This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/2ef900-ef25-42a4-9edd-45e6cd6e320e/1/0HI-hYUQzf4SnFU50ilapMC-N0M.roa File: 0HI-hYUQzf4SnFU50ilapMC-N0M.roa (raw, json) Hash identifier: OXBTJCBE8s4VmNGyaynb87VbRk7167Q44yiSXd1oMkw= Subject key identifier: D0:72:3E:85:85:10:CD:FE:12:9C:55:39:D2:29:5A:A4:C0:BE:37:43 Certificate issuer: /CN=b07a65a204e3c799fb183b9ebe47362fa7cfe8c4 Certificate serial: 019B7B3586A93977D5F4690937F43B643AA5 Authority key identifier: B0:7A:65:A2:04:E3:C7:99:FB:18:3B:9E:BE:47:36:2F:A7:CF:E8:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHplogTjx5n7GDuevkc2L6fP6MQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/2ef900-ef25-42a4-9edd-45e6cd6e320e/1/0HI-hYUQzf4SnFU50ilapMC-N0M.roa Signing time: Thu 01 Jan 2026 20:17:43 +0000 ROA not before: Thu 01 Jan 2026 20:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12859 IP address blocks: 46.247.36.0/23 maxlen: 24 2a05:bcc0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/2ef900-ef25-42a4-9edd-45e6cd6e320e/1/sHplogTjx5n7GDuevkc2L6fP6MQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/2ef900-ef25-42a4-9edd-45e6cd6e320e/1/sHplogTjx5n7GDuevkc2L6fP6MQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sHplogTjx5n7GDuevkc2L6fP6MQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:86:a9:39:77:d5:f4:69:09:37:f4:3b:64:3a:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b07a65a204e3c799fb183b9ebe47362fa7cfe8c4 Validity Not Before: Jan 1 20:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0723e858510cdfe129c5539d2295aa4c0be3743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:94:cf:e2:f1:c7:22:c7:cf:0b:e6:8b:90: de:52:75:e0:e7:06:35:b0:1b:6e:71:df:9f:f2:cf: ee:06:b1:66:a8:83:97:1a:0a:44:d0:13:15:47:57: 25:ba:85:0d:b2:bb:a9:be:98:96:c2:da:97:f4:7e: b9:62:5b:49:ab:74:01:69:86:c6:cf:2b:2f:28:c5: 67:f0:b4:c4:27:f1:79:4e:36:b6:72:e8:40:ae:a3: 3e:6b:eb:6f:5e:30:d6:5e:9d:75:b4:50:1f:28:6e: a5:49:5e:8c:fa:3c:65:1e:67:d6:7a:6b:fe:90:27: 1b:23:19:ff:31:af:ff:83:75:56:e4:e2:42:ae:60: a9:41:78:d3:63:15:c0:05:c1:af:f2:eb:52:f6:28: bb:bb:08:1c:70:30:68:33:2a:25:de:4c:73:c6:f2: cb:d4:8f:2d:38:e4:3c:c9:03:89:26:91:70:7b:a2: 6d:ce:f4:c3:8a:d2:b0:7b:25:4f:ad:62:c2:61:b1: 79:f4:19:1f:74:93:24:25:02:1c:c2:ea:eb:5b:02: 04:d9:f7:03:60:b7:c4:ab:ba:07:0c:db:c6:66:1b: 01:0c:a9:1e:9f:09:5e:1e:7c:7b:cb:00:da:dd:2e: 89:a5:90:2f:83:34:e4:00:39:62:a4:ad:05:cc:64: 87:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:72:3E:85:85:10:CD:FE:12:9C:55:39:D2:29:5A:A4:C0:BE:37:43 X509v3 Authority Key Identifier: keyid:B0:7A:65:A2:04:E3:C7:99:FB:18:3B:9E:BE:47:36:2F:A7:CF:E8:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHplogTjx5n7GDuevkc2L6fP6MQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2ef900-ef25-42a4-9edd-45e6cd6e320e/1/0HI-hYUQzf4SnFU50ilapMC-N0M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2ef900-ef25-42a4-9edd-45e6cd6e320e/1/sHplogTjx5n7GDuevkc2L6fP6MQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.247.36.0/23 