This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/HWYLOVh7lqyChA1-cKxNZdqH0ec.roa File: HWYLOVh7lqyChA1-cKxNZdqH0ec.roa (raw, json) Hash identifier: 0X8yVzf/2F+zZEjGbKHVIO/5rluic6Una42gHaJ0iMs= Subject key identifier: 1D:66:0B:39:58:7B:96:AC:82:84:0D:7E:70:AC:4D:65:DA:87:D1:E7 Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8C63035E522E3245CB2864469379F Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/HWYLOVh7lqyChA1-cKxNZdqH0ec.roa Signing time: Thu 01 Jan 2026 18:18:56 +0000 ROA not before: Thu 01 Jan 2026 18:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43956 IP address blocks: 80.233.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:c6:30:35:e5:22:e3:24:5c:b2:86:44:69:37:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d660b39587b96ac82840d7e70ac4d65da87d1e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7d:11:dc:d4:be:99:7a:a8:11:42:52:97:ca: 2c:c5:d2:91:27:ef:1c:f5:22:be:6d:a6:77:29:25: 06:5c:1b:be:1f:40:d5:70:6c:0a:36:72:c4:0e:b5: b5:ff:b8:a4:d2:ed:ed:08:7b:03:34:2e:1b:08:a9: e4:4f:8e:50:6e:1b:fc:12:ca:6c:22:d5:33:88:1a: e1:67:95:bf:79:cc:45:c5:77:8d:b6:57:20:b2:a0: 31:09:59:b7:69:bd:7f:cf:26:81:fd:8c:8f:8a:65: 2b:fc:fc:ad:46:6b:69:4c:98:dc:60:b2:2e:db:d3: 03:43:7c:2a:56:8a:44:28:4d:83:87:6e:a5:71:2c: 78:46:c8:59:93:d3:be:8b:85:8b:73:27:5a:e0:7d: 86:50:5d:39:a8:ae:80:93:b5:24:4c:48:e9:47:df: dd:54:a1:60:10:75:a5:52:0b:53:76:d3:b1:3a:81: 39:2e:3e:7a:15:18:54:8a:17:ef:60:48:b9:71:36: 9e:a0:14:54:a8:65:0e:8a:6c:cf:92:ee:17:91:d9: 4a:6b:bc:ab:e6:10:b4:51:72:54:80:10:82:25:46: 09:c4:9a:b3:85:c5:e0:b6:dc:3e:40:fb:e8:25:50: 45:0a:56:28:71:60:4c:4b:7d:32:1d:84:2b:47:ce: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:66:0B:39:58:7B:96:AC:82:84:0D:7E:70:AC:4D:65:DA:87:D1:E7 X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/HWYLOVh7lqyChA1-cKxNZdqH0ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.233.249.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:c5:9d:87:64:2e:69:4f:30:59:81:2e:21:d0:e3:2c:f2:89: d8:77:44:84:c8:57:06:38:61:d5:49:12:45:a4:dd:8b:ba:2d: 3b:60:f4:02:ff:63:f6:30:1b:cb:b2:57:5a:bf:79:65:93:4c: d4:8c:de:c8:0c:87:c9:79:cb:71:ae:18:8d:35:21:ae:95:64: 83:15:d3:cc:70:b2:65:e5:24:d3:a4:85:06:bf:7f:52:8b:bb: 7d:6b:fe:71:0d:04:2d:b8:ea:0e:31:2c:13:31:c7:8d:4b:cb: d8:d4:11:52:35:a1:42:4b:f5:54:67:f3:37:1f:0c:5d:83:bb: 0f:d2:1e:73:99:ae:24:95:99:3a:7a:a2:4c:db:e4:55:85:60: 2b:fe:69:36:03:03:50:85:ed:15:f7:8c:2e:3a:33:0d:a6:92: 0a:a9:d6:47:cf:9e:fb:ef:bc:c3:23:0f:48:0a:79:01:0e:48: af:67:33:1b:63:99:3a:24:c4:66:a1:0d:05:79:c2:f8:4e:5d: 52:f0:ac:d8:55:03:ad:a0:cf:d5:85:97:34:10:9f:44:4e:24: 06:5f:7f:83:82:0f:02:86:f6:cc:0b:2c:10:86:19:2f:ba:fc: 50:6d:43:8a:85:c7:5a:e3:3e:cd:b2:ce:2e:4a:39:e8:f8:23: 54:e3:f4:d6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yMYwNeUi4yRcsoZEaTefMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDY2MGIzOTU4N2I5NmFjODI4NDBkN2U3MGFjNGQ2NWRhODdkMWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArX0R3NS+mXqoEUJSl8osxdKRJ+8c 9SK+baZ3KSUGXBu+H0DVcGwKNnLEDrW1/7ik0u3tCHsDNC4bCKnkT45Qbhv8Esps ItUziBrhZ5W/ecxFxXeNtlcgsqAxCVm3ab1/zyaB/YyPimUr/PytRmtpTJjcYLIu 29MDQ3wqVopEKE2Dh26lcSx4RshZk9O+i4WLcyda4H2GUF05qK6Ak7UkTEjpR9/d VKFgEHWlUgtTdtOxOoE5Lj56FRhUihfvYEi5cTaeoBRUqGUOimzPku4XkdlKa7yr 5hC0UXJUgBCCJUYJxJqzhcXgttw+QPvoJVBFClYocWBMS30yHYQrR876LQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB1mCzlYe5asgoQNfnCsTWXah9HnMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvSFdZTE9WaDdscXlDaEExLWNLeE5aZHFIMGVjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUOn5MA0G CSqGSIb3DQEBCwUAA4IBAQAPxZ2HZC5pTzBZgS4h0OMs8onYd0SEyFcGOGHVSRJF pN2Lui07YPQC/2P2MBvLsldav3llk0zUjN7IDIfJectxrhiNNSGulWSDFdPMcLJl 5STTpIUGv39Si7t9a/5xDQQtuOoOMSwTMceNS8vY1BFSNaFCS/VUZ/M3Hwxdg7sP 0h5zma4klZk6eqJM2+RVhWAr/mk2AwNQhe0V94wuOjMNppIKqdZHz57777zDIw9I CnkBDkivZzMbY5k6JMRmoQ0FecL4Tl1S8KzYVQOtoM/VhZc0EJ9ETiQGX3+Dgg8C hvbMCywQhhkvuvxQbUOKhcda4z7Nss4uSjno+CNU4/TW -----END CERTIFICATE-----Generated at Tue Jan 20 02:48:03 2026 by rpki-client