This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/HNnkcaU2Hh5IuZWTx2ax25PCVFo.roa File: HNnkcaU2Hh5IuZWTx2ax25PCVFo.roa (raw, json) Hash identifier: QEMvN1hGawGHGM/XJD+BepVtmnpndyGrmsYjk5D0vXk= Subject key identifier: 1C:D9:E4:71:A5:36:1E:1E:48:B9:95:93:C7:66:B1:DB:93:C2:54:5A Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C115E73C273039356DAEA72431E74C9 Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/HNnkcaU2Hh5IuZWTx2ax25PCVFo.roa Signing time: Fri 02 Jan 2026 00:17:51 +0000 ROA not before: Fri 02 Jan 2026 00:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211699 IP address blocks: 62.82.151.0/24 maxlen: 24 82.159.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:5e:73:c2:73:03:93:56:da:ea:72:43:1e:74:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1cd9e471a5361e1e48b99593c766b1db93c2545a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:41:59:ef:7a:56:fe:26:69:03:14:fa:74:b5: 2a:e7:32:3c:b0:f1:90:6b:22:15:07:7c:69:fa:42: b9:06:ec:1d:2d:48:fc:96:26:bf:d6:ba:cf:68:e4: cc:a9:a4:d5:20:d8:82:3f:f8:61:c3:89:58:d1:f1: 95:4d:55:d0:b6:ed:88:38:3f:28:fa:b0:eb:32:56: 1e:ca:64:1d:4c:e9:cd:26:f9:46:f6:d9:d9:35:1c: c2:93:81:80:47:95:e1:5d:20:8e:c6:01:f1:45:9a: 6a:8e:88:e2:72:83:85:03:e8:b8:86:79:0a:c7:22: b7:dd:80:2b:dd:36:1c:62:4c:dc:c4:f6:d5:e3:7f: 39:4c:b1:94:ea:42:a6:3a:24:f7:b9:40:4f:08:e2: 6d:5c:27:2c:66:c1:9e:c4:be:f1:4f:1a:38:1d:37: 73:69:5c:35:f2:12:32:17:63:4c:35:a7:44:3b:1c: 88:7c:cf:bb:18:e3:dd:45:94:41:17:2e:7f:ca:d5: 5a:e9:07:9a:c4:74:b4:f5:05:3f:72:cd:9c:10:04: 34:42:26:ba:51:e8:df:3e:95:23:a4:12:31:75:08: cf:c5:dd:c6:67:31:c2:66:63:9f:75:5d:9c:6b:37: 0c:33:80:46:37:55:b9:8c:75:9e:f7:dd:d2:68:2b: fb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D9:E4:71:A5:36:1E:1E:48:B9:95:93:C7:66:B1:DB:93:C2:54:5A X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/HNnkcaU2Hh5IuZWTx2ax25PCVFo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.82.151.0/24 82.159.144.0/24 Signature Algorithm: sha256WithRSAEncryption 11:a9:40:bc:64:ca:8f:b5:c2:9e:af:1f:42:14:80:0e:71:f0: a4:bd:35:fd:40:30:d2:72:c4:fe:c8:1e:90:9d:41:76:0f:82: b6:26:7d:8d:2a:7d:d1:31:95:44:48:fa:49:6d:1f:a4:89:6a: 82:46:02:23:35:b9:27:12:bd:2f:b0:f4:5b:ce:8f:7c:a5:c4: ef:dd:40:01:f8:da:c3:99:cc:05:23:41:d5:0e:7b:f4:d2:5d: 65:80:7e:6c:4f:50:69:de:c0:30:af:44:e3:16:ab:72:c9:ca: 88:57:ad:7a:64:22:bd:02:53:32:77:a6:ab:2f:95:c8:f2:f4: 06:11:58:5c:40:b7:a9:fe:81:08:53:7d:36:f3:27:e4:55:99: 1a:a8:53:01:9a:13:13:b7:d1:38:22:02:f8:17:fc:37:0a:6a: cc:20:27:d7:1a:d8:d1:28:5e:d0:53:5a:78:38:3c:7d:74:04: 40:40:d9:73:71:f9:03:8d:67:bb:d4:8b:5e:75:d7:0e:0b:c4: 1d:43:ee:d2:35:0d:cd:94:5d:63:f7:8b:f3:9b:75:1e:4c:4b: 92:2c:a7:b5:fd:8f:69:69:0a:67:57:b2:83:eb:8a:73:10:99: fc:6f:f8:5c:00:48:33:dc:e4:b4:59:f9:2c:c5:58:4f:8f:8d: 4d:ad:2d:44 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EV5zwnMDk1ba6nJDHnTJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxY2Q5ZTQ3MWE1MzYxZTFlNDhiOTk1OTNjNzY2YjFkYjkzYzI1NDVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UFZ73pW/iZpAxT6dLUq5zI8sPGQ ayIVB3xp+kK5BuwdLUj8lia/1rrPaOTMqaTVINiCP/hhw4lY0fGVTVXQtu2IOD8o +rDrMlYeymQdTOnNJvlG9tnZNRzCk4GAR5XhXSCOxgHxRZpqjojicoOFA+i4hnkK xyK33YAr3TYcYkzcxPbV4385TLGU6kKmOiT3uUBPCOJtXCcsZsGexL7xTxo4HTdz aVw18hIyF2NMNadEOxyIfM+7GOPdRZRBFy5/ytVa6QeaxHS09QU/cs2cEAQ0Qia6 UejfPpUjpBIxdQjPxd3GZzHCZmOfdV2cazcMM4BGN1W5jHWe993SaCv7owIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBzZ5HGlNh4eSLmVk8dmsduTwlRaMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvSE5ua2NhVTJIaDVJdVpXVHgyYXgyNVBDVkZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPlKXAwQA Up+QMA0GCSqGSIb3DQEBCwUAA4IBAQARqUC8ZMqPtcKerx9CFIAOcfCkvTX9QDDS csT+yB6QnUF2D4K2Jn2NKn3RMZVESPpJbR+kiWqCRgIjNbknEr0vsPRbzo98pcTv 3UAB+NrDmcwFI0HVDnv00l1lgH5sT1Bp3sAwr0TjFqtyycqIV616ZCK9AlMyd6ar L5XI8vQGEVhcQLep/oEIU3028yfkVZkaqFMBmhMTt9E4IgL4F/w3CmrMICfXGtjR KF7QU1p4ODx9dARAQNlzcfkDjWe71IteddcOC8QdQ+7SNQ3NlF1j94vzm3UeTEuS LKe1/Y9paQpnV7KD64pzEJn8b/hcAEgz3OS0WfksxVhPj41NrS1E -----END CERTIFICATE-----Generated at Mon Jan 26 20:41:38 2026 by rpki-client