This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/l-hgDYjbw5yT2K4L7tI-0c38Q2I.roa File: l-hgDYjbw5yT2K4L7tI-0c38Q2I.roa (raw, json) Hash identifier: WXcPkvW+EiO70Zda3fEJ9VpmcOJPMXJjg2uUR+uTzFE= Subject key identifier: 97:E8:60:0D:88:DB:C3:9C:93:D8:AE:0B:EE:D2:3E:D1:CD:FC:43:62 Certificate issuer: /CN=c00935185c68036a0faedeeaaa6bfef4e62a0c93 Certificate serial: 019B7CECE744B6C6970FD043FDC3391053F7 Authority key identifier: C0:09:35:18:5C:68:03:6A:0F:AE:DE:EA:AA:6B:FE:F4:E6:2A:0C:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wAk1GFxoA2oPrt7qqmv-9OYqDJM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/l-hgDYjbw5yT2K4L7tI-0c38Q2I.roa Signing time: Fri 02 Jan 2026 04:17:39 +0000 ROA not before: Fri 02 Jan 2026 04:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60244 IP address blocks: 185.27.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/wAk1GFxoA2oPrt7qqmv-9OYqDJM.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/wAk1GFxoA2oPrt7qqmv-9OYqDJM.mft rsync://rpki.ripe.net/repository/DEFAULT/wAk1GFxoA2oPrt7qqmv-9OYqDJM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:e7:44:b6:c6:97:0f:d0:43:fd:c3:39:10:53:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c00935185c68036a0faedeeaaa6bfef4e62a0c93 Validity Not Before: Jan 2 04:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97e8600d88dbc39c93d8ae0beed23ed1cdfc4362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:53:76:ec:9c:f9:64:15:fb:67:b9:a1:e0: 4f:61:21:e8:1f:73:88:98:14:4f:83:5f:c4:37:97: d5:b5:8a:ba:d9:ee:eb:34:4d:1f:3d:d6:f1:9e:40: c5:d3:d0:2f:01:ff:1e:d1:46:35:a8:cc:67:d4:40: b0:90:6c:4e:2b:03:63:15:95:b5:cf:8c:8a:3c:34: 0a:96:4a:2e:83:c3:2d:54:c4:27:c8:bd:d1:0e:28: 5c:6d:49:fc:a7:9c:63:c4:05:8e:6e:e2:9b:b5:6b: 40:0e:18:60:fa:bd:9e:71:fb:86:0c:2b:2d:02:a5: 42:49:5c:17:68:7d:df:38:48:25:db:e8:1a:6e:96: 10:5f:20:ca:98:76:28:5e:b0:28:3c:df:e4:ca:2a: d8:65:e3:c4:df:6f:6d:22:bd:d1:40:dd:5e:6a:dd: c1:7c:56:70:a2:42:8c:7e:d5:fb:29:b6:6d:b7:78: 10:af:68:28:77:a7:fc:a2:54:3e:d5:e0:de:20:ae: 3d:34:a3:66:44:99:f3:ff:d3:65:db:64:9f:ae:30: 35:f8:d6:a1:fe:34:84:bc:b5:4c:01:56:df:c5:60: 5b:2f:63:62:7c:52:51:9b:31:61:e3:da:30:36:c0: c3:11:d1:51:a9:8f:c1:81:4b:a2:ce:a6:e5:85:7d: 0c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E8:60:0D:88:DB:C3:9C:93:D8:AE:0B:EE:D2:3E:D1:CD:FC:43:62 X509v3 Authority Key Identifier: keyid:C0:09:35:18:5C:68:03:6A:0F:AE:DE:EA:AA:6B:FE:F4:E6:2A:0C:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wAk1GFxoA2oPrt7qqmv-9OYqDJM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/l-hgDYjbw5yT2K4L7tI-0c38Q2I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/wAk1GFxoA2oPrt7qqmv-9OYqDJM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.27.0.0/22 