This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/omXxQha0HM-pJ0TV0_0uSHRjPXE.roa File: omXxQha0HM-pJ0TV0_0uSHRjPXE.roa (raw, json) Hash identifier: Jj3CyBugiBkfT/V/5P2VA5GoJM48HMeye5aq9QG9uls= Subject key identifier: A2:65:F1:42:16:B4:1C:CF:A9:27:44:D5:D3:FD:2E:48:74:63:3D:71 Certificate issuer: /CN=0b1c6d0de70cc51805b63a5e2327622525d075b1 Certificate serial: 019B7DCA9CFBB1F01CA75582E8A2727392A6 Authority key identifier: 0B:1C:6D:0D:E7:0C:C5:18:05:B6:3A:5E:23:27:62:25:25:D0:75:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CxxtDecMxRgFtjpeIydiJSXQdbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/omXxQha0HM-pJ0TV0_0uSHRjPXE.roa Signing time: Fri 02 Jan 2026 08:19:49 +0000 ROA not before: Fri 02 Jan 2026 08:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 46.226.52.0/23 maxlen: 23 85.158.140.0/24 maxlen: 24 85.158.141.0/24 maxlen: 24 85.158.142.0/24 maxlen: 24 85.158.143.0/24 maxlen: 24 193.109.254.0/24 maxlen: 24 193.109.255.0/24 maxlen: 24 195.245.230.0/24 maxlen: 24 195.245.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/CxxtDecMxRgFtjpeIydiJSXQdbE.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/CxxtDecMxRgFtjpeIydiJSXQdbE.mft rsync://rpki.ripe.net/repository/DEFAULT/CxxtDecMxRgFtjpeIydiJSXQdbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 23:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:9c:fb:b1:f0:1c:a7:55:82:e8:a2:72:73:92:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b1c6d0de70cc51805b63a5e2327622525d075b1 Validity Not Before: Jan 2 08:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a265f14216b41ccfa92744d5d3fd2e4874633d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:8c:1e:f0:03:cd:fe:89:9d:27:fa:a0:c1: 3d:1b:22:43:75:a4:8d:43:20:11:78:77:20:2d:a4: 57:b0:4c:98:69:68:9e:3a:55:fa:6a:63:86:9e:19: f0:68:ea:80:5d:ef:ab:4c:80:2c:a9:98:a7:de:e9: e8:0e:68:a6:cb:e2:e9:fe:03:26:05:06:80:89:8c: 3b:09:81:15:fd:a0:86:00:72:de:7d:5d:12:87:11: fc:a7:26:43:7d:6c:1f:5a:67:86:a9:35:1c:93:88: 2a:0f:19:30:e2:7f:a3:c5:b3:93:9b:c5:98:b5:0d: f0:4d:76:fe:cf:d2:cf:74:17:3d:cd:02:e1:4d:07: cb:77:38:42:3e:25:0d:22:55:28:c6:47:2d:54:13: f7:c4:57:33:d5:d0:4a:c7:09:1a:b9:47:79:ca:a4: 04:14:f7:08:68:f9:b3:fd:cf:0d:d5:c7:1f:af:34: 41:98:2e:99:9b:65:01:99:2d:1f:ad:72:25:eb:c5: be:e7:40:97:e7:61:ca:50:7e:9d:1e:6d:a7:45:c0: 38:af:08:0d:f2:ee:ec:c5:b1:ea:fd:4f:5f:ee:80: 0b:af:a0:d6:ff:78:02:26:d8:df:6d:da:45:8f:94: c6:c0:60:ed:65:7c:d5:b5:bc:d7:48:6f:72:d6:c1: 23:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:65:F1:42:16:B4:1C:CF:A9:27:44:D5:D3:FD:2E:48:74:63:3D:71 X509v3 Authority Key Identifier: keyid:0B:1C:6D:0D:E7:0C:C5:18:05:B6:3A:5E:23:27:62:25:25:D0:75:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CxxtDecMxRgFtjpeIydiJSXQdbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/omXxQha0HM-pJ0TV0_0uSHRjPXE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a1972a-9e18-4791-8530-f774f1eafbff/1/CxxtDecMxRgFtjpeIydiJSXQdbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.226.52.0/23 85.158.140.0/22 193.109.254.0/23 195.245.230.