This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/HW8ZIhhcPhh15vZgFSbdJKeL4Yc.roa File: HW8ZIhhcPhh15vZgFSbdJKeL4Yc.roa (raw, json) Hash identifier: g734+bSruGFqjTipdMTU96t/sfziWiMIxaocaSfN2Ps= Subject key identifier: 1D:6F:19:22:18:5C:3E:18:75:E6:F6:60:15:26:DD:24:A7:8B:E1:87 Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25 Certificate serial: 019B783560C70B15161F19DA7C880FE99C49 Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/HW8ZIhhcPhh15vZgFSbdJKeL4Yc.roa Signing time: Thu 01 Jan 2026 06:18:42 +0000 ROA not before: Thu 01 Jan 2026 06:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61205 IP address blocks: 94.198.200.0/21 maxlen: 24 185.117.56.0/22 maxlen: 24 185.120.112.0/22 maxlen: 24 185.213.176.0/22 maxlen: 24 188.213.56.0/21 maxlen: 21 188.213.56.0/22 maxlen: 22 2a03:c2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:60:c7:0b:15:16:1f:19:da:7c:88:0f:e9:9c:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25 Validity Not Before: Jan 1 06:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d6f1922185c3e1875e6f6601526dd24a78be187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:75:c8:7e:b6:38:af:5e:cb:ed:b8:81:10:3c: ab:69:91:e6:ef:79:91:a3:a5:d3:ed:77:04:7c:05: a2:5e:cd:dc:fd:23:43:6d:79:53:c7:b4:85:e7:23: d0:7f:e0:72:25:15:d7:c5:3b:bf:80:e1:2e:2e:76: 8c:11:1c:2c:d6:ec:0b:3e:98:08:93:09:ef:e8:6e: ea:d7:19:9d:9b:4b:8b:ca:de:53:37:b1:c0:aa:3c: 01:51:5d:a2:46:2c:f5:c3:02:5d:ec:14:42:70:d1: 08:83:2e:a3:24:6f:d5:8b:bc:e6:be:41:d4:4e:ab: 42:bb:f0:22:08:26:31:21:0b:5d:63:ed:e4:7c:e6: ac:7e:69:35:2e:1b:f4:cf:05:fa:88:66:c4:a1:79: 3e:4a:2f:b7:e6:04:e8:0a:b8:76:46:a6:81:b6:7e: 7e:9c:05:83:f7:e5:6e:c0:fc:c3:ae:30:a5:52:61: b3:2b:73:65:ec:63:1c:6c:a6:34:8c:7d:cf:45:b3: 1f:8d:16:c2:87:36:b7:d9:d6:09:dd:ba:6b:ea:bd: 55:53:01:0a:9b:c6:e8:f3:ba:a1:89:df:68:63:77: 74:bd:ca:ae:8c:14:4e:7e:b2:d6:8c:20:92:20:00: 47:e6:68:96:a5:6b:2e:6e:af:a8:ef:93:ba:56:85: 47:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6F:19:22:18:5C:3E:18:75:E6:F6:60:15:26:DD:24:A7:8B:E1:87 X509v3 Authority Key Identifier: keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/HW8ZIhhcPhh15vZgFSbdJKeL4Yc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.198.200.0/21 185.117.56.0/22 185.120.112.0/22 185.213.176.0/22 188.213.56.0/21 IPv6: 2a03:c2c0::/32 Signature Algorithm: sha256WithRSAEncryption 92:10:56:3a:c5:b2:84:3b:7d:00:ad:b8:55:59:5b:06:7a:56: cf:a3:05:bf:8a:37:f1:ae:c0:9b:ec:8c:33:ce:32:76:63:08: 