This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/HDFZ1nzAPhY5th4yTPNuqiO-Idw.roa File: HDFZ1nzAPhY5th4yTPNuqiO-Idw.roa (raw, json) Hash identifier: BUbqdFYsXkOCO21qdCL7kVwV2KzcTLQ6Ol4gUVkwKWY= Subject key identifier: 1C:31:59:D6:7C:C0:3E:16:39:B6:1E:32:4C:F3:6E:AA:23:BE:21:DC Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc Certificate serial: 019B7FF251A002B70A3B040E9B26B4D248B3 Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/HDFZ1nzAPhY5th4yTPNuqiO-Idw.roa Signing time: Fri 02 Jan 2026 18:22:25 +0000 ROA not before: Fri 02 Jan 2026 18:22:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198936 IP address blocks: 91.105.248.0/24 maxlen: 24 91.105.249.0/24 maxlen: 24 91.105.250.0/24 maxlen: 24 91.105.251.0/24 maxlen: 24 91.105.252.0/24 maxlen: 24 91.105.253.0/24 maxlen: 24 91.105.254.0/24 maxlen: 24 91.105.255.0/24 maxlen: 24 185.159.238.0/23 maxlen: 23 185.159.238.0/24 maxlen: 24 185.159.239.0/24 maxlen: 24 2a01:7bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:51:a0:02:b7:0a:3b:04:0e:9b:26:b4:d2:48:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc Validity Not Before: Jan 2 18:22:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c3159d67cc03e1639b61e324cf36eaa23be21dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2e:c9:2c:9e:41:76:a7:6f:26:50:4d:1b:e4: e0:2e:be:5d:70:db:bb:34:c1:a7:7a:89:4f:69:72: 1f:c4:09:a3:b1:9c:91:8b:9c:07:11:4c:af:34:64: 40:15:bc:59:55:02:18:1b:3e:bf:0b:35:ef:05:04: e8:34:e1:78:3c:0b:fb:52:a1:3d:b8:e4:1d:00:04: 0c:3f:9c:01:d1:57:bb:54:5b:d3:98:df:07:27:f3: 8a:3d:d7:d0:27:57:2d:f2:cc:30:63:89:33:ab:fb: b1:99:f1:74:ba:79:f2:1f:13:ff:99:aa:a9:61:39: 0f:9c:dd:50:c7:c9:29:bc:df:76:bb:6b:e9:91:7f: b2:79:97:fd:fe:58:6e:fb:ca:91:af:47:47:01:79: c4:19:31:ee:62:1f:66:b1:2f:93:32:9d:1d:78:8f: fc:d0:28:7e:69:14:c2:df:de:a4:7d:b6:3d:bb:59: 2f:ea:00:8e:f4:32:22:42:3e:c0:34:f5:fa:0d:6e: ad:d5:c6:7a:25:17:d7:2f:7d:c5:ed:46:f0:92:4f: e3:2c:5e:1c:91:00:6f:58:cf:3b:e8:99:36:44:7c: 23:97:2f:22:36:6f:5f:d0:8b:20:8e:5e:18:ad:ca: 6e:ce:3b:de:41:1f:9f:48:0d:00:7c:84:5b:4e:56: 0d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:31:59:D6:7C:C0:3E:16:39:B6:1E:32:4C:F3:6E:AA:23:BE:21:DC X509v3 Authority Key Identifier: keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/HDFZ1nzAPhY5th4yTPNuqiO-Idw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.105.248.0/21 185.159.238.0/23 IPv6: 