This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/fb22ab-b546-4071-beb1-be10e8b4a00e/1/HicIDZMbcNLp_sFaOT70NM1dk-A.roa File: HicIDZMbcNLp_sFaOT70NM1dk-A.roa (raw, json) Hash identifier: oFoTMWe4jG5kyZXaz3ugU3TiaWlqRkipFfUCxRN/kLw= Subject key identifier: 1E:27:08:0D:93:1B:70:D2:E9:FE:C1:5A:39:3E:F4:34:CD:5D:93:E0 Certificate issuer: /CN=7238fbfea5768479c86300906e74eb254dcb5c69 Certificate serial: 019B7D5D042AEAEC9DD5D1F37844DD34199F Authority key identifier: 72:38:FB:FE:A5:76:84:79:C8:63:00:90:6E:74:EB:25:4D:CB:5C:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cjj7_qV2hHnIYwCQbnTrJU3LXGk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/fb22ab-b546-4071-beb1-be10e8b4a00e/1/HicIDZMbcNLp_sFaOT70NM1dk-A.roa Signing time: Fri 02 Jan 2026 06:20:06 +0000 ROA not before: Fri 02 Jan 2026 06:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210333 IP address blocks: 185.202.96.0/23 maxlen: 24 185.202.98.0/23 maxlen: 24 213.109.144.0/24 maxlen: 24 2a11:6a40::/40 maxlen: 48 2a11:6a40:100::/40 maxlen: 48 2a11:6a40:ff8::/46 maxlen: 48 2a11:6a40:fff::/48 maxlen: 48 2a11:6a40:2000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/fb22ab-b546-4071-beb1-be10e8b4a00e/1/cjj7_qV2hHnIYwCQbnTrJU3LXGk.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/fb22ab-b546-4071-beb1-be10e8b4a00e/1/cjj7_qV2hHnIYwCQbnTrJU3LXGk.mft rsync://rpki.ripe.net/repository/DEFAULT/cjj7_qV2hHnIYwCQbnTrJU3LXGk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:04:2a:ea:ec:9d:d5:d1:f3:78:44:dd:34:19:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7238fbfea5768479c86300906e74eb254dcb5c69 Validity Not Before: Jan 2 06:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e27080d931b70d2e9fec15a393ef434cd5d93e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:54:07:d2:ad:9b:b4:2f:5e:67:29:a0:4b:d3: 5d:be:6f:9c:83:07:08:e1:0a:89:db:e7:47:07:dc: 87:85:e9:77:6e:d7:3f:c4:6d:58:ef:e3:27:c1:ea: 38:13:ee:aa:d5:2d:02:5c:fd:c5:16:47:2e:84:72: 0b:ee:4f:ba:fc:d5:49:44:1a:1c:bc:99:d7:c8:05: f4:61:50:33:aa:92:cd:79:26:00:3e:e6:f3:2e:09: a7:c8:ef:94:81:14:00:1f:13:2e:17:89:e1:47:d2: 1a:94:14:88:44:05:11:ba:72:49:8c:19:41:82:2d: 49:43:df:a2:ab:c2:e8:cd:2b:a6:3b:c7:93:2e:6d: 99:3a:b7:b6:bb:de:91:dc:17:46:ef:0a:e5:8b:7a: 3b:e6:51:ef:61:45:84:5b:ae:74:48:93:e9:b0:81: 41:e8:f5:1f:f2:da:1b:e0:6f:08:d5:64:48:73:28: 06:07:92:49:5e:4a:3a:cb:6a:37:49:4c:2f:c2:e1: ff:da:2b:b3:f2:7d:bf:94:77:7b:a9:aa:cb:ad:04: 62:54:c0:fc:f5:f1:96:47:f1:3a:db:eb:8a:c5:2b: f2:93:3b:52:62:4d:11:bf:52:5d:97:85:97:26:86: d1:44:b2:d8:6e:b9:80:83:ba:72:97:d1:32:85:ee: 3f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:27:08:0D:93:1B:70:D2:E9:FE:C1:5A:39:3E:F4:34:CD:5D:93:E0 X509v3 Authority Key Identifier: keyid:72:38:FB:FE:A5:76:84:79:C8:63:00:90:6E:74:EB:25:4D:CB:5C:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cjj7_qV2hHnIYwCQbnTrJU3LXGk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/fb22ab-b546-4071-beb1-be10e8b4a00e/1/HicIDZMbcNLp_sFaOT70NM1dk-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/fb22ab-b546-4071-beb1-be10e8b4a00e/1/cjj7_qV2hHnIYwCQbnTrJU3LXGk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.202.96.0/22 