This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/O29pt5WdBJDI4HT4wvxq7BQK_kY.roa File: O29pt5WdBJDI4HT4wvxq7BQK_kY.roa (raw, json) Hash identifier: SEfN9jxf68fQ4yQGMYSFIzM/5AM/oQlsCNG9wQ//bA8= Subject key identifier: 3B:6F:69:B7:95:9D:04:90:C8:E0:74:F8:C2:FC:6A:EC:14:0A:FE:46 Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Certificate serial: 019B78A3182C74B59867BEAEEB28BDFC84BC Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/O29pt5WdBJDI4HT4wvxq7BQK_kY.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 63023 IP address blocks: 185.224.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.mft rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:18:2c:74:b5:98:67:be:ae:eb:28:bd:fc:84:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7 Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b6f69b7959d0490c8e074f8c2fc6aec140afe46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:36:f8:dd:9f:ae:c9:8f:d0:12:06:57:62:5b: d6:23:c1:c0:b3:58:3e:bf:be:70:e8:f4:f1:cb:90: 3f:5b:ed:38:67:ca:54:ca:57:66:58:89:f3:d4:c9: 5c:78:0a:96:e5:b5:b3:0c:c8:5e:70:02:49:ba:3a: 93:a5:87:6d:18:cf:e9:7e:97:39:ef:01:96:25:77: 8a:11:71:c2:57:e8:f4:12:4f:6f:41:e8:57:cf:87: ec:64:4c:76:b2:05:21:a0:1c:fe:eb:fc:5a:d4:d0: d8:12:cc:32:82:06:f8:04:f7:58:dd:f1:ed:68:e5: e6:8b:e8:9b:18:0b:1e:7a:01:95:2b:ad:2c:42:06: c0:00:2d:1f:d6:27:5f:1e:08:b7:b2:49:5b:d5:29: dc:26:22:73:fc:0a:35:ad:db:cf:43:b6:0c:d6:0f: 2e:85:e7:22:45:4e:0c:8b:4d:85:72:c8:6a:7b:a0: 0b:f5:be:63:40:1a:50:d4:4b:30:04:3a:c9:31:46: 57:09:e4:80:8f:82:a1:5e:1d:01:1a:16:87:6d:35: 0b:c3:eb:18:54:ee:9c:a8:f5:0f:22:91:82:3f:b8: 63:39:bd:96:9f:8c:06:2a:46:2f:8b:66:ee:9e:97: 58:4b:ba:b3:a0:c2:75:7d:35:9d:a9:e6:62:5b:ed: 58:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6F:69:B7:95:9D:04:90:C8:E0:74:F8:C2:FC:6A:EC:14:0A:FE:46 X509v3 Authority Key Identifier: keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/O29pt5WdBJDI4HT4wvxq7BQK_kY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.224.216.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:21:d7:2f:8c:16:cf:73:be:3a:5a:3f:76:5f:31:c2:f5:ac: c7:29:98:b4:0e:ca:75:9b:11:83:a8:cc:29:a5:84:44:e4:4d: ac:dd:81:e1:0e:09:11:aa:b3:f2:4f:ef:28:5f:11:3b:37:5d: a4:c9:c3:ee:49:93:7b:c0:1e:04:ed:d9:a4:08:1a:d2:fa:6b: 06:56:0d:7e:37:67:73:24:1b:1c:b4:d1:8b:33:9f:23:9c:89: 73:1f:27:ac:31:ef:68:55:e9:47:01:e3:ca:23:4d:7c:1b:f2: 3e:7d:7f:97:78:8e:ea:49:68:6e:e6:e7:f3:1e:78:be:af:9b: 59:0e:8a:db:b6:9f:16:9a:71:82:23:9d:00:fd:d6:cb:37:94: 3d:e6:29:8a:86:69:b7:a5:06:34:8a:2b:a4:48:7f:15:e1:4b: 91:3f:b6:1d:1e:67:d8:3f:61:f9:dd:51:7a:5c:a5:03:0f:ab: 63:fd:bb:f5:ca:a7:52:df:b9:35:82:bf:7f:8c:43:98:f9:b5: a9:00:0a:a5:eb:52:88:dd:29:49:d4:b8:94:15:c5:f4:ee:ef: 49:47:be:d8:43:88:b5:8d:d8:ad:6e:86:43:0b:00:83:fc:9a: 4a:77:ef:99:c2:6b:8e:d1:bf:9b:d8:d6:77:59:57:fd:4c:6c: 63:6e:ec:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oxgsdLWYZ76u6yi9/IS8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxYmRkZWFmMGYzMGZiZGFmOWU3NWI5MmFjN2Q1YmQxM2Yy ODVkZTcwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjZmNjliNzk1OWQwNDkwYzhlMDc0ZjhjMmZjNmFlYzE0MGFmZTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjb43Z+uyY/QEgZXYlvWI8HAs1g+ v75w6PTxy5A/W+04Z8pUyldmWInz1MlceAqW5bWzDMhecAJJujqTpYdtGM/pfpc5 7wGWJXeKEXHCV+j0Ek9vQehXz4fsZEx2sgUhoBz+6/xa1NDYEswyggb4BPdY3fHt aOXmi+ibGAseegGVK60sQgbAAC0f1idfHgi3sklb1SncJiJz/Ao1rdvPQ7YM1g8u heciRU4Mi02Fcshqe6AL9b5jQBpQ1EswBDrJMUZXCeSAj4KhXh0BGhaHbTULw+sY VO6cqPUPIpGCP7hjOb2Wn4wGKkYvi2bunpdYS7qzoMJ1fTWdqeZiW+1YVQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDtvabeVnQSQyOB0+ML8auwUCv5GMB8GA1UdIwQY MBaAFHG93q8PMPva+edbkqx9W9E/KF3nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUt NDc3MjMxMTkxYTM1LzEvTzI5cHQ1V2RCSkRJNEhUNHd2eHE3QlFLX2tZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS84MTRlYzUtOWU0MS00YjVhLWE2ZmUtNDc3MjMxMTkxYTM1 LzEvY2IzZXJ3OHctOXI1NTF1U3JIMWIwVDhvWGVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueDYMA0G CSqGSIb3DQEBCwUAA4IBAQB9IdcvjBbPc746Wj92XzHC9azHKZi0Dsp1mxGDqMwp pYRE5E2s3YHhDgkRqrPyT+8oXxE7N12kycPuSZN7wB4E7dmkCBrS+msGVg1+N2dz JBsctNGLM58jnIlzHyesMe9oVelHAePKI018G/I+fX+XeI7qSWhu5ufzHni+r5tZ Dorbtp8WmnGCI50A/dbLN5Q95imKhmm3pQY0iiukSH8V4UuRP7YdHmfYP2H53VF6 XKUDD6tj/bv1yqdS37k1gr9/jEOY+bWpAAql61KI3SlJ1LiUFcX07u9JR77YQ4i1 jditboZDCwCD/JpKd++ZwmuO0b+b2NZ3WVf9TGxjbuzd -----END CERTIFICATE-----Generated at Mon Jan 19 18:00:54 2026 by rpki-client