This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/hgDyUZ2-1UgM8mbjfA3-iTpMzPg.roa File: hgDyUZ2-1UgM8mbjfA3-iTpMzPg.roa (raw, json) Hash identifier: gTfowD4kQAMQL1RWbg115uID4C0yg5TJlExWt/G5HvQ= Subject key identifier: 86:00:F2:51:9D:BE:D5:48:0C:F2:66:E3:7C:0D:FE:89:3A:4C:CC:F8 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B9FE9BD9AB10498E57F28C64532CB1852 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/hgDyUZ2-1UgM8mbjfA3-iTpMzPg.roa Signing time: Thu 08 Jan 2026 23:20:54 +0000 ROA not before: Thu 08 Jan 2026 23:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214079 IP address blocks: 193.23.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9f:e9:bd:9a:b1:04:98:e5:7f:28:c6:45:32:cb:18:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 8 23:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8600f2519dbed5480cf266e37c0dfe893a4cccf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:31:ed:1a:95:b9:c2:dc:8c:42:82:57:7d: ab:1f:63:b5:70:fc:41:bd:65:00:a0:70:34:fa:50: ad:ea:af:e3:b0:12:07:f1:f1:ed:88:ca:58:79:ff: e5:d7:ea:41:74:23:59:f3:8a:c0:21:4d:f0:ef:ff: 3a:da:f5:92:eb:47:69:70:b2:ea:41:14:cf:5a:08: b3:25:fc:da:8f:62:1e:d7:93:27:52:91:1e:5e:b7: a6:42:5e:a4:08:6c:3c:75:4e:62:2e:4d:da:a0:47: ac:9c:eb:ac:9e:7c:4c:1b:12:8d:6a:31:b9:40:a7: 71:08:37:40:b6:30:82:fc:d0:14:9b:f3:39:2b:2a: 2d:2a:6f:2d:6b:48:50:51:e9:30:ae:e0:b3:89:53: 3d:48:25:4d:5b:6c:a6:2e:cd:6c:1d:01:5c:dd:9f: 6a:39:f9:23:dc:69:81:a0:6f:1b:97:b4:79:f0:a1: 34:c0:b1:11:1f:a5:07:e4:df:4c:f4:5c:e4:b2:6e: 6a:11:36:cf:eb:a6:02:83:ee:bc:ce:d8:05:6f:06: 51:d5:00:41:ab:5a:e1:ff:8b:5f:52:e1:44:90:53: 0d:12:4d:6c:e1:f9:5b:0c:3a:9f:16:7b:27:35:90: 36:fa:27:0f:ef:4c:2e:18:61:12:7b:5a:e5:48:65: 3f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:00:F2:51:9D:BE:D5:48:0C:F2:66:E3:7C:0D:FE:89:3A:4C:CC:F8 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/hgDyUZ2-1UgM8mbjfA3-iTpMzPg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.220.0/24 Signature Algorithm: sha256WithRSAEncryption 80:ef:70:3a:56:aa:4f:39:c4:7f:00:ef:12:7c:e0:30:1c:d3: c4:25:b8:e2:21:70:6f:15:e9:97:68:bc:1b:cc:41:a1:5c:45: 51:1c:62:7a:c7:aa:b7:40:b5:2e:7b:51:7d:a8:ca:c6:bf:b0: 61:43:37:0a:b9:7d:ad:e6:28:f6:39:49:ca:3a:21:1a:99:da: 0e:45:c3:da:cc:61:53:65:91:f7:a4:ba:ba:30:46:a4:ea:e7: d3:4a:02:5c:6b:18:6b:67:ee:14:45:f5:62:02:31:db:3f:f7: 53:5e:6b:d7:02:d5:c9:0b:fc:43:e1:ad:20:0f:b2:ab:2b:5b: e4:d8:35:ba:ca:f9:de:e6:3f:bb:48:cc:9a:e3:fe:d8:90:24: 9a:79:71:f0:1b:0d:52:ac:93:c1:40:60:31:5f:8a:0c:f4:90: 3b:68:5f:c2:88:ea:e7:7b:39:9d:c9:0d:92:f4:12:a5:c8:a1: e0:b2:8e:0d:93:bd:08:b6:40:70:21:f4:14:d6:1f:19:f4:a7: 3d:46:e0:ff:82:4a:cd:86:9d:fe:e4:e0:34:3c:b6:aa:1d:87: 34:33:cc:ae:4c:8f:ba:f6:a9:9c:0a:51:f8:72:93:ad:2d:6f: 2f:e5:58:9b:cd:11:21:aa:53:72:e5:7f:b3:cb:32:b9:39:fc: 8e:34:7b:63 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuf6b2asQSY5X8oxkUyyxhSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTA4MjMyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjAwZjI1MTlkYmVkNTQ4MGNmMjY2ZTM3YzBkZmU4OTNhNGNjY2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Wsx7RqVucLcjEKCV32rH2O1cPxB vWUAoHA0+lCt6q/jsBIH8fHtiMpYef/l1+pBdCNZ84rAIU3w7/862vWS60dpcLLq QRTPWgizJfzaj2Ie15MnUpEeXremQl6kCGw8dU5iLk3aoEesnOusnnxMGxKNajG5 QKdxCDdAtjCC/NAUm/M5KyotKm8ta0hQUekwruCziVM9SCVNW2ymLs1sHQFc3Z9q Ofkj3GmBoG8bl7R58KE0wLERH6UH5N9M9Fzksm5qETbP66YCg+68ztgFbwZR1QBB q1rh/4tfUuFEkFMNEk1s4flbDDqfFnsnNZA2+icP70wuGGESe1rlSGU/zQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIYA8lGdvtVIDPJm43wN/ok6TMz4MB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvaGdEeVVaMi0xVWdNOG1iamZBMy1pVHBNelBnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRfcMA0G CSqGSIb3DQEBCwUAA4IBAQCA73A6VqpPOcR/AO8SfOAwHNPEJbjiIXBvFemXaLwb zEGhXEVRHGJ6x6q3QLUue1F9qMrGv7BhQzcKuX2t5ij2OUnKOiEamdoORcPazGFT ZZH3pLq6MEak6ufTSgJcaxhrZ+4URfViAjHbP/dTXmvXAtXJC/xD4a0gD7KrK1vk 2DW6yvne5j+7SMya4/7YkCSaeXHwGw1SrJPBQGAxX4oM9JA7aF/CiOrnezmdyQ2S 9BKlyKHgso4Nk70ItkBwIfQU1h8Z9Kc9RuD/gkrNhp3+5OA0PLaqHYc0M8yuTI+6 9qmcClH4cpOtLW8v5VibzREhqlNy5X+zyzK5OfyONHtj -----END CERTIFICATE-----Generated at Tue Jan 20 06:07:13 2026 by rpki-client