This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/hzK5GuI27gcMdBm-FCyFmdvkS38.roa File: hzK5GuI27gcMdBm-FCyFmdvkS38.roa (raw, json) Hash identifier: JgQoO4K2QdLkTWxuYwj8fBEhlvfwzFZwwkYA9/0bg80= Subject key identifier: 87:32:B9:1A:E2:36:EE:07:0C:74:19:BE:14:2C:85:99:DB:E4:4B:7F Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Certificate serial: 019BB150B215DAFCCE1C2406ABB2AA44C5BB Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/hzK5GuI27gcMdBm-FCyFmdvkS38.roa Signing time: Mon 12 Jan 2026 08:26:54 +0000 ROA not before: Mon 12 Jan 2026 08:26:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 85.115.208.0/23 maxlen: 24 85.115.210.0/23 maxlen: 24 213.145.68.0/23 maxlen: 23 213.145.70.0/23 maxlen: 24 213.145.72.0/21 maxlen: 24 213.145.84.0/23 maxlen: 23 213.145.84.0/24 maxlen: 24 213.145.86.0/23 maxlen: 23 213.145.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.mft rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 11:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b1:50:b2:15:da:fc:ce:1c:24:06:ab:b2:aa:44:c5:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722 Validity Not Before: Jan 12 08:26:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8732b91ae236ee070c7419be142c8599dbe44b7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:94:71:5f:c3:2f:76:fc:34:42:a0:5f:8e:eb: d6:1c:96:0a:94:df:f6:c7:66:ae:fa:59:fa:5f:c5: 9e:98:e9:12:47:34:2f:1b:74:65:0b:50:40:be:92: 38:28:53:22:52:3a:32:cd:69:8b:d7:51:86:14:5a: 59:c8:5d:91:c4:e1:1f:39:fc:c9:14:e9:8c:c4:f6: 92:00:59:de:0d:7c:8e:c9:0e:00:77:3e:26:46:12: 00:ba:b6:a4:86:59:ea:6a:fd:ed:d3:1a:f2:ef:f2: 10:44:66:b3:df:41:48:83:11:89:41:13:1c:70:de: 11:31:64:ba:cc:b6:2c:f3:51:ff:81:c1:e2:af:87: 47:b8:35:26:22:44:4f:8d:55:71:d0:ee:d3:8e:2e: 7a:70:1c:e3:cf:99:9d:e6:a1:67:9f:b2:d7:f2:cc: 24:9a:13:0c:23:79:f2:28:8b:e8:0e:ae:f4:99:24: c7:44:89:4c:74:8b:e4:0c:9f:b3:fc:7c:0f:6b:e6: ed:0b:3d:f2:00:89:0d:80:73:1b:1d:ab:66:34:1a: 87:7e:5c:19:e8:ed:50:16:59:ed:9f:6c:e8:6c:2a: 74:9c:02:d1:33:c4:a1:88:1e:8f:49:a4:94:f0:b9: 67:86:c6:48:3b:b0:11:68:e2:40:af:80:44:63:39: 46:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:32:B9:1A:E2:36:EE:07:0C:74:19:BE:14:2C:85:99:DB:E4:4B:7F X509v3 Authority Key Identifier: keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/hzK5GuI27gcMdBm-FCyFmdvkS38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.115.208.0/22 213.145.68.0-213.145.79.255 213.145.84.0-213.145.89.255 Signature Algorithm: sha256WithRSAEncryption a2:97:f8:98:d9:5c:85:7d:94:1f:8b:7e:35:ee:a8:d8:9e:33: 5d:e4:f4:6d:c5:0a:4c:fe:82:f7:a3:83:b3:32:7c:4b:2b:65: f5:cd:9c:5b:43:a0:a4:d8:07:11:19:c4:cf:3c:8d:ea:9c:64: e2:60:e5:58:1d:6c:2d:a7:41:bc:8e:14:75:4a:20:2e:be:85: 05:39:18:a8:0a:22:03:9d:51:12:78:f4:2b:9a:67:67:6f:fc: 01:5e:2d:38:36:5b:e7:2f:b4:98:2d:b6:fc:d7:5d:64:c0:1b: 56:f4:f3:9a:6f:9f:46:cd:ce:d9:0b:3f:80:12:4a:ea:1d:10: d3:10:48:28:cc:23:e0:d2:aa:16:66:0a:f3:91:91:9b:51:3e: 8d:8e:1a:41:cd:4e:42:63:90:28:9d:e1:e4:86:24:d9:74:12: f2:10:07:3e:85:25:0f:06:e0:65:95:db:24:de:e8:22:fb:36: 49:07:f8:e7:de:48:7a:f4:7b:25:6b:b5:d8:f2:0a:4e:41:ed: 6a:42:0d:50:ec:d1:db:1e:b7:95:ca:98:a7:98:7f:aa:22:32: bb:47:06:93:75:62:41:5b:e1:fc:d6:15:56:c1:14:cc:22:c1: c0:8a:74:e3:4d:5a:c2:31:25:6e:ff:fa:2f:20:c9:4d:6a:77: b2:d2:f3:3b -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZuxULIV2vzOHCQGq7KqRMW7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx ZDA3MjIwHhcNMjYwMTEyMDgyNjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzMyYjkxYWUyMzZlZTA3MGM3NDE5YmUxNDJjODU5OWRiZTQ0YjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7JRxX8Mvdvw0QqBfjuvWHJYKlN/2 x2au+ln6X8WemOkSRzQvG3RlC1BAvpI4KFMiUjoyzWmL11GGFFpZyF2RxOEfOfzJ FOmMxPaSAFneDXyOyQ4Adz4mRhIAurakhlnqav3t0xry7/IQRGaz30FIgxGJQRMc cN4RMWS6zLYs81H/gcHir4dHuDUmIkRPjVVx0O7Tji56cBzjz5md5qFnn7LX8swk mhMMI3nyKIvoDq70mSTHRIlMdIvkDJ+z/HwPa+btCz3yAIkNgHMbHatmNBqHflwZ 6O1QFlntn2zobCp0nALRM8ShiB6PSaSU8LlnhsZIO7ARaOJAr4BEYzlGpwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFIcyuRriNu4HDHQZvhQshZnb5Et/MB8GA1UdIwQY MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt ZDI0MmI2ZjNhOGExLzEvaHpLNUd1STI3Z2NNZEJtLUZDeUZtZHZrUzM4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiAwQCVXPQMAwD BALVkUQDBATVkUAwDAMEAtWRVAMEAdWRWDANBgkqhkiG9w0BAQsFAAOCAQEAopf4 mNlchX2UH4t+Ne6o2J4zXeT0bcUKTP6C96ODszJ8Sytl9c2cW0OgpNgHERnEzzyN 6pxk4mDlWB1sLadBvI4UdUogLr6FBTkYqAoiA51REnj0K5pnZ2/8AV4tODZb5y+0 mC22/NddZMAbVvTzmm+fRs3O2Qs/gBJK6h0Q0xBIKMwj4NKqFmYK85GRm1E+jY4a Qc1OQmOQKJ3h5IYk2XQS8hAHPoUlDwbgZZXbJN7oIvs2SQf4595IevR7JWu12PIK TkHtakINUOzR2x63lcqYp5h/qiIyu0cGk3ViQVvh/NYVVsEUzCLBwIp0401awjEl bv/6LyDJTWp3stLzOw== -----END CERTIFICATE-----Generated at Mon Jan 19 20:15:49 2026 by rpki-client