4NnPc= Subject key identifier: 1E:93:68:3F:24:20:D0:55:0E:7F:CA:31:C0:0A:D7:07:CD:9E:76:C5 Certificate issuer: /CN=358f36b7b0305bd9ffebc537a1a756b74e04d5e4 Certificate serial: 019B7EA67C948A334A163D9229ED55A3C109 Authority key identifier: 35:8F:36:B7:B0:30:5B:D9:FF:EB:C5:37:A1:A7:56:B7:4E:04:D5:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NY82t7AwW9n_68U3oadWt04E1eQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8c9067-cc6d-4c4a-b661-37d15719a2d0/1/HpNoPyQg0FUOf8oxwArXB82edsU.roa Signing time: Fri 02 Jan 2026 12:19:58 +0000 ROA not before: Fri 02 Jan 2026 12:19:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39736 IP address blocks: 185.228.164.0/22 maxlen: 23 2a0d:2600::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/8c9067-cc6d-4c4a-b661-37d15719a2d0/1/NY82t7AwW9n_68U3oadWt04E1eQ.crl rsync://rpki.ripe.net/repository/DEFAULT/98/8c9067-cc6d-4c4a-b661-37d15719a2d0/1/NY82t7AwW9n_68U3oadWt04E1eQ.mft rsync://rpki.ripe.net/repository/DEFAULT/NY82t7AwW9n_68U3oadWt04E1eQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:7c:94:8a:33:4a:16:3d:92:29:ed:55:a3:c1:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=358f36b7b0305bd9ffebc537a1a756b74e04d5e4 Validity Not Before: Jan 2 12:19:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e93683f2420d0550e7fca31c00ad707cd9e76c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:dc:55:2d:46:bc:5a:9b:92:e9:2a:20:d4:30: db:a4:ed:f4:99:f7:4b:06:6b:28:36:d4:d6:fc:58: 61:c0:86:c8:ed:b1:7d:e8:cc:d4:87:e5:0e:9e:1f: a7:73:da:12:29:0e:35:b8:ef:b4:32:85:e3:62:a1: 01:e4:5b:53:d3:5d:96:7f:32:d0:96:92:52:c7:33: b2:06:f6:0c:b2:76:33:b5:36:be:31:f0:9e:0d:b1: 51:27:bb:04:c5:1a:70:f0:27:1b:71:07:e6:a2:a5: 77:ef:9c:31:35:82:f2:98:68:49:6c:f1:27:ac:9d: 42:59:88:0a:0d:d3:ad:7a:f5:a8:e3:81:e5:86:a4: 1f:7b:4e:92:41:6a:ab:de:b8:b3:8a:be:f3:32:19: b9:b0:c5:02:3a:ea:e9:3a:8c:4d:ab:b4:1d:ca:6b: dc:1e:d8:8a:9f:26:ef:87:d3:7f:12:67:38:27:3b: 40:91:69:ee:e7:12:f2:b7:6a:b8:e2:08:2f:33:63: 6e:f6:d7:03:f2:bf:5e:0a:dd:15:ed:40:7c:1a:7d: 91:89:82:6c:4d:3a:9d:ca:fb:13:c6:30:03:b7:65: 21:cd:fa:6a:99:72:70:48:f4:0c:56:07:25:b0:b7: da:70:3a:35:66:19:eb:85:07:e5:5f:68:5f:20:6e: 71:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:93:68:3F:24:20:D0:55:0E:7F:CA:31:C0:0A:D7:07:CD:9E:76:C5 X509v3 Authority Key Identifier: keyid:35:8F:36:B7:B0:30:5B:D9:FF:EB:C5:37:A1:A7:56:B7:4E:04:D5:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NY82t7AwW9n_68U3oadWt04E1eQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8c9067-cc6d-4c4a-b661-37d15719a2d0/1/HpNoPyQg0FUOf8oxwArXB82edsU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8c9067-cc6d-4c4a-b661-37d15719a2d0/1/NY82t7AwW9n_68U3oadWt04E1eQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.228.164.0/22 