This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/h_bos_CEt4K6vszLxodyeu3vmAE.roa File: h_bos_CEt4K6vszLxodyeu3vmAE.roa (raw, json) Hash identifier: 5IunCabu30wgrwNjFtBffDKi3dUYWoG8TyVqxTCppTo= Subject key identifier: 87:F6:E8:B3:F0:84:B7:82:BA:BE:CC:CB:C6:87:72:7A:ED:EF:98:01 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B1B3FE27F14871656F70D1033AC86A852 Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/h_bos_CEt4K6vszLxodyeu3vmAE.roa Signing time: Sun 14 Dec 2025 05:05:30 +0000 ROA not before: Sun 14 Dec 2025 05:05:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9009 IP address blocks: 5.175.204.0/24 maxlen: 24 77.90.59.0/24 maxlen: 24 89.106.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:3f:e2:7f:14:87:16:56:f7:0d:10:33:ac:86:a8:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Dec 14 05:05:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=87f6e8b3f084b782babecccbc687727aedef9801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:68:d4:44:35:fb:a3:3c:1c:fa:f5:7b:16: be:5f:3f:65:a9:9d:42:23:37:59:97:10:ef:90:80: 3a:cb:50:6b:0e:96:62:79:46:d4:92:3c:da:33:2f: 42:b9:8c:fa:0a:0c:96:5d:9c:e7:ab:2e:cb:d6:8a: 63:e3:19:fa:c8:36:2e:d6:f4:7c:71:0c:8d:2c:bd: 2c:07:cf:80:80:bf:68:6e:0f:70:32:78:ea:6d:5d: 5c:5b:c1:66:b4:14:0f:af:db:66:71:f8:52:96:50: 2f:2a:5a:e6:f5:11:b5:c3:4f:16:f4:32:4b:14:83: 87:03:5c:f3:ad:64:ec:be:73:93:97:2a:66:70:96: e3:69:29:33:41:e4:d5:c6:95:61:b3:ae:12:46:34: 99:04:3d:91:6f:db:8b:a5:21:ad:4e:92:5c:a6:c3: da:ce:73:9a:b4:53:04:43:f9:21:8c:5b:de:5a:8f: 40:e8:3d:eb:eb:e3:b6:53:ce:04:ad:64:be:3a:bb: 24:d2:b0:34:4a:36:3b:9e:79:5e:e9:89:4c:d8:47: 9f:1c:da:6a:f9:12:61:e6:18:ad:97:c1:4e:5e:9f: e0:56:65:37:e0:af:cd:ea:77:0c:e1:7a:98:ca:78: 7b:7a:2b:af:05:23:94:c1:93:7f:7c:a2:de:bc:49: ee:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F6:E8:B3:F0:84:B7:82:BA:BE:CC:CB:C6:87:72:7A:ED:EF:98:01 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/h_bos_CEt4K6vszLxodyeu3vmAE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.175.204.0/24 77.90.59.0/24 89.106.80.0/24 Signature Algorithm: sha256WithRSAEncryption a0:af:03:8a:6b:eb:ce:c3:c8:4e:7c:ae:03:f5:e5:d8:e8:1a: a2:b2:9e:7f:db:a3:bd:13:01:3c:44:da:fc:e6:ef:15:98:54: 02:43:5f:af:83:ed:c9:2d:37:42:8b:04:d3:2c:ff:62:66:4b: d4:46:f6:77:b1:44:b8:92:6a:67:53:af:e4:a3:70:e2:4e:99: 9e:54:14:a6:b5:8d:c0:70:c8:b8:32:ae:d9:6c:31:5c:d7:1d: 64:27:95:52:db:2c:47:dc:29:bb:37:a3:85:1d:5c:9b:82:bf: 52:ad:01:61:d9:c5:93:9d:f5:7f:48:27:a1:af:90:70:d2:ca: f4:15:65:25:26:79:67:65:be:eb:d3:a4:1c:1c:b4:d5:7f:15: ea:61:04:13:5b:77:cb:2e:6b:54:02:57:cb:da:d2:9b:28:2e: af:e2:57:a9:69:28:0f:82:ce:a2:c9:9e:7b:f2:50:3a:24:3d: 62:c3:18:e9:8b:cc:89:39:ba:8f:9c:15:f9:6a:01:f5:cf:c5: 6b:07:4c:16:cd:bf:56:64:a1:25:52:04:e5:dc:3f:66:89:30: eb:d6:c3:6f:d9:d6:88:62:7a:30:1a:91:55:d9:c4:b7:56:d6: 3b:a6:eb:21:a9:5a:16:40:9a:17:91:12:3e:56:0d:a4:ea:56: bb:d8:76:06 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZsbP+J/FIcWVvcNEDOshqhSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjUxMjE0MDUwNTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2Y2ZThiM2YwODRiNzgyYmFiZWNjY2JjNjg3NzI3YWVkZWY5ODAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsA9o1EQ1+6M8HPr1exa+Xz9lqZ1C IzdZlxDvkIA6y1BrDpZieUbUkjzaMy9CuYz6CgyWXZznqy7L1opj4xn6yDYu1vR8 cQyNLL0sB8+AgL9obg9wMnjqbV1cW8FmtBQPr9tmcfhSllAvKlrm9RG1w08W9DJL FIOHA1zzrWTsvnOTlypmcJbjaSkzQeTVxpVhs64SRjSZBD2Rb9uLpSGtTpJcpsPa znOatFMEQ/khjFveWo9A6D3r6+O2U84ErWS+Orsk0rA0SjY7nnle6YlM2EefHNpq +RJh5hitl8FOXp/gVmU34K/N6ncM4XqYynh7eiuvBSOUwZN/fKLevEnu9QIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFIf26LPwhLeCur7My8aHcnrt75gBMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvaF9ib3NfQ0V0NEs2dnN6THhvZHlldTN2bUFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABa/MAwQA TVo7AwQAWWpQMA0GCSqGSIb3DQEBCwUAA4IBAQCgrwOKa+vOw8hOfK4D9eXY6Bqi sp5/26O9EwE8RNr85u8VmFQCQ1+vg+3JLTdCiwTTLP9iZkvURvZ3sUS4kmpnU6/k o3DiTpmeVBSmtY3AcMi4Mq7ZbDFc1x1kJ5VS2yxH3Cm7N6OFHVybgr9SrQFh2cWT nfV/SCehr5Bw0sr0FWUlJnlnZb7r06QcHLTVfxXqYQQTW3fLLmtUAlfL2tKbKC6v 4lepaSgPgs6iyZ578lA6JD1iwxjpi8yJObqPnBX5agH1z8VrB0wWzb9WZKElUgTl 3D9miTDr1sNv2daIYnowGpFV2cS3VtY7pushqVoWQJoXkRI+Vg2k6la72HYG -----END CERTIFICATE-----Generated at Fri Dec 19 20:55:20 2025 by rpki-client