This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Hp0vnK6LsH978scPrAVFBl2kfG4.roa File: Hp0vnK6LsH978scPrAVFBl2kfG4.roa (raw, json) Hash identifier: MiTGwbJzWQLF/5BUrcBlVLuqzCKJBbep6wp6tPRmCrg= Subject key identifier: 1E:9D:2F:9C:AE:8B:B0:7F:7B:F2:C7:0F:AC:05:45:06:5D:A4:7C:6E Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046 Certificate serial: 019B7B3648A7326BE908C46C325D4D335E41 Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Hp0vnK6LsH978scPrAVFBl2kfG4.roa Signing time: Thu 01 Jan 2026 20:18:33 +0000 ROA not before: Thu 01 Jan 2026 20:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 5.182.124.0/22 maxlen: 22 45.13.248.0/23 maxlen: 23 45.13.250.0/24 maxlen: 24 45.13.251.0/24 maxlen: 24 45.85.108.0/22 maxlen: 22 45.94.96.0/22 maxlen: 22 45.130.64.0/24 maxlen: 24 45.130.65.0/24 maxlen: 24 45.139.0.0/24 maxlen: 24 45.139.1.0/24 maxlen: 24 80.76.52.0/22 maxlen: 22 83.150.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.mft rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 23:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:48:a7:32:6b:e9:08:c4:6c:32:5d:4d:33:5e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046 Validity Not Before: Jan 1 20:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e9d2f9cae8bb07f7bf2c70fac0545065da47c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:31:91:a5:07:f6:8a:a2:af:03:ab:3d:36:a9: fb:0b:10:96:07:0c:a7:76:ed:f5:fb:f4:79:44:a7: 93:3f:3f:54:15:62:cc:5c:45:a6:87:cc:53:5a:1d: 26:40:00:b9:32:52:f6:db:7c:01:f5:ad:38:c8:61: 7e:df:74:3f:d5:e4:a1:fb:ae:74:28:41:72:c5:02: 5e:4e:ea:5a:76:c2:77:d3:e4:82:4f:08:c0:73:e2: 29:59:21:39:e4:28:c4:2e:96:7c:97:c0:c2:1b:29: 3c:8d:27:e1:7a:7e:6a:01:eb:d9:bb:7d:49:1d:42: 91:48:f5:3a:9b:5f:89:f5:ba:1d:b3:f7:96:7b:36: b8:c2:4b:c7:8a:79:de:b2:15:8f:97:bc:aa:39:01: 05:03:1f:4a:c3:fd:7b:8c:21:57:46:d3:28:92:e9: bd:85:ea:8b:75:ca:a2:8b:47:66:33:fe:d9:85:f6: 66:02:94:ea:00:84:e4:19:87:ed:aa:b2:8f:ac:f4: 2a:6d:a1:8a:4b:bf:f3:f1:c8:50:f0:18:db:00:8a: aa:22:b9:02:91:03:5a:c3:1d:f5:4d:97:04:9b:f0: 5d:e4:61:37:34:60:3b:b5:3b:37:de:8a:73:f1:f5: 53:f6:a5:9d:c3:22:06:da:c2:08:4a:be:7e:45:d6: 53:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9D:2F:9C:AE:8B:B0:7F:7B:F2:C7:0F:AC:05:45:06:5D:A4:7C:6E X509v3 Authority Key Identifier: keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Hp0vnK6LsH978scPrAVFBl2kfG4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.124.0/22 45.13.248.0/22 45.85.108.0/22 45.94.96.0/22 45.130.64.0/23 45.139.0.0/23 80.76.52.0/22 83.150.220.0/22 Signature Algorithm: sha256WithRSAEncryption 