This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/HoTv0sdQLHBWRiUvVVDaAHr5gZE.roa File: HoTv0sdQLHBWRiUvVVDaAHr5gZE.roa (raw, json) Hash identifier: DIU7NFLXWQYLWOK2aoJC+a/KoOz45jlF8l8WQecGPFM= Subject key identifier: 1E:84:EF:D2:C7:50:2C:70:56:46:25:2F:55:50:DA:00:7A:F9:81:91 Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309 Certificate serial: 019B783480AA965CEA283D424A2A0E02739B Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/HoTv0sdQLHBWRiUvVVDaAHr5gZE.roa Signing time: Thu 01 Jan 2026 06:17:45 +0000 ROA not before: Thu 01 Jan 2026 06:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 401922 IP address blocks: 45.149.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.mft rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:80:aa:96:5c:ea:28:3d:42:4a:2a:0e:02:73:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309 Validity Not Before: Jan 1 06:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1e84efd2c7502c705646252f5550da007af98191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a0:1c:41:de:f2:a9:e9:10:e2:cd:d4:68:b7: dd:9d:5e:c5:ae:4f:15:4d:6d:d9:61:db:d3:db:45: 87:6a:65:78:89:0d:c8:76:99:17:34:05:b4:c5:6f: 39:c8:39:b4:d0:9d:c4:e6:5b:58:24:78:0b:1d:82: 3e:d2:b0:b4:25:87:0d:24:3d:8b:cf:e4:eb:72:2d: 62:3a:27:5b:b8:71:3d:b5:20:b6:00:5a:e7:a6:8f: 73:12:1f:6a:cf:28:d1:76:d2:50:6a:69:3a:7b:f8: 96:e2:e0:8f:4b:d1:87:fc:85:8d:67:f2:71:6b:e2: 68:e6:49:2c:df:15:10:a1:f6:b9:a3:d6:07:60:f1: 61:eb:bd:27:0c:21:cf:c2:5e:94:ef:9b:6a:c3:59: 2f:27:d0:60:44:01:aa:91:15:bf:8f:ef:0e:ba:df: 04:4c:b3:5e:20:ad:f5:82:2e:ee:83:2d:84:22:87: f7:5e:02:66:5d:54:dc:47:9b:5e:c3:89:8e:ff:0f: 71:82:20:ea:e4:e3:81:3b:ba:5d:be:74:73:c8:64: 6a:6a:5b:35:5b:09:ea:eb:b1:f5:e9:e5:f5:bc:34: 72:22:72:e7:b1:3a:45:9e:ab:68:ab:51:33:4b:5d: 0a:b0:00:df:f5:32:3a:d5:db:08:82:f1:70:da:4c: 3c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:84:EF:D2:C7:50:2C:70:56:46:25:2F:55:50:DA:00:7A:F9:81:91 X509v3 Authority Key Identifier: keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/HoTv0sdQLHBWRiUvVVDaAHr5gZE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.149.4.0/24 Signature Algorithm: sha256WithRSAEncryption 64:5c:77:07:36:06:a6:89:27:c9:cd:b1:88:57:1e:e7:bb:59: c9:28:b4:16:bc:6b:6d:93:8c:5f:bf:3a:ff:bf:34:c6:aa:58: 4c:bf:d6:08:e0:83:c9:9c:13:7b:a8:a0:e7:75:0c:3c:2f:30: 23:b6:61:43:72:2a:89:e2:e0:c1:38:d7:99:ca:80:4e:7f:ba: 97:c0:6e:10:70:bc:cd:d3:34:03:1b:bd:d1:67:a6:a8:95:92: c0:28:7e:50:a2:9b:7c:8a:42:99:e5:a2:d5:1c:63:1d:39:6f: 8a:1e:1a:ba:9f:86:13:88:19:b9:10:ea:11:25:1b:37:0e:c0: 5a:7b:ab:14:c1:4f:c7:94:8d:2d:0d:d6:35:ad:26:7a:a9:0e: f2:5a:cd:ad:0a:b8:d9:9f:63:14:36:fc:d1:d8:e1:5e:98:aa: 33:ee:10:49:ad:07:5d:f5:b9:07:24:0e:80:da:43:c4:9f:6a: 99:16:f8:90:94:a0:cd:92:fc:80:a4:10:46:ba:d4:e1:34:fe: c7:99:dc:4b:28:d8:f0:4b:22:61:b3:9c:ed:45:8d:fd:b5:4a: b5:98:be:ab:7a:b1:f5:87:f0:82:4d:6f:13:9e:25:3b:36:2b: b5:70:a7:c2:72:8f:02:43:42:c6:48:d4:60:dd:69:e1:d3:39: 2c:2b:46:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NICqllzqKD1CSioOAnObMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMzY2ODYyOGYwZGY3OWQwNDdlY2EwZDlhZGNmYzBiNjY5 M2UzMDkwHhcNMjYwMTAxMDYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZTg0ZWZkMmM3NTAyYzcwNTY0NjI1MmY1NTUwZGEwMDdhZjk4MTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6AcQd7yqekQ4s3UaLfdnV7Frk8V TW3ZYdvT20WHamV4iQ3IdpkXNAW0xW85yDm00J3E5ltYJHgLHYI+0rC0JYcNJD2L z+Trci1iOidbuHE9tSC2AFrnpo9zEh9qzyjRdtJQamk6e/iW4uCPS9GH/IWNZ/Jx a+Jo5kks3xUQofa5o9YHYPFh670nDCHPwl6U75tqw1kvJ9BgRAGqkRW/j+8Out8E TLNeIK31gi7ugy2EIof3XgJmXVTcR5tew4mO/w9xgiDq5OOBO7pdvnRzyGRqals1 Wwnq67H16eX1vDRyInLnsTpFnqtoq1EzS10KsADf9TI61dsIgvFw2kw8UwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFB6E79LHUCxwVkYlL1VQ2gB6+YGRMB8GA1UdIwQY MBaAFL02aGKPDfedBH7KDZrc/Atmk+MJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMt ZTZiZjMxNmM5NGExLzEvSG9UdjBzZFFMSEJXUmlVdlZWRGFBSHI1Z1pFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMtZTZiZjMxNmM5NGEx LzEvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZUEMA0G CSqGSIb3DQEBCwUAA4IBAQBkXHcHNgamiSfJzbGIVx7nu1nJKLQWvGttk4xfvzr/ vzTGqlhMv9YI4IPJnBN7qKDndQw8LzAjtmFDciqJ4uDBONeZyoBOf7qXwG4QcLzN 0zQDG73RZ6aolZLAKH5Qopt8ikKZ5aLVHGMdOW+KHhq6n4YTiBm5EOoRJRs3DsBa e6sUwU/HlI0tDdY1rSZ6qQ7yWs2tCrjZn2MUNvzR2OFemKoz7hBJrQdd9bkHJA6A 2kPEn2qZFviQlKDNkvyApBBGutThNP7HmdxLKNjwSyJhs5ztRY39tUq1mL6rerH1 h/CCTW8TniU7Niu1cKfCco8CQ0LGSNRg3Wnh0zksK0Zs -----END CERTIFICATE-----Generated at Mon Jan 19 18:00:54 2026 by rpki-client