This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/95c08b-5056-4386-a42b-bf03dc837900/1/HG9Ba2gI8LG--fPNC-99z5G5PR0.roa File: HG9Ba2gI8LG--fPNC-99z5G5PR0.roa (raw, json) Hash identifier: r0cs2bG9l/hgCfQjE51Q5Mu/ZRB68nj2PZBwDW/XxSM= Subject key identifier: 1C:6F:41:6B:68:08:F0:B1:BE:F9:F3:CD:0B:EF:7D:CF:91:B9:3D:1D Certificate issuer: /CN=6a187ca5b8aee195cc8cadcfb48c544b181477ef Certificate serial: 019B7F1451E13C9B207B78E9615EE0B1F933 Authority key identifier: 6A:18:7C:A5:B8:AE:E1:95:CC:8C:AD:CF:B4:8C:54:4B:18:14:77:EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ahh8pbiu4ZXMjK3PtIxUSxgUd-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/95c08b-5056-4386-a42b-bf03dc837900/1/HG9Ba2gI8LG--fPNC-99z5G5PR0.roa Signing time: Fri 02 Jan 2026 14:19:56 +0000 ROA not before: Fri 02 Jan 2026 14:19:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30437 IP address blocks: 159.245.16.0/24 maxlen: 24 159.245.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/95c08b-5056-4386-a42b-bf03dc837900/1/ahh8pbiu4ZXMjK3PtIxUSxgUd-8.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/95c08b-5056-4386-a42b-bf03dc837900/1/ahh8pbiu4ZXMjK3PtIxUSxgUd-8.mft rsync://rpki.ripe.net/repository/DEFAULT/ahh8pbiu4ZXMjK3PtIxUSxgUd-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:51:e1:3c:9b:20:7b:78:e9:61:5e:e0:b1:f9:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a187ca5b8aee195cc8cadcfb48c544b181477ef Validity Not Before: Jan 2 14:19:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c6f416b6808f0b1bef9f3cd0bef7dcf91b93d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d9:83:d8:27:ad:86:60:28:41:ac:c1:4d:9c: 19:39:70:fa:50:08:35:5f:8e:90:a1:73:4d:7b:63: 25:89:9d:83:2e:1d:a5:ce:a2:f0:ce:6d:09:09:f8: 63:8c:cf:b2:d1:6c:ac:6c:d2:31:6e:5a:4e:89:aa: f4:4b:48:32:e6:4e:84:2b:b1:3e:0b:99:89:41:db: e3:da:81:ea:2e:0b:94:61:7f:5f:1d:cf:4d:2b:ca: 62:b3:8c:c8:f2:f5:21:b7:13:7e:8b:81:10:e9:df: 92:81:b5:9f:68:63:c1:d6:c0:1e:af:5a:e1:dc:66: 75:72:ff:ef:75:32:ca:b8:94:56:5b:62:e2:16:1e: 22:fd:a7:74:fa:bb:86:f6:f5:f1:b5:8f:8a:49:af: e5:9a:0b:28:7b:c3:24:5d:04:b3:8e:37:e9:c0:66: b6:53:8d:04:b1:41:17:5e:fb:3d:9a:89:71:b8:08: 5d:98:49:e2:2a:10:27:2b:8c:ad:a8:62:0f:de:8f: 69:c1:90:d1:18:e6:36:b6:3b:9d:d0:6e:ee:b4:83: b8:a0:fa:fe:ef:99:c1:b4:25:a8:b4:b1:22:3e:95: c9:31:65:4f:85:a9:f2:ed:8b:17:4c:9f:38:01:70: 05:24:f7:a3:7a:15:73:ef:72:b8:5a:76:99:8d:36: ce:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6F:41:6B:68:08:F0:B1:BE:F9:F3:CD:0B:EF:7D:CF:91:B9:3D:1D X509v3 Authority Key Identifier: keyid:6A:18:7C:A5:B8:AE:E1:95:CC:8C:AD:CF:B4:8C:54:4B:18:14:77:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahh8pbiu4ZXMjK3PtIxUSxgUd-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/95c08b-5056-4386-a42b-bf03dc837900/1/HG9Ba2gI8LG--fPNC-99z5G5PR0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/95c08b-5056-4386-a42b-bf03dc837900/1/ahh8pbiu4ZXMjK3PtIxUSxgUd-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.245.16.0/24 