56:6e:5a:fe:84:1a:1e:d6:49:57:82:1b:53:77:6f:33:0c:bd: c4:6c:9f:16:ed:2d:6f:96:d7:e7:97:c0:be:da:05:04:e4:b6: 07:d5:74:5c:e0:9f:d0:06:a6:9f:87:e0:f2:7f:7f:6a:55:74: 5b:40:8d:a7:60:9e:f0:16:ba:b7:9b:71:b4:ba:ad:11:f1:55: a5:d7:eb:77:19:3c:94:f2:aa:f9:c6:74:4b:23:6c:c4:e2:71: 1f:0d:2b:a9:0b:8c:b9:df:3f:ef:9e:52:ae:f6:87:2d:ed:96: 7e:b1:ea:ce:fd:02:17:ab:f4:08:a7:0a:36:a8:40:02:a1:72: e4:39:b6:bf:6c:cb:89:d6:00:57:9f:94:ab:fd:3c:90:70:8b: 45:8b:22:ab:11:ad:fe:01:73:c1:cf:85:5a:3b:54:9c:21:b5: e8:f7:bc:2e:17:56:27:28:50:90:8b:b8:7a:25:b3:8a:1f:da: 98:83:4c:13:cb:a5:0e:15:b7:e1:e7:09:32:d8:1a:f2:ca:57: 28:be:13:4c:dc:29:c6:78:25:01:c7:69:83:fc:ff:e6:28:b0: f5:65:45:27 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt4NWDHCxUWHxnafIgP6ZxJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMjY0NjA1MjQ1YWYyMDE5YzI5M2MzNzI4ZjZhNWUyNTVk ODlmMjUwHhcNMjYwMTAxMDYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDZmMTkyMjE4NWMzZTE4NzVlNmY2NjAxNTI2ZGQyNGE3OGJlMTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunXIfrY4r17L7biBEDyraZHm73mR o6XT7XcEfAWiXs3c/SNDbXlTx7SF5yPQf+ByJRXXxTu/gOEuLnaMERws1uwLPpgI kwnv6G7q1xmdm0uLyt5TN7HAqjwBUV2iRiz1wwJd7BRCcNEIgy6jJG/Vi7zmvkHU TqtCu/AiCCYxIQtdY+3kfOasfmk1Lhv0zwX6iGbEoXk+Si+35gToCrh2RqaBtn5+ nAWD9+VuwPzDrjClUmGzK3Nl7GMcbKY0jH3PRbMfjRbChza32dYJ3bpr6r1VUwEK m8bo87qhid9oY3d0vcqujBROfrLWjCCSIABH5miWpWsubq+o75O6VoVHhwIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFB1vGSIYXD4Ydeb2YBUm3SSni+GHMB8GA1UdIwQY MBaAFComRgUkWvIBnCk8Nyj2peJV2J8lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2laR0JTUmE4Z0djS1R3M0tQYWw0bFhZbnlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8yZDExYmItNWUyZS00MDg1LWEzNGIt MzU5YjY0ZDcwOWI5LzEvSFc4WkloaGNQaGgxNXZaZ0ZTYmRKS2VMNFljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy8yZDExYmItNWUyZS00MDg1LWEzNGItMzU5YjY0ZDcwOWI5 LzEvS2laR0JTUmE4Z0djS1R3M0tQYWw0bFhZbnlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDXsbIAwQC uXU4AwQCuXhwAwQCudWwAwQDvNU4MA0EAgACMAcDBQAqA8LAMA0GCSqGSIb3DQEB CwUAA4IBAQCSEFY6xbKEO30ArbhVWVsGelbPowW/ijfxrsCb7IwzzjJ2YwhWblr+ hBoe1klXghtTd28zDL3EbJ8W7S1vltfnl8C+2gUE5LYH1XRc4J/QBqafh+Dyf39q VXRbQI2nYJ7wFrq3m3G0uq0R8VWl1+t3GTyU8qr5xnRLI2zE4nEfDSupC4y53z/v nlKu9oct7ZZ+serO/QIXq/QIpwo2qEACoXLkOba/bMuJ1gBXn5Sr/TyQcItFiyKr Ea3+AXPBz4VaO1ScIbXo97wuF1YnKFCQi7h6JbOKH9qYg0wTy6UOFbfh5wky2Bry ylcovhNM3CnGeCUBx2mD/P/mKLD1ZUUn -----END CERTIFICATE-----Generated at Tue Feb 10 06:23:34 2026 by rpki-client