This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/OQtpXprjxRHSnuDGtbFRD3pTl94.roa File: OQtpXprjxRHSnuDGtbFRD3pTl94.roa (raw, json) Hash identifier: tpn+zzvg1QWooSRqE2MLkFA+bMlho6X8Maf1/MfavB4= Subject key identifier: 39:0B:69:5E:9A:E3:C5:11:D2:9E:E0:C6:B5:B1:51:0F:7A:53:97:DE Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Certificate serial: 019B7F160B8F4068E2FD6C572A3EFC42B336 Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/OQtpXprjxRHSnuDGtbFRD3pTl94.roa Signing time: Fri 02 Jan 2026 14:21:49 +0000 ROA not before: Fri 02 Jan 2026 14:21:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152394 IP address blocks: 92.62.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:16:0b:8f:40:68:e2:fd:6c:57:2a:3e:fc:42:b3:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f Validity Not Before: Jan 2 14:21:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=390b695e9ae3c511d29ee0c6b5b1510f7a5397de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:59:c6:bb:60:4f:e2:d1:3f:f7:da:84:8c:91: 26:cc:3c:f1:50:7e:34:f0:77:a4:53:d2:20:ca:37: f4:32:f0:54:3a:7e:55:42:ec:48:50:7a:1b:47:a1: 5f:37:16:ec:37:a2:ea:7b:85:b7:17:c0:fc:22:ac: bd:05:46:a0:ed:08:77:24:5b:e3:ef:bc:c7:87:e1: ad:c6:f0:37:2b:79:f8:c0:d3:fb:2e:4a:b0:4e:09: 10:25:81:ed:3b:b8:3c:16:d3:fc:a0:c6:54:ee:31: d9:4a:34:ee:1f:fe:9e:29:c1:d7:be:59:b9:50:33: c5:96:c1:4b:2d:27:ef:09:c2:9e:54:fa:e4:73:c5: f5:9d:eb:20:72:a3:15:b9:fe:23:25:3e:06:42:90: c8:79:5d:e3:74:62:a6:87:d8:04:0b:b2:5f:5b:f0: b2:73:e2:2c:91:47:3a:d0:2d:9a:e0:d2:85:a5:3e: ca:b6:c0:03:7d:ce:ba:c2:62:0f:d1:7d:b2:7f:27: 86:72:04:14:5f:b3:7e:7d:d0:5a:1d:13:29:fc:51: f9:32:82:cb:ba:db:9c:c6:5c:35:87:0b:56:a6:af: e3:c7:c1:b3:33:77:45:94:62:06:00:79:e0:c0:8c: cf:dd:60:ca:8f:7a:e6:2b:1f:d7:84:98:06:86:8a: b2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0B:69:5E:9A:E3:C5:11:D2:9E:E0:C6:B5:B1:51:0F:7A:53:97:DE X509v3 Authority Key Identifier: keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/OQtpXprjxRHSnuDGtbFRD3pTl94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.62.249.0/24 Signature Algorithm: sha256WithRSAEncryption 18:24:e5:2e:8c:c5:4d:56:77:cf:45:7c:f0:86:9a:c1:dc:91: 09:5a:98:29:c3:df:61:a3:c0:08:de:0b:fe:65:ce:34:05:a7: d2:ec:65:ba:c5:46:f3:dc:b8:f4:aa:d6:13:54:97:ae:14:d3: 08:d8:8f:42:98:88:b8:a7:76:33:dc:2b:9f:ec:03:20:f7:c4: 37:9f:7a:3e:83:e7:a6:70:a5:10:34:c8:22:d9:71:f3:df:58: de:2e:0b:d9:ac:f3:d9:24:dc:1d:7e:65:ef:40:e4:fd:b1:4b: b7:c6:67:9f:36:65:00:d4:d7:5f:1a:b9:a5:eb:27:9c:9d:12: ad:3c:d1:35:41:bf:82:6f:ad:2f:af:74:f4:e8:f1:f1:2f:f4: e3:90:fa:62:e1:40:01:17:6d:a8:dd:2d:db:d2:c0:d1:cd:8c: 2e:cc:db:86:61:66:f8:f1:ce:d7:ce:5c:45:e1:69:3b:d7:91: 92:da:56:f6:af:03:d5:ce:0a:88:f8:9d:21:31:eb:dc:54:0a: 3a:b1:7b:ca:84:a4:8c:11:bd:3c:7a:16:26:c9:9c:58:42:f7: 21:27:8b:a4:d0:68:76:e9:ad:27:f7:a0:53:45:55:98:02:12: dd:7e:3f:a2:9e:8f:b2:5a:d2:dc:1f:75:e6:06:31:d3:0c:5d: b4:2f:ac:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FguPQGji/WxXKj78QrM2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZDJkYWZmMWM1YmI2MWEwYWM4YjNjYWVhZDRiOGExZmEy ODRkMGYwHhcNMjYwMTAyMTQyMTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTBiNjk1ZTlhZTNjNTExZDI5ZWUwYzZiNWIxNTEwZjdhNTM5N2RlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFnGu2BP4tE/99qEjJEmzDzxUH40 8HekU9Igyjf0MvBUOn5VQuxIUHobR6FfNxbsN6Lqe4W3F8D8Iqy9BUag7Qh3JFvj 77zHh+GtxvA3K3n4wNP7LkqwTgkQJYHtO7g8FtP8oMZU7jHZSjTuH/6eKcHXvlm5 UDPFlsFLLSfvCcKeVPrkc8X1nesgcqMVuf4jJT4GQpDIeV3jdGKmh9gEC7JfW/Cy c+IskUc60C2a4NKFpT7KtsADfc66wmIP0X2yfyeGcgQUX7N+fdBaHRMp/FH5MoLL utucxlw1hwtWpq/jx8GzM3dFlGIGAHngwIzP3WDKj3rmKx/XhJgGhoqytwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDkLaV6a48UR0p7gxrWxUQ96U5feMB8GA1UdIwQY MBaAFCnS2v8cW7YaCsizyurUuKH6KE0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3Zjgt NGY1N2Q5Y2Y1Y2FhLzEvT1F0cFhwcmp4UkhTbnVER3RiRlJEM3BUbDk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNWVhOTgtOTYwMS00YWRkLWE3ZjgtNGY1N2Q5Y2Y1Y2Fh LzEvS2RMYV94eGJ0aG9LeUxQSzZ0UzRvZm9vVFE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXD75MA0G CSqGSIb3DQEBCwUAA4IBAQAYJOUujMVNVnfPRXzwhprB3JEJWpgpw99ho8AI3gv+ Zc40BafS7GW6xUbz3Lj0qtYTVJeuFNMI2I9CmIi4p3Yz3Cuf7AMg98Q3n3o+g+em cKUQNMgi2XHz31jeLgvZrPPZJNwdfmXvQOT9sUu3xmefNmUA1NdfGrml6yecnRKt PNE1Qb+Cb60vr3T06PHxL/TjkPpi4UABF22o3S3b0sDRzYwuzNuGYWb48c7XzlxF 4Wk715GS2lb2rwPVzgqI+J0hMevcVAo6sXvKhKSMEb08ehYmyZxYQvchJ4uk0Gh2 6a0n96BTRVWYAhLdfj+ino+yWtLcH3XmBjHTDF20L6yx -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:07 2026 by rpki-client