This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ec0453-7e8f-41b1-85d1-1cb1a8f80238/1/hoOh2lQ6xX4vf4vHzx-4VSNBDEQ.roa File: hoOh2lQ6xX4vf4vHzx-4VSNBDEQ.roa (raw, json) Hash identifier: QvTMus8rtJvNC+3lcBpZ7MeQ/XKaChIMsEOr9EuRiJc= Subject key identifier: 86:83:A1:DA:54:3A:C5:7E:2F:7F:8B:C7:CF:1F:B8:55:23:41:0C:44 Certificate issuer: /CN=696c67867e0e202248e7f5e3cbd574bd1a32fe3f Certificate serial: 019B7E379C83FE0B9715F26B7FE21B3C1752 Authority key identifier: 69:6C:67:86:7E:0E:20:22:48:E7:F5:E3:CB:D5:74:BD:1A:32:FE:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWxnhn4OICJI5_Xjy9V0vRoy_j8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ec0453-7e8f-41b1-85d1-1cb1a8f80238/1/hoOh2lQ6xX4vf4vHzx-4VSNBDEQ.roa Signing time: Fri 02 Jan 2026 10:18:52 +0000 ROA not before: Fri 02 Jan 2026 10:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8851 IP address blocks: 163.119.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/ec0453-7e8f-41b1-85d1-1cb1a8f80238/1/aWxnhn4OICJI5_Xjy9V0vRoy_j8.crl rsync://rpki.ripe.net/repository/DEFAULT/41/ec0453-7e8f-41b1-85d1-1cb1a8f80238/1/aWxnhn4OICJI5_Xjy9V0vRoy_j8.mft rsync://rpki.ripe.net/repository/DEFAULT/aWxnhn4OICJI5_Xjy9V0vRoy_j8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:9c:83:fe:0b:97:15:f2:6b:7f:e2:1b:3c:17:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=696c67867e0e202248e7f5e3cbd574bd1a32fe3f Validity Not Before: Jan 2 10:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8683a1da543ac57e2f7f8bc7cf1fb85523410c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1c:51:c0:c2:64:f2:56:48:3b:17:7f:52:f6: b4:b6:7e:fb:b8:be:0e:a0:55:67:9a:da:96:a8:35: 73:57:29:3d:ed:66:85:1c:89:50:4e:e2:fc:e6:6c: 6f:e0:0e:9d:36:21:0e:98:2b:a2:2f:53:99:14:02: 4f:1c:1c:d7:a8:64:c7:3d:2c:55:05:dc:c4:a2:21: 8e:09:59:f1:8b:9a:69:c0:4b:4d:86:31:d5:4d:e5: c0:a4:01:da:de:f3:0a:17:ff:1b:c6:b7:6d:2c:4b: a8:8e:ae:b8:e1:a5:5b:b0:a4:23:8a:9d:1d:f4:d2: f3:ae:5f:6c:91:0b:ba:e9:f2:f1:a2:8f:6a:c5:2f: bd:3e:73:91:a3:66:2a:6d:90:e9:34:82:d7:87:9d: cc:bb:e8:09:51:11:a3:ac:f1:0d:e8:04:8c:53:b6: ff:60:1e:81:15:d4:34:07:0b:56:7d:96:f6:22:3e: 58:90:a6:60:ab:f6:81:f2:67:12:4f:97:3d:d4:63: 9e:8c:e4:4e:60:7b:ee:4d:48:b4:60:07:51:72:b8: 14:a8:fa:17:75:51:3e:4b:0f:8d:91:e1:cb:9b:09: 78:40:11:ce:85:bc:3d:7b:50:f6:6e:ef:eb:d5:93: 0e:e4:17:8a:82:b2:c7:0f:8f:ac:5a:a6:07:fd:78: 95:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:83:A1:DA:54:3A:C5:7E:2F:7F:8B:C7:CF:1F:B8:55:23:41:0C:44 X509v3 Authority Key Identifier: keyid:69:6C:67:86:7E:0E:20:22:48:E7:F5:E3:CB:D5:74:BD:1A:32:FE:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWxnhn4OICJI5_Xjy9V0vRoy_j8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ec0453-7e8f-41b1-85d1-1cb1a8f80238/1/hoOh2lQ6xX4vf4vHzx-4VSNBDEQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ec0453-7e8f-41b1-85d1-1cb1a8f80238/1/aWxnhn4OICJI5_Xjy9V0vRoy_j8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.119.4.