This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/hk8pc-tdyFbUrPDUG9zSml_2muo.roa File: hk8pc-tdyFbUrPDUG9zSml_2muo.roa (raw, json) Hash identifier: TuWLAyON0bxAuBXGLp5rn9UKbgfz/FixP/aAIGIFC10= Subject key identifier: 86:4F:29:73:EB:5D:C8:56:D4:AC:F0:D4:1B:DC:D2:9A:5F:F6:9A:EA Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3 Certificate serial: 019B7AC7A9DF3B53D69E12FF6DC850A1B827 Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/hk8pc-tdyFbUrPDUG9zSml_2muo.roa Signing time: Thu 01 Jan 2026 18:17:44 +0000 ROA not before: Thu 01 Jan 2026 18:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2856 IP address blocks: 37.44.229.0/24 maxlen: 24 37.44.230.0/24 maxlen: 24 37.44.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.mft rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 14:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:a9:df:3b:53:d6:9e:12:ff:6d:c8:50:a1:b8:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3 Validity Not Before: Jan 1 18:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=864f2973eb5dc856d4acf0d41bdcd29a5ff69aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f8:eb:22:a5:ed:25:0d:e2:ec:54:55:c2:51: d2:81:da:76:13:d6:97:78:8d:ff:ce:75:0b:53:1d: ed:00:84:36:6d:95:e5:57:8f:66:da:b2:f6:ef:ad: 9d:0b:4a:2c:67:9c:71:54:89:50:ae:73:06:b5:a0: 6a:53:cd:a7:a8:b8:68:bc:0d:d0:48:bf:41:16:3a: 65:a3:13:77:5f:b7:a3:2e:1d:62:56:1a:cc:4c:5a: 32:8d:ae:21:1e:88:2a:56:34:71:d9:6f:e3:c7:ea: a1:d4:79:1d:e9:4d:19:05:10:f5:ac:bc:77:a9:db: fb:4e:61:a7:0e:d6:a1:69:95:20:01:bf:20:dd:1b: 2d:1e:b7:af:8b:34:db:b1:17:5b:f0:2a:6e:0d:97: aa:ce:78:6d:72:c2:58:b7:0a:ed:72:0f:02:d1:2c: 34:73:f4:5c:7b:45:41:19:98:95:64:03:de:f4:ff: e4:4e:13:74:b6:20:69:50:f0:cc:c8:81:f4:ef:0c: b5:58:bb:1f:69:e5:32:6a:93:9e:27:89:05:19:c3: 08:ce:b6:1c:50:42:bc:fd:01:64:4d:cc:89:ef:be: 57:7a:cd:3a:18:0d:d5:cc:17:24:57:6c:68:a5:07: f3:3b:86:76:e8:ff:60:c5:74:df:c1:8f:22:96:f9: d4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4F:29:73:EB:5D:C8:56:D4:AC:F0:D4:1B:DC:D2:9A:5F:F6:9A:EA X509v3 Authority Key Identifier: keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/hk8pc-tdyFbUrPDUG9zSml_2muo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.44.229.0-37.44.231.255 Signature Algorithm: sha256WithRSAEncryption 8d:2d:95:b9:87:9b:6c:86:cc:5c:b6:9b:1c:ae:4b:16:f0:d7: 6a:b2:a9:51:d1:bc:54:7b:5d:5b:92:24:ad:0d:62:c7:6b:ea: 41:31:60:39:57:5b:f3:e9:c9:df:04:7f:71:c2:4f:f4:c3:9f: bb:42:10:a4:5b:a5:9b:7b:42:ac:a9:1a:1c:11:fe:14:c7:63: d1:43:40:b1:60:6f:ec:94:d9:d6:78:5e:1c:8a:ec:05:a5:41: 4c:13:59:b9:35:1d:e3:3f:28:5f:d9:a8:86:48:37:6c:28:8a: 84:bf:44:17:8c:24:f8:6a:4a:da:e3:10:b2:99:b7:92:28:e8: 21:4d:71:f3:60:ac:2d:61:9f:00:6c:ee:8d:d1:82:7f:63:43: 53:b3:6e:37:c1:a5:92:ed:25:96:74:d1:9b:5f:0d:08:12:eb: 67:d9:ef:02:68:75:e0:19:42:ae:4e:99:e8:0f:04:69:ab:2f: 00:4e:b6:ea:cd:80:37:a9:96:3d:58:89:71:f4:fb:c8:75:c6: b1:c8:1f:c1:1e:48:d7:d5:e4:43:35:45:ec:d0:90:5d:ff:b6: 08:16:fa:9f:d8:d2:f3:fc:75:78:c8:71:3a:57:ed:7f:94:ef: ba:4b:89:60:31:f1:7a:b6:2c:ab:1e:55:76:ae:b7:12:28:7c: 4d:c3:03:69 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt6x6nfO1PWnhL/bchQobgnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNjM3ODdmZDBmOTRiMzc4MTNlZWYxNmJjODEzNzQyM2Vl M2ZlZjMwHhcNMjYwMTAxMTgxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjRmMjk3M2ViNWRjODU2ZDRhY2YwZDQxYmRjZDI5YTVmZjY5YWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvjrIqXtJQ3i7FRVwlHSgdp2E9aX eI3/znULUx3tAIQ2bZXlV49m2rL2762dC0osZ5xxVIlQrnMGtaBqU82nqLhovA3Q SL9BFjploxN3X7ejLh1iVhrMTFoyja4hHogqVjRx2W/jx+qh1Hkd6U0ZBRD1rLx3 qdv7TmGnDtahaZUgAb8g3RstHrevizTbsRdb8CpuDZeqznhtcsJYtwrtcg8C0Sw0 c/Rce0VBGZiVZAPe9P/kThN0tiBpUPDMyIH07wy1WLsfaeUyapOeJ4kFGcMIzrYc UEK8/QFkTcyJ775Xes06GA3VzBckV2xopQfzO4Z26P9gxXTfwY8ilvnUJQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFIZPKXPrXchW1Kzw1Bvc0ppf9prqMB8GA1UdIwQY MBaAFDJjeH/Q+Us3gT7vFryBN0I+4/7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2Qt NTk1ZTBiZjVjNjEzLzEvaGs4cGMtdGR5RmJVclBEVUc5elNtbF8ybXVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2QtNTk1ZTBiZjVjNjEz LzEvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAAlLOUD BAMlLOAwDQYJKoZIhvcNAQELBQADggEBAI0tlbmHm2yGzFy2mxyuSxbw12qyqVHR vFR7XVuSJK0NYsdr6kExYDlXW/Ppyd8Ef3HCT/TDn7tCEKRbpZt7QqypGhwR/hTH Y9FDQLFgb+yU2dZ4XhyK7AWlQUwTWbk1HeM/KF/ZqIZIN2woioS/RBeMJPhqStrj ELKZt5Io6CFNcfNgrC1hnwBs7o3Rgn9jQ1OzbjfBpZLtJZZ00ZtfDQgS62fZ7wJo deAZQq5OmegPBGmrLwBOturNgDeplj1YiXH0+8h1xrHIH8EeSNfV5EM1RezQkF3/ tggW+p/Y0vP8dXjIcTpX7X+U77pLiWAx8Xq2LKseVXautxIofE3DA2k= -----END CERTIFICATE-----Generated at Tue Jan 6 20:31:31 2026 by rpki-client