This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/hofeGE10wLSzhspMEfttKnwUIKY.roa File: hofeGE10wLSzhspMEfttKnwUIKY.roa (raw, json) Hash identifier: jPJmbLC2hvl/zc20INUHfXqO8ECxV9ktdK0LUMAhKIE= Subject key identifier: 86:87:DE:18:4D:74:C0:B4:B3:86:CA:4C:11:FB:6D:2A:7C:14:20:A6 Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e Certificate serial: 019B7AC8AE674ED41CD00C4143EA2D8A3611 Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/hofeGE10wLSzhspMEfttKnwUIKY.roa Signing time: Thu 01 Jan 2026 18:18:50 +0000 ROA not before: Thu 01 Jan 2026 18:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15626 IP address blocks: 5.34.182.0/23 maxlen: 23 5.34.182.0/24 maxlen: 24 5.34.183.0/24 maxlen: 24 82.118.17.0/24 maxlen: 24 82.118.18.0/24 maxlen: 24 193.238.152.0/23 maxlen: 23 217.12.192.0/21 maxlen: 21 217.12.192.0/23 maxlen: 23 217.12.195.0/24 maxlen: 24 217.12.196.0/23 maxlen: 23 217.12.198.0/24 maxlen: 24 217.12.199.0/24 maxlen: 24 217.12.205.0/24 maxlen: 24 217.12.210.0/23 maxlen: 23 217.12.210.0/24 maxlen: 24 217.12.211.0/24 maxlen: 24 217.12.212.0/22 maxlen: 22 217.12.212.0/23 maxlen: 23 217.12.214.0/24 maxlen: 24 217.12.215.0/24 maxlen: 24 217.12.216.0/23 maxlen: 23 217.12.220.0/22 maxlen: 22 217.12.221.0/24 maxlen: 24 217.12.222.0/24 maxlen: 24 217.12.223.0/24 maxlen: 24 2a02:27a8::/32 maxlen: 32 2a02:27a8:feed::/48 maxlen: 48 2a02:27ad::/32 maxlen: 32 2a05:9407::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.mft rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:ae:67:4e:d4:1c:d0:0c:41:43:ea:2d:8a:36:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e Validity Not Before: Jan 1 18:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8687de184d74c0b4b386ca4c11fb6d2a7c1420a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:33:22:0b:83:62:f2:e3:35:f2:db:fd:07:dd: 66:d2:93:ae:df:56:02:5f:75:c9:95:81:93:32:2c: f4:20:f3:d4:e7:96:71:41:6d:40:81:96:c2:62:0e: f2:da:ca:26:09:39:5c:7a:b6:87:5e:bf:a4:d6:bb: 7f:62:8c:76:a3:81:70:d7:79:f0:9d:28:3d:3f:6c: 9d:60:5f:dc:9f:32:83:7f:71:b8:b3:09:38:c6:cf: 50:32:78:61:97:f2:b8:67:a1:77:57:2a:ca:66:86: 6c:f5:25:2f:c3:b6:93:b3:ad:48:4d:bd:d4:1b:4a: 68:a0:ba:f0:f4:52:bf:27:20:14:89:c8:e4:45:ef: 3b:0b:2c:34:ed:2f:15:0a:9e:5a:85:25:92:31:30: 3c:74:dd:e2:d3:fd:4c:87:cd:b0:2f:e3:b0:53:b8: 03:f1:38:c3:f2:1d:82:f2:61:58:f0:06:de:11:fa: f6:2d:61:c2:68:b6:7f:d1:f8:fd:a5:af:b5:7b:d5: 89:3a:2a:c1:24:bc:ba:66:98:af:48:00:ce:5d:a6: ee:a0:9b:a8:75:d1:ca:7c:7b:f0:f4:b0:04:e7:ed: ef:d9:ab:c9:2a:db:82:05:7a:2e:88:a8:17:27:6d: fa:eb:2a:a7:b3:ff:dd:37:28:d5:24:cb:17:d1:d8: e1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:87:DE:18:4D:74:C0:B4:B3:86:CA:4C:11:FB:6D:2A:7C:14:20:A6 X509v3 Authority Key Identifier: keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/hofeGE10wLSzhspMEfttKnwUIKY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.34.182.0/23 82.118.17.0-82.118.18.255 193.238.152.0/23 217.12.192.0/21 217.12.205.0/24 217.12.210.0-217.12.217.255 217.12.220.0/22 IPv6: 2a02:27a8::/32 2a02:27ad::/32 2a05:9407::/32 Signature Algorithm: sha256WithRSAEncryption 13:f2:f7:7f:8b:03:4c:09:1e:a8:2c:a6:07:0d:48:98:b2:2b: f5:06:90:e0:58:8f:3c:70:ac:ca:1e:0b:a2:1c:ea:6d:eb:69: 7e:00:af:fe:b8:2d:a8:41:ed:5d:d1:f1:6b:78:02:11:10:46: a6:bc:fb:d3:23:1f:e6:86:b3:36:60:e6:d4:dc:32:47:c3:d3: 4b:25:e6:9a:7f:f9:4a:bd:a9:b8:10:7c:0f:93:ea:27:3b:e9: 2c:32:e9:c1:74:44:6a:41:35:c0:7b:11:06:04:dd:1e:7e:50: 54:13:c1:0b:2f:ac:a7:ba:d8:e5:7f:ef:dd:6c:94:77:08:3e: d6:1d:2f:7b:85:a0:d1:90:0c:0b:e3:4c:dd:60:11:70:e3:cc: 1e:63:48:3e:a4:3c:4c:68:8d:bc:6b:d2:81:0b:52:3a:bc:40: f9:c8:eb:60:94:98:c8:cc:78:4f:d0:4d:4a:01:1d:bd:19:22: d9:d8:5c:2e:17:71:12:84:90:2a:2e:01:a7:6b:ef:d4:19:e3: ea:ff:6a:62:36:5b:40:3a:48:e9:c3:c7:4e:da:70:d9:c8:e5: 20:15:96:74:b5:ce:8c:31:4e:c9:d8:d3:9b:70:f2:8e:6e:41: 69:a4:89:07:88:18:02:73:b5:ff:17:45:54:3a:fa:6c:a7:fa: 5c:82:ce:d7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgISAZt6yK5nTtQc0AxBQ+otijYRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0ZDk4ZThmZWM2ODA3NzVhMTU3MjY2ZTBjNmI3OGIxNDFh MzRmNWUwHhcNMjYwMTAxMTgxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Njg3ZGUxODRkNzRjMGI0YjM4NmNhNGMxMWZiNmQyYTdjMTQyMGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlTMiC4Ni8uM18tv9B91m0pOu31YC X3XJlYGTMiz0IPPU55ZxQW1AgZbCYg7y2somCTlceraHXr+k1rt/Yox2o4Fw13nw nSg9P2ydYF/cnzKDf3G4swk4xs9QMnhhl/K4Z6F3VyrKZoZs9SUvw7aTs61ITb3U G0pooLrw9FK/JyAUicjkRe87Cyw07S8VCp5ahSWSMTA8dN3i0/1Mh82wL+OwU7gD 8TjD8h2C8mFY8AbeEfr2LWHCaLZ/0fj9pa+1e9WJOirBJLy6ZpivSADOXabuoJuo ddHKfHvw9LAE5+3v2avJKtuCBXouiKgXJ2366yqns//dNyjVJMsX0djhfQIDAQAB o4ICWjCCAlYwHQYDVR0OBBYEFIaH3hhNdMC0s4bKTBH7bSp8FCCmMB8GA1UdIwQY MBaAFJTZjo/saAd1oVcmbgxreLFBo09eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzkt ODdkMTdkZjc0YzdlLzEvaG9mZUdFMTB3TFN6aHNwTUVmdHRLbndVSUtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzktODdkMTdkZjc0Yzdl LzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHAGCCsGAQUFBwEHAQH/BGEwXzBABAIAATA6AwQBBSK2MAwD BABSdhEDBABSdhIDBAHB7pgDBAPZDMADBADZDM0wDAMEAdkM0gMEAdkM2AMEAtkM 3DAbBAIAAjAVAwUAKgInqAMFACoCJ60DBQAqBZQHMA0GCSqGSIb3DQEBCwUAA4IB AQAT8vd/iwNMCR6oLKYHDUiYsiv1BpDgWI88cKzKHguiHOpt62l+AK/+uC2oQe1d 0fFreAIREEamvPvTIx/mhrM2YObU3DJHw9NLJeaaf/lKvam4EHwPk+onO+ksMunB dERqQTXAexEGBN0eflBUE8ELL6ynutjlf+/dbJR3CD7WHS97haDRkAwL40zdYBFw 48weY0g+pDxMaI28a9KBC1I6vED5yOtglJjIzHhP0E1KAR29GSLZ2FwuF3EShJAq LgGna+/UGePq/2piNltAOkjpw8dO2nDZyOUgFZZ0tc6MMU7J2NObcPKObkFppIkH iBgCc7X/F0VUOvpsp/pcgs7X -----END CERTIFICATE-----Generated at Sun Jan 25 16:10:18 2026 by rpki-client