IPv6: 2a05:bcc0::/29 Signature Algorithm: sha256WithRSAEncryption 78:8e:05:fd:30:8a:49:91:7f:a9:2a:85:b4:a7:4d:2f:96:b1: 97:f0:f1:29:bd:63:07:48:e3:47:2a:81:09:01:c1:3e:6d:7e: 94:d7:e4:6b:1d:1e:80:92:75:b2:73:b7:63:45:e9:6f:a8:b1: 8b:de:db:41:ae:30:8c:b4:16:2e:50:5c:ee:21:f4:c7:0e:6c: 02:3e:a4:fb:93:78:98:ba:4c:8b:c5:88:78:2c:6d:0a:17:d4: df:4f:a1:c2:cc:07:6c:8b:41:52:d6:b3:4c:54:2b:5b:87:d8: 8d:79:85:d5:d7:e0:42:05:43:46:43:c0:72:fa:85:10:25:c2: fb:ef:67:3f:b4:47:24:dd:3c:41:1f:aa:d7:be:81:ef:f9:2a: 01:b7:a9:d5:56:19:28:72:55:96:b5:c6:db:90:21:ad:8e:d9: 51:f5:ce:54:12:cc:a6:4e:e4:82:27:99:7f:e9:4b:d2:d7:72: 43:80:af:06:98:f4:bd:6e:90:b3:98:49:9b:25:4b:8f:c1:41: 05:8d:d4:95:ba:ae:80:d4:60:75:f1:25:4d:ca:89:48:2d:57: 05:2c:00:08:53:d7:b6:1d:ce:c1:e1:d1:f4:2e:97:2d:b4:87: 95:6b:bf:93:ae:34:c2:d6:17:f7:91:cc:41:13:f9:58:61:65: c2:bd:58:53 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NYapOXfV9GkJN/Q7ZDqlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwN2E2NWEyMDRlM2M3OTlmYjE4M2I5ZWJlNDczNjJmYTdj ZmU4YzQwHhcNMjYwMTAxMjAxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDcyM2U4NTg1MTBjZGZlMTI5YzU1MzlkMjI5NWFhNGMwYmUzNzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveKUz+LxxyLHzwvmi5DeUnXg5wY1 sBtucd+f8s/uBrFmqIOXGgpE0BMVR1cluoUNsrupvpiWwtqX9H65YltJq3QBaYbG zysvKMVn8LTEJ/F5Tja2cuhArqM+a+tvXjDWXp11tFAfKG6lSV6M+jxlHmfWemv+ kCcbIxn/Ma//g3VW5OJCrmCpQXjTYxXABcGv8utS9ii7uwgccDBoMyol3kxzxvLL 1I8tOOQ8yQOJJpFwe6JtzvTDitKweyVPrWLCYbF59BkfdJMkJQIcwurrWwIE2fcD YLfEq7oHDNvGZhsBDKkenwleHnx7ywDa3S6JpZAvgzTkADlipK0FzGSHsQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNByPoWFEM3+EpxVOdIpWqTAvjdDMB8GA1UdIwQY MBaAFLB6ZaIE48eZ+xg7nr5HNi+nz+jEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0hwbG9nVGp4NW43R0R1ZXZrYzJMNmZQNk1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8yZWY5MDAtZWYyNS00MmE0LTllZGQt NDVlNmNkNmUzMjBlLzEvMEhJLWhZVVF6ZjRTbkZVNTBpbGFwTUMtTjBNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8yZWY5MDAtZWYyNS00MmE0LTllZGQtNDVlNmNkNmUzMjBl LzEvc0hwbG9nVGp4NW43R0R1ZXZrYzJMNmZQNk1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBLvckMA0E AgACMAcDBQMqBbzAMA0GCSqGSIb3DQEBCwUAA4IBAQB4jgX9MIpJkX+pKoW0p00v lrGX8PEpvWMHSONHKoEJAcE+bX6U1+RrHR6AknWyc7djRelvqLGL3ttBrjCMtBYu UFzuIfTHDmwCPqT7k3iYukyLxYh4LG0KF9TfT6HCzAdsi0FS1rNMVCtbh9iNeYXV 1+BCBUNGQ8By+oUQJcL772c/tEck3TxBH6rXvoHv+SoBt6nVVhkoclWWtcbbkCGt jtlR9c5UEsymTuSCJ5l/6UvS13JDgK8GmPS9bpCzmEmbJUuPwUEFjdSVuq6A1GB1 8SVNyolILVcFLAAIU9e2Hc7B4dH0LpcttIeVa7+TrjTC1hf3kcxBE/lYYWXCvVhT -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:25 2026 by rpki-client