This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/977ff4-d3da-43f7-a93a-442cc3649bac/1/HZVimCWAtyAjXnUeEFWPoo0sLsc.roa File: HZVimCWAtyAjXnUeEFWPoo0sLsc.roa (raw, json) Hash identifier: auK/2HbxbuR+uCRVNcWTrHhvyd0C5skPgJ+drgwiFHI= Subject key identifier: 1D:95:62:98:25:80:B7:20:23:5E:75:1E:10:55:8F:A2:8D:2C:2E:C7 Certificate issuer: /CN=b8b3d4ace735613ecbc591dffc2985f3417667d3 Certificate serial: 019B7F83F52DE908BC7D0B8AB1B77690F8CF Authority key identifier: B8:B3:D4:AC:E7:35:61:3E:CB:C5:91:DF:FC:29:85:F3:41:76:67:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uLPUrOc1YT7LxZHf_CmF80F2Z9M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/977ff4-d3da-43f7-a93a-442cc3649bac/1/HZVimCWAtyAjXnUeEFWPoo0sLsc.roa Signing time: Fri 02 Jan 2026 16:21:52 +0000 ROA not before: Fri 02 Jan 2026 16:21:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215960 IP address blocks: 195.72.60.0/24 maxlen: 24 195.72.61.0/24 maxlen: 24 195.72.62.0/24 maxlen: 24 2a07:e043::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/977ff4-d3da-43f7-a93a-442cc3649bac/1/uLPUrOc1YT7LxZHf_CmF80F2Z9M.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/977ff4-d3da-43f7-a93a-442cc3649bac/1/uLPUrOc1YT7LxZHf_CmF80F2Z9M.mft rsync://rpki.ripe.net/repository/DEFAULT/uLPUrOc1YT7LxZHf_CmF80F2Z9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:f5:2d:e9:08:bc:7d:0b:8a:b1:b7:76:90:f8:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8b3d4ace735613ecbc591dffc2985f3417667d3 Validity Not Before: Jan 2 16:21:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d9562982580b720235e751e10558fa28d2c2ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:48:02:ba:7a:2f:3c:ba:6d:30:8f:eb:2b:ec: 1b:be:25:fd:cb:24:4f:89:8f:f5:b4:98:ba:9a:32: 85:6f:3a:77:95:76:f1:45:71:ae:b0:31:53:95:a4: de:c8:db:9f:2b:52:f8:45:98:a8:58:29:4d:ed:28: ec:ae:83:ee:f1:ce:d0:08:02:a1:af:f4:d6:9b:4c: c4:f0:d6:3b:de:f3:ea:8c:3d:24:b6:e6:dd:ed:5c: 80:59:53:42:f7:be:24:ec:4c:c7:d9:ca:f0:81:63: 64:a2:78:a1:3b:dc:e2:c3:be:8d:1e:d1:5f:cf:fd: b8:59:11:81:66:65:e8:c2:d5:68:98:b2:18:5c:a4: e7:78:70:ad:4e:b7:07:07:07:9e:ce:34:44:e3:b5: a3:87:03:89:7c:a1:c0:02:16:37:12:bc:d5:e9:6b: 61:77:6e:c2:b6:b8:58:9a:07:35:81:7d:64:0d:07: 45:82:5b:d3:5f:da:92:f1:b6:c9:a6:af:f2:64:9d: 12:ce:09:41:d7:a1:a3:77:7d:e4:0e:39:6a:d8:2b: b9:8f:81:27:95:e3:7e:34:9e:40:c0:2a:9c:a3:cc: 63:39:e9:60:40:cc:12:b2:64:81:24:e9:df:2b:f5: 2f:a8:b3:ef:f9:c4:f1:61:b0:8c:99:21:b2:f1:24: 3c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:95:62:98:25:80:B7:20:23:5E:75:1E:10:55:8F:A2:8D:2C:2E:C7 X509v3 Authority Key Identifier: keyid:B8:B3:D4:AC:E7:35:61:3E:CB:C5:91:DF:FC:29:85:F3:41:76:67:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uLPUrOc1YT7LxZHf_CmF80F2Z9M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/977ff4-d3da-43f7-a93a-442cc3649bac/1/HZVimCWAtyAjXnUeEFWPoo0sLsc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/977ff4-d3da-43f7-a93a-442cc3649bac/1/uLPUrOc1YT7LxZHf_CmF80F2Z9M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.72.60.0-195.72.62.255 