This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HyyCrD0KEclUA62eF4sRyDbZ5WU.roa File: HyyCrD0KEclUA62eF4sRyDbZ5WU.roa (raw, json) Hash identifier: fyco5a2h0gvmg9cHjiyjTW7U8dPyvwY0SbJewsghiSc= Subject key identifier: 1F:2C:82:AC:3D:0A:11:C9:54:03:AD:9E:17:8B:11:C8:36:D9:E5:65 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA552F30B0B2857DC509F56FD8CE8FE Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HyyCrD0KEclUA62eF4sRyDbZ5WU.roa Signing time: Thu 01 Jan 2026 22:19:50 +0000 ROA not before: Thu 01 Jan 2026 22:19:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57138 IP address blocks: 45.149.104.0/24 maxlen: 24 2a07:e340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:52:f3:0b:0b:28:57:dc:50:9f:56:fd:8c:e8:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1f2c82ac3d0a11c95403ad9e178b11c836d9e565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0c:61:d5:ec:2d:73:fe:4a:e0:6b:5a:46:f9: 56:88:e1:3e:08:5c:96:bb:c8:a0:e8:7a:92:fa:83: 2a:6d:48:15:c9:ef:b2:d7:bf:52:9a:13:0e:77:5d: 70:cb:59:c5:15:de:51:cb:bd:a6:55:6b:d0:d7:4c: b9:ed:d7:1e:84:bf:dc:3c:5c:02:45:46:0a:03:4f: 26:4a:ad:7b:3d:fe:93:94:28:7b:3b:1f:98:7e:10: 78:92:d3:bc:06:94:d7:13:8a:fb:b1:3f:b6:9e:5f: e9:50:69:3c:80:88:9d:a3:92:1c:8f:6b:50:18:81: 57:86:43:7c:b1:ef:0e:c1:4a:8d:90:6b:97:1e:b6: 91:f9:c5:3d:05:8e:b3:aa:07:3c:e4:fc:f2:78:86: 66:5d:e0:46:67:f4:1f:7a:bd:26:4f:5d:5c:01:67: 38:b5:8a:a4:ec:5b:da:b8:25:28:1c:46:f7:c4:3e: fc:13:47:e2:7a:0f:3b:80:b8:59:56:6e:99:3b:75: cc:09:9a:79:06:3e:73:73:40:48:d0:59:8e:c0:0c: d7:dd:a5:5f:3d:5b:ac:35:dc:07:35:ed:66:70:0e: 1e:fe:92:f7:9b:f9:68:d9:dd:48:7b:de:8a:4c:b0: 09:59:e1:70:a7:cb:e3:21:69:e8:a8:3a:7b:92:f4: fa:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:2C:82:AC:3D:0A:11:C9:54:03:AD:9E:17:8B:11:C8:36:D9:E5:65 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HyyCrD0KEclUA62eF4sRyDbZ5WU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.149.104.0/24 IPv6: 2a07:e340::/32 Signature Algorithm: sha256WithRSAEncryption 98:f6:cd:9a:ac:c6:3e:32:a5:75:fb:85:8b:54:72:fb:79:ac: 03:40:cf:82:8c:4a:58:ec:be:fc:a2:44:cd:cb:d9:27:d2:bc: db:91:ce:a4:2c:52:d9:1b:2f:50:a4:1b:dc:6c:5d:b1:e0:6b: 8c:82:56:45:39:f8:26:dc:3a:ae:d5:94:3d:57:30:76:01:d6: cf:25:2f:3f:0e:8a:82:fe:a3:6d:59:b8:0b:17:c3:bd:2e:00: e6:09:b6:1b:9e:10:4c:70:e2:ef:c1:26:ea:93:5b:63:fd:a7: 60:0f:94:74:ab:bc:eb:4e:98:9e:45:ff:26:07:fe:17:66:a1: 36:3b:c1:1c:88:1d:4a:91:a0:9b:84:28:39:dc:f1:15:0d:7f: 9e:d9:65:bc:d5:1c:b4:ee:52:b2:8e:65:27:59:77:f5:bf:52: 18:1b:b1:ec:17:db:2a:28:2d:21:32:81:0f:3e:e9:80:b1:09: a0:af:f8:7f:79:71:32:07:66:c4:7d:40:60:e5:6b:67:bf:52: 75:70:28:88:24:48:5d:84:9a:97:75:88:ba:48:5d:08:91:0e: a0:4e:59:4c:3f:fd:be:1b:25:6a:95:ea:d2:38:d0:bd:9a:3f: bb:19:e3:7e:4f:05:19:f7:3d:39:00:60:5b:ba:5d:2c:d6:d6: 91:77:81:4a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7pVLzCwsoV9xQn1b9jOj+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZjJjODJhYzNkMGExMWM5NTQwM2FkOWUxNzhiMTFjODM2ZDllNTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQxh1ewtc/5K4GtaRvlWiOE+CFyW u8ig6HqS+oMqbUgVye+y179SmhMOd11wy1nFFd5Ry72mVWvQ10y57dcehL/cPFwC RUYKA08mSq17Pf6TlCh7Ox+YfhB4ktO8BpTXE4r7sT+2nl/pUGk8gIido5Icj2tQ GIFXhkN8se8OwUqNkGuXHraR+cU9BY6zqgc85PzyeIZmXeBGZ/Qfer0mT11cAWc4 tYqk7FvauCUoHEb3xD78E0fieg87gLhZVm6ZO3XMCZp5Bj5zc0BI0FmOwAzX3aVf PVusNdwHNe1mcA4e/pL3m/lo2d1Ie96KTLAJWeFwp8vjIWnoqDp7kvT6bQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFB8sgqw9ChHJVAOtnheLEcg22eVlMB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvSHl5Q3JEMEtFY2xVQTYyZUY0c1J5RGJaNVdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALZVoMA0E AgACMAcDBQAqB+NAMA0GCSqGSIb3DQEBCwUAA4IBAQCY9s2arMY+MqV1+4WLVHL7 eawDQM+CjEpY7L78okTNy9kn0rzbkc6kLFLZGy9QpBvcbF2x4GuMglZFOfgm3Dqu 1ZQ9VzB2AdbPJS8/DoqC/qNtWbgLF8O9LgDmCbYbnhBMcOLvwSbqk1tj/adgD5R0 q7zrTpieRf8mB/4XZqE2O8EciB1KkaCbhCg53PEVDX+e2WW81Ry07lKyjmUnWXf1 v1IYG7HsF9sqKC0hMoEPPumAsQmgr/h/eXEyB2bEfUBg5Wtnv1J1cCiIJEhdhJqX dYi6SF0IkQ6gTllMP/2+GyVqlerSONC9mj+7GeN+TwUZ9z05AGBbul0s1taRd4FK -----END CERTIFICATE-----Generated at Mon Jan 19 19:59:27 2026 by rpki-client