2a01:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 59:02:ef:a5:7d:20:68:c3:e4:77:65:b9:b1:15:26:24:aa:dc: 59:9a:ad:20:92:0d:5e:fd:13:b0:fd:73:7b:36:b8:30:6e:1f: b5:11:8a:8c:7e:d9:f3:e3:33:cf:be:ae:97:b4:59:94:22:69: 01:5a:d2:85:18:49:28:88:23:ba:00:ca:c4:a9:24:fc:e7:6e: 95:7e:74:17:95:a0:09:dc:0d:62:e2:c7:eb:e8:d3:5f:c2:73: 21:e7:a4:8f:5a:15:5b:8b:d4:b3:1a:e8:a7:cd:a3:37:75:f2: 3a:e2:17:f8:5f:cd:3f:68:fc:b8:e4:aa:96:65:2b:70:60:00: 95:74:b2:a3:88:c5:c2:b0:e1:01:8c:ee:d8:69:94:ef:dc:e7: 7a:2a:d3:36:a2:f9:71:5f:02:84:2d:1d:90:f1:47:fc:f9:34: 0e:95:86:0e:d9:7b:3d:87:d5:75:32:0e:26:ed:d5:5c:fe:10: c2:71:6e:01:7a:45:32:90:fd:df:99:45:1e:3e:4b:82:79:8a: 65:58:2b:e0:d3:9e:a8:f9:1f:95:95:6d:19:17:ac:af:bf:88: 1a:df:ac:ed:14:b9:b3:9a:24:ec:fe:5c:f1:29:92:ba:0e:e4: aa:57:1a:7e:3c:f3:85:20:b2:72:30:99:c3:5e:cd:0a:cc:b7: 8a:9d:2a:51 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt/8lGgArcKOwQOmya00kizMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZmRmZTgyNDlmOTQzYWFiYWQxODgxZmNhNTgzNjYxM2E2 YTY3YmMwHhcNMjYwMTAyMTgyMjI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzMxNTlkNjdjYzAzZTE2MzliNjFlMzI0Y2YzNmVhYTIzYmUyMWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArS7JLJ5BdqdvJlBNG+TgLr5dcNu7 NMGneolPaXIfxAmjsZyRi5wHEUyvNGRAFbxZVQIYGz6/CzXvBQToNOF4PAv7UqE9 uOQdAAQMP5wB0Ve7VFvTmN8HJ/OKPdfQJ1ct8swwY4kzq/uxmfF0unnyHxP/maqp YTkPnN1Qx8kpvN92u2vpkX+yeZf9/lhu+8qRr0dHAXnEGTHuYh9msS+TMp0deI/8 0Ch+aRTC396kfbY9u1kv6gCO9DIiQj7ANPX6DW6t1cZ6JRfXL33F7Ubwkk/jLF4c kQBvWM876Jk2RHwjly8iNm9f0Isgjl4YrcpuzjveQR+fSA0AfIRbTlYN1wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFBwxWdZ8wD4WObYeMkzzbqojviHcMB8GA1UdIwQY MBaAFGn9/oJJ+UOqutGIH8pYNmE6ame8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTIt NzFkOGI4ODUwODUzLzEvSERGWjFuekFQaFk1dGg0eVRQTnVxaU8tSWR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTItNzFkOGI4ODUwODUz LzEvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDW2n4AwQB uZ/uMA0EAgACMAcDBQAqAXvAMA0GCSqGSIb3DQEBCwUAA4IBAQBZAu+lfSBow+R3 ZbmxFSYkqtxZmq0gkg1e/ROw/XN7Nrgwbh+1EYqMftnz4zPPvq6XtFmUImkBWtKF GEkoiCO6AMrEqST8526VfnQXlaAJ3A1i4sfr6NNfwnMh56SPWhVbi9SzGuinzaM3 dfI64hf4X80/aPy45KqWZStwYACVdLKjiMXCsOEBjO7YaZTv3Od6KtM2ovlxXwKE LR2Q8Uf8+TQOlYYO2Xs9h9V1Mg4m7dVc/hDCcW4BekUykP3fmUUePkuCeYplWCvg 056o+R+VlW0ZF6yvv4ga36ztFLmzmiTs/lzxKZK6DuSqVxp+PPOFILJyMJnDXs0K zLeKnSpR -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:37 2026 by rpki-client