This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/hkJU0HHWf1-4JqWwATl5ZFWfJyc.roa File: hkJU0HHWf1-4JqWwATl5ZFWfJyc.roa (raw, json) Hash identifier: VDA82OVX/X2yLRwyOfMgqYUT2szuVZcwdV7SJXAxuuQ= Subject key identifier: 86:42:54:D0:71:D6:7F:5F:B8:26:A5:B0:01:39:79:64:55:9F:27:27 Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1 Certificate serial: 019B7C7EF6C025323713F84E5DBA77DD629B Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/hkJU0HHWf1-4JqWwATl5ZFWfJyc.roa Signing time: Fri 02 Jan 2026 02:17:34 +0000 ROA not before: Fri 02 Jan 2026 02:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 973 IP address blocks: 193.160.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.mft rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7e:f6:c0:25:32:37:13:f8:4e:5d:ba:77:dd:62:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1 Validity Not Before: Jan 2 02:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=864254d071d67f5fb826a5b001397964559f2727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:47:c8:e7:a3:16:6f:c2:ec:ac:a1:27:86:d4: 34:36:20:fd:84:37:2d:0e:be:81:9b:5b:e3:75:c3: 36:ab:85:74:9d:74:ea:99:03:50:e9:bb:7d:a1:20: cb:07:d8:dc:b3:66:76:ab:c3:29:5c:bb:df:10:20: 5e:34:ab:31:dd:f0:a6:69:bf:bf:cf:b4:9d:27:ab: 9b:d8:48:df:00:ea:8e:01:09:9e:53:03:83:42:56: 3d:b2:2d:d9:e9:16:6c:2d:ca:b8:de:fc:d5:cf:23: 9c:58:03:19:44:68:5a:da:4e:33:86:35:80:f9:3d: 5a:ce:a9:e2:35:f2:b2:5d:5f:5d:d7:95:42:cc:dc: 69:11:11:34:3b:a6:f0:bc:9a:35:c1:d2:f7:8c:28: 65:64:0c:49:41:21:0c:49:5e:3d:0f:34:87:25:6a: cd:bb:08:da:66:65:96:5b:3e:56:bb:e3:c3:91:94: 42:d6:a0:bf:93:d3:9d:11:7e:3e:70:72:14:79:42: 47:af:dd:49:e5:71:42:76:25:b2:81:a8:68:aa:0c: af:71:b8:4a:bf:cd:9c:c0:bb:1b:0a:07:3b:16:e6: ec:c2:80:66:94:b9:a9:1d:de:6d:98:08:04:ce:8c: bc:8a:1b:7e:35:a4:d3:97:51:20:51:57:5f:8c:dd: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:42:54:D0:71:D6:7F:5F:B8:26:A5:B0:01:39:79:64:55:9F:27:27 X509v3 Authority Key Identifier: keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/hkJU0HHWf1-4JqWwATl5ZFWfJyc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.160.21.0/24 Signature Algorithm: sha256WithRSAEncryption 40:f1:99:4f:a7:92:aa:08:11:db:c1:d3:3e:da:fb:15:4e:9b: b9:87:87:ec:01:99:2e:f0:53:18:b9:01:3d:79:a3:05:94:a0: 78:27:f0:cd:2f:61:36:a1:e4:45:2e:87:4f:88:1f:2a:19:87: 3c:f3:40:df:ed:dd:5d:0e:18:dd:ac:eb:16:ff:a9:fa:4f:57: 89:3a:8d:2a:b4:02:a8:45:da:95:af:8e:1a:05:d6:24:e6:db: b2:30:bc:0f:5e:bc:31:42:5f:43:12:1d:65:5f:e2:10:fc:2e: d5:31:cb:3c:c9:9b:d3:2b:6e:85:ce:b8:d2:2e:f0:2f:e5:f8: 45:d8:d6:14:c5:0c:84:89:2b:29:a9:bb:38:cb:ad:30:1e:80: 21:4f:2b:16:43:74:ce:53:85:37:f6:60:43:e5:45:06:c1:dd: 1c:c6:16:1f:b4:6c:ea:b7:97:7a:59:f5:67:8f:2c:56:ce:c2: f8:99:89:3f:73:d5:5b:ba:64:54:c4:86:7e:48:f6:0c:35:be: ca:16:bf:63:d5:07:3c:c8:97:aa:ad:23:74:5f:9c:7e:78:9f: 6e:24:13:62:31:8d:79:8d:35:e2:45:83:11:8a:2b:e8:8d:73: 61:b8:ef:cd:69:75:7a:02:68:af:92:6e:5c:0d:79:82:b0:8f: 45:a9:88:bc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8fvbAJTI3E/hOXbp33WKbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZDA4YTFlMWNiYzkwOTI1NGU5ZTZiOWM5MzlmZDg1YTI2 OGIxZTEwHhcNMjYwMTAyMDIxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4NjQyNTRkMDcxZDY3ZjVmYjgyNmE1YjAwMTM5Nzk2NDU1OWYyNzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0fI56MWb8LsrKEnhtQ0NiD9hDct Dr6Bm1vjdcM2q4V0nXTqmQNQ6bt9oSDLB9jcs2Z2q8MpXLvfECBeNKsx3fCmab+/ z7SdJ6ub2EjfAOqOAQmeUwODQlY9si3Z6RZsLcq43vzVzyOcWAMZRGha2k4zhjWA +T1azqniNfKyXV9d15VCzNxpERE0O6bwvJo1wdL3jChlZAxJQSEMSV49DzSHJWrN uwjaZmWWWz5Wu+PDkZRC1qC/k9OdEX4+cHIUeUJHr91J5XFCdiWygahoqgyvcbhK v82cwLsbCgc7FubswoBmlLmpHd5tmAgEzoy8iht+NaTTl1EgUVdfjN0oPwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIZCVNBx1n9fuCalsAE5eWRVnycnMB8GA1UdIwQY MBaAFPTQih4cvJCSVOnmuck5/YWiaLHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2Ut ZGNlOTQ3ZTI5NGI2LzEvaGtKVTBISFdmMS00SnFXd0FUbDVaRldmSnljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82NDlmZGMtMGQzYS00MWVjLWExY2UtZGNlOTQ3ZTI5NGI2 LzEvOU5DS0hoeThrSkpVNmVhNXlUbjloYUpvc2VFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaAVMA0G CSqGSIb3DQEBCwUAA4IBAQBA8ZlPp5KqCBHbwdM+2vsVTpu5h4fsAZku8FMYuQE9 eaMFlKB4J/DNL2E2oeRFLodPiB8qGYc880Df7d1dDhjdrOsW/6n6T1eJOo0qtAKo RdqVr44aBdYk5tuyMLwPXrwxQl9DEh1lX+IQ/C7VMcs8yZvTK26FzrjSLvAv5fhF 2NYUxQyEiSspqbs4y60wHoAhTysWQ3TOU4U39mBD5UUGwd0cxhYftGzqt5d6WfVn jyxWzsL4mYk/c9VbumRUxIZ+SPYMNb7KFr9j1Qc8yJeqrSN0X5x+eJ9uJBNiMY15 jTXiRYMRiivojXNhuO/NaXV6Amivkm5cDXmCsI9FqYi8 -----END CERTIFICATE-----Generated at Sun Jan 25 14:38:29 2026 by rpki-client