This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/553dc6-12d0-4d4a-a294-97c5d59b0bbf/1/hdnWz3HdQxPoPCQp2KpJgiW0GYk.roa File: hdnWz3HdQxPoPCQp2KpJgiW0GYk.roa (raw, json) Hash identifier: iMGwa4BAxWRevm4MAo9XcPLpOn3GuQnZbwXs5mOFnXs= Subject key identifier: 85:D9:D6:CF:71:DD:43:13:E8:3C:24:29:D8:AA:49:82:25:B4:19:89 Certificate issuer: /CN=a6ed442b91d4e83a6de39fb67971a1e79c6b1ed5 Certificate serial: 019B78A314FEFE9D31B3375FE4654064FD71 Authority key identifier: A6:ED:44:2B:91:D4:E8:3A:6D:E3:9F:B6:79:71:A1:E7:9C:6B:1E:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pu1EK5HU6Dpt45-2eXGh55xrHtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/553dc6-12d0-4d4a-a294-97c5d59b0bbf/1/hdnWz3HdQxPoPCQp2KpJgiW0GYk.roa Signing time: Thu 01 Jan 2026 08:18:32 +0000 ROA not before: Thu 01 Jan 2026 08:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200019 IP address blocks: 91.208.162.0/24 maxlen: 24 91.208.184.0/24 maxlen: 24 91.208.197.0/24 maxlen: 24 91.208.206.0/24 maxlen: 24 2a0f:5f40::/29 maxlen: 48 2a0f:5f40::/48 maxlen: 48 2a0f:5f40:1::/48 maxlen: 48 2a0f:5f40:1000::/48 maxlen: 48 2a0f:5f45::/32 maxlen: 32 2a0f:5f46::/32 maxlen: 32 2a0f:5f46:700::/40 maxlen: 40 2a0f:5f46:800::/40 maxlen: 40 2a0f:5f47::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/553dc6-12d0-4d4a-a294-97c5d59b0bbf/1/pu1EK5HU6Dpt45-2eXGh55xrHtU.crl rsync://rpki.ripe.net/repository/DEFAULT/be/553dc6-12d0-4d4a-a294-97c5d59b0bbf/1/pu1EK5HU6Dpt45-2eXGh55xrHtU.mft rsync://rpki.ripe.net/repository/DEFAULT/pu1EK5HU6Dpt45-2eXGh55xrHtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:14:fe:fe:9d:31:b3:37:5f:e4:65:40:64:fd:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6ed442b91d4e83a6de39fb67971a1e79c6b1ed5 Validity Not Before: Jan 1 08:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=85d9d6cf71dd4313e83c2429d8aa498225b41989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:eb:aa:87:93:3d:0c:db:7c:35:42:29:6b:24: 28:8a:49:fb:45:68:df:41:d2:90:8f:96:95:15:31: 74:12:e7:0b:1a:02:f1:9c:39:f3:34:6d:b3:7e:ca: 10:77:8e:42:47:3c:63:f8:e3:28:ae:c1:7a:5b:8c: 1a:e1:da:4a:14:17:90:38:fc:93:23:e9:8f:89:74: f9:d8:04:7f:71:f1:6d:3f:4c:97:a3:58:ca:7e:b7: 40:7b:88:9a:54:8b:b3:b0:ba:09:be:6d:26:e3:d0: e8:b9:e0:20:e7:97:ba:5f:06:7f:44:6a:11:f8:55: 83:c5:73:05:e0:07:b7:f2:5d:a8:02:a2:8f:1c:58: 3d:ea:6b:8a:04:a8:ea:22:d8:6a:e0:bb:88:1b:32: bb:25:fe:70:6a:ba:51:2f:4a:97:28:ad:7a:a3:61: 0b:f8:10:5a:0c:27:b2:e2:cd:6f:fb:14:9a:60:2c: 6e:2a:89:44:59:3e:eb:c8:f1:10:16:6b:1e:a1:bf: 54:7e:49:89:eb:3b:95:08:82:63:ae:52:ff:5e:8e: b9:d0:b2:c2:b2:80:34:8f:55:0a:ce:33:ca:69:d1: cd:09:7c:73:0a:bd:5b:ee:e8:1b:35:ae:81:24:ba: a1:2c:03:bb:da:7a:3d:42:08:07:32:ba:a3:da:dd: 03:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D9:D6:CF:71:DD:43:13:E8:3C:24:29:D8:AA:49:82:25:B4:19:89 X509v3 Authority Key Identifier: