This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/HKK9g6Hqt_cBY1AbSvefDUFZRlo.roa File: HKK9g6Hqt_cBY1AbSvefDUFZRlo.roa (raw, json) Hash identifier: MqB9AcT2/OThR4+/4lhCs0wiEEPqRX8xFMsmjXA2ijw= Subject key identifier: 1C:A2:BD:83:A1:EA:B7:F7:01:63:50:1B:4A:F7:9F:0D:41:59:46:5A Certificate issuer: /CN=4ccc60495b2a34d89211cc1c79524eab61ba1656 Certificate serial: 019B78A270D3528311A1CEBDE238E4427976 Authority key identifier: 4C:CC:60:49:5B:2A:34:D8:92:11:CC:1C:79:52:4E:AB:61:BA:16:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMxgSVsqNNiSEcwceVJOq2G6FlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/HKK9g6Hqt_cBY1AbSvefDUFZRlo.roa Signing time: Thu 01 Jan 2026 08:17:50 +0000 ROA not before: Thu 01 Jan 2026 08:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48921 IP address blocks: 83.223.48.0/22 maxlen: 22 195.20.32.0/24 maxlen: 24 2a04:16c0::/29 maxlen: 29 2a04:16c0:201::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/TMxgSVsqNNiSEcwceVJOq2G6FlY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/TMxgSVsqNNiSEcwceVJOq2G6FlY.mft rsync://rpki.ripe.net/repository/DEFAULT/TMxgSVsqNNiSEcwceVJOq2G6FlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:70:d3:52:83:11:a1:ce:bd:e2:38:e4:42:79:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ccc60495b2a34d89211cc1c79524eab61ba1656 Validity Not Before: Jan 1 08:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ca2bd83a1eab7f70163501b4af79f0d4159465a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:23:9a:be:2c:f6:00:81:55:1d:81:28:e9: 44:7d:27:a6:08:d5:f0:8f:43:d7:ba:37:7d:24:e8: 11:e1:2d:03:86:73:ff:2d:20:e0:07:00:40:af:60: b6:a2:86:61:50:ff:1f:0f:b3:78:43:30:e4:27:55: 5b:75:a1:da:39:48:3c:ff:36:af:25:ba:c0:27:87: 32:f2:e9:3b:c5:4e:9b:eb:54:01:dd:ce:f6:84:0e: f4:7d:df:63:5e:1e:61:c9:ba:8f:f6:31:4a:52:0a: be:9c:15:2b:e8:0d:ba:57:f0:e6:15:ce:1d:ca:f5: 99:06:f6:49:6c:39:2b:2a:a2:77:60:77:5a:4e:7d: 31:83:92:a2:da:d1:b9:f7:ef:b8:e4:9c:5d:cf:ed: 44:3c:ce:42:29:9c:9e:85:5d:38:74:06:3f:27:63: a6:d1:10:61:74:e3:7c:62:b5:5c:07:7b:5a:6d:ab: e4:b6:f3:75:ce:97:88:07:07:7f:11:7e:c1:54:3f: 77:7a:dc:26:30:15:d3:cb:16:e4:ae:ec:cb:77:14: ec:85:f8:e5:86:28:9a:dd:79:89:de:09:48:b2:80: db:8c:c8:d7:72:f6:ee:7d:4b:83:1a:ed:10:ef:7c: 54:0d:37:f2:9d:fd:89:34:b1:24:c8:96:b8:66:3d: 2b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A2:BD:83:A1:EA:B7:F7:01:63:50:1B:4A:F7:9F:0D:41:59:46:5A X509v3 Authority Key Identifier: keyid:4C:CC:60:49:5B:2A:34:D8:92:11:CC:1C:79:52:4E:AB:61:BA:16:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMxgSVsqNNiSEcwceVJOq2G6FlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/HKK9g6Hqt_cBY1AbSvefDUFZRlo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/151c6c-617c-4643-9f6e-69809d8b9c20/1/TMxgSVsqNNiSEcwceVJOq2G6FlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.223.48.0/22 