This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/HKYjGRXbhcsbgj-zO-lhhp8iHf4.roa File: HKYjGRXbhcsbgj-zO-lhhp8iHf4.roa (raw, json) Hash identifier: r0qRRb9G05Y3zjQIakuz14pzZ5PruwE51RJizxy5NMg= Subject key identifier: 1C:A6:23:19:15:DB:85:CB:1B:82:3F:B3:3B:E9:61:86:9F:22:1D:FE Certificate issuer: /CN=5dd23c7ac6e682fbc53be1a0e9318f6ccae7193d Certificate serial: 019B783526C3034B18FA85E65FD116F0450C Authority key identifier: 5D:D2:3C:7A:C6:E6:82:FB:C5:3B:E1:A0:E9:31:8F:6C:CA:E7:19:3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdI8esbmgvvFO-Gg6TGPbMrnGT0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/HKYjGRXbhcsbgj-zO-lhhp8iHf4.roa Signing time: Thu 01 Jan 2026 06:18:27 +0000 ROA not before: Thu 01 Jan 2026 06:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216313 IP address blocks: 185.129.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/XdI8esbmgvvFO-Gg6TGPbMrnGT0.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/XdI8esbmgvvFO-Gg6TGPbMrnGT0.mft rsync://rpki.ripe.net/repository/DEFAULT/XdI8esbmgvvFO-Gg6TGPbMrnGT0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:26:c3:03:4b:18:fa:85:e6:5f:d1:16:f0:45:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dd23c7ac6e682fbc53be1a0e9318f6ccae7193d Validity Not Before: Jan 1 06:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ca6231915db85cb1b823fb33be961869f221dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:19:9d:53:dc:9e:2e:28:72:3e:4e:dd:f7:d3: 24:0d:2d:96:d3:59:30:89:b0:e7:b5:c0:0e:af:fc: d3:f1:10:c3:8a:76:86:aa:38:da:7a:ba:3c:cf:c7: 92:c7:eb:6e:63:a4:7c:75:33:c5:d0:08:e0:57:8f: a9:5e:ac:90:f4:dd:ea:d7:49:7b:11:15:b6:3f:6b: 1b:86:21:b0:99:b8:e8:4b:8d:49:61:9f:19:99:e5: e4:a9:1e:74:e9:47:9b:c8:ef:d0:df:1b:3d:23:9b: 97:8d:50:13:27:34:fa:25:ae:1e:75:1f:6c:55:97: e0:fc:a3:79:25:e8:e4:dd:6c:e2:29:0d:f7:03:3b: cb:10:11:d5:a2:e0:a7:54:52:d8:3a:0f:9c:fc:c0: 94:16:56:c2:91:c3:d0:07:a0:83:06:4c:23:98:00: d9:ad:63:4a:c6:07:cb:39:e8:dd:59:a6:89:b8:31: 13:15:52:80:2c:b7:89:b2:99:da:91:a2:2e:9a:fa: d1:f0:68:d5:bb:ef:7d:a8:08:94:d7:82:91:53:83: c4:5b:20:cb:42:36:67:aa:b1:7a:50:7c:4d:14:e9: c2:33:da:39:17:08:35:a0:d0:02:96:88:0f:2c:2e: 85:45:6d:bb:28:22:9e:d1:cc:e5:37:1b:2f:91:57: 77:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A6:23:19:15:DB:85:CB:1B:82:3F:B3:3B:E9:61:86:9F:22:1D:FE X509v3 Authority Key Identifier: keyid:5D:D2:3C:7A:C6:E6:82:FB:C5:3B:E1:A0:E9:31:8F:6C:CA:E7:19:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdI8esbmgvvFO-Gg6TGPbMrnGT0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/HKYjGRXbhcsbgj-zO-lhhp8iHf4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a42e9c-d92d-4b20-a5eb-ebe2332caf1c/1/XdI8esbmgvvFO-Gg6TGPbMrnGT0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.129.60.