This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/OHlyv2SY4nABXERxhcrW_PpllhI.roa File: OHlyv2SY4nABXERxhcrW_PpllhI.roa (raw, json) Hash identifier: fc0mqTiKlRcdEMrPr+gXOf0SaCux6s/Oi/1T81LKDnk= Subject key identifier: 38:79:72:BF:64:98:E2:70:01:5C:44:71:85:CA:D6:FC:FA:65:96:12 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019BD0AD55E49C9817B1515A28AFBD5A07CF Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/OHlyv2SY4nABXERxhcrW_PpllhI.roa Signing time: Sun 18 Jan 2026 10:36:19 +0000 ROA not before: Sun 18 Jan 2026 10:36:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21859 IP address blocks: 155.2.218.0/24 maxlen: 24 155.2.219.0/24 maxlen: 24 192.253.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d0:ad:55:e4:9c:98:17:b1:51:5a:28:af:bd:5a:07:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 18 10:36:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=387972bf6498e270015c447185cad6fcfa659612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:42:89:4d:78:2c:42:89:59:51:3c:dc:9f:d5: 4c:21:fc:fd:d0:05:7a:79:11:de:7f:87:16:d2:7a: 99:cd:16:d5:84:b2:19:82:a7:6b:9c:43:a8:aa:64: 3d:2b:af:c4:5a:d0:42:22:fe:98:87:98:6f:0f:fe: 99:fb:24:6f:92:d0:32:9c:2b:46:86:09:4f:e8:79: af:78:d3:4b:87:35:45:2c:3c:98:7e:26:75:d3:ce: 1b:5c:ee:98:b5:74:02:2c:cb:7e:1e:c8:13:6d:16: 20:96:45:03:1d:e4:c9:af:8f:a6:cf:94:e2:10:b2: 50:e6:97:3c:a2:47:60:6d:93:b2:da:2e:9d:12:96: bf:82:b0:68:59:f9:ba:76:ce:b0:49:fd:3f:da:98: 92:7a:fb:85:70:b6:4b:17:af:82:d0:ca:02:65:ff: ad:09:7e:98:ff:8a:0d:19:bc:0c:1e:7e:ca:a6:ed: 96:68:80:d0:f2:bb:58:33:fc:6d:a6:2a:3b:58:b4: 3f:c5:a7:3b:05:19:49:6a:7f:f5:37:49:5c:f9:26: 6e:33:fc:d9:58:e3:2d:07:d1:0e:0c:f2:2f:48:27: 1b:25:f4:db:b9:bf:a0:92:11:62:7e:08:7a:b1:b0: eb:d6:33:0f:b7:9c:44:52:3c:20:d2:d3:e6:4c:34: 91:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:79:72:BF:64:98:E2:70:01:5C:44:71:85:CA:D6:FC:FA:65:96:12 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/OHlyv2SY4nABXERxhcrW_PpllhI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.2.218.0/23 192.253.210.0/24 Signature Algorithm: sha256WithRSAEncryption 82:c1:13:5c:8f:67:be:1d:30:5d:02:3b:64:16:f8:0b:8a:2e: eb:6a:e8:c0:a0:1d:3d:26:4d:91:44:e2:43:7b:26:33:c7:76: 84:c2:7e:a2:53:a4:1d:a5:fa:50:dd:79:f7:c2:b9:20:91:d0: d8:3a:f8:2f:d0:a3:05:0c:8c:a4:80:6b:33:52:25:91:f1:fe: 19:c5:6f:2d:3a:cf:74:91:cb:64:4d:80:46:bd:cb:f9:7c:50: 73:7e:dd:3c:41:39:03:10:bc:04:d4:8b:73:c5:af:00:25:ee: 5e:b0:54:50:24:b9:88:89:ac:51:67:98:f0:3d:d4:ac:ce:6d: e0:cc:7c:78:57:e3:77:ed:aa:12:f9:a2:49:f8:a4:df:ff:5c: 56:fb:b4:19:10:b3:2b:59:89:93:7d:1f:e6:ef:55:bf:33:97: 86:62:7a:56:66:1c:c0:fa:08:ff:7d:5d:99:8d:0f:5a:e7:bb: 72:60:62:1e:0f:08:23:c3:e3:8a:9b:9a:3e:54:ed:53:b0:b6: 62:a9:72:ef:5c:cc:6b:ee:3b:90:8d:c3:3d:87:b7:f7:99:1e: 26:5d:e6:39:a8:f3:3e:c0:61:2c:e8:33:c1:15:64:ff:25:b1: f1:54:07:c0:0f:5b:13:3e:ef:ac:11:b8:58:91:ba:36:b7:a1: cf:d3:b9:77 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvQrVXknJgXsVFaKK+9WgfPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTE4MTAzNjE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODc5NzJiZjY0OThlMjcwMDE1YzQ0NzE4NWNhZDZmY2ZhNjU5NjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0KJTXgsQolZUTzcn9VMIfz90AV6 eRHef4cW0nqZzRbVhLIZgqdrnEOoqmQ9K6/EWtBCIv6Yh5hvD/6Z+yRvktAynCtG hglP6HmveNNLhzVFLDyYfiZ1084bXO6YtXQCLMt+HsgTbRYglkUDHeTJr4+mz5Ti ELJQ5pc8okdgbZOy2i6dEpa/grBoWfm6ds6wSf0/2piSevuFcLZLF6+C0MoCZf+t CX6Y/4oNGbwMHn7Kpu2WaIDQ8rtYM/xtpio7WLQ/xac7BRlJan/1N0lc+SZuM/zZ WOMtB9EODPIvSCcbJfTbub+gkhFifgh6sbDr1jMPt5xEUjwg0tPmTDSRwQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDh5cr9kmOJwAVxEcYXK1vz6ZZYSMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvT0hseXYyU1k0bkFCWEVSeGhjcldfUHBsbGhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBmwLaAwQA wP3SMA0GCSqGSIb3DQEBCwUAA4IBAQCCwRNcj2e+HTBdAjtkFvgLii7raujAoB09 Jk2RROJDeyYzx3aEwn6iU6QdpfpQ3Xn3wrkgkdDYOvgv0KMFDIykgGszUiWR8f4Z xW8tOs90kctkTYBGvcv5fFBzft08QTkDELwE1Itzxa8AJe5esFRQJLmIiaxRZ5jw PdSszm3gzHx4V+N37aoS+aJJ+KTf/1xW+7QZELMrWYmTfR/m71W/M5eGYnpWZhzA +gj/fV2ZjQ9a57tyYGIeDwgjw+OKm5o+VO1TsLZiqXLvXMxr7juQjcM9h7f3mR4m XeY5qPM+wGEs6DPBFWT/JbHxVAfAD1sTPu+sEbhYkbo2t6HP07l3 -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:17 2026 by rpki-client