This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/opMH_d86U67tB0M4Puge6hwMxhs.roa File: opMH_d86U67tB0M4Puge6hwMxhs.roa (raw, json) Hash identifier: EPFcHbubdIVGUvjUTRqKkRof2zEv7fUovhuE3DTa6Tc= Subject key identifier: A2:93:07:FD:DF:3A:53:AE:ED:07:43:38:3E:E8:1E:EA:1C:0C:C6:1B Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A2EAE2E854368513FAE4C3B39D92EF Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/opMH_d86U67tB0M4Puge6hwMxhs.roa Signing time: Thu 01 Jan 2026 08:18:21 +0000 ROA not before: Thu 01 Jan 2026 08:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 5.253.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ea:e2:e8:54:36:85:13:fa:e4:c3:b3:9d:92:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a29307fddf3a53aeed0743383ee81eea1c0cc61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:48:34:09:8d:dc:a7:e7:d5:b5:f9:ae:b0:52: 92:74:41:c1:17:2a:92:50:7b:69:bc:52:d8:97:e8: 11:f3:bc:ea:8d:c1:0a:8a:f9:4d:a3:98:7d:0b:fc: 50:9a:34:7f:42:e6:c7:41:9e:46:ce:04:ab:8e:37: ae:4f:95:45:0c:91:5c:87:df:34:e0:c9:d3:1f:be: e7:45:ca:28:3a:e4:c6:21:e0:52:39:9b:7f:a0:36: 91:1f:cb:ec:43:7d:8a:d3:55:2d:c2:65:b3:47:2c: 65:ed:02:c7:17:ec:72:64:00:47:a8:5f:ec:8e:e1: 1b:2a:d1:ea:3f:98:47:66:a7:dc:ba:e0:04:d4:67: 0f:f5:4b:e5:54:39:08:f3:c6:3e:ee:3a:8d:8a:96: 93:05:1b:51:0f:49:47:c2:a0:7e:17:cc:85:8a:11: f4:fe:45:23:bb:a9:57:09:98:fe:59:f8:f1:6e:1d: c6:33:1c:1f:6a:a3:b8:31:46:47:0a:12:63:4a:94: cd:53:d9:bd:00:81:e8:cc:a7:31:79:48:54:70:9e: dc:4c:52:c3:9b:c9:69:c2:87:97:b0:05:6f:f4:dd: 1a:13:7d:2e:a7:4d:15:22:fe:6e:80:02:ff:75:31: fa:17:d0:71:a9:84:cd:d5:6e:2b:76:32:62:ad:87: d6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:93:07:FD:DF:3A:53:AE:ED:07:43:38:3E:E8:1E:EA:1C:0C:C6:1B X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/opMH_d86U67tB0M4Puge6hwMxhs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.64.0/24 Signature Algorithm: sha256WithRSAEncryption 08:90:92:f8:6b:ee:df:0d:9d:62:44:7d:6d:97:80:99:20:64: 9d:72:8f:1f:4d:43:aa:2f:0a:4e:24:27:95:a3:1a:c2:c6:03: 46:d3:14:93:a8:c5:e8:9f:72:51:8b:f0:86:f2:bf:f1:de:1d: 69:25:ba:74:f6:6f:15:77:8a:34:46:08:ed:3d:28:6c:a5:55: 34:6e:4c:64:44:73:9d:f8:73:9e:f3:68:bf:cf:98:1a:14:76: 50:3d:60:6b:c1:60:bf:3e:42:0a:48:61:7b:44:02:2c:41:8a: 7c:c0:ae:d6:a4:f7:cf:b6:9a:14:f1:95:81:41:79:7a:c9:1f: f9:d9:db:e0:01:32:9c:91:1a:18:4c:4f:e4:68:be:66:ea:74: fd:b8:d8:6c:61:97:06:c6:23:a9:ef:55:35:a1:dc:ac:f4:f4: c6:a9:71:c2:f1:da:9c:1b:f9:9b:94:90:83:aa:4b:6b:88:e3: 9f:cf:65:ed:06:72:5c:da:3a:99:b3:a6:3e:17:98:e3:0d:a3: 16:87:aa:a8:aa:1f:26:07:6d:7e:42:01:7d:f6:82:25:53:08: 2d:b2:8e:b7:e3:eb:55:67:b9:60:1c:ba:cd:7c:f4:4d:95:21: d7:2f:dc:43:c7:e1:bb:9a:ed:79:4c:1e:8d:2e:2a:2b:82:c0: 30:d1:87:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ouri6FQ2hRP65MOznZLvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjkzMDdmZGRmM2E1M2FlZWQwNzQzMzgzZWU4MWVlYTFjMGNjNjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArkg0CY3cp+fVtfmusFKSdEHBFyqS UHtpvFLYl+gR87zqjcEKivlNo5h9C/xQmjR/QubHQZ5GzgSrjjeuT5VFDJFch980 4MnTH77nRcooOuTGIeBSOZt/oDaRH8vsQ32K01UtwmWzRyxl7QLHF+xyZABHqF/s juEbKtHqP5hHZqfcuuAE1GcP9UvlVDkI88Y+7jqNipaTBRtRD0lHwqB+F8yFihH0 /kUju6lXCZj+Wfjxbh3GMxwfaqO4MUZHChJjSpTNU9m9AIHozKcxeUhUcJ7cTFLD m8lpwoeXsAVv9N0aE30up00VIv5ugAL/dTH6F9BxqYTN1W4rdjJirYfWCQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKKTB/3fOlOu7QdDOD7oHuocDMYbMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvb3BNSF9kODZVNjd0QjBNNFB1Z2U2aHdNeGhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABf1AMA0G CSqGSIb3DQEBCwUAA4IBAQAIkJL4a+7fDZ1iRH1tl4CZIGSdco8fTUOqLwpOJCeV oxrCxgNG0xSTqMXon3JRi/CG8r/x3h1pJbp09m8Vd4o0RgjtPShspVU0bkxkRHOd +HOe82i/z5gaFHZQPWBrwWC/PkIKSGF7RAIsQYp8wK7WpPfPtpoU8ZWBQXl6yR/5 2dvgATKckRoYTE/kaL5m6nT9uNhsYZcGxiOp71U1odys9PTGqXHC8dqcG/mblJCD qktriOOfz2XtBnJc2jqZs6Y+F5jjDaMWh6qoqh8mB21+QgF99oIlUwgtso634+tV Z7lgHLrNfPRNlSHXL9xDx+G7mu15TB6NLiorgsAw0Yfx -----END CERTIFICATE-----Generated at Fri Jan 2 12:07:22 2026 by rpki-client