This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3c0f04-8caf-49d4-aab7-59e611d76574/1/HMpkFnFRNLrRrrjLr9m-Ha2OMAk.roa File: HMpkFnFRNLrRrrjLr9m-Ha2OMAk.roa (raw, json) Hash identifier: MvD+kW64gasfrmfOU4x0HNuN58jbkr9LphVnvyCI/70= Subject key identifier: 1C:CA:64:16:71:51:34:BA:D1:AE:B8:CB:AF:D9:BE:1D:AD:8E:30:09 Certificate issuer: /CN=e0390c1c361df05224376108eff9b20dc2ee0265 Certificate serial: 019B7DCB50960545C73C972DF91F7C471455 Authority key identifier: E0:39:0C:1C:36:1D:F0:52:24:37:61:08:EF:F9:B2:0D:C2:EE:02:65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4DkMHDYd8FIkN2EI7_myDcLuAmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3c0f04-8caf-49d4-aab7-59e611d76574/1/HMpkFnFRNLrRrrjLr9m-Ha2OMAk.roa Signing time: Fri 02 Jan 2026 08:20:34 +0000 ROA not before: Fri 02 Jan 2026 08:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42848 IP address blocks: 147.67.0.0/17 maxlen: 17 147.67.128.0/17 maxlen: 17 158.166.0.0/16 maxlen: 16 158.166.245.0/24 maxlen: 24 158.167.0.0/16 maxlen: 16 158.167.35.0/24 maxlen: 24 158.167.245.0/24 maxlen: 24 158.168.0.0/16 maxlen: 16 158.169.0.0/17 maxlen: 17 158.169.128.0/17 maxlen: 17 2a01:7080::/32 maxlen: 32 2a01:7080:14::/48 maxlen: 48 2a01:7080:16::/48 maxlen: 48 2a01:7080:24::/48 maxlen: 48 2a01:7080:26::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/3c0f04-8caf-49d4-aab7-59e611d76574/1/4DkMHDYd8FIkN2EI7_myDcLuAmU.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/3c0f04-8caf-49d4-aab7-59e611d76574/1/4DkMHDYd8FIkN2EI7_myDcLuAmU.mft rsync://rpki.ripe.net/repository/DEFAULT/4DkMHDYd8FIkN2EI7_myDcLuAmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:50:96:05:45:c7:3c:97:2d:f9:1f:7c:47:14:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0390c1c361df05224376108eff9b20dc2ee0265 Validity Not Before: Jan 2 08:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cca6416715134bad1aeb8cbafd9be1dad8e3009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:3c:57:84:d8:06:d6:21:7c:9d:5b:6a:d1: 6b:40:de:8b:3d:c2:67:59:42:c9:80:54:74:c3:13: 5c:65:73:92:73:97:2f:dc:98:00:5c:c7:e6:e3:9c: cf:3a:38:9d:1d:92:98:9a:f6:9a:55:af:ce:1f:0f: 23:7d:a6:5d:eb:7c:06:59:54:8a:36:ff:07:32:45: d5:56:9e:6d:d5:2d:a1:5e:48:d7:cf:86:78:81:77: 40:e5:eb:53:be:d2:09:1c:41:28:c0:f0:35:64:96: fc:28:0f:c4:3e:57:c1:62:b6:96:71:d7:08:fc:0c: e3:c0:5a:5d:76:8b:86:cc:57:73:61:cb:da:4f:a3: ae:71:60:9c:3e:b7:6b:04:13:aa:8b:a1:22:09:32: 62:e2:f5:a6:14:41:29:5f:8a:fb:9b:78:ba:09:04: 88:8c:08:81:31:89:71:85:69:d6:f9:02:15:cd:a4: db:27:b2:03:27:d5:70:25:f4:1a:19:a4:2e:0e:a0: c5:e3:2e:80:7f:ef:37:67:d8:5f:c6:c7:18:4b:77: e6:9e:65:6a:28:94:98:73:48:a0:4a:09:95:43:dc: e5:74:09:31:2f:5f:06:dd:9f:b5:0d:b1:8e:57:52: 6e:73:01:2f:8e:f6:50:0a:f5:9d:d1:3a:c3:25:28: a4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CA:64:16:71:51:34:BA:D1:AE:B8:CB:AF:D9:BE:1D:AD:8E:30:09 X509v3 Authority Key Identifier: keyid:E0:39:0C:1C:36:1D:F0:52:24:37:61:08:EF:F9:B2:0D:C2:EE:02:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4DkMHDYd8FIkN2EI7_myDcLuAmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3c0f04-8caf-49d4-aab7-59e611d76574/1/HMpkFnFRNLrRrrjLr9m-Ha2OMAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3c0f04-8caf-49d4-aab7-59e611d76574/1/4DkMHDYd8FIkN2EI7_myDcLuAmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.67.0.0/16 158.166.0.0-158.169.255.255 IPv6: 2a01:7080::/32 Signature Algorithm: sha256WithRSAEncryption 61:df:d6:60:4e:ff:fd:02:89:9e:36:d2:37:8a:2d:7f:c3:12: fe:65:c4:61:bb:94:80:04:d5:98:3e:51:ad:19:80:4c:ce:97: 87:e2:1b:a2:af:f2:07:16:99:6d:11:cf:ea:30:3b:50:5e:cb: 74:bb:96:6f:08:91:4b:55:2e:b2:06:a9:89:3e:42:a6:f6:a1: a0:14:08:fd:6c:b2:01:a6:95:a3:ca:a0:36:5d:19:61:93:d2: 93:35:6d:67:b0:d3:3b:6b:16:8e:b3:15:4d:27:d8:11:b4:77: 9d:61:65:83:a7:d0:13:b8:e0:9b:2a:0b:1f:18:3c:36:81:75: 84:09:4d:bd:6f:8f:f3:5c:c4:17:32:73:24:e4:fb:e6:ae:ad: 41:35:b7:99:27:56:1c:87:f0:f8:6f:4d:44:42:47:5c:66:33: 3f:8e:a6:24:ff:3a:6c:78:2f:18:10:13:cd:17:10:be:02:1f: 22:a5:05:bb:6d:1e:49:14:ab:f1:3e:97:41:d6:80:a1:f2:88: 24:a4:06:36:cb:37:df:1d:53:7d:6b:34:4b:9c:ed:56:cd:8c: f0:c6:f1:a5:7b:df:b0:98:4d:25:85:11:0c:a3:69:57:ac:ff: de:b4:5d:7a:ad:6c:3b:aa:d3:a1:86:24:45:65:85:50:37:c1: 11:8b:72:ac -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt9y1CWBUXHPJct+R98RxRVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwMzkwYzFjMzYxZGYwNTIyNDM3NjEwOGVmZjliMjBkYzJl ZTAyNjUwHhcNMjYwMTAyMDgyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2NhNjQxNjcxNTEzNGJhZDFhZWI4Y2JhZmQ5YmUxZGFkOGUzMDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgw8V4TYBtYhfJ1batFrQN6LPcJn WULJgFR0wxNcZXOSc5cv3JgAXMfm45zPOjidHZKYmvaaVa/OHw8jfaZd63wGWVSK Nv8HMkXVVp5t1S2hXkjXz4Z4gXdA5etTvtIJHEEowPA1ZJb8KA/EPlfBYraWcdcI /AzjwFpddouGzFdzYcvaT6OucWCcPrdrBBOqi6EiCTJi4vWmFEEpX4r7m3i6CQSI jAiBMYlxhWnW+QIVzaTbJ7IDJ9VwJfQaGaQuDqDF4y6Af+83Z9hfxscYS3fmnmVq KJSYc0igSgmVQ9zldAkxL18G3Z+1DbGOV1JucwEvjvZQCvWd0TrDJSikawIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFBzKZBZxUTS60a64y6/Zvh2tjjAJMB8GA1UdIwQY MBaAFOA5DBw2HfBSJDdhCO/5sg3C7gJlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNERrTUhEWWQ4RklrTjJFSTdfbXlEY0x1QW1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8zYzBmMDQtOGNhZi00OWQ0LWFhYjct NTllNjExZDc2NTc0LzEvSE1wa0ZuRlJOTHJScnJqTHI5bS1IYTJPTUFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8zYzBmMDQtOGNhZi00OWQ0LWFhYjctNTllNjExZDc2NTc0 LzEvNERrTUhEWWQ4RklrTjJFSTdfbXlEY0x1QW1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAXBAIAATARAwMAk0MwCgMD AZ6mAwMBnqgwDQQCAAIwBwMFACoBcIAwDQYJKoZIhvcNAQELBQADggEBAGHf1mBO //0CiZ420jeKLX/DEv5lxGG7lIAE1Zg+Ua0ZgEzOl4fiG6Kv8gcWmW0Rz+owO1Be y3S7lm8IkUtVLrIGqYk+Qqb2oaAUCP1ssgGmlaPKoDZdGWGT0pM1bWew0ztrFo6z FU0n2BG0d51hZYOn0BO44JsqCx8YPDaBdYQJTb1vj/NcxBcycyTk++aurUE1t5kn VhyH8PhvTURCR1xmMz+OpiT/Omx4LxgQE80XEL4CHyKlBbttHkkUq/E+l0HWgKHy iCSkBjbLN98dU31rNEuc7VbNjPDG8aV737CYTSWFEQyjaVes/960XXqtbDuq06GG JEVlhVA3wRGLcqw= -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:15 2026 by rpki-client