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:1f:3b:9e:06:64:59:1e:6b:17:7d:07:bc:5e:df:ee:e9:7f: 36:a7:a9:00:17:b8:4a:aa:77:bc:2b:ef:ea:2b:5a:7b:a6:ce: 48:0c:87:38:85:39:eb:33:e1:74:55:4b:16:5b:84:15:7d:fa: cc:93:4b:32:f6:8c:b2:26:18:c1:21:ea:e8:8e:15:ef:1f:b3: 6e:16:22:c7:90:57:f6:ff:02:22:df:d4:dd:98:89:a2:57:88: 35:0a:19:79:7a:ea:00:2e:8d:83:4d:34:ce:cf:a9:b3:6e:88: e0:be:87:d0:9b:4e:37:f4:92:e2:86:fa:77:ab:60:7c:4b:75: 66:c4:2d:b8:10:ad:59:f2:4a:40:77:9c:49:ed:90:e7:98:7a: 88:8d:61:4d:fb:c3:d3:33:e6:38:4a:e7:f9:44:ac:0e:ec:d0: bf:16:46:44:4e:fa:c5:e9:24:c0:1c:02:be:21:36:da:f5:53: 07:be:9c:b9:cf:2e:a8:7e:3d:c0:95:4b:1a:a2:af:59:a8:59: 2f:0a:7b:3c:b5:18:ee:f8:d0:5a:77:6d:d4:ac:88:5a:fb:8f: a5:fc:bf:77:ee:ff:d1:ca:01:89:37:9b:59:b5:70:b8:8a:95: cf:2f:91:95:18:13:35:21:73:ad:34:b8:ae:b1:cc:ee:7b:01: 85:8d:01:ee -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NSbDA0sY+oXmX9EW8EUMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZDIzYzdhYzZlNjgyZmJjNTNiZTFhMGU5MzE4ZjZjY2Fl NzE5M2QwHhcNMjYwMTAxMDYxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2E2MjMxOTE1ZGI4NWNiMWI4MjNmYjMzYmU5NjE4NjlmMjIxZGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBmdU9yeLihyPk7d99MkDS2W01kw ibDntcAOr/zT8RDDinaGqjjaero8z8eSx+tuY6R8dTPF0AjgV4+pXqyQ9N3q10l7 ERW2P2sbhiGwmbjoS41JYZ8ZmeXkqR506UebyO/Q3xs9I5uXjVATJzT6Ja4edR9s VZfg/KN5Jejk3WziKQ33AzvLEBHVouCnVFLYOg+c/MCUFlbCkcPQB6CDBkwjmADZ rWNKxgfLOejdWaaJuDETFVKALLeJspnakaIumvrR8GjVu+99qAiU14KRU4PEWyDL QjZnqrF6UHxNFOnCM9o5Fwg1oNAClogPLC6FRW27KCKe0czlNxsvkVd3AwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBymIxkV24XLG4I/szvpYYafIh3+MB8GA1UdIwQY MBaAFF3SPHrG5oL7xTvhoOkxj2zK5xk9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGRJOGVzYm1ndnZGTy1HZzZUR1BiTXJuR1QwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9hNDJlOWMtZDkyZC00YjIwLWE1ZWIt ZWJlMjMzMmNhZjFjLzEvSEtZakdSWGJoY3NiZ2otek8tbGhocDhpSGY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9hNDJlOWMtZDkyZC00YjIwLWE1ZWItZWJlMjMzMmNhZjFj LzEvWGRJOGVzYm1ndnZGTy1HZzZUR1BiTXJuR1QwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYE8MA0G CSqGSIb3DQEBCwUAA4IBAQCKHzueBmRZHmsXfQe8Xt/u6X82p6kAF7hKqne8K+/q K1p7ps5IDIc4hTnrM+F0VUsWW4QVffrMk0sy9oyyJhjBIerojhXvH7NuFiLHkFf2 /wIi39TdmImiV4g1Chl5euoALo2DTTTOz6mzbojgvofQm0439JLihvp3q2B8S3Vm xC24EK1Z8kpAd5xJ7ZDnmHqIjWFN+8PTM+Y4Suf5RKwO7NC/FkZETvrF6STAHAK+ ITba9VMHvpy5zy6ofj3AlUsaoq9ZqFkvCns8tRju+NBad23UrIha+4+l/L937v/R ygGJN5tZtXC4ipXPL5GVGBM1IXOtNLiusczuewGFjQHu -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:56 2026 by rpki-client