This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/HMrkyJnqPLhWHWp3uSc-TJZ6evM.roa File: HMrkyJnqPLhWHWp3uSc-TJZ6evM.roa (raw, json) Hash identifier: XRtW9/rDWh39fCwJcQvqM0stm2Q1JPWivWUvQ7XMdHw= Subject key identifier: 1C:CA:E4:C8:99:EA:3C:B8:56:1D:6A:77:B9:27:3E:4C:96:7A:7A:F3 Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b Certificate serial: 019B7CED86914E4ACD1BEE5280306B56AB30 Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/HMrkyJnqPLhWHWp3uSc-TJZ6evM.roa Signing time: Fri 02 Jan 2026 04:18:19 +0000 ROA not before: Fri 02 Jan 2026 04:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60182 IP address blocks: 85.187.233.0/24 maxlen: 24 85.187.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.mft rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:86:91:4e:4a:cd:1b:ee:52:80:30:6b:56:ab:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b Validity Not Before: Jan 2 04:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ccae4c899ea3cb8561d6a77b9273e4c967a7af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b3:07:08:25:1f:da:33:68:70:76:1d:af:39: 33:5e:bd:70:4d:6f:52:61:30:92:c4:10:58:51:67: 30:bf:48:0d:ca:53:e5:5f:f7:5b:e1:63:3d:2f:7f: 06:ac:31:04:82:9f:fb:ec:69:36:40:b3:54:d5:17: e1:14:17:36:ac:fa:73:24:96:4b:a3:91:21:ec:cd: 1a:9d:fc:7a:ef:1d:31:11:76:4f:ea:e5:bf:72:ea: 5e:e4:64:64:2a:81:15:d8:96:44:e5:df:b2:e7:50: 47:fe:fd:04:6e:4e:d4:2c:ec:ea:85:04:2e:a8:e9: aa:e4:d8:27:a5:89:ca:6b:87:a3:33:8b:10:16:4a: 1e:f9:be:4b:c2:99:cd:46:5d:81:ef:be:7a:54:17: 15:e9:6d:16:61:e6:ca:c0:61:bf:2e:78:ae:8f:5c: c1:46:b9:25:af:2c:0c:12:c4:48:59:85:ab:f8:7d: 30:63:22:47:7c:e3:c4:56:42:a6:78:84:ce:62:d3: 5f:ed:63:f5:0f:7e:3c:a9:db:dd:4a:47:c1:e8:84: ab:6c:d9:d6:ed:5b:4d:dc:d0:d7:39:09:db:bc:be: c3:b6:95:a4:af:ea:ed:6e:99:06:09:04:c8:01:af: 1e:62:b7:86:59:5b:23:f2:bf:28:3f:38:5e:25:52: 3c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CA:E4:C8:99:EA:3C:B8:56:1D:6A:77:B9:27:3E:4C:96:7A:7A:F3 X509v3 Authority Key Identifier: keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/HMrkyJnqPLhWHWp3uSc-TJZ6evM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.187.233.0/24 85.187.242.0/24 Signature Algorithm: sha256WithRSAEncryption cc:47:98:43:0a:64:9f:31:b3:eb:8a:68:c8:b0:3f:54:b6:52: bd:f1:a4:64:45:b8:33:c6:bb:86:69:8b:7d:e2:68:49:5f:dd: ea:e5:b0:03:1b:d9:bf:59:fb:05:d1:46:4f:03:4a:f8:79:c7: 41:4a:74:1d:8f:12:eb:1f:5c:b8:3b:c5:1d:3b:48:38:ab:a5: 72:5a:52:5c:19:63:07:4b:dd:64:da:08:6d:75:1c:c4:14:a2: 34:bb:df:6d:8a:ee:e8:62:bd:11:76:ca:9c:6e:c7:dc:8f:f3: 2c:91:ac:4d:87:75:1b:18:72:3e:8d:b8:b8:7a:6a:da:ab:ec: 68:51:a2:79:bc:fb:50:f5:c6:2e:2e:fb:0d:7a:8e:c8:f3:be: eb:fc:54:3e:1b:d4:27:b4:2e:74:86:15:2e:21:b3:92:b7:0d: b7:a2:77:98:d6:67:c9:6d:a5:45:2a:41:9b:0c:df:81:97:9f: 12:0b:65:ec:17:4d:52:2b:b2:d0:8d:c1:f4:28:ec:ce:37:20: 2b:e4:c7:cf:bf:5a:18:c4:be:14:44:c8:bd:35:7b:f7:b7:e3: 44:d1:47:a9:79:8f:9d:ba:58:05:ed:5d:e5:95:49:09:67:e1: b0:3a:e4:cd:1e:0d:f4:9c:b2:b2:a6:b4:8a:8a:89:b0:22:d8: 54:f7:03:f4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87YaRTkrNG+5SgDBrVqswMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl NGQxMWIwHhcNMjYwMTAyMDQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2NhZTRjODk5ZWEzY2I4NTYxZDZhNzdiOTI3M2U0Yzk2N2E3YWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbMHCCUf2jNocHYdrzkzXr1wTW9S YTCSxBBYUWcwv0gNylPlX/db4WM9L38GrDEEgp/77Gk2QLNU1RfhFBc2rPpzJJZL o5Eh7M0anfx67x0xEXZP6uW/cupe5GRkKoEV2JZE5d+y51BH/v0Ebk7ULOzqhQQu qOmq5NgnpYnKa4ejM4sQFkoe+b5LwpnNRl2B7756VBcV6W0WYebKwGG/Lniuj1zB RrklrywMEsRIWYWr+H0wYyJHfOPEVkKmeITOYtNf7WP1D348qdvdSkfB6ISrbNnW 7VtN3NDXOQnbvL7DtpWkr+rtbpkGCQTIAa8eYreGWVsj8r8oPzheJVI8aQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBzK5MiZ6jy4Vh1qd7knPkyWenrzMB8GA1UdIwQY MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt YTk3YzBkYzBhNzQ5LzEvSE1ya3lKbnFQTGhXSFdwM3VTYy1USlo2ZXZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5 LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVbvpAwQA VbvyMA0GCSqGSIb3DQEBCwUAA4IBAQDMR5hDCmSfMbPrimjIsD9UtlK98aRkRbgz xruGaYt94mhJX93q5bADG9m/WfsF0UZPA0r4ecdBSnQdjxLrH1y4O8UdO0g4q6Vy WlJcGWMHS91k2ghtdRzEFKI0u99tiu7oYr0Rdsqcbsfcj/MskaxNh3UbGHI+jbi4 emraq+xoUaJ5vPtQ9cYuLvsNeo7I877r/FQ+G9QntC50hhUuIbOStw23oneY1mfJ baVFKkGbDN+Bl58SC2XsF01SK7LQjcH0KOzONyAr5MfPv1oYxL4URMi9NXv3t+NE 0UepeY+dulgF7V3llUkJZ+GwOuTNHg30nLKyprSKiomwIthU9wP0 -----END CERTIFICATE-----Generated at Mon Jan 26 20:24:46 2026 by rpki-client