This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/OASPwyZ5toyRphyZLrmsdHmEBFE.roa File: OASPwyZ5toyRphyZLrmsdHmEBFE.roa (raw, json) Hash identifier: bMS6tnM7z3ffxq+jXeL5BuM1oPEgdJSiU0Z4m05943Y= Subject key identifier: 38:04:8F:C3:26:79:B6:8C:91:A6:1C:99:2E:B9:AC:74:79:84:04:51 Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Certificate serial: 019B7E37EA84B92897264607D1D09D82E469 Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/OASPwyZ5toyRphyZLrmsdHmEBFE.roa Signing time: Fri 02 Jan 2026 10:19:12 +0000 ROA not before: Fri 02 Jan 2026 10:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48678 IP address blocks: 212.98.224.0/24 maxlen: 24 212.115.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:ea:84:b9:28:97:26:46:07:d1:d0:9d:82:e4:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9 Validity Not Before: Jan 2 10:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38048fc32679b68c91a61c992eb9ac7479840451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:14:df:25:0f:2b:3d:50:27:65:ff:89:69: 7b:8b:7e:8b:43:0a:df:18:dd:d1:c6:20:6d:bf:dd: 34:59:c7:60:73:89:3e:ba:ef:70:7a:d2:41:3e:40: 7c:82:36:ec:8a:76:dc:7c:6a:fc:2c:ea:80:eb:8d: e0:25:20:1d:57:6a:9e:f3:23:36:58:18:02:77:30: 19:6e:5a:ff:ca:56:7b:e8:a1:3b:c7:f9:8f:29:89: b8:26:a1:c0:3b:48:6b:a0:52:42:ea:2a:f0:60:34: 3d:20:f5:27:84:6c:4c:71:67:93:92:a6:78:35:5a: a6:82:2c:30:98:be:75:7d:d8:a3:a5:df:1a:33:7e: 80:6b:63:f0:9c:19:9a:76:64:80:14:a7:42:25:55: 4e:54:fe:a9:e2:76:f3:bf:e8:ed:e2:41:41:70:0e: a0:53:ab:03:6d:e1:5d:9f:2d:26:4a:f4:87:7d:74: f5:a7:53:a7:c4:11:d5:ed:e5:1a:4d:c5:e4:32:e4: af:c1:cf:ac:11:ab:32:43:fe:cf:cc:c6:fd:35:74: bf:38:d1:9a:71:7a:dd:d9:71:3c:17:89:c5:0f:09: 94:4f:fa:0b:97:ee:e6:e1:04:d5:ae:aa:14:86:9b: 60:6a:f7:d4:1a:01:fe:a5:f2:7c:5c:71:cf:1a:43: 41:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:04:8F:C3:26:79:B6:8C:91:A6:1C:99:2E:B9:AC:74:79:84:04:51 X509v3 Authority Key Identifier: keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/OASPwyZ5toyRphyZLrmsdHmEBFE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.98.224.0/24 212.115.30.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e1:65:e6:5b:fb:62:46:b1:85:10:dc:b7:bc:4a:65:c6:e8: bc:0f:ca:cf:08:3c:f1:c0:8b:37:48:63:43:fb:6d:6a:37:c6: ce:fa:2c:39:e9:2e:5c:12:4d:e1:04:d1:a7:86:16:4b:97:85: d3:97:fc:e3:ca:fb:c7:31:8b:c5:cd:0c:26:68:e6:65:fe:e7: c3:f0:69:df:b5:05:fd:d7:f8:99:34:f2:4d:c3:61:e8:06:ef: c3:b5:16:53:bc:23:c7:be:99:ae:ef:45:58:b2:75:e9:b2:fc: 5c:e9:c9:fb:60:92:ad:a4:a9:8d:20:38:0a:84:02:ee:e0:64: 04:25:db:e0:e0:3b:30:32:00:69:57:01:77:da:17:08:39:ce: 8f:12:07:45:4d:72:7e:a5:07:b2:fa:17:51:f8:e3:e1:88:ee: 81:20:81:e4:86:10:f5:14:b4:71:d5:0d:85:f9:2e:24:76:4c: 21:be:d7:85:71:fc:f9:22:e4:9f:1e:a9:f4:7a:bb:e8:35:92: fe:d8:0e:b1:b4:9d:85:9b:46:46:ad:c0:bd:d8:02:6d:4c:98: bf:23:20:00:68:68:76:07:3b:76:39:c8:08:b5:e1:8e:e0:a2: d6:a9:c3:e8:bc:00:10:b9:a7:20:01:85:fb:3e:a7:68:40:aa: ff:c5:0c:6f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N+qEuSiXJkYH0dCdguRpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw MWY0YzkwHhcNMjYwMTAyMTAxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODA0OGZjMzI2NzliNjhjOTFhNjFjOTkyZWI5YWM3NDc5ODQwNDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujAU3yUPKz1QJ2X/iWl7i36LQwrf GN3RxiBtv900Wcdgc4k+uu9wetJBPkB8gjbsinbcfGr8LOqA643gJSAdV2qe8yM2 WBgCdzAZblr/ylZ76KE7x/mPKYm4JqHAO0hroFJC6irwYDQ9IPUnhGxMcWeTkqZ4 NVqmgiwwmL51fdijpd8aM36Aa2PwnBmadmSAFKdCJVVOVP6p4nbzv+jt4kFBcA6g U6sDbeFdny0mSvSHfXT1p1OnxBHV7eUaTcXkMuSvwc+sEasyQ/7PzMb9NXS/ONGa cXrd2XE8F4nFDwmUT/oLl+7m4QTVrqoUhptgavfUGgH+pfJ8XHHPGkNBLwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDgEj8MmebaMkaYcmS65rHR5hARRMB8GA1UdIwQY MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt ODNkNjQ4Zjc5NzQ2LzEvT0FTUHd5WjV0b3lScGh5WkxybXNkSG1FQkZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2 LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1GLgAwQA 1HMeMA0GCSqGSIb3DQEBCwUAA4IBAQCb4WXmW/tiRrGFENy3vEplxui8D8rPCDzx wIs3SGND+21qN8bO+iw56S5cEk3hBNGnhhZLl4XTl/zjyvvHMYvFzQwmaOZl/ufD 8GnftQX91/iZNPJNw2HoBu/DtRZTvCPHvpmu70VYsnXpsvxc6cn7YJKtpKmNIDgK hALu4GQEJdvg4DswMgBpVwF32hcIOc6PEgdFTXJ+pQey+hdR+OPhiO6BIIHkhhD1 FLRx1Q2F+S4kdkwhvteFcfz5IuSfHqn0ervoNZL+2A6xtJ2Fm0ZGrcC92AJtTJi/ IyAAaGh2Bzt2OcgIteGO4KLWqcPovAAQuacgAYX7PqdoQKr/xQxv -----END CERTIFICATE-----Generated at Mon Jan 19 16:50:41 2026 by rpki-client