This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/hoFZoG-yhH2hrK-zOnjO0Fwjkkk.roa File: hoFZoG-yhH2hrK-zOnjO0Fwjkkk.roa (raw, json) Hash identifier: wahxzLZME7eCGmJtbzOHwMFVjjOYh0TJoykMP5H0554= Subject key identifier: 86:81:59:A0:6F:B2:84:7D:A1:AC:AF:B3:3A:78:CE:D0:5C:23:92:49 Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7C7159E769FF57A34808A25613F1B Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/hoFZoG-yhH2hrK-zOnjO0Fwjkkk.roa Signing time: Thu 01 Jan 2026 18:17:51 +0000 ROA not before: Thu 01 Jan 2026 18:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25369 IP address blocks: 89.191.96.0/20 maxlen: 20 89.191.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c7:15:9e:76:9f:f5:7a:34:80:8a:25:61:3f:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=868159a06fb2847da1acafb33a78ced05c239249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bc:42:a6:44:dd:39:90:19:2e:e2:a9:93:21: 47:cb:bc:e8:63:09:33:fe:58:e5:bb:54:80:5b:5e: f8:c8:ec:08:d5:cc:c4:1c:08:18:4c:37:cd:8e:3a: 95:30:08:cd:af:18:da:85:5e:5f:0a:ab:97:d5:6c: dc:a4:51:e0:82:e1:b6:74:c4:7c:54:63:b9:8e:90: 84:ee:1b:24:47:76:5b:1b:30:b5:f2:9a:6d:b6:f7: 80:8a:7b:7f:56:83:1c:1f:0d:d8:b1:fd:1a:fc:a0: f7:70:f4:8e:8b:c3:03:29:94:b7:b3:45:9c:86:e6: c9:fe:ae:74:6a:7a:72:13:49:9e:c8:1e:95:eb:a8: ac:2a:45:05:55:12:67:01:9b:f7:d8:44:9e:e8:6e: 6b:0c:da:9d:c8:fe:62:54:b4:63:98:2b:c1:2f:f9: 2b:c2:be:02:3d:75:7a:57:09:a7:d0:89:1f:cd:0e: 3f:72:8f:b1:5c:a7:ab:69:d3:03:d7:f0:ee:af:96: 0f:b1:63:9c:2c:b2:46:3e:2f:87:71:37:da:0e:75: 13:5e:70:ad:9c:22:57:47:5b:44:a9:d3:52:6f:4a: 97:52:d1:06:6f:23:e6:dc:8d:87:d9:54:87:78:f3: c0:31:a8:87:a2:1c:12:2a:0b:79:5c:21:62:4b:f0: 79:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:81:59:A0:6F:B2:84:7D:A1:AC:AF:B3:3A:78:CE:D0:5C:23:92:49 X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/hoFZoG-yhH2hrK-zOnjO0Fwjkkk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.191.96.0/20 89.191.124.0/22 Signature Algorithm: sha256WithRSAEncryption 66:01:cb:04:4c:ee:b1:00:e4:7c:c9:ea:35:eb:aa:8b:5f:d5: e7:d5:23:37:7f:30:96:26:e0:b5:7b:2f:57:af:28:8a:fd:12: db:df:cc:1b:54:42:d9:76:9d:b9:c8:d2:5c:f8:c9:bb:6e:a0: f7:3a:8b:f8:24:4b:99:35:ce:98:51:dc:e5:f9:2d:ca:49:d8: 1d:77:7c:4d:e0:82:b3:f0:30:35:df:e6:c8:b8:1e:db:97:86: 6f:01:5c:b3:50:92:50:ea:5b:75:cf:a3:4a:c7:67:a6:e7:5c: 43:77:6c:de:45:b1:a5:db:82:77:d0:75:09:df:67:85:2b:87: cb:fd:a2:f8:69:a1:36:39:02:71:09:a0:75:f4:aa:b0:62:24: d6:a0:2b:46:4d:30:25:f2:c4:64:58:90:61:6e:a0:91:d4:83: 0c:12:2c:aa:e1:6d:65:63:d4:32:61:0a:6d:60:f2:f3:34:ed: 51:40:79:09:47:8f:8b:e6:6c:21:bc:ff:cb:b4:58:f4:60:3e: 93:7c:ca:b9:cc:91:33:4f:15:0e:1d:cf:b5:92:44:f5:74:b9: d4:05:50:df:4c:70:74:68:3c:3c:49:26:43:18:53:28:aa:6c: 5b:74:cb:a2:53:c8:ca:93:42:81:b2:68:49:19:27:9b:c6:f4: 25:6a:14:15 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6x8cVnnaf9Xo0gIolYT8bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjgxNTlhMDZmYjI4NDdkYTFhY2FmYjMzYTc4Y2VkMDVjMjM5MjQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLxCpkTdOZAZLuKpkyFHy7zoYwkz /ljlu1SAW174yOwI1czEHAgYTDfNjjqVMAjNrxjahV5fCquX1WzcpFHgguG2dMR8 VGO5jpCE7hskR3ZbGzC18ppttveAint/VoMcHw3Ysf0a/KD3cPSOi8MDKZS3s0Wc hubJ/q50anpyE0meyB6V66isKkUFVRJnAZv32ESe6G5rDNqdyP5iVLRjmCvBL/kr wr4CPXV6Vwmn0IkfzQ4/co+xXKeradMD1/Dur5YPsWOcLLJGPi+HcTfaDnUTXnCt nCJXR1tEqdNSb0qXUtEGbyPm3I2H2VSHePPAMaiHohwSKgt5XCFiS/B5sQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIaBWaBvsoR9oayvszp4ztBcI5JJMB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvaG9GWm9HLXloSDJockstek9uak8wRndqa2trLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEWb9gAwQC Wb98MA0GCSqGSIb3DQEBCwUAA4IBAQBmAcsETO6xAOR8yeo166qLX9Xn1SM3fzCW JuC1ey9XryiK/RLb38wbVELZdp25yNJc+Mm7bqD3Oov4JEuZNc6YUdzl+S3KSdgd d3xN4IKz8DA13+bIuB7bl4ZvAVyzUJJQ6lt1z6NKx2em51xDd2zeRbGl24J30HUJ 32eFK4fL/aL4aaE2OQJxCaB19KqwYiTWoCtGTTAl8sRkWJBhbqCR1IMMEiyq4W1l Y9QyYQptYPLzNO1RQHkJR4+L5mwhvP/LtFj0YD6TfMq5zJEzTxUOHc+1kkT1dLnU BVDfTHB0aDw8SSZDGFMoqmxbdMuiU8jKk0KBsmhJGSebxvQlahQV -----END CERTIFICATE-----Generated at Mon Jan 19 17:07:30 2026 by rpki-client