97:b2:32:8e:c0:ae:87:b1:60:ef:3e:b3:12:a5:9a:07:23:4b: 2c:d3:fe:b6:62:67:15:a4:41:94:37:5b:eb:83:dd:66:0e:83: d1:02:ea:72:2e:d0:e4:da:37:0a:d7:37:35:3d:bf:6b:58:e6: 9f:ca:c6:17:ee:34:f7:7a:aa:4b:96:7c:ce:5e:db:27:94:56: f1:39:6e:ca:27:af:9b:31:d0:0d:76:cf:c5:30:98:ff:d5:19: af:cf:d2:16:7f:5c:bf:06:74:08:8c:99:9e:97:d1:9c:3d:39: 5e:8f:5d:a4:7c:f9:a7:a5:d6:f9:1d:7b:f9:24:58:00:aa:a5: e2:1d:48:ec:2c:d8:77:d8:bb:d9:dd:5d:b4:67:3d:fc:95:d6: 3e:5b:1c:3e:56:d5:48:7c:31:da:66:23:13:d6:69:28:bf:4b: 9c:6b:94:ba:f4:66:1a:4e:d9:88:96:6f:ca:28:e5:52:02:fc: dc:64:2c:fb:df:d5:43:55:f2:3b:28:96:e5:34:e2:28:df:d5: bd:64:54:67:ab:47:2f:36:f2:0a:40:41:40:e5:d5:70:3d:8c: 64:8a:38:4a:f2:2a:56:39:48:f7:b3:5b:e5:99:d3:9f:8a:f0: 67:d2:91:3b:28:22:66:81:11:1e:30:cb:4d:72:6b:62:04:eb: a1:02:6c:28 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7NkinMmvpCMRsMl1NM15BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjYTY0M2JiMzk5YzZkODdhZGM0YzdjYmE1ZDJiNzJmYmQw MGQwNDYwHhcNMjYwMTAxMjAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTlkMmY5Y2FlOGJiMDdmN2JmMmM3MGZhYzA1NDUwNjVkYTQ3YzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzGRpQf2iqKvA6s9Nqn7CxCWBwyn du31+/R5RKeTPz9UFWLMXEWmh8xTWh0mQAC5MlL223wB9a04yGF+33Q/1eSh+650 KEFyxQJeTupadsJ30+SCTwjAc+IpWSE55CjELpZ8l8DCGyk8jSfhen5qAevZu31J HUKRSPU6m1+J9bods/eWeza4wkvHinneshWPl7yqOQEFAx9Kw/17jCFXRtMokum9 heqLdcqii0dmM/7ZhfZmApTqAITkGYftqrKPrPQqbaGKS7/z8chQ8BjbAIqqIrkC kQNawx31TZcEm/Bd5GE3NGA7tTs33opz8fVT9qWdwyIG2sIISr5+RdZTzwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFB6dL5yui7B/e/LHD6wFRQZdpHxuMB8GA1UdIwQY MBaAFHymQ7s5nG2HrcTHy6XSty+9ANBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZktaRHV6bWNiWWV0eE1mTHBkSzNMNzBBMEVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9jMDMwMWQtNTgwMS00YWM2LWI1MDMt NDRlYTY0NzIxYzllLzEvSHAwdm5LNkxzSDk3OHNjUHJBVkZCbDJrZkc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi9jMDMwMWQtNTgwMS00YWM2LWI1MDMtNDRlYTY0NzIxYzll LzEvZktaRHV6bWNiWWV0eE1mTHBkSzNMNzBBMEVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQCBbZ8AwQC LQ34AwQCLVVsAwQCLV5gAwQBLYJAAwQBLYsAAwQCUEw0AwQCU5bcMA0GCSqGSIb3 DQEBCwUAA4IBAQCXsjKOwK6HsWDvPrMSpZoHI0ss0/62YmcVpEGUN1vrg91mDoPR AupyLtDk2jcK1zc1Pb9rWOafysYX7jT3eqpLlnzOXtsnlFbxOW7KJ6+bMdANds/F MJj/1Rmvz9IWf1y/BnQIjJmel9GcPTlej12kfPmnpdb5HXv5JFgAqqXiHUjsLNh3 2LvZ3V20Zz38ldY+Wxw+VtVIfDHaZiMT1mkov0uca5S69GYaTtmIlm/KKOVSAvzc ZCz739VDVfI7KJblNOIo39W9ZFRnq0cvNvIKQEFA5dVwPYxkijhK8ipWOUj3s1vl mdOfivBn0pE7KCJmgREeMMtNcmtiBOuhAmwo -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:30 2026 by rpki-client