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:35:88:68:72:c7:5a:f0:43:40:95:cb:f1:c5:d4:ff:73:06: 8e:70:49:78:cf:85:15:c3:36:a4:02:71:3d:d3:ad:50:53:bf: 41:0b:50:01:bc:77:b5:48:94:e6:32:c7:6e:d0:6c:a5:39:2d: 2c:bb:2c:15:55:56:53:c9:30:12:ad:7f:35:3e:c1:f0:d5:9d: 2b:14:03:3d:34:64:6d:39:0c:32:1d:37:7f:ab:e3:e2:3e:2e: f3:34:17:e3:80:4c:7d:59:7d:3e:82:79:be:32:50:9a:e6:60: fc:80:ee:73:8c:ce:ba:2e:c9:12:4d:dc:3e:47:5c:3a:6a:40: 66:c6:70:e5:d2:fb:ff:22:0b:99:7d:67:fd:96:5b:9e:ce:87: bd:ca:0a:48:91:f8:b5:34:00:97:c3:25:ae:b2:9d:df:b4:22: 25:3d:2b:94:fc:a4:ea:cf:82:6e:46:59:68:8c:5d:63:7b:6f: eb:45:35:37:5e:13:5b:37:05:01:b5:6d:91:c7:e6:3a:da:a2: f2:7a:02:5c:cc:ec:5d:ad:bb:6b:9f:ca:0b:09:30:c6:41:49: 79:ee:2d:4c:e8:5a:4d:07:98:7b:94:80:9b:23:b6:a6:53:0d: a4:ad:96:f9:ed:80:03:bb:52:b6:fa:ba:cd:62:4f:f8:0d:a0: 11:a8:bc:35 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N5yD/guXFfJrf+IbPBdSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NmM2Nzg2N2UwZTIwMjI0OGU3ZjVlM2NiZDU3NGJkMWEz MmZlM2YwHhcNMjYwMTAyMTAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjgzYTFkYTU0M2FjNTdlMmY3ZjhiYzdjZjFmYjg1NTIzNDEwYzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBxRwMJk8lZIOxd/Uva0tn77uL4O oFVnmtqWqDVzVyk97WaFHIlQTuL85mxv4A6dNiEOmCuiL1OZFAJPHBzXqGTHPSxV BdzEoiGOCVnxi5ppwEtNhjHVTeXApAHa3vMKF/8bxrdtLEuojq644aVbsKQjip0d 9NLzrl9skQu66fLxoo9qxS+9PnORo2YqbZDpNILXh53Mu+gJURGjrPEN6ASMU7b/ YB6BFdQ0BwtWfZb2Ij5YkKZgq/aB8mcST5c91GOejOROYHvuTUi0YAdRcrgUqPoX dVE+Sw+NkeHLmwl4QBHOhbw9e1D2bu/r1ZMO5BeKgrLHD4+sWqYH/XiVtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIaDodpUOsV+L3+Lx88fuFUjQQxEMB8GA1UdIwQY MBaAFGlsZ4Z+DiAiSOf148vVdL0aMv4/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVd4bmhuNE9JQ0pJNV9Yank5VjB2Um95X2o4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9lYzA0NTMtN2U4Zi00MWIxLTg1ZDEt MWNiMWE4ZjgwMjM4LzEvaG9PaDJsUTZ4WDR2ZjR2SHp4LTRWU05CREVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9lYzA0NTMtN2U4Zi00MWIxLTg1ZDEtMWNiMWE4ZjgwMjM4 LzEvYVd4bmhuNE9JQ0pJNV9Yank5VjB2Um95X2o4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAo3cEMA0G CSqGSIb3DQEBCwUAA4IBAQAvNYhocsda8ENAlcvxxdT/cwaOcEl4z4UVwzakAnE9 061QU79BC1ABvHe1SJTmMsdu0GylOS0suywVVVZTyTASrX81PsHw1Z0rFAM9NGRt OQwyHTd/q+PiPi7zNBfjgEx9WX0+gnm+MlCa5mD8gO5zjM66LskSTdw+R1w6akBm xnDl0vv/IguZfWf9lluezoe9ygpIkfi1NACXwyWusp3ftCIlPSuU/KTqz4JuRllo jF1je2/rRTU3XhNbNwUBtW2Rx+Y62qLyegJczOxdrbtrn8oLCTDGQUl57i1M6FpN B5h7lICbI7amUw2krZb57YADu1K2+rrNYk/4DaARqLw1 -----END CERTIFICATE-----Generated at Fri Jan 23 13:43:42 2026 by rpki-client