IPv6: 2a07:e043::/32 Signature Algorithm: sha256WithRSAEncryption 2f:68:e7:3c:26:11:fc:af:e5:3a:f8:c6:b4:77:15:c4:d3:25: 48:9c:78:ce:26:bb:bc:89:38:c5:40:32:66:08:27:2f:34:78: 3c:b0:32:24:30:0f:65:13:3a:39:11:a9:df:4d:59:f8:8a:8c: f7:40:49:02:4d:f6:cf:fd:fc:82:6e:03:3c:a5:3a:4f:c7:98: 8c:04:37:1b:ee:89:e5:96:2c:ae:2e:72:7a:3d:52:ca:5e:25: 5b:da:b4:1f:dd:68:99:3c:ea:fd:7a:11:44:85:05:a1:a3:80: d7:a0:ce:01:22:49:f7:20:c7:96:d2:b3:5a:81:92:60:21:67: bb:57:60:89:e7:48:85:97:30:a3:02:f3:51:c0:ae:02:35:74: 3a:ce:09:24:6f:6a:f0:7f:6b:54:de:52:94:79:38:06:4b:25: 79:7d:f1:14:a2:17:95:de:70:f0:cf:65:12:ff:fa:9c:4e:48: d2:7e:a8:8d:bb:d8:0c:6b:d8:66:f6:e3:b0:89:0c:03:a5:af: 97:69:e6:76:85:a9:74:71:5f:56:cf:0e:1a:ef:2e:e5:97:c4: 62:ed:f0:18:e2:5f:99:70:7c:f8:2e:12:26:f4:09:1a:88:ff: 6e:f8:a0:b8:ca:2e:31:f0:9c:15:7f:b6:cf:dd:c9:0c:3a:13: 76:fd:c6:87 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt/g/Ut6Qi8fQuKsbd2kPjPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YjNkNGFjZTczNTYxM2VjYmM1OTFkZmZjMjk4NWYzNDE3 NjY3ZDMwHhcNMjYwMTAyMTYyMTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDk1NjI5ODI1ODBiNzIwMjM1ZTc1MWUxMDU1OGZhMjhkMmMyZWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EgCunovPLptMI/rK+wbviX9yyRP iY/1tJi6mjKFbzp3lXbxRXGusDFTlaTeyNufK1L4RZioWClN7SjsroPu8c7QCAKh r/TWm0zE8NY73vPqjD0ktubd7VyAWVNC974k7EzH2crwgWNkonihO9ziw76NHtFf z/24WRGBZmXowtVomLIYXKTneHCtTrcHBweezjRE47WjhwOJfKHAAhY3ErzV6Wth d27CtrhYmgc1gX1kDQdFglvTX9qS8bbJpq/yZJ0SzglB16Gjd33kDjlq2Cu5j4En leN+NJ5AwCqco8xjOelgQMwSsmSBJOnfK/UvqLPv+cTxYbCMmSGy8SQ8qQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFB2VYpglgLcgI151HhBVj6KNLC7HMB8GA1UdIwQY MBaAFLiz1KznNWE+y8WR3/wphfNBdmfTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUxQVXJPYzFZVDdMeFpIZl9DbUY4MEYyWjlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi85NzdmZjQtZDNkYS00M2Y3LWE5M2Et NDQyY2MzNjQ5YmFjLzEvSFpWaW1DV0F0eUFqWG5VZUVGV1BvbzBzTHNjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi85NzdmZjQtZDNkYS00M2Y3LWE5M2EtNDQyY2MzNjQ5YmFj LzEvdUxQVXJPYzFZVDdMeFpIZl9DbUY4MEYyWjlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBALDSDwD BADDSD4wDQQCAAIwBwMFACoH4EMwDQYJKoZIhvcNAQELBQADggEBAC9o5zwmEfyv 5Tr4xrR3FcTTJUiceM4mu7yJOMVAMmYIJy80eDywMiQwD2UTOjkRqd9NWfiKjPdA SQJN9s/9/IJuAzylOk/HmIwENxvuieWWLK4ucno9UspeJVvatB/daJk86v16EUSF BaGjgNegzgEiSfcgx5bSs1qBkmAhZ7tXYInnSIWXMKMC81HArgI1dDrOCSRvavB/ a1TeUpR5OAZLJXl98RSiF5XecPDPZRL/+pxOSNJ+qI272Axr2Gb247CJDAOlr5dp 5naFqXRxX1bPDhrvLuWXxGLt8BjiX5lwfPguEib0CRqI/274oLjKLjHwnBV/ts/d yQw6E3b9xoc= -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:40 2026 by rpki-client