195.20.32.0/24 IPv6: 2a04:16c0::/29 Signature Algorithm: sha256WithRSAEncryption 8f:99:ae:f3:82:b2:b8:57:ce:fb:84:62:6e:73:da:9d:3d:52: 6a:24:cc:f8:7b:22:df:d3:a0:5d:7d:c2:9c:7b:ea:0a:93:a2: 93:65:3a:33:f9:b1:7c:d1:90:2f:dd:ac:7d:b6:b3:8b:1e:d8: a7:47:4d:bd:8e:55:1d:07:ed:3a:0f:0f:ce:47:5c:90:b7:0f: 22:e5:4d:cd:1c:3f:4b:ec:1b:69:da:f4:54:a4:64:61:e7:5f: d9:f8:77:bb:ef:17:a8:f7:27:bc:53:52:12:4a:b4:63:34:2f: 95:0a:85:3b:a0:20:3b:33:15:9f:27:4f:78:a7:10:16:34:19: 3c:8c:71:bc:0b:68:61:fe:7f:78:81:88:ee:fe:95:65:da:53: 7a:71:64:eb:bb:44:49:1b:22:f2:59:65:0a:01:52:c3:8a:8f: fc:0f:69:ec:f8:67:71:c4:06:f4:a8:70:3d:a4:09:0d:a1:01: 0f:fd:2a:c5:fd:11:a1:a2:9f:0f:0c:1b:b7:04:56:8e:89:bc: 63:23:d4:8e:27:2a:9f:2b:ef:38:a0:a0:8b:0b:43:0a:15:47: 86:66:ef:c9:17:26:4c:46:da:b0:ae:fb:b4:0d:94:ac:98:90: 9c:db:61:f5:d1:a3:4d:ca:ba:c7:29:ec:eb:86:e2:ce:1d:3a: a0:fe:bf:f0 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4onDTUoMRoc694jjkQnl2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjY2M2MDQ5NWIyYTM0ZDg5MjExY2MxYzc5NTI0ZWFiNjFi YTE2NTYwHhcNMjYwMTAxMDgxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2EyYmQ4M2ExZWFiN2Y3MDE2MzUwMWI0YWY3OWYwZDQxNTk0NjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+cjmr4s9gCBVR2BKOlEfSemCNXw j0PXujd9JOgR4S0DhnP/LSDgBwBAr2C2ooZhUP8fD7N4QzDkJ1VbdaHaOUg8/zav JbrAJ4cy8uk7xU6b61QB3c72hA70fd9jXh5hybqP9jFKUgq+nBUr6A26V/DmFc4d yvWZBvZJbDkrKqJ3YHdaTn0xg5Ki2tG59++45Jxdz+1EPM5CKZyehV04dAY/J2Om 0RBhdON8YrVcB3tabavktvN1zpeIBwd/EX7BVD93etwmMBXTyxbkruzLdxTshfjl hiia3XmJ3glIsoDbjMjXcvbufUuDGu0Q73xUDTfynf2JNLEkyJa4Zj0rswIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFByivYOh6rf3AWNQG0r3nw1BWUZaMB8GA1UdIwQY MBaAFEzMYElbKjTYkhHMHHlSTqthuhZWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE14Z1NWc3FOTmlTRWN3Y2VWSk9xMkc2RmxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xNTFjNmMtNjE3Yy00NjQzLTlmNmUt Njk4MDlkOGI5YzIwLzEvSEtLOWc2SHF0X2NCWTFBYlN2ZWZEVUZaUmxvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8xNTFjNmMtNjE3Yy00NjQzLTlmNmUtNjk4MDlkOGI5YzIw LzEvVE14Z1NWc3FOTmlTRWN3Y2VWSk9xMkc2RmxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCU98wAwQA wxQgMA0EAgACMAcDBQMqBBbAMA0GCSqGSIb3DQEBCwUAA4IBAQCPma7zgrK4V877 hGJuc9qdPVJqJMz4eyLf06BdfcKce+oKk6KTZToz+bF80ZAv3ax9trOLHtinR029 jlUdB+06Dw/OR1yQtw8i5U3NHD9L7Btp2vRUpGRh51/Z+He77xeo9ye8U1ISSrRj NC+VCoU7oCA7MxWfJ094pxAWNBk8jHG8C2hh/n94gYju/pVl2lN6cWTru0RJGyLy WWUKAVLDio/8D2ns+GdxxAb0qHA9pAkNoQEP/SrF/RGhop8PDBu3BFaOibxjI9SO JyqfK+84oKCLC0MKFUeGZu/JFyZMRtqwrvu0DZSsmJCc22H10aNNyrrHKezrhuLO HTqg/r/w -----END CERTIFICATE-----Generated at Tue Jan 27 07:12:50 2026 by rpki-client