This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/hxoGXcKSbBJ2PWCa3J0fMHiuDsU.roa File: hxoGXcKSbBJ2PWCa3J0fMHiuDsU.roa (raw, json) Hash identifier: 7Q+LWc6VgpTopv5k3/peiGrLhiln8d4FJvX1XgGREac= Subject key identifier: 87:1A:06:5D:C2:92:6C:12:76:3D:60:9A:DC:9D:1F:30:78:AE:0E:C5 Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Certificate serial: 019B78A31970C6FE8D4E895989B77CBDA77E Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/hxoGXcKSbBJ2PWCa3J0fMHiuDsU.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199458 IP address blocks: 45.8.179.0/24 maxlen: 24 45.159.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.mft rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:19:70:c6:fe:8d:4e:89:59:89:b7:7c:bd:a7:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=871a065dc2926c12763d609adc9d1f3078ae0ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:78:2e:d5:e1:1e:ab:78:65:9f:e9:2e:88:f1: 6f:da:7c:8a:f4:27:11:4b:93:eb:f0:79:7b:a3:41: ba:85:19:53:71:3e:7d:eb:63:ea:9a:6d:7f:fc:55: ea:fb:6a:f5:50:84:7f:50:cd:69:95:7c:36:06:73: e5:49:63:51:9d:ba:d4:3c:1d:17:0c:43:e8:e6:9b: 5b:e4:ba:a8:cf:7b:08:d3:82:d8:ee:1b:d3:80:f8: 03:2e:8e:a4:ff:28:fa:7b:b0:31:19:cf:70:fc:e8: b0:ff:d4:62:36:26:9b:08:d5:c8:06:a3:08:a5:cb: 03:37:a2:71:af:44:11:6f:e4:6e:b4:ac:14:28:1b: 5f:c2:ba:74:57:c2:c9:86:26:06:ef:64:c9:4d:77: c5:5d:49:1b:e8:7d:fa:26:e6:2f:87:f6:b8:8a:c9: 17:8b:01:a2:18:51:b6:5f:33:58:2f:f2:ae:49:78: bc:85:7a:ff:36:ef:00:76:be:b8:c1:a2:82:00:82: ee:17:d2:75:d2:ee:ef:be:50:39:77:e7:65:38:a9: 2f:f2:55:92:16:3c:08:2c:31:d2:9c:b4:fc:36:bd: 12:28:05:be:5e:b5:17:b1:dc:2f:89:66:02:a8:f8: ae:f0:cc:12:a3:55:a1:eb:57:97:ea:b2:02:96:3e: 03:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1A:06:5D:C2:92:6C:12:76:3D:60:9A:DC:9D:1F:30:78:AE:0E:C5 X509v3 Authority Key Identifier: keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/hxoGXcKSbBJ2PWCa3J0fMHiuDsU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.8.179.0/24 45.159.92.0/22 Signature Algorithm: sha256WithRSAEncryption a1:9b:f3:07:aa:3f:3a:5a:9a:49:0a:92:90:2a:ef:8a:51:aa: 7b:dc:52:3f:45:a7:00:26:29:ff:3f:f3:65:b2:bb:a1:44:8f: 5c:94:ed:54:22:b1:05:18:2c:91:e7:25:f1:79:38:d8:06:9d: 13:be:01:aa:85:a6:22:d5:16:08:d5:fc:1c:06:dc:45:ba:f7: 22:9a:46:d4:5c:1a:8f:f2:23:39:9d:9d:93:35:b7:74:4f:0e: db:a7:8d:e1:36:c5:2d:0f:cf:a9:c5:37:db:33:02:13:9f:51: 03:33:44:06:51:6a:a7:be:b9:a1:a9:73:95:45:6e:fd:74:73: fb:9f:09:bf:aa:a0:cc:60:83:5b:8d:98:8b:98:08:fe:27:9b: 1e:b9:29:b8:55:4b:9d:e9:b7:e0:06:fd:99:7f:0c:2e:54:ca: 6e:7d:ba:f6:b3:6c:5c:5a:62:82:96:30:20:fe:bd:44:9a:90: 2b:2a:63:a6:ce:a0:9e:86:b1:9f:5c:d7:45:b9:3c:d7:5b:5f: 0b:a0:e4:ac:4d:ee:cc:5e:20:be:94:ae:01:ad:18:96:25:b7: 24:3f:12:47:92:24:61:ce:2c:40:f4:6e:9c:c6:05:97:b8:5f: c1:0f:58:33:2d:4c:f7:91:6f:ea:29:18:3a:db:ab:a9:23:c1: bc:be:4c:44 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4oxlwxv6NTolZibd8vad+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxYmRkZWFmMGYzMGZiZGFmOWU3NWI5MmFjN2Q1YmQxM2Yy ODVkZTcwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzFhMDY1ZGMyOTI2YzEyNzYzZDYwOWFkYzlkMWYzMDc4YWUwZWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHgu1eEeq3hln+kuiPFv2nyK9CcR S5Pr8Hl7o0G6hRlTcT5962Pqmm1//FXq+2r1UIR/UM1plXw2BnPlSWNRnbrUPB0X DEPo5ptb5Lqoz3sI04LY7hvTgPgDLo6k/yj6e7AxGc9w/Oiw/9RiNiabCNXIBqMI pcsDN6Jxr0QRb+RutKwUKBtfwrp0V8LJhiYG72TJTXfFXUkb6H36JuYvh/a4iskX iwGiGFG2XzNYL/KuSXi8hXr/Nu8Adr64waKCAILuF9J10u7vvlA5d+dlOKkv8lWS FjwILDHSnLT8Nr0SKAW+XrUXsdwviWYCqPiu8MwSo1Wh61eX6rIClj4D3QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIcaBl3CkmwSdj1gmtydHzB4rg7FMB8GA1UdIwQY MBaAFHG93q8PMPva+edbkqx9W9E/KF3nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUt NDc3MjMxMTkxYTM1LzEvaHhvR1hjS1NiQkoyUFdDYTNKMGZNSGl1RHNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUtNDc3MjMxMTkxYTM1 LzEvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQizAwQC LZ9cMA0GCSqGSIb3DQEBCwUAA4IBAQChm/MHqj86WppJCpKQKu+KUap73FI/RacA Jin/P/NlsruhRI9clO1UIrEFGCyR5yXxeTjYBp0TvgGqhaYi1RYI1fwcBtxFuvci mkbUXBqP8iM5nZ2TNbd0Tw7bp43hNsUtD8+pxTfbMwITn1EDM0QGUWqnvrmhqXOV RW79dHP7nwm/qqDMYINbjZiLmAj+J5seuSm4VUud6bfgBv2ZfwwuVMpufbr2s2xc WmKCljAg/r1EmpArKmOmzqCehrGfXNdFuTzXW18LoOSsTe7MXiC+lK4BrRiWJbck PxJHkiRhzixA9G6cxgWXuF/BD1gzLUz3kW/qKRg626upI8G8vkxE -----END CERTIFICATE-----Generated at Tue Jan 20 12:51:34 2026 by rpki-client