This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/HW-WD3YmA183Eg5SjeKZRN7F6vo.roa File: HW-WD3YmA183Eg5SjeKZRN7F6vo.roa (raw, json) Hash identifier: qS+dps2UAxlaxbw7uwyr1mlazMmXktC7iMhFMsxdPKo= Subject key identifier: 1D:6F:96:0F:76:26:03:5F:37:12:0E:52:8D:E2:99:44:DE:C5:EA:FA Certificate issuer: /CN=914b7d1e6e72d55c8d1c4a3e8241d71dcf8e3bf1 Certificate serial: 019B7F83F8E68F7E4AC5FE052537FBA5F997 Authority key identifier: 91:4B:7D:1E:6E:72:D5:5C:8D:1C:4A:3E:82:41:D7:1D:CF:8E:3B:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/HW-WD3YmA183Eg5SjeKZRN7F6vo.roa Signing time: Fri 02 Jan 2026 16:21:53 +0000 ROA not before: Fri 02 Jan 2026 16:21:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62058 IP address blocks: 185.153.40.0/22 maxlen: 22 185.153.40.0/23 maxlen: 23 185.153.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.mft rsync://rpki.ripe.net/repository/DEFAULT/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:f8:e6:8f:7e:4a:c5:fe:05:25:37:fb:a5:f9:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=914b7d1e6e72d55c8d1c4a3e8241d71dcf8e3bf1 Validity Not Before: Jan 2 16:21:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1d6f960f7626035f37120e528de29944dec5eafa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c8:ca:6f:e7:33:94:ba:a7:bf:21:00:54:52: e6:83:20:ff:cb:f6:f4:7c:86:5c:4c:85:5d:c0:35: bc:a6:c6:a0:82:20:28:f4:a2:4e:7e:4b:1e:93:b1: 59:23:5b:b5:ce:44:17:75:0d:59:1b:0c:5f:21:0d: f9:17:cf:93:d6:54:9c:a1:13:5b:f5:ea:4b:77:ea: 39:83:bc:37:2f:4e:1b:d1:c4:ad:32:9c:a5:04:09: 19:f0:58:d1:d0:23:59:8a:89:0c:f0:58:b7:b6:35: 57:c3:ef:86:08:92:07:3e:7c:dc:1c:e2:1c:e2:2f: fb:e7:be:48:ff:98:3c:8a:55:a5:e7:0b:94:2c:04: 60:56:32:7e:e4:80:1d:55:d0:99:45:14:3e:55:09: 91:c5:70:08:f6:27:a0:bc:73:88:da:64:80:9f:72: bd:b2:f3:bf:54:aa:32:da:b3:ed:67:de:bd:07:65: cf:8d:d7:2f:24:86:ff:a1:8f:79:4d:56:86:e7:30: 2c:94:a4:89:4d:09:07:7e:69:e3:3c:a5:0d:5b:9d: 8d:61:3b:18:38:a9:db:a0:48:0d:e4:d1:c3:cf:06: 2b:69:bf:b9:c1:f0:fa:cc:5d:2e:9e:28:50:1c:38: db:f8:2f:27:81:ec:59:d7:19:6c:e3:6e:0c:c4:41: 57:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6F:96:0F:76:26:03:5F:37:12:0E:52:8D:E2:99:44:DE:C5:EA:FA X509v3 Authority Key Identifier: keyid:91:4B:7D:1E:6E:72:D5:5C:8D:1C:4A:3E:82:41:D7:1D:CF:8E:3B:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/HW-WD3YmA183Eg5SjeKZRN7F6vo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8349e4-69cc-4140-a744-abed74415b8f/1/kUt9Hm5y1VyNHEo-gkHXHc-OO_E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.153.40.0/22 Signature