This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/H-Z-59qkp7uHQPcWeenVARkWiac.roa File: H-Z-59qkp7uHQPcWeenVARkWiac.roa (raw, json) Hash identifier: HKW7RkaEKR+tAOc8fjxLJQH13xKLm1JBXk6SPdfsZ20= Subject key identifier: 1F:E6:7E:E7:DA:A4:A7:BB:87:40:F7:16:79:E9:D5:01:19:16:89:A7 Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a Certificate serial: 019B77C735744FE173A2A135F2DC90DE42B7 Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/H-Z-59qkp7uHQPcWeenVARkWiac.roa Signing time: Thu 01 Jan 2026 04:18:22 +0000 ROA not before: Thu 01 Jan 2026 04:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50673 IP address blocks: 5.178.64.0/21 maxlen: 24 5.188.12.0/22 maxlen: 22 5.188.12.0/24 maxlen: 24 5.188.13.0/24 maxlen: 24 5.188.14.0/24 maxlen: 24 5.188.15.0/24 maxlen: 24 5.255.64.0/19 maxlen: 24 46.249.32.0/19 maxlen: 24 89.47.1.0/24 maxlen: 24 91.221.69.0/24 maxlen: 24 93.158.200.0/21 maxlen: 24 93.158.208.0/20 maxlen: 24 160.20.152.0/22 maxlen: 22 178.21.16.0/21 maxlen: 24 185.8.176.0/22 maxlen: 22 185.12.12.0/22 maxlen: 24 185.53.160.0/22 maxlen: 22 185.79.112.0/22 maxlen: 24 194.107.76.0/22 maxlen: 24 2a00:1ca8::/32 maxlen: 32 2a00:1ca8:77::/48 maxlen: 48 2a00:1caa::/32 maxlen: 32 2a03:3f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.mft rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:35:74:4f:e1:73:a2:a1:35:f2:dc:90:de:42:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a Validity Not Before: Jan 1 04:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1fe67ee7daa4a7bb8740f71679e9d501191689a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:44:ae:7c:22:a9:c1:3d:01:8d:2f:b1:17:ca: 53:f4:ba:af:a0:94:78:04:4e:1c:1e:e3:f6:ce:b7: 76:12:10:f5:e3:bb:47:c4:f2:26:4a:9b:51:fe:07: c3:7a:b3:d8:de:bb:d5:83:20:54:e3:5e:9d:e0:81: 52:d5:5c:a1:8b:da:b1:8b:87:5c:6b:cc:5b:00:86: a9:7b:71:00:41:ce:9d:43:ce:33:16:6a:db:d8:b0: 91:13:05:35:f7:37:8e:ef:69:02:b2:d6:c5:2f:f9: 7c:ba:b9:41:50:5b:17:28:20:c8:17:d2:e4:a6:64: f8:d5:28:bc:5f:05:5b:4a:87:ba:38:3f:ab:27:db: 40:ae:d3:fc:cc:d4:ae:f2:ea:e5:0f:c1:a9:c5:d6: 4e:bc:86:70:48:7a:e1:84:2b:41:6b:e9:98:c7:c8: ba:51:54:f0:63:b0:63:c2:9f:9e:b2:35:ee:ec:83: b9:f8:5d:fb:a9:07:88:15:d0:6e:8c:a8:48:2e:97: 3b:00:d6:49:39:a3:21:f2:04:32:35:58:46:c1:e7: 4d:99:93:ab:e6:4e:25:36:1e:d1:e5:49:b7:64:4e: 52:51:71:f6:c4:2a:83:07:7f:ac:c7:51:6b:ea:26: 40:74:35:4a:74:3d:23:0b:2b:c6:62:61:7f:99:59: e9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E6:7E:E7:DA:A4:A7:BB:87:40:F7:16:79:E9:D5:01:19:16:89:A7 X509v3 Authority Key Identifier: keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/H-Z-59qkp7uHQPcWeenVARkWiac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.178.64.0/21 5.188.12.0/22 5.255.64.0/19 46.249.32.0/19 89.47.1.0/24 91.221.69.0/24 93.158.200.0-93.158.223.255 