This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/OwjPnlisGDUZdsOdhkm7WqfS97o.roa File: OwjPnlisGDUZdsOdhkm7WqfS97o.roa (raw, json) Hash identifier: z+3nyFF5ATMpyCfr9E8+TN0uSx1GRXzgvEJpueI61iw= Subject key identifier: 3B:08:CF:9E:58:AC:18:35:19:76:C3:9D:86:49:BB:5A:A7:D2:F7:BA Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02 Certificate serial: 019B7C12A89E0AE22F4AC7B7B932B6BFFC1A Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/OwjPnlisGDUZdsOdhkm7WqfS97o.roa Signing time: Fri 02 Jan 2026 00:19:16 +0000 ROA not before: Fri 02 Jan 2026 00:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 174 IP address blocks: 45.157.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.mft rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a8:9e:0a:e2:2f:4a:c7:b7:b9:32:b6:bf:fc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02 Validity Not Before: Jan 2 00:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b08cf9e58ac18351976c39d8649bb5aa7d2f7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0f:1a:d5:e7:fe:d9:bf:a5:55:c3:01:c7:11: 68:34:3c:0a:02:e8:7e:1f:3e:ba:fc:4a:76:50:44: 87:51:a3:de:39:20:71:c8:34:9d:80:b2:3c:20:83: 87:ea:d0:7c:1b:83:46:c2:c6:2a:31:7c:95:d7:73: 20:87:2a:b4:ef:a8:06:11:be:a5:b8:61:cf:54:89: 71:d7:fb:c1:ec:17:35:aa:92:fb:23:b7:95:6c:07: 8a:7c:06:62:7e:e8:27:b8:88:67:02:e0:c3:e1:6c: 96:1e:56:63:ac:7a:46:70:1a:04:41:fb:2c:7a:65: 43:3a:08:3c:ad:e4:0f:44:49:35:04:fe:a8:df:54: 41:ed:ac:f2:54:d1:79:a1:dc:7e:53:6d:e6:1b:17: 2a:05:5b:21:a6:82:20:a6:71:63:d3:8d:1a:b0:4b: f6:51:7c:e0:15:45:f0:1e:29:8a:02:2f:1b:ea:8e: a1:85:88:fe:4d:f6:7a:3e:7a:13:0f:32:4e:c3:7b: fa:7a:fd:12:6b:ca:ed:6d:20:98:9f:54:06:de:60: 13:c7:c6:c4:e8:69:83:e8:80:08:03:c6:af:7a:dc: f2:cb:38:56:bc:f9:97:1c:b6:97:64:ce:ed:fc:13: 84:f1:94:84:67:a4:92:3e:b6:fb:a0:7c:10:01:35: 68:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:08:CF:9E:58:AC:18:35:19:76:C3:9D:86:49:BB:5A:A7:D2:F7:BA X509v3 Authority Key Identifier: keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/OwjPnlisGDUZdsOdhkm7WqfS97o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.132.0/22 Signature Algorithm: sha256WithRSAEncryption 55:b9:a9:e5:8e:48:a9:75:df:22:d7:01:7d:c6:ac:45:dd:40: e2:66:8d:17:74:bb:1b:97:63:7b:08:8b:10:7b:ec:b4:47:52: 45:33:9c:b5:a4:4f:ec:45:77:e6:9c:43:31:32:87:03:0a:30: 62:0d:11:d5:8b:6c:69:b0:ea:57:df:bb:7a:bf:4e:d9:6b:d2: 72:85:f2:81:72:8b:8a:e2:ec:18:da:fb:cf:bd:1c:46:11:2e: 82:65:2f:1f:d8:75:85:07:7a:82:a5:12:17:be:dd:28:b6:1d: 93:34:99:d2:8d:35:d6:0c:33:09:f0:cf:f7:33:82:04:ea:ac: 50:08:d4:27:3e:e1:f6:b7:78:0a:a6:94:63:d9:ab:5d:c5:13: 56:99:57:32:4c:90:b5:c9:8a:5b:b5:76:b4:35:3e:2f:e3:09: cc:31:b6:11:2b:d6:1b:c6:fc:c4:cd:fb:2a:0d:41:d7:63:e1: 83:a0:07:66:c6:ee:c2:41:65:18:7d:51:96:60:54:ce:e4:e0: 6a:a3:3d:48:9e:50:e8:cf:75:ab:44:ff:cb:7a:70:8f:5c:ea: fd:cb:e7:ee:97:05:74:62:56:de:a8:59:1e:62:e7:f5:66:43: 4f:33:5f:c0:cf:d7:e9:4a:42:42:d0:db:0e:e9:36:23:c9:d0: 6f:8f:75:c6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EqieCuIvSse3uTK2v/waMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3Y2IxNGE0MWY4ZDllNjI4ZGFlODhmNDc1MjgyMmZjNzdk ZmVjMDIwHhcNMjYwMTAyMDAxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjA4Y2Y5ZTU4YWMxODM1MTk3NmMzOWQ4NjQ5YmI1YWE3ZDJmN2JhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1A8a1ef+2b+lVcMBxxFoNDwKAuh+ Hz66/Ep2UESHUaPeOSBxyDSdgLI8IIOH6tB8G4NGwsYqMXyV13Mghyq076gGEb6l uGHPVIlx1/vB7Bc1qpL7I7eVbAeKfAZifugnuIhnAuDD4WyWHlZjrHpGcBoEQfss emVDOgg8reQPREk1BP6o31RB7azyVNF5odx+U23mGxcqBVshpoIgpnFj040asEv2 UXzgFUXwHimKAi8b6o6hhYj+TfZ6PnoTDzJOw3v6ev0Sa8rtbSCYn1QG3mATx8bE 6GmD6IAIA8avetzyyzhWvPmXHLaXZM7t/BOE8ZSEZ6SSPrb7oHwQATVoKQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDsIz55YrBg1GXbDnYZJu1qn0ve6MB8GA1UdIwQY MBaAFPfLFKQfjZ5ija6I9HUoIvx33+wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTkt ZTdlZTRlNzVkM2FmLzEvT3dqUG5saXNHRFVaZHNPZGhrbTdXcWZTOTdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTktZTdlZTRlNzVkM2Fm LzEvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ2EMA0G CSqGSIb3DQEBCwUAA4IBAQBVuanljkipdd8i1wF9xqxF3UDiZo0XdLsbl2N7CIsQ e+y0R1JFM5y1pE/sRXfmnEMxMocDCjBiDRHVi2xpsOpX37t6v07Za9JyhfKBcouK 4uwY2vvPvRxGES6CZS8f2HWFB3qCpRIXvt0oth2TNJnSjTXWDDMJ8M/3M4IE6qxQ CNQnPuH2t3gKppRj2atdxRNWmVcyTJC1yYpbtXa0NT4v4wnMMbYRK9YbxvzEzfsq DUHXY+GDoAdmxu7CQWUYfVGWYFTO5OBqoz1InlDoz3WrRP/LenCPXOr9y+fulwV0 YlbeqFkeYuf1ZkNPM1/Az9fpSkJC0NsO6TYjydBvj3XG -----END CERTIFICATE-----Generated at Mon Jan 12 00:53:40 2026 by rpki-client