IPv6: 2a0d:2600::/29 Signature Algorithm: sha256WithRSAEncryption 7a:13:df:86:e2:2a:60:0b:a1:4c:9f:5e:2e:09:52:9b:67:52: 45:49:a1:b5:29:17:c5:3d:96:94:32:d5:1e:36:f5:36:32:b5: e5:26:b9:e1:45:42:5b:2f:92:09:90:be:66:4f:69:3a:6e:c7: 46:41:80:bf:48:e1:82:10:51:0d:6c:be:68:1e:97:9c:ff:89: ef:4b:3e:8b:98:59:cc:98:0f:77:8e:98:68:17:7e:c5:9b:51: 3d:0d:19:ec:11:06:87:37:20:d9:2b:c8:6b:3b:48:fc:7c:e1: ae:6e:29:ff:35:dd:5e:80:18:ea:c3:5e:6a:ac:3a:9e:f4:43: b0:e8:5e:fd:3d:54:81:f7:71:5b:a2:3b:a4:6c:7f:52:c8:29: aa:14:fe:f2:b4:b6:25:7b:31:ad:b5:a4:0e:a4:48:82:34:9c: 95:9c:61:22:b0:7f:86:46:f7:d1:f1:e3:d0:86:18:96:5b:32: 7e:c4:a3:70:14:74:9a:00:c8:08:0b:e3:d5:5b:1e:d4:60:a4: 3c:d9:42:51:ce:44:b9:bd:7e:d7:46:41:0e:92:36:1d:a8:14: 88:dc:da:28:b7:fa:5c:1f:ec:4f:4a:16:0f:8a:83:7f:c8:e0: 0c:61:a2:0a:6e:a5:9f:26:4c:43:cb:7e:f9:9f:4b:a5:76:fe: 9c:fb:4b:1e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pnyUijNKFj2SKe1Vo8EJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1OGYzNmI3YjAzMDViZDlmZmViYzUzN2ExYTc1NmI3NGUw NGQ1ZTQwHhcNMjYwMTAyMTIxOTU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTkzNjgzZjI0MjBkMDU1MGU3ZmNhMzFjMDBhZDcwN2NkOWU3NmM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dxVLUa8WpuS6Sog1DDbpO30mfdL BmsoNtTW/FhhwIbI7bF96MzUh+UOnh+nc9oSKQ41uO+0MoXjYqEB5FtT012WfzLQ lpJSxzOyBvYMsnYztTa+MfCeDbFRJ7sExRpw8CcbcQfmoqV375wxNYLymGhJbPEn rJ1CWYgKDdOtevWo44HlhqQfe06SQWqr3rizir7zMhm5sMUCOurpOoxNq7Qdymvc HtiKnybvh9N/Emc4JztAkWnu5xLyt2q44ggvM2Nu9tcD8r9eCt0V7UB8Gn2RiYJs TTqdyvsTxjADt2UhzfpqmXJwSPQMVgclsLfacDo1ZhnrhQflX2hfIG5x3QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB6TaD8kINBVDn/KMcAK1wfNnnbFMB8GA1UdIwQY MBaAFDWPNrewMFvZ/+vFN6GnVrdOBNXkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlk4MnQ3QXdXOW5fNjhVM29hZFd0MDRFMWVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC84YzkwNjctY2M2ZC00YzRhLWI2NjEt MzdkMTU3MTlhMmQwLzEvSHBOb1B5UWcwRlVPZjhveHdBclhCODJlZHNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC84YzkwNjctY2M2ZC00YzRhLWI2NjEtMzdkMTU3MTlhMmQw LzEvTlk4MnQ3QXdXOW5fNjhVM29hZFd0MDRFMWVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueSkMA0E AgACMAcDBQMqDSYAMA0GCSqGSIb3DQEBCwUAA4IBAQB6E9+G4ipgC6FMn14uCVKb Z1JFSaG1KRfFPZaUMtUeNvU2MrXlJrnhRUJbL5IJkL5mT2k6bsdGQYC/SOGCEFEN bL5oHpec/4nvSz6LmFnMmA93jphoF37Fm1E9DRnsEQaHNyDZK8hrO0j8fOGubin/ Nd1egBjqw15qrDqe9EOw6F79PVSB93FbojukbH9SyCmqFP7ytLYlezGttaQOpEiC NJyVnGEisH+GRvfR8ePQhhiWWzJ+xKNwFHSaAMgIC+PVWx7UYKQ82UJRzkS5vX7X RkEOkjYdqBSI3Noot/pcH+xPShYPioN/yOAMYaIKbqWfJkxDy375n0uldv6c+0se -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:23 2026 by rpki-client