Signature Algorithm: sha256WithRSAEncryption 48:2d:c1:04:8f:ed:0c:55:6b:31:b5:00:0e:63:e7:f0:ee:20: cd:4a:9d:39:56:79:82:c9:4c:99:e3:59:d2:8c:1d:53:6f:e3: 34:7e:82:cd:d3:fe:04:9e:1f:c3:62:7e:d6:79:1d:bf:9b:0d: f6:7f:0f:bc:e8:64:ad:d7:e5:1a:bf:44:29:c8:93:ae:69:94: 53:3c:73:55:8c:94:f2:a0:d8:ae:65:33:0e:be:09:60:3f:69: 38:ef:ed:11:12:d6:7b:74:b2:98:a8:7e:47:1a:14:84:b7:97: 9f:09:58:2d:7e:d1:f7:f6:d9:0f:a3:1f:3f:ba:4f:dc:37:6c: 78:21:b9:fd:32:e5:dc:55:51:5b:b3:59:1c:5f:30:29:3a:99: d8:ac:e1:8c:61:a6:43:3d:57:8c:d3:5e:75:34:4d:8b:6d:80: 4d:39:78:cd:4c:4b:6b:0a:cb:17:70:95:b5:bb:e2:85:69:52: 7c:c6:f5:66:1b:4e:75:91:4a:e0:43:50:ee:cd:59:d9:1a:eb: 35:5f:fd:c6:c3:54:5a:e4:67:30:55:b7:0f:77:3d:b9:3a:91: 39:6e:14:e8:7f:c4:65:e2:26:9f:ac:8f:29:5a:28:68:20:ec: 9e:24:47:ff:d0:1d:ef:b4:3b:04:8a:ee:13:1f:30:83:f8:ba: 67:d4:f5:e3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87OdEtsaXD9BD/cM5EFP3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwMDkzNTE4NWM2ODAzNmEwZmFlZGVlYWFhNmJmZWY0ZTYy YTBjOTMwHhcNMjYwMTAyMDQxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2U4NjAwZDg4ZGJjMzljOTNkOGFlMGJlZWQyM2VkMWNkZmM0MzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVtTduyc+WQV+2e5oeBPYSHoH3OI mBRPg1/EN5fVtYq62e7rNE0fPdbxnkDF09AvAf8e0UY1qMxn1ECwkGxOKwNjFZW1 z4yKPDQKlkoug8MtVMQnyL3RDihcbUn8p5xjxAWObuKbtWtADhhg+r2ecfuGDCst AqVCSVwXaH3fOEgl2+gabpYQXyDKmHYoXrAoPN/kyirYZePE329tIr3RQN1eat3B fFZwokKMftX7KbZtt3gQr2god6f8olQ+1eDeIK49NKNmRJnz/9Nl22SfrjA1+Nah /jSEvLVMAVbfxWBbL2NifFJRmzFh49owNsDDEdFRqY/BgUuizqblhX0M7wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJfoYA2I28Ock9iuC+7SPtHN/ENiMB8GA1UdIwQY MBaAFMAJNRhcaANqD67e6qpr/vTmKgyTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0FrMUdGeG9BMm9QcnQ3cXFtdi05T1lxREpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9iZTMwNmYtMGY4Yy00Njc0LTkzZmYt MmE5NzEyYmY2MDNjLzEvbC1oZ0RZamJ3NXlUMks0TDd0SS0wYzM4UTJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9iZTMwNmYtMGY4Yy00Njc0LTkzZmYtMmE5NzEyYmY2MDNj LzEvd0FrMUdGeG9BMm9QcnQ3cXFtdi05T1lxREpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuRsAMA0G CSqGSIb3DQEBCwUAA4IBAQBILcEEj+0MVWsxtQAOY+fw7iDNSp05VnmCyUyZ41nS jB1Tb+M0foLN0/4Enh/DYn7WeR2/mw32fw+86GSt1+Uav0QpyJOuaZRTPHNVjJTy oNiuZTMOvglgP2k47+0REtZ7dLKYqH5HGhSEt5efCVgtftH39tkPox8/uk/cN2x4 Ibn9MuXcVVFbs1kcXzApOpnYrOGMYaZDPVeM0151NE2LbYBNOXjNTEtrCssXcJW1 u+KFaVJ8xvVmG051kUrgQ1DuzVnZGus1X/3Gw1Ra5GcwVbcPdz25OpE5bhTof8Rl 4iafrI8pWihoIOyeJEf/0B3vtDsEiu4THzCD+Lpn1PXj -----END CERTIFICATE-----Generated at Mon Feb 9 22:26:47 2026 by rpki-client