213.109.144.0/24 IPv6: 2a11:6a40::/39 2a11:6a40:ff8::/46 2a11:6a40:fff::/48 2a11:6a40:2000::/44 Signature Algorithm: sha256WithRSAEncryption 67:5a:25:79:7f:7d:ef:7a:ff:f4:30:ce:88:ac:77:a6:f2:b8: 64:90:41:88:14:2b:5a:17:ef:bc:0f:c5:6f:32:4f:8b:b6:21: 3e:c4:e0:80:e0:75:1c:f7:93:d3:11:23:8c:79:a0:32:02:ae: 32:35:c1:a6:bc:f9:4a:db:f1:07:b0:40:10:6c:83:a1:e3:00: 73:ad:ad:c2:74:1f:fb:d5:b2:3c:8b:c8:ea:3e:7d:18:a7:8d: a9:b7:f1:21:9f:8d:f9:aa:1e:af:cc:50:30:fa:f0:3b:2e:a7: 84:63:3b:bb:20:71:85:07:28:08:04:0e:28:e9:9a:6c:e8:7d: 70:2d:3c:9a:5d:d2:f9:b5:3d:70:46:b7:d9:f9:46:a0:4d:8d: cf:b0:31:d1:14:f9:03:bd:04:88:3f:76:7e:1d:de:aa:1f:b5: 85:e5:6b:a2:39:bc:54:1c:49:cc:e8:b6:87:40:a8:9d:8e:b2: f3:7c:39:a4:87:f1:35:d9:bf:5f:5e:d9:09:06:a6:9a:24:90: 5a:f7:e0:0a:ab:86:bb:5c:bb:d0:60:7b:85:dc:61:27:0a:f8: 66:d1:7c:cc:54:96:ff:69:1b:45:76:45:54:43:4f:e4:35:69: 7e:39:e2:f0:78:33:0b:83:76:3f:7e:be:40:1f:a5:14:59:e6: ea:5e:39:8c -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZt9XQQq6uyd1dHzeETdNBmfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMzhmYmZlYTU3Njg0NzljODYzMDA5MDZlNzRlYjI1NGRj YjVjNjkwHhcNMjYwMTAyMDYyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTI3MDgwZDkzMWI3MGQyZTlmZWMxNWEzOTNlZjQzNGNkNWQ5M2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FQH0q2btC9eZymgS9Ndvm+cgwcI 4QqJ2+dHB9yHhel3btc/xG1Y7+Mnweo4E+6q1S0CXP3FFkcuhHIL7k+6/NVJRBoc vJnXyAX0YVAzqpLNeSYAPubzLgmnyO+UgRQAHxMuF4nhR9IalBSIRAURunJJjBlB gi1JQ9+iq8LozSumO8eTLm2ZOre2u96R3BdG7wrli3o75lHvYUWEW650SJPpsIFB 6PUf8tob4G8I1WRIcygGB5JJXko6y2o3SUwvwuH/2iuz8n2/lHd7qarLrQRiVMD8 9fGWR/E62+uKxSvykztSYk0Rv1Jdl4WXJobRRLLYbrmAg7pyl9Eyhe4/jwIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFB4nCA2TG3DS6f7BWjk+9DTNXZPgMB8GA1UdIwQY MBaAFHI4+/6ldoR5yGMAkG506yVNy1xpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2pqN19xVjJoSG5JWXdDUWJuVHJKVTNMWEdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9mYjIyYWItYjU0Ni00MDcxLWJlYjEt YmUxMGU4YjRhMDBlLzEvSGljSURaTWJjTkxwX3NGYU9UNzBOTTFkay1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9mYjIyYWItYjU0Ni00MDcxLWJlYjEtYmUxMGU4YjRhMDBl LzEvY2pqN19xVjJoSG5JWXdDUWJuVHJKVTNMWEdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzASBAIAATAMAwQCucpgAwQA 1W2QMCkEAgACMCMDBgEqEWpAAAMHAioRakAP+AMHACoRakAP/wMHBCoRakAgADAN BgkqhkiG9w0BAQsFAAOCAQEAZ1oleX9973r/9DDOiKx3pvK4ZJBBiBQrWhfvvA/F bzJPi7YhPsTggOB1HPeT0xEjjHmgMgKuMjXBprz5StvxB7BAEGyDoeMAc62twnQf +9WyPIvI6j59GKeNqbfxIZ+N+aoer8xQMPrwOy6nhGM7uyBxhQcoCAQOKOmabOh9 cC08ml3S+bU9cEa32flGoE2Nz7Ax0RT5A70EiD92fh3eqh+1heVrojm8VBxJzOi2 h0ConY6y83w5pIfxNdm/X17ZCQammiSQWvfgCquGu1y70GB7hdxhJwr4ZtF8zFSW /2kbRXZFVENP5DVpfjni8HgzC4N2P36+QB+lFFnm6l45jA== -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:59 2026 by rpki-client