This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/HtxMXqqhzKqnM-81Q366LSa5VRM.roa File: HtxMXqqhzKqnM-81Q366LSa5VRM.roa (raw, json) Hash identifier: lOeWJNKuBfP6Er8Y1VwMR1oQUbvjX1dy4GlVvc3GRBU= Subject key identifier: 1E:DC:4C:5E:AA:A1:CC:AA:A7:33:EF:35:43:7E:BA:2D:26:B9:55:13 Certificate issuer: /CN=ac5eadc0032850236fee756eb58fbf05e1316b5e Certificate serial: 019B7DCAD8B29F34D9E65D3339FA1A25747B Authority key identifier: AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/HtxMXqqhzKqnM-81Q366LSa5VRM.roa Signing time: Fri 02 Jan 2026 08:20:04 +0000 ROA not before: Fri 02 Jan 2026 08:20:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199938 IP address blocks: 185.41.104.0/22 maxlen: 24 194.39.187.0/24 maxlen: 24 194.39.215.0/24 maxlen: 24 194.40.244.0/24 maxlen: 24 194.41.1.0/24 maxlen: 24 2a01:55e0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/rF6twAMoUCNv7nVutY-_BeExa14.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/rF6twAMoUCNv7nVutY-_BeExa14.mft rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:d8:b2:9f:34:d9:e6:5d:33:39:fa:1a:25:74:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac5eadc0032850236fee756eb58fbf05e1316b5e Validity Not Before: Jan 2 08:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1edc4c5eaaa1ccaaa733ef35437eba2d26b95513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:08:f9:1a:a5:d9:f2:e5:1a:bc:0a:15:69: 77:a2:3b:b6:c7:2d:8e:94:66:d3:e6:5d:02:2a:77: 15:c6:cd:05:07:eb:2d:e5:c3:92:32:e6:df:8b:29: a9:80:cd:ec:15:04:f8:ae:ae:69:1a:8f:0a:55:7d: 36:ca:d2:c0:d3:02:24:c6:e8:19:6d:98:1b:26:8c: 07:38:b7:c9:f1:d9:d6:04:e6:99:e1:e4:51:dc:a1: e7:8b:a7:56:9d:81:1a:30:c7:89:42:a8:da:1f:8c: db:c3:b5:a5:3f:85:bd:78:23:b2:24:98:b3:19:9d: 5a:56:36:e1:f4:3e:c8:a0:20:09:78:c5:83:f4:e6: 93:06:22:b2:3c:9b:b2:7e:59:28:41:37:cb:b2:be: 03:bb:dd:42:02:2c:19:28:ad:07:85:e6:24:5d:b6: 31:70:6c:a7:0d:85:3a:1f:a0:8a:61:2f:f7:2f:c3: f8:8f:dc:ea:13:33:0e:2b:dd:ec:c0:aa:8e:a3:dd: ec:4e:6d:8c:bf:e7:3d:df:2a:93:83:83:f0:d4:87: 0c:6d:bd:52:f2:fe:c9:17:eb:a5:9c:1e:67:d6:c2: f6:d7:a6:eb:0f:67:a4:c8:5c:2b:7c:eb:67:3f:df: b2:4e:25:dc:aa:9b:de:18:8d:10:71:02:a8:2b:ac: ca:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DC:4C:5E:AA:A1:CC:AA:A7:33:EF:35:43:7E:BA:2D:26:B9:55:13 X509v3 Authority Key Identifier: keyid:AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/HtxMXqqhzKqnM-81Q366LSa5VRM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/rF6twAMoUCNv7nVutY-_BeExa14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.41.104.0/22 194.39.187.0/24 194.39.215.0/24 194.40.244.0/24 194.41.1.0/24 IPv6: 2a01:55e0::/29 