This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/HWsU8GZmKm2RWt9RNfF5TgXHj7o.roa File: HWsU8GZmKm2RWt9RNfF5TgXHj7o.roa (raw, json) Hash identifier: zKdYWSkzVmUErVX2Gy52NYcMMDEwJmENVIpagTqcS1o= Subject key identifier: 1D:6B:14:F0:66:66:2A:6D:91:5A:DF:51:35:F1:79:4E:05:C7:8F:BA Certificate issuer: /CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Certificate serial: 019C295D0FC1C33D411CDE8B17FCD4B8D1BD Authority key identifier: 91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/HWsU8GZmKm2RWt9RNfF5TgXHj7o.roa Signing time: Wed 04 Feb 2026 15:54:50 +0000 ROA not before: Wed 04 Feb 2026 15:54:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 984 IP address blocks: 116.204.164.0/24 maxlen: 24 222.167.226.0/24 maxlen: 24 222.167.227.0/24 maxlen: 24 222.167.239.0/24 maxlen: 24 222.167.253.0/24 maxlen: 24 222.167.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:29:5d:0f:c1:c3:3d:41:1c:de:8b:17:fc:d4:b8:d1:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Validity Not Before: Feb 4 15:54:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d6b14f066662a6d915adf5135f1794e05c78fba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:36:8c:53:78:76:16:58:8a:1d:47:46:9f:ce: 4e:38:29:87:8d:d2:41:1f:aa:49:a6:92:5b:f6:16: bd:a6:bb:83:66:0b:03:cf:f7:8b:4d:1b:bd:fb:4e: 49:bf:72:44:e1:63:56:12:eb:2b:9f:b4:14:bb:1f: cf:4e:db:d0:9a:40:df:9d:b0:0d:d9:a3:e2:71:ae: 0c:04:95:52:b1:19:e2:fb:28:4c:30:a3:95:52:57: c5:d3:97:c2:f7:bf:58:f5:72:08:02:55:d0:94:3e: c6:22:9a:56:2f:66:4e:82:a6:56:4f:f4:93:af:7e: 2e:ab:7b:0e:05:76:c4:21:63:f5:8a:21:d0:31:ab: fb:db:08:70:90:67:61:40:52:a8:fb:69:7e:d0:45: fe:d2:9f:7d:03:e3:28:5d:4c:92:ff:01:c3:ec:3d: 37:dd:a0:0d:8b:dd:8c:58:b8:40:8f:b0:d1:22:c2: bc:ac:e9:ad:7a:52:52:10:c7:76:1e:db:b9:b8:86: b7:ce:85:a4:20:24:1c:37:dc:6b:d4:0d:31:10:b7: bb:a4:6c:69:42:37:ee:49:e2:0a:25:e3:ae:26:ac: 37:02:29:57:67:82:8d:6d:a2:29:a7:cd:a8:12:20: ae:59:ff:88:68:e2:e0:dc:f6:a4:8b:d3:a1:bf:c5: ae:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6B:14:F0:66:66:2A:6D:91:5A:DF:51:35:F1:79:4E:05:C7:8F:BA X509v3 Authority Key Identifier: keyid:91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/HWsU8GZmKm2RWt9RNfF5TgXHj7o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.204.164.0/24 222.167.226.0/23 222.167.239.0/24 222.167.253.0-222.167.254.255 Signature Algorithm: sha256WithRSAEncryption 61:c7:3f:fb:63:69:4f:ff:14:e4:5a:ac:62:55:01:e3:5b:49: 23:ed:83:9b:62:a9:b7:fc:80:cb:8a:6c:b5:4a:30:27:f1:48: 64:97:7c:89:72:c9:cf:81:6e:6a:7e:84:34:40:ae:4f:22:ea: cb:68:fe:23:25:e8:2e:3e:13:e6:8e:fe:09:8e:65:2e:fe:0e: bf:a5:90:71:fd:8d:7a:68:e6:22:67:8f:7a:1b:ff:8e:5c:db: 9e:97:00:c1:c9:9b:8f:1f:57:9c:b8:af:0d:9a:51:bf:c1:69: 8b:2f:58:57:3a:80:f3:b5:80:80:19:cd:eb:a3:83:8c:d3:52: 62:5b:36:72:9c:cc:85:5d:b8:0c:9a:b3:4f:3b:ce:36:b5:4c: 58:c0:52:ae:4e:09:17:b6:d9:fd:91:a5:e7:0b:84:8d:43:f3: da:57:0f:01:17:0c:3b:fb:b4:01:00:d7:98:2e:2c:0f:7f:4b: 27:fa:38:8a:86:87:d3:ad:91:3d:c0:ba:0e:b7:37:eb:9b:0f: 77:be:87:d8:43:91:4b:85:39:5c:66:8d:49:33:75:44:1c:4b: 75:ef:92:9d:67:83:db:20:14:af:c9:32:07:96:73:46:11:03: a9:96:fa:bc:7e:6d:24:41:bf:fe:2d:48:66:6d:23:3d:64:1f: ca:16:6b:3b -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZwpXQ/Bwz1BHN6LF/zUuNG9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNGFhNTU3YzNkM2QxZTZiN2YwNTI1YzM0Y2MxZDQ4OGE1 YTkyOTQwHhcNMjYwMjA0MTU1NDUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDZiMTRmMDY2NjYyYTZkOTE1YWRmNTEzNWYxNzk0ZTA1Yzc4ZmJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/jaMU3h2FliKHUdGn85OOCmHjdJB H6pJppJb9ha9pruDZgsDz/eLTRu9+05Jv3JE4WNWEusrn7QUux/PTtvQmkDfnbAN 2aPica4MBJVSsRni+yhMMKOVUlfF05fC979Y9XIIAlXQlD7GIppWL2ZOgqZWT/ST r34uq3sOBXbEIWP1iiHQMav72whwkGdhQFKo+2l+0EX+0p99A+MoXUyS/wHD7D03 3aANi92MWLhAj7DRIsK8rOmtelJSEMd2Htu5uIa3zoWkICQcN9xr1A0xELe7pGxp QjfuSeIKJeOuJqw3AilXZ4KNbaIpp82oEiCuWf+IaOLg3Paki9Ohv8Wu4wIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFB1rFPBmZiptkVrfUTXxeU4Fx4+6MB8GA1UdIwQY MBaAFJFKpVfD09Hmt/BSXDTMHUiKWpKUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYt NGEzNDhlN2JlNDQxLzEvSFdzVThHWm1LbTJSV3Q5Uk5mRjVUZ1hIajdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYtNGEzNDhlN2JlNDQx LzEva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAdMykAwQB 3qfiAwQA3qfvMAwDBADep/0DBADep/4wDQYJKoZIhvcNAQELBQADggEBAGHHP/tj aU//FORarGJVAeNbSSPtg5tiqbf8gMuKbLVKMCfxSGSXfIlyyc+Bbmp+hDRArk8i 6sto/iMl6C4+E+aO/gmOZS7+Dr+lkHH9jXpo5iJnj3ob/45c256XAMHJm48fV5y4 rw2aUb/BaYsvWFc6gPO1gIAZzeujg4zTUmJbNnKczIVduAyas087zja1TFjAUq5O CRe22f2RpecLhI1D89pXDwEXDDv7tAEA15guLA9/Syf6OIqGh9OtkT3Aug63N+ub D3e+h9hDkUuFOVxmjUkzdUQcS3Xvkp1ng9sgFK/JMgeWc0YRA6mW+rx+bSRBv/4t SGZtIz1kH8oWazs= -----END CERTIFICATE-----Generated at Tue Feb 10 02:47:00 2026 by rpki-client