159.245.18.0/24 Signature Algorithm: sha256WithRSAEncryption a0:cb:cc:b2:2f:f4:96:d1:b7:57:1c:8b:58:4f:be:29:cc:0a: b7:82:3e:3d:c7:bc:80:a9:07:c0:8e:5e:0f:fa:48:a2:55:ef: a4:bf:09:ff:43:c2:dc:fb:b9:e4:f3:1c:a2:5d:cd:70:21:f5: 4a:ad:a0:14:e5:f6:04:b1:62:4d:06:cd:03:d1:04:da:10:ff: 87:9a:62:72:8b:3e:dd:7d:70:21:e3:b3:87:95:74:74:65:b6: 94:d3:d9:a1:18:4a:d9:f1:14:b5:ab:f9:b3:e4:25:ad:c7:96: a1:73:5d:34:05:94:13:dd:1c:83:e9:fe:06:61:f5:20:9c:42: 6f:48:04:75:37:e3:59:f8:20:b6:13:9f:d3:aa:74:25:96:64: e4:e8:d1:ff:fa:cf:bd:24:ef:39:b9:98:59:ee:07:80:3c:0e: 29:55:12:ad:57:9b:ee:a8:5d:e7:72:96:8a:93:78:8d:29:4c: 26:53:2e:ff:61:5c:55:fe:79:c4:df:5a:60:aa:c1:b7:eb:e2: 0f:c6:d8:6b:70:3c:4b:d9:50:79:af:e4:35:5f:08:8b:35:89: b7:ef:aa:bb:75:a4:5e:f4:81:96:b6:05:37:c9:39:37:30:77: b9:9a:f8:59:a7:9a:02:a3:8f:f3:51:27:1a:0b:09:f5:f1:17: 3f:4f:25:cb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FFHhPJsge3jpYV7gsfkzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhMTg3Y2E1YjhhZWUxOTVjYzhjYWRjZmI0OGM1NDRiMTgx NDc3ZWYwHhcNMjYwMTAyMTQxOTU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzZmNDE2YjY4MDhmMGIxYmVmOWYzY2QwYmVmN2RjZjkxYjkzZDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtmD2CethmAoQazBTZwZOXD6UAg1 X46QoXNNe2MliZ2DLh2lzqLwzm0JCfhjjM+y0WysbNIxblpOiar0S0gy5k6EK7E+ C5mJQdvj2oHqLguUYX9fHc9NK8pis4zI8vUhtxN+i4EQ6d+SgbWfaGPB1sAer1rh 3GZ1cv/vdTLKuJRWW2LiFh4i/ad0+ruG9vXxtY+KSa/lmgsoe8MkXQSzjjfpwGa2 U40EsUEXXvs9molxuAhdmEniKhAnK4ytqGIP3o9pwZDRGOY2tjud0G7utIO4oPr+ 75nBtCWotLEiPpXJMWVPhany7YsXTJ84AXAFJPejehVz73K4WnaZjTbOXwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFBxvQWtoCPCxvvnzzQvvfc+RuT0dMB8GA1UdIwQY MBaAFGoYfKW4ruGVzIytz7SMVEsYFHfvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWhoOHBiaXU0WlhNakszUHRJeFVTeGdVZC04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi85NWMwOGItNTA1Ni00Mzg2LWE0MmIt YmYwM2RjODM3OTAwLzEvSEc5QmEyZ0k4TEctLWZQTkMtOTl6NUc1UFIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi85NWMwOGItNTA1Ni00Mzg2LWE0MmItYmYwM2RjODM3OTAw LzEvYWhoOHBiaXU0WlhNakszUHRJeFVTeGdVZC04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAn/UQAwQA n/USMA0GCSqGSIb3DQEBCwUAA4IBAQCgy8yyL/SW0bdXHItYT74pzAq3gj49x7yA qQfAjl4P+kiiVe+kvwn/Q8Lc+7nk8xyiXc1wIfVKraAU5fYEsWJNBs0D0QTaEP+H mmJyiz7dfXAh47OHlXR0ZbaU09mhGErZ8RS1q/mz5CWtx5ahc100BZQT3RyD6f4G YfUgnEJvSAR1N+NZ+CC2E5/TqnQllmTk6NH/+s+9JO85uZhZ7geAPA4pVRKtV5vu qF3ncpaKk3iNKUwmUy7/YVxV/nnE31pgqsG36+IPxthrcDxL2VB5r+Q1XwiLNYm3 76q7daRe9IGWtgU3yTk3MHe5mvhZp5oCo4/zUScaCwn18Rc/TyXL -----END CERTIFICATE-----Generated at Mon Jan 12 03:11:35 2026 by rpki-client