160.20.152.0/22 178.21.16.0/21 185.8.176.0/22 185.12.12.0/22 185.53.160.0/22 185.79.112.0/22 194.107.76.0/22 IPv6: 2a00:1ca8::/32 2a00:1caa::/32 2a03:3f40::/32 Signature Algorithm: sha256WithRSAEncryption 2c:85:36:4e:83:d7:43:e2:17:01:87:fe:bf:ad:dc:66:53:38: 0d:92:86:35:4d:91:69:6f:e1:0f:a3:b0:d5:f6:1c:44:d1:5a: f0:4e:de:5b:1c:2d:70:c7:40:d5:81:4c:e7:d6:1d:b1:59:2a: e4:df:94:d7:ed:ad:ae:1b:68:b9:d2:f9:5c:48:40:7b:c1:8f: f8:e0:2a:4a:71:20:10:7f:3e:33:b6:90:59:cf:c7:02:85:e1: c5:13:5b:19:b4:d3:f1:88:c5:15:17:0f:31:6f:aa:e4:17:28: 60:17:86:06:24:b6:e7:0d:35:35:bb:9c:df:75:7e:41:27:23: c3:d6:68:f1:45:01:65:0a:13:48:60:f8:a6:09:9d:f7:eb:b6: 3d:8c:33:ee:10:a3:a2:aa:eb:44:70:17:bf:92:21:8a:c0:51: e2:e4:d5:94:b6:cc:c5:5b:9c:dc:c6:83:96:e0:63:88:85:da: 24:0d:33:1c:bb:d3:1f:50:28:9d:80:ed:ce:6f:a1:3c:bf:40: 1b:df:fd:40:d0:f2:bf:5f:20:96:40:51:f1:49:b2:4a:e4:ba: 9e:36:56:e5:4b:d6:6b:5c:c0:20:4f:ff:de:4a:5b:38:21:45: c3:05:66:05:f8:8e:e4:ce:e7:95:e4:25:82:86:9c:44:a0:59: a3:2b:62:1a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt3xzV0T+FzoqE18tyQ3kK3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2MzExNjZkZTc4NWEzNTMxYmRjODM2MWYxMTkwYTgzNjlh N2VkNmEwHhcNMjYwMTAxMDQxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZmU2N2VlN2RhYTRhN2JiODc0MGY3MTY3OWU5ZDUwMTE5MTY4OWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUSufCKpwT0BjS+xF8pT9LqvoJR4 BE4cHuP2zrd2EhD147tHxPImSptR/gfDerPY3rvVgyBU416d4IFS1Vyhi9qxi4dc a8xbAIape3EAQc6dQ84zFmrb2LCREwU19zeO72kCstbFL/l8urlBUFsXKCDIF9Lk pmT41Si8XwVbSoe6OD+rJ9tArtP8zNSu8urlD8GpxdZOvIZwSHrhhCtBa+mYx8i6 UVTwY7Bjwp+esjXu7IO5+F37qQeIFdBujKhILpc7ANZJOaMh8gQyNVhGwedNmZOr 5k4lNh7R5Um3ZE5SUXH2xCqDB3+sx1Fr6iZAdDVKdD0jCyvGYmF/mVnpXQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFB/mfufapKe7h0D3Fnnp1QEZFomnMB8GA1UdIwQY MBaAFCYxFm3nhaNTG9yDYfEZCoNpp+1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUt Yjg5YTI2MTk5OTc2LzEvSC1aLTU5cWtwN3VIUVBjV2VlblZBUmtXaWFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9mYjAxNTctNjc0Ni00YjAwLThmOGUtYjg5YTI2MTk5OTc2 LzEvSmpFV2JlZUZvMU1iM0lOaDhSa0tnMm1uN1dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGUBggrBgEFBQcBBwEB/wSBhDCBgTBiBAIAATBcAwQDBbJA AwQCBbwMAwQFBf9AAwQFLvkgAwQAWS8BAwQAW91FMAwDBANdnsgDBAVdnsADBAKg FJgDBAOyFRADBAK5CLADBAK5DAwDBAK5NaADBAK5T3ADBALCa0wwGwQCAAIwFQMF ACoAHKgDBQAqAByqAwUAKgM/QDANBgkqhkiG9w0BAQsFAAOCAQEALIU2ToPXQ+IX AYf+v63cZlM4DZKGNU2RaW/hD6Ow1fYcRNFa8E7eWxwtcMdA1YFM59YdsVkq5N+U 1+2trhtoudL5XEhAe8GP+OAqSnEgEH8+M7aQWc/HAoXhxRNbGbTT8YjFFRcPMW+q 5BcoYBeGBiS25w01Nbuc33V+QScjw9Zo8UUBZQoTSGD4pgmd9+u2PYwz7hCjoqrr RHAXv5IhisBR4uTVlLbMxVuc3MaDluBjiIXaJA0zHLvTH1AonYDtzm+hPL9AG9/9 QNDyv18glkBR8UmySuS6njZW5UvWa1zAIE//3kpbOCFFwwVmBfiO5M7nleQlgoac RKBZoytiGg== -----END CERTIFICATE-----Generated at Sun Jan 11 11:46:08 2026 by rpki-client