This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/HBZIofhnEyGMafPIiZxVB_Ns56M.roa File: HBZIofhnEyGMafPIiZxVB_Ns56M.roa (raw, json) Hash identifier: 49lIUj/HnnMzqTTFtrpK2NJtv/LRA6INi2P9F0Ad34E= Subject key identifier: 1C:16:48:A1:F8:67:13:21:8C:69:F3:C8:89:9C:55:07:F3:6C:E7:A3 Certificate issuer: /CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17 Certificate serial: 019B7EA736B82DF9262F182D1EDAD9E1DDA3 Authority key identifier: 2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/HBZIofhnEyGMafPIiZxVB_Ns56M.roa Signing time: Fri 02 Jan 2026 12:20:46 +0000 ROA not before: Fri 02 Jan 2026 12:20:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35262 IP address blocks: 193.27.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.mft rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:36:b8:2d:f9:26:2f:18:2d:1e:da:d9:e1:dd:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17 Validity Not Before: Jan 2 12:20:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c1648a1f86713218c69f3c8899c5507f36ce7a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:34:16:c8:a8:f1:2c:12:de:b1:28:9e:0e:34: 7c:01:c5:76:d0:e9:4b:ed:86:58:ce:e4:b0:9d:09: 9b:f2:86:03:94:f5:c2:77:e5:9a:4a:00:30:35:1d: 27:44:f4:91:85:6b:14:49:54:ba:52:a8:ad:01:19: 0a:c4:f9:38:c1:a7:76:14:a7:62:cf:67:a2:41:f2: 09:b2:7e:d3:98:a8:83:e8:20:9a:a4:31:ea:4a:80: 8b:24:17:ad:16:e0:44:ff:79:55:27:ca:d8:ac:13: b6:db:64:3b:bc:b2:a5:f6:c5:a5:f8:89:fa:bf:a3: ae:fa:60:a3:85:f7:28:b5:33:18:2e:5f:57:80:e4: 9c:29:bb:b1:71:85:a6:30:f0:f6:c4:bc:78:5e:c1: e2:9b:5d:69:10:b5:23:be:0f:de:85:14:73:b6:6a: 24:97:48:19:04:15:61:0c:4e:19:7e:48:05:39:b6: 00:00:1e:f7:3a:d3:65:19:db:20:9b:3d:af:f0:c8: a0:01:4c:b3:bb:d2:8e:e2:6c:25:f0:24:2b:68:0e: a2:e0:53:19:2d:4e:0a:9a:7a:67:de:50:0e:81:ee: 10:c4:52:7d:d7:89:3e:96:e7:01:d9:fe:71:6c:ca: 20:4d:4c:a4:31:2f:ab:53:e4:95:3d:51:1b:e2:d6: 48:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:16:48:A1:F8:67:13:21:8C:69:F3:C8:89:9C:55:07:F3:6C:E7:A3 X509v3 Authority Key Identifier: keyid:2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/HBZIofhnEyGMafPIiZxVB_Ns56M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.27.1.0/24 Signature Algorithm: sha256WithRSAEncryption 82:1e:c7:7f:b9:83:60:ed:5a:88:4d:a5:37:ef:e2:98:7b:f8: 4f:e4:b4:68:55:5e:18:d7:a2:d5:74:3c:54:9f:a6:91:34:74: af:03:fc:ba:85:66:5a:ca:cb:eb:1b:94:39:5a:9e:1e:b9:25: c7:50:e8:c8:9f:d4:be:83:39:dc:78:e5:ee:c7:d4:02:10:7f: c3:71:8a:5e:1a:bf:4d:47:76:9c:d0:e2:ba:df:3b:95:e9:ad: d9:6b:5d:8b:25:f3:c1:b4:82:8a:1f:06:42:9c:d4:9f:59:62: e6:53:d7:dd:05:7a:5b:94:d2:c4:ee:c8:81:af:48:64:49:34: 8e:1d:68:d1:5a:e6:f3:2e:2c:b2:95:de:9f:39:f6:ce:8a:c7: 3c:7b:b4:64:4e:9c:3d:8e:30:c4:c6:29:22:b4:01:4a:31:69: 53:ac:13:27:fe:e2:4a:3f:53:34:e5:28:ed:d0:58:f1:ce:c6: 6c:a9:57:06:5e:f4:25:56:22:58:f6:de:f7:6c:cc:7d:f6:fc: 17:22:9c:1f:f4:37:26:03:c2:2d:7c:36:13:88:d9:a1:91:44: bd:27:ef:aa:4e:e8:ee:1f:86:b5:7f:f4:49:72:59:1e:e0:a0: 07:fb:28:be:92:6a:7d:9f:0a:18:05:b0:e6:42:90:3e:fc:d3: e5:87:37:04 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pza4LfkmLxgtHtrZ4d2jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkN2YzZGRjYTBjYjM4ZWM3YjA4YzY5MDI5ZTIwZjUyZGM0 MDhmMTcwHhcNMjYwMTAyMTIyMDQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzE2NDhhMWY4NjcxMzIxOGM2OWYzYzg4OTljNTUwN2YzNmNlN2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDQWyKjxLBLesSieDjR8AcV20OlL 7YZYzuSwnQmb8oYDlPXCd+WaSgAwNR0nRPSRhWsUSVS6UqitARkKxPk4wad2FKdi z2eiQfIJsn7TmKiD6CCapDHqSoCLJBetFuBE/3lVJ8rYrBO222Q7vLKl9sWl+In6 v6Ou+mCjhfcotTMYLl9XgOScKbuxcYWmMPD2xLx4XsHim11pELUjvg/ehRRztmok l0gZBBVhDE4ZfkgFObYAAB73OtNlGdsgmz2v8MigAUyzu9KO4mwl8CQraA6i4FMZ LU4Kmnpn3lAOge4QxFJ914k+lucB2f5xbMogTUykMS+rU+SVPVEb4tZIqwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBwWSKH4ZxMhjGnzyImcVQfzbOejMB8GA1UdIwQY MBaAFC1/PdygyzjsewjGkCniD1LcQI8XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFg4OTNLRExPT3g3Q01hUUtlSVBVdHhBanhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9jNzVhZjQtOWQyNi00MjkwLWIwMjct YTU2YzUyYmUxOThjLzEvSEJaSW9maG5FeUdNYWZQSWlaeFZCX05zNTZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9jNzVhZjQtOWQyNi00MjkwLWIwMjctYTU2YzUyYmUxOThj LzEvTFg4OTNLRExPT3g3Q01hUUtlSVBVdHhBanhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRsBMA0G CSqGSIb3DQEBCwUAA4IBAQCCHsd/uYNg7VqITaU37+KYe/hP5LRoVV4Y16LVdDxU n6aRNHSvA/y6hWZaysvrG5Q5Wp4euSXHUOjIn9S+gznceOXux9QCEH/DcYpeGr9N R3ac0OK63zuV6a3Za12LJfPBtIKKHwZCnNSfWWLmU9fdBXpblNLE7siBr0hkSTSO HWjRWubzLiyyld6fOfbOisc8e7RkTpw9jjDExikitAFKMWlTrBMn/uJKP1M05Sjt 0FjxzsZsqVcGXvQlViJY9t73bMx99vwXIpwf9DcmA8ItfDYTiNmhkUS9J++qTuju H4a1f/RJclke4KAH+yi+kmp9nwoYBbDmQpA+/NPlhzcE -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:38 2026 by rpki-client