This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/h0zInBvpyktq9iikn8ZcIkXY60c.roa File: h0zInBvpyktq9iikn8ZcIkXY60c.roa (raw, json) Hash identifier: Pz1lWLzL/HvhG/PHu4/vlepXQHQlGou8qePM7fq9g8g= Subject key identifier: 87:4C:C8:9C:1B:E9:CA:4B:6A:F6:28:A4:9F:C6:5C:22:45:D8:EB:47 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E392AC0DEDAABE2971F1C6A900480EF Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/h0zInBvpyktq9iikn8ZcIkXY60c.roa Signing time: Fri 02 Jan 2026 10:20:34 +0000 ROA not before: Fri 02 Jan 2026 10:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 137517 IP address blocks: 163.5.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:2a:c0:de:da:ab:e2:97:1f:1c:6a:90:04:80:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=874cc89c1be9ca4b6af628a49fc65c2245d8eb47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5e:c7:94:01:f9:c1:ea:c2:f3:d9:5e:17:f2: b9:a6:ef:fd:c6:16:a6:76:db:89:b0:8f:86:8d:43: 70:d6:ad:45:6f:38:1f:00:b4:19:d9:02:34:b9:5f: 99:3e:6f:4b:90:62:fa:79:04:fa:d9:d7:d9:77:88: 1c:79:66:bd:ac:92:66:72:50:2a:c8:42:21:a4:7a: af:21:a4:14:50:d9:c0:0a:ed:2c:8a:63:4d:c1:60: 45:5f:06:7d:94:cd:c1:cd:6c:f0:5a:67:25:90:20: 1a:ad:5b:cb:af:0f:f9:39:60:ec:1c:84:ac:0a:90: 8f:c5:c9:1f:0d:24:1a:d1:19:b2:f7:52:f0:0c:2f: 5f:51:da:5c:ae:21:48:6a:21:70:16:cd:b5:df:66: 3b:56:db:de:4a:d3:64:4f:46:3f:94:05:c0:d0:83: b1:a1:a0:6a:93:a1:f9:e6:18:95:9d:61:34:7b:e8: d1:39:70:79:f7:8d:24:54:5d:a7:e4:45:d6:37:5e: 97:7c:bd:3c:06:04:38:cc:7b:92:ff:d9:bf:e3:bc: a4:ad:6b:60:ba:28:67:86:f7:30:d1:04:b5:07:8e: 53:3a:a7:b7:41:38:e3:79:0a:cc:2a:57:e9:62:4a: 27:e1:25:70:76:e1:8f:e4:02:74:db:0a:a8:18:69: cc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4C:C8:9C:1B:E9:CA:4B:6A:F6:28:A4:9F:C6:5C:22:45:D8:EB:47 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/h0zInBvpyktq9iikn8ZcIkXY60c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.144.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:33:04:a1:0c:01:b8:9e:d0:81:09:ef:d4:00:08:07:e0:9b: 76:4d:c6:09:10:f4:1e:b0:df:1a:b8:d4:55:7f:70:59:ae:b5: be:26:3f:f6:8f:42:92:15:12:3a:84:20:9a:4e:98:6a:ff:32: d4:47:57:aa:00:df:70:b6:c7:12:2a:ca:ce:32:b3:28:4d:81: a3:d0:85:7b:bb:a5:61:ac:9c:7a:8e:23:b6:f4:93:1b:de:ae: ca:9a:15:2b:a4:1a:30:82:f0:c5:f2:05:50:4d:55:ef:f0:6e: b7:ed:99:a1:c7:0b:66:11:39:84:13:01:a5:f3:a8:8a:bc:92: 1a:fe:a0:bd:55:44:3d:09:65:a9:56:0e:e3:00:65:21:b5:fa: 86:27:77:7c:69:c6:f9:dd:f9:93:07:93:47:a5:22:e3:36:ca: d0:49:79:86:ab:fe:95:b1:a5:83:a5:cd:a6:3c:64:b8:ec:a1: cf:93:9a:d9:44:92:b8:6c:55:4b:34:ef:0f:0f:0c:ad:d7:d5: b4:31:7f:8f:0e:07:cf:e5:d1:36:3b:35:60:94:b9:13:25:2f: 8c:54:90:44:4e:92:3a:b4:92:13:ce:b6:1f:b7:2f:29:22:c3: 58:ca:74:4f:ef:4e:5c:20:32:8a:ea:05:89:23:f4:ca:d9:c9: 35:7f:b2:97 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OSrA3tqr4pcfHGqQBIDvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NzRjYzg5YzFiZTljYTRiNmFmNjI4YTQ5ZmM2NWMyMjQ1ZDhlYjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvl7HlAH5werC89leF/K5pu/9xham dtuJsI+GjUNw1q1FbzgfALQZ2QI0uV+ZPm9LkGL6eQT62dfZd4gceWa9rJJmclAq yEIhpHqvIaQUUNnACu0simNNwWBFXwZ9lM3BzWzwWmclkCAarVvLrw/5OWDsHISs CpCPxckfDSQa0Rmy91LwDC9fUdpcriFIaiFwFs2132Y7VtveStNkT0Y/lAXA0IOx oaBqk6H55hiVnWE0e+jROXB5940kVF2n5EXWN16XfL08BgQ4zHuS/9m/47ykrWtg uihnhvcw0QS1B45TOqe3QTjjeQrMKlfpYkon4SVwduGP5AJ02wqoGGnMzQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIdMyJwb6cpLavYopJ/GXCJF2OtHMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvaDB6SW5CdnB5a3RxOWlpa244WmNJa1hZNjBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWQMA0G CSqGSIb3DQEBCwUAA4IBAQB8MwShDAG4ntCBCe/UAAgH4Jt2TcYJEPQesN8auNRV f3BZrrW+Jj/2j0KSFRI6hCCaTphq/zLUR1eqAN9wtscSKsrOMrMoTYGj0IV7u6Vh rJx6jiO29JMb3q7KmhUrpBowgvDF8gVQTVXv8G637ZmhxwtmETmEEwGl86iKvJIa /qC9VUQ9CWWpVg7jAGUhtfqGJ3d8acb53fmTB5NHpSLjNsrQSXmGq/6VsaWDpc2m PGS47KHPk5rZRJK4bFVLNO8PDwyt19W0MX+PDgfP5dE2OzVglLkTJS+MVJBETpI6 tJITzrYfty8pIsNYynRP705cIDKK6gWJI/TK2ck1f7KX -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:44 2026 by rpki-client