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:4f:72:70:f6:2c:b4:34:7f:e7:60:4f:72:c8:b5:4c:e9:5c: 0c:c9:0f:f7:2b:1a:ac:94:ca:b1:db:28:da:95:66:f5:7c:e8: e7:c8:1b:a3:60:53:36:c0:40:0a:a4:26:19:c2:28:55:6d:53: fc:c5:0a:43:ed:4f:1e:df:c3:59:30:8e:fc:a0:52:64:b4:8d: 26:d0:7b:7c:5a:df:78:4c:26:49:6d:99:86:a9:d1:1a:95:ae: 59:c8:e7:bb:a9:e4:a8:d4:ff:25:77:b2:e5:29:80:b6:b8:53: a2:ac:51:c0:47:43:b0:02:22:32:e4:6f:19:e7:41:3f:76:da: dd:df:7d:46:d3:6a:86:64:ef:c8:7d:2c:df:1a:8e:b3:17:24: 64:38:05:2c:3b:84:07:c6:ae:16:c4:a5:0c:bc:56:e3:b5:d7: 24:15:c5:a6:ed:64:d6:f7:64:31:27:1f:a8:53:70:34:a3:47: 22:c7:58:4f:31:35:ce:bc:91:58:40:1e:4b:eb:8d:c0:aa:70: a5:3e:ab:e3:7f:0d:0c:cb:1e:8f:dc:61:af:d4:c1:3e:f1:1a: e3:2e:ad:e6:a7:ab:b2:44:e5:4c:9c:fc:c2:fe:ef:9e:bc:3d: dc:5d:6b:e8:3d:2d:00:cf:e8:11:91:83:48:b3:85:51:0e:35: fb:79:9d:fb -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt9ypz7sfAcp1WC6KJyc5KmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiMWM2ZDBkZTcwY2M1MTgwNWI2M2E1ZTIzMjc2MjI1MjVk MDc1YjEwHhcNMjYwMTAyMDgxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjY1ZjE0MjE2YjQxY2NmYTkyNzQ0ZDVkM2ZkMmU0ODc0NjMzZDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04KMHvADzf6JnSf6oME9GyJDdaSN QyAReHcgLaRXsEyYaWieOlX6amOGnhnwaOqAXe+rTIAsqZin3unoDmimy+Lp/gMm BQaAiYw7CYEV/aCGAHLefV0ShxH8pyZDfWwfWmeGqTUck4gqDxkw4n+jxbOTm8WY tQ3wTXb+z9LPdBc9zQLhTQfLdzhCPiUNIlUoxkctVBP3xFcz1dBKxwkauUd5yqQE FPcIaPmz/c8N1ccfrzRBmC6Zm2UBmS0frXIl68W+50CX52HKUH6dHm2nRcA4rwgN 8u7sxbHq/U9f7oALr6DW/3gCJtjfbdpFj5TGwGDtZXzVtbzXSG9y1sEj1wIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFKJl8UIWtBzPqSdE1dP9Lkh0Yz1xMB8GA1UdIwQY MBaAFAscbQ3nDMUYBbY6XiMnYiUl0HWxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3h4dERlY014UmdGdGpwZUl5ZGlKU1hRZGJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hMTk3MmEtOWUxOC00NzkxLTg1MzAt Zjc3NGYxZWFmYmZmLzEvb21YeFFoYTBITS1wSjBUVjBfMHVTSFJqUFhFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hMTk3MmEtOWUxOC00NzkxLTg1MzAtZjc3NGYxZWFmYmZm LzEvQ3h4dERlY014UmdGdGpwZUl5ZGlKU1hRZGJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBLuI0AwQC VZ6MAwQBwW3+AwQBw/XmMA0GCSqGSIb3DQEBCwUAA4IBAQAqT3Jw9iy0NH/nYE9y yLVM6VwMyQ/3KxqslMqx2yjalWb1fOjnyBujYFM2wEAKpCYZwihVbVP8xQpD7U8e 38NZMI78oFJktI0m0Ht8Wt94TCZJbZmGqdEala5ZyOe7qeSo1P8ld7LlKYC2uFOi rFHAR0OwAiIy5G8Z50E/dtrd331G02qGZO/IfSzfGo6zFyRkOAUsO4QHxq4WxKUM vFbjtdckFcWm7WTW92QxJx+oU3A0o0cix1hPMTXOvJFYQB5L643AqnClPqvjfw0M yx6P3GGv1ME+8RrjLq3mp6uyROVMnPzC/u+evD3cXWvoPS0Az+gRkYNIs4VRDjX7 eZ37 -----END CERTIFICATE-----Generated at Sat Jan 17 06:46:18 2026 by rpki-client