Signature Algorithm: sha256WithRSAEncryption 2f:bd:3f:36:a9:ab:78:63:3c:8f:28:3f:a8:8d:3d:b0:84:d6: 39:9a:b9:55:33:fe:9d:88:08:29:18:0f:65:3e:de:a4:e7:bf: 3d:61:8b:0b:44:06:5d:a7:7d:99:25:16:d5:07:aa:15:7a:2f: f2:f5:84:6a:70:36:d1:c8:b9:8c:63:02:a3:c5:0b:05:8a:e3: f6:45:1e:cb:8a:cb:fc:33:95:bf:94:3b:2c:ba:ed:05:7a:61: 8d:ac:ea:dc:6a:6f:61:e9:db:0b:18:e6:82:a0:ca:ad:46:8a: 55:22:8a:c4:96:84:c2:42:98:50:63:3d:48:3d:5f:d4:c7:bb: a6:d5:b6:4f:50:1c:4c:ae:36:43:77:5f:5b:ba:5b:c7:e7:16: 68:40:0e:9b:a8:78:11:22:50:64:bb:1e:c3:b9:d6:ae:00:11: 54:ac:1d:ea:d7:fc:48:12:4b:44:8f:ee:8f:9f:39:00:d6:ab: d4:c2:57:43:81:ef:89:24:ca:80:8e:03:a9:7e:07:ce:e8:ca: 02:82:70:92:b3:e2:47:58:40:97:8f:26:20:e4:ff:38:99:fd: 56:c2:50:0b:d9:2e:bc:a4:9c:4d:fb:61:b6:e0:7e:05:11:5a: 0a:8a:70:68:6c:90:b8:9b:c8:3e:13:9f:d0:db:70:2d:1c:0f: 54:f5:2e:c2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt9ytiynzTZ5l0zOfoaJXR7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNWVhZGMwMDMyODUwMjM2ZmVlNzU2ZWI1OGZiZjA1ZTEz MTZiNWUwHhcNMjYwMTAyMDgyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWRjNGM1ZWFhYTFjY2FhYTczM2VmMzU0MzdlYmEyZDI2Yjk1NTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDQI+Rql2fLlGrwKFWl3oju2xy2O lGbT5l0CKncVxs0FB+st5cOSMubfiympgM3sFQT4rq5pGo8KVX02ytLA0wIkxugZ bZgbJowHOLfJ8dnWBOaZ4eRR3KHni6dWnYEaMMeJQqjaH4zbw7WlP4W9eCOyJJiz GZ1aVjbh9D7IoCAJeMWD9OaTBiKyPJuyflkoQTfLsr4Du91CAiwZKK0HheYkXbYx cGynDYU6H6CKYS/3L8P4j9zqEzMOK93swKqOo93sTm2Mv+c93yqTg4Pw1IcMbb1S 8v7JF+ulnB5n1sL216brD2ekyFwrfOtnP9+yTiXcqpveGI0QcQKoK6zKsQIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFB7cTF6qocyqpzPvNUN+ui0muVUTMB8GA1UdIwQY MBaAFKxercADKFAjb+51brWPvwXhMWteMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckY2dHdBTW9VQ052N25WdXRZLV9CZUV4YTE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81Mjk3NWYtZmViMi00MzNiLWIyZGMt YzIzOGNlNDgxN2RiLzEvSHR4TVhxcWh6S3FuTS04MVEzNjZMU2E1VlJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi81Mjk3NWYtZmViMi00MzNiLWIyZGMtYzIzOGNlNDgxN2Ri LzEvckY2dHdBTW9VQ052N25WdXRZLV9CZUV4YTE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCuSloAwQA wie7AwQAwifXAwQAwij0AwQAwikBMA0EAgACMAcDBQMqAVXgMA0GCSqGSIb3DQEB CwUAA4IBAQAvvT82qat4YzyPKD+ojT2whNY5mrlVM/6diAgpGA9lPt6k5789YYsL RAZdp32ZJRbVB6oVei/y9YRqcDbRyLmMYwKjxQsFiuP2RR7Lisv8M5W/lDssuu0F emGNrOrcam9h6dsLGOaCoMqtRopVIorEloTCQphQYz1IPV/Ux7um1bZPUBxMrjZD d19bulvH5xZoQA6bqHgRIlBkux7DudauABFUrB3q1/xIEktEj+6PnzkA1qvUwldD ge+JJMqAjgOpfgfO6MoCgnCSs+JHWECXjyYg5P84mf1WwlAL2S68pJxN+2G24H4F EVoKinBobJC4m8g+E5/Q23AtHA9U9S7C -----END CERTIFICATE-----Generated at Mon Feb 9 22:31:46 2026 by rpki-client