Algorithm: sha256WithRSAEncryption 67:f5:6a:b2:8b:37:c2:cd:4f:ce:ac:9f:2b:6c:59:ef:8a:85: ec:e1:f5:9a:07:d9:d8:9a:04:23:4d:85:3a:33:77:aa:7e:7b: c7:e5:cf:3a:86:b8:f9:ad:e0:2a:4d:59:5f:9e:04:56:f1:93: 32:a3:2d:67:5e:ff:6c:7e:2f:4d:cf:4e:1a:2f:a2:87:1b:56: 74:32:f6:cf:d7:0e:c1:93:c3:35:57:9b:4c:b2:dd:43:8a:d3: c0:42:8d:8c:0c:69:7c:6e:c3:44:f1:ed:e9:4a:fe:a6:42:da: 33:e7:97:cc:92:9e:dc:65:25:d6:79:45:16:3a:fe:9d:15:a7: 6d:64:e4:a6:c8:b4:8a:a2:88:01:c1:fa:2a:7b:68:fb:f3:f2: 69:12:b8:35:1c:3a:75:f2:5e:55:cc:67:76:8a:d4:74:5b:09: 1f:cb:72:90:c9:50:1f:e6:f8:d3:79:99:22:f1:97:ed:53:a8: c8:a7:99:a9:4b:1c:a3:d0:ea:09:01:01:ee:36:29:cb:b7:4b: ee:64:19:44:0f:16:3a:b2:83:33:dc:bd:d9:87:8a:88:e6:f6: 4d:e1:58:73:5a:6e:27:ff:35:cc:47:3a:e9:62:2b:16:0d:1d: a6:09:72:eb:4c:da:7f:b2:27:d5:63:65:65:6d:7f:fc:14:4e: 59:0a:4a:28 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g/jmj35Kxf4FJTf7pfmXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNGI3ZDFlNmU3MmQ1NWM4ZDFjNGEzZTgyNDFkNzFkY2Y4 ZTNiZjEwHhcNMjYwMTAyMTYyMTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZDZmOTYwZjc2MjYwMzVmMzcxMjBlNTI4ZGUyOTk0NGRlYzVlYWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8jKb+czlLqnvyEAVFLmgyD/y/b0 fIZcTIVdwDW8psaggiAo9KJOfksek7FZI1u1zkQXdQ1ZGwxfIQ35F8+T1lScoRNb 9epLd+o5g7w3L04b0cStMpylBAkZ8FjR0CNZiokM8Fi3tjVXw++GCJIHPnzcHOIc 4i/7575I/5g8ilWl5wuULARgVjJ+5IAdVdCZRRQ+VQmRxXAI9iegvHOI2mSAn3K9 svO/VKoy2rPtZ969B2XPjdcvJIb/oY95TVaG5zAslKSJTQkHfmnjPKUNW52NYTsY OKnboEgN5NHDzwYrab+5wfD6zF0unihQHDjb+C8ngexZ1xls424MxEFXcwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB1vlg92JgNfNxIOUo3imUTexer6MB8GA1UdIwQY MBaAFJFLfR5uctVcjRxKPoJB1x3PjjvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1V0OUhtNXkxVnlOSEVvLWdrSFhIYy1PT19FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84MzQ5ZTQtNjljYy00MTQwLWE3NDQt YWJlZDc0NDE1YjhmLzEvSFctV0QzWW1BMTgzRWc1U2plS1pSTjdGNnZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy84MzQ5ZTQtNjljYy00MTQwLWE3NDQtYWJlZDc0NDE1Yjhm LzEva1V0OUhtNXkxVnlOSEVvLWdrSFhIYy1PT19FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZkoMA0G CSqGSIb3DQEBCwUAA4IBAQBn9WqyizfCzU/OrJ8rbFnvioXs4fWaB9nYmgQjTYU6 M3eqfnvH5c86hrj5reAqTVlfngRW8ZMyoy1nXv9sfi9Nz04aL6KHG1Z0MvbP1w7B k8M1V5tMst1DitPAQo2MDGl8bsNE8e3pSv6mQtoz55fMkp7cZSXWeUUWOv6dFadt ZOSmyLSKoogBwfoqe2j78/JpErg1HDp18l5VzGd2itR0Wwkfy3KQyVAf5vjTeZki 8ZftU6jIp5mpSxyj0OoJAQHuNinLt0vuZBlEDxY6soMz3L3Zh4qI5vZN4VhzWm4n /zXMRzrpYisWDR2mCXLrTNp/sifVY2VlbX/8FE5ZCkoo -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:36 2026 by rpki-client