keyid:A6:ED:44:2B:91:D4:E8:3A:6D:E3:9F:B6:79:71:A1:E7:9C:6B:1E:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pu1EK5HU6Dpt45-2eXGh55xrHtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/553dc6-12d0-4d4a-a294-97c5d59b0bbf/1/hdnWz3HdQxPoPCQp2KpJgiW0GYk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/553dc6-12d0-4d4a-a294-97c5d59b0bbf/1/pu1EK5HU6Dpt45-2eXGh55xrHtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.162.0/24 91.208.184.0/24 91.208.197.0/24 91.208.206.0/24 IPv6: 2a0f:5f40::/29 Signature Algorithm: sha256WithRSAEncryption 41:85:36:21:4b:db:9b:57:16:4a:25:02:4d:5d:2e:8c:0c:50: ca:a6:85:d4:86:20:e6:45:2c:ab:a1:f4:1e:9f:17:7b:e3:a9: 5a:5c:f3:12:27:42:c3:fa:da:f4:a3:47:84:19:eb:9f:55:76: 37:28:71:14:0e:41:83:cf:91:a2:6e:74:83:b1:b5:d5:c8:ee: cf:05:7f:c0:e0:fd:d4:f0:da:97:33:87:c3:66:2b:f3:d8:2c: 12:c5:e9:95:90:7a:a1:44:1b:a0:3f:b9:24:d1:81:51:95:11: 38:e0:28:8a:15:98:ab:24:2b:f0:8a:d8:44:46:4a:21:a2:59: ab:dc:83:df:7f:b6:69:f7:32:7e:d0:75:88:c9:2f:bc:c3:a5: 92:5e:7d:73:f5:b3:a9:28:e3:22:6d:16:d4:4d:47:67:2d:36: e5:60:8d:ff:e2:8a:94:e5:cc:71:59:bc:3a:94:1b:05:79:86: fb:2c:7e:d7:7c:c1:89:86:d1:1a:1c:1e:0f:df:59:55:83:aa: fb:df:c2:a1:49:5e:8b:a1:5f:18:80:ee:d4:5d:bb:5f:e5:cb: 5c:5e:a1:88:28:a7:fc:47:f9:ab:5b:9b:d5:0e:b4:40:df:29: a7:6c:70:21:75:af:34:1f:ad:8d:3a:36:c0:ad:0f:a5:b8:ba: d0:b3:c7:bd -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt4oxT+/p0xszdf5GVAZP1xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2ZWQ0NDJiOTFkNGU4M2E2ZGUzOWZiNjc5NzFhMWU3OWM2 YjFlZDUwHhcNMjYwMTAxMDgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NWQ5ZDZjZjcxZGQ0MzEzZTgzYzI0MjlkOGFhNDk4MjI1YjQxOTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreuqh5M9DNt8NUIpayQoikn7RWjf QdKQj5aVFTF0EucLGgLxnDnzNG2zfsoQd45CRzxj+OMorsF6W4wa4dpKFBeQOPyT I+mPiXT52AR/cfFtP0yXo1jKfrdAe4iaVIuzsLoJvm0m49DoueAg55e6XwZ/RGoR +FWDxXMF4Ae38l2oAqKPHFg96muKBKjqIthq4LuIGzK7Jf5warpRL0qXKK16o2EL +BBaDCey4s1v+xSaYCxuKolEWT7ryPEQFmseob9UfkmJ6zuVCIJjrlL/Xo650LLC soA0j1UKzjPKadHNCXxzCr1b7ugbNa6BJLqhLAO72no9QggHMrqj2t0DlQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFIXZ1s9x3UMT6DwkKdiqSYIltBmJMB8GA1UdIwQY MBaAFKbtRCuR1Og6beOftnlxoeecax7VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHUxRUs1SFU2RHB0NDUtMmVYR2g1NXhySHRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS81NTNkYzYtMTJkMC00ZDRhLWEyOTQt OTdjNWQ1OWIwYmJmLzEvaGRuV3ozSGRReFBvUENRcDJLcEpnaVcwR1lrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS81NTNkYzYtMTJkMC00ZDRhLWEyOTQtOTdjNWQ1OWIwYmJm LzEvcHUxRUs1SFU2RHB0NDUtMmVYR2g1NXhySHRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAW9CiAwQA W9C4AwQAW9DFAwQAW9DOMA0EAgACMAcDBQMqD19AMA0GCSqGSIb3DQEBCwUAA4IB AQBBhTYhS9ubVxZKJQJNXS6MDFDKpoXUhiDmRSyrofQenxd746laXPMSJ0LD+tr0 o0eEGeufVXY3KHEUDkGDz5GibnSDsbXVyO7PBX/A4P3U8NqXM4fDZivz2CwSxemV kHqhRBugP7kk0YFRlRE44CiKFZirJCvwithERkoholmr3IPff7Zp9zJ+0HWIyS+8 w6WSXn1z9bOpKOMibRbUTUdnLTblYI3/4oqU5cxxWbw6lBsFeYb7LH7XfMGJhtEa HB4P31lVg6r738KhSV6LoV8YgO7UXbtf5ctcXqGIKKf8R/mrW5vVDrRA3ymnbHAh da80H62NOjbArQ+luLrQs8e9 -----END CERTIFICATE-----Generated at Mon Jan 19 23:21:43 2026 by rpki-client