This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa File: hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa (raw, json) Hash identifier: aczilg5expuAqkln7fFu+xj4eV4HRQvyQA+wDQF1/60= Subject key identifier: 84:E0:AA:1E:BD:3E:AF:08:CE:9F:AC:14:F3:3F:02:FA:08:0A:5C:0A Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d Certificate serial: 019B7F8412CFFAA2E4CA87952F5698914486 Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa Signing time: Fri 02 Jan 2026 16:22:00 +0000 ROA not before: Fri 02 Jan 2026 16:22:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204203 IP address blocks: 185.229.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:12:cf:fa:a2:e4:ca:87:95:2f:56:98:91:44:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d Validity Not Before: Jan 2 16:22:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=84e0aa1ebd3eaf08ce9fac14f33f02fa080a5c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:47:3d:f5:56:b7:a5:38:c3:f5:78:26:ae: bb:1b:60:d3:d2:ab:2c:89:85:d1:82:85:ea:d2:bf: c8:de:d3:25:6c:30:99:7c:52:ea:7e:25:38:4f:a9: 8d:f3:8f:f0:2a:31:e7:0e:b6:4d:93:9b:b9:0b:af: 7c:04:40:e9:8f:c1:ab:0d:12:c4:70:b6:84:58:41: 1a:52:8a:be:cd:21:aa:c8:e2:70:f1:76:3d:17:ea: aa:b7:a3:85:d6:4b:36:bf:5f:55:5b:2e:d3:33:1b: 3f:a2:ea:ca:cf:b3:cb:e8:03:f5:ed:13:64:26:6d: 69:cc:7a:8e:e9:24:5a:7d:bc:5f:6b:79:c7:f2:73: b1:cd:ff:2b:d3:32:9d:5f:10:9c:85:09:b4:11:f1: 51:0f:e5:5e:d6:5c:65:23:d2:4d:93:d7:ef:77:91: 21:61:63:89:b8:ce:38:97:3e:b9:b4:72:80:4b:0c: c2:09:aa:bf:86:ff:e4:4f:ea:f4:87:ab:50:31:a3: eb:41:17:0e:7b:43:3d:f8:dc:77:75:35:d7:fd:0d: dd:12:99:71:f5:bb:9a:ec:6c:a4:00:4b:d9:3b:1a: 94:47:e7:cc:a5:38:e3:e1:59:c0:56:c1:a3:b6:e2: 88:6a:77:e4:84:33:25:f1:20:e4:4e:1f:a6:6f:54: 37:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E0:AA:1E:BD:3E:AF:08:CE:9F:AC:14:F3:3F:02:FA:08:0A:5C:0A X509v3 Authority Key Identifier: keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.133.0/24 Signature Algorithm: sha256WithRSAEncryption 04:d5:c9:f9:0f:78:e4:f7:5b:a4:4b:1b:15:68:d8:af:2e:16: 46:11:ef:68:d7:7b:02:01:ba:2f:12:9c:b4:2a:98:ff:dc:08: 89:04:b0:99:f3:33:86:b7:a9:c8:ad:18:a6:1f:ea:bd:56:b6: dc:93:e5:a9:c8:78:93:cd:35:1f:8b:44:a0:4c:9e:b7:2f:38: 23:16:20:90:27:0d:e1:05:88:51:22:fa:d8:8b:a4:5e:fa:9f: 85:30:da:b8:5b:f2:b5:66:75:6e:4a:17:82:cb:90:c2:e0:15: d5:dc:83:d3:7d:46:40:c7:c2:7f:93:fa:45:fa:e4:ed:95:65: fc:d6:0d:bf:b5:9b:2c:8b:04:61:ee:cc:a0:1f:0d:44:9c:4b: 19:42:10:58:67:2f:31:5f:6d:c3:d0:91:47:a6:92:9d:d5:95: 14:99:46:18:9b:1e:a9:29:85:89:9e:dd:0b:c2:cd:84:7e:82: 7d:9c:7b:41:6d:96:e4:a9:8a:87:b3:b6:cc:90:28:49:98:2b: 44:9f:43:e4:76:e3:85:eb:be:2b:3f:d7:2a:97:ef:1c:b5:82: 01:fa:aa:f8:8d:01:b9:3c:a5:03:4d:50:17:0a:ae:47:cb:56: 8c:c2:62:d7:17:70:94:cd:99:0d:f5:8d:14:9d:b6:a3:b0:dc: 41:eb:60:eb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hBLP+qLkyoeVL1aYkUSGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYzg1OGU1MDg1NjM1NDY4NGE1ZDA0YTNlY2MzNTkyNTgw ZDU0OGQwHhcNMjYwMTAyMTYyMjAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NGUwYWExZWJkM2VhZjA4Y2U5ZmFjMTRmMzNmMDJmYTA4MGE1YzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqONHPfVWt6U4w/V4Jq67G2DT0qss iYXRgoXq0r/I3tMlbDCZfFLqfiU4T6mN84/wKjHnDrZNk5u5C698BEDpj8GrDRLE cLaEWEEaUoq+zSGqyOJw8XY9F+qqt6OF1ks2v19VWy7TMxs/ourKz7PL6AP17RNk Jm1pzHqO6SRafbxfa3nH8nOxzf8r0zKdXxCchQm0EfFRD+Ve1lxlI9JNk9fvd5Eh YWOJuM44lz65tHKASwzCCaq/hv/kT+r0h6tQMaPrQRcOe0M9+Nx3dTXX/Q3dEplx 9bua7GykAEvZOxqUR+fMpTjj4VnAVsGjtuKIanfkhDMl8SDkTh+mb1Q3WQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFITgqh69Pq8Izp+sFPM/AvoIClwKMB8GA1UdIwQY MBaAFEvIWOUIVjVGhKXQSj7MNZJYDVSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQt M2Y0ZWY4MWEyZTUzLzEvaE9DcUhyMC1yd2pPbjZ3VTh6OEMtZ2dLWEFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQtM2Y0ZWY4MWEyZTUz LzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueWFMA0G CSqGSIb3DQEBCwUAA4IBAQAE1cn5D3jk91ukSxsVaNivLhZGEe9o13sCAbovEpy0 Kpj/3AiJBLCZ8zOGt6nIrRimH+q9Vrbck+WpyHiTzTUfi0SgTJ63LzgjFiCQJw3h BYhRIvrYi6Re+p+FMNq4W/K1ZnVuSheCy5DC4BXV3IPTfUZAx8J/k/pF+uTtlWX8 1g2/tZssiwRh7sygHw1EnEsZQhBYZy8xX23D0JFHppKd1ZUUmUYYmx6pKYWJnt0L ws2EfoJ9nHtBbZbkqYqHs7bMkChJmCtEn0PkduOF674rP9cql+8ctYIB+qr4jQG5 PKUDTVAXCq5Hy1aMwmLXF3CUzZkN9Y0UnbajsNxB62Dr -----END CERTIFICATE-----Generated at Mon Jan 26 23:24:46 2026 by rpki-client