This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/oG6E9ZToy7RTlQOkPq4zuV7XG0U.roa File: oG6E9ZToy7RTlQOkPq4zuV7XG0U.roa (raw, json) Hash identifier: 2JYfuKBfp+nWk/czqBEKKIWfjScVuKeSQovGMXxQmwA= Subject key identifier: A0:6E:84:F5:94:E8:CB:B4:53:95:03:A4:3E:AE:33:B9:5E:D7:1B:45 Certificate issuer: /CN=79d0d856764a3fee64be14f0a49f59a6865285d1 Certificate serial: 019B7CEE4549758E89F95BE5A31940E1DDC5 Authority key identifier: 79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/oG6E9ZToy7RTlQOkPq4zuV7XG0U.roa Signing time: Fri 02 Jan 2026 04:19:08 +0000 ROA not before: Fri 02 Jan 2026 04:19:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 193.28.240.0/24 maxlen: 24 193.28.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.crl rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.mft rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:45:49:75:8e:89:f9:5b:e5:a3:19:40:e1:dd:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79d0d856764a3fee64be14f0a49f59a6865285d1 Validity Not Before: Jan 2 04:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a06e84f594e8cbb4539503a43eae33b95ed71b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:83:5b:80:e6:6f:28:36:5f:e9:da:62:1e:bd: 03:7a:bb:31:d7:5f:8a:60:ab:91:b8:80:27:d8:c4: 78:05:8c:ab:36:9c:82:19:73:77:10:b5:0f:12:1b: 82:fc:58:80:98:48:8e:7c:23:4e:50:47:36:3e:09: 16:00:36:f1:96:1b:b1:7b:78:a9:11:c6:22:79:ac: 5e:bf:a8:55:7f:df:78:21:d6:89:d0:d8:91:cf:b7: fc:a3:bb:3f:44:72:7d:fd:ae:5d:a0:5f:34:9e:f1: 77:ad:8f:1f:7a:5c:ae:08:50:8e:d5:a8:7c:ac:af: 21:4f:33:38:c4:b7:c0:49:0d:09:a7:a5:b5:36:dd: ed:bf:03:78:0d:b1:32:92:1a:72:2c:c4:b1:29:7e: 8a:f9:9c:a0:77:16:7f:18:90:71:9b:51:64:c5:bf: 2b:1f:69:d7:cc:5e:03:8d:06:d6:3e:fd:fc:75:15: 17:93:c5:06:32:85:42:6a:fb:ce:43:3b:4e:83:9e: 7e:fb:d1:3e:25:47:ee:a4:87:b3:9c:22:b7:81:f7: 71:19:4b:e8:86:15:41:c0:e2:5a:3f:35:35:0e:b8: ee:9c:33:69:d9:39:90:cd:9b:92:7c:37:14:33:2f: da:0b:44:f3:bb:73:91:4c:4c:cf:71:74:33:6e:63: cb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6E:84:F5:94:E8:CB:B4:53:95:03:A4:3E:AE:33:B9:5E:D7:1B:45 X509v3 Authority Key Identifier: keyid:79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/oG6E9ZToy7RTlQOkPq4zuV7XG0U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.28.240.0/23 Signature Algorithm: sha256WithRSAEncryption 61:b3:2f:0a:2c:68:78:35:4e:ce:e4:61:17:07:b2:97:42:d8: 17:29:fc:d5:c2:d6:d1:91:44:be:3c:bd:52:96:22:b8:9f:c8: 6e:56:31:ef:5d:9c:85:0d:2e:45:d4:61:c7:63:fa:73:96:75: 70:b4:3c:b6:b8:d5:b9:30:0f:c7:a9:98:6f:bb:d7:95:a2:b0: f9:45:f2:d6:44:c2:be:bc:a0:bd:d6:fd:e9:11:c8:7d:0c:90: d6:36:e5:48:57:f9:da:03:4f:8a:0b:f5:a7:c2:23:59:b5:e5: e5:5e:5f:78:06:dc:e4:a9:05:d2:28:58:cc:6a:8a:d8:9c:73: 0b:75:1b:bb:f5:75:a4:8f:12:ac:7b:47:30:3b:e7:92:d8:aa: a6:19:b4:4a:5c:b3:38:0f:3f:95:5d:46:5f:3d:f2:d3:00:f0: 6d:03:b9:28:39:37:7d:8a:8b:6f:e1:de:f5:d8:b4:f5:c4:7c: 05:49:98:a7:50:42:9e:d5:1b:5e:6e:01:81:dd:a9:d9:37:6c: 1c:07:57:41:b0:f2:95:ab:27:70:0b:a0:e9:21:35:08:8e:58: 20:51:3f:15:04:6b:6b:0d:fe:08:6c:b8:7a:a3:29:b0:0b:f8: a3:35:19:ca:51:18:15:7f:d8:34:cf:7a:c4:cc:84:0b:e7:f3: e0:b3:6c:3a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87kVJdY6J+VvloxlA4d3FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5ZDBkODU2NzY0YTNmZWU2NGJlMTRmMGE0OWY1OWE2ODY1 Mjg1ZDEwHhcNMjYwMTAyMDQxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDZlODRmNTk0ZThjYmI0NTM5NTAzYTQzZWFlMzNiOTVlZDcxYjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnINbgOZvKDZf6dpiHr0Dersx11+K YKuRuIAn2MR4BYyrNpyCGXN3ELUPEhuC/FiAmEiOfCNOUEc2PgkWADbxlhuxe3ip EcYieaxev6hVf994IdaJ0NiRz7f8o7s/RHJ9/a5doF80nvF3rY8felyuCFCO1ah8 rK8hTzM4xLfASQ0Jp6W1Nt3tvwN4DbEykhpyLMSxKX6K+ZygdxZ/GJBxm1Fkxb8r H2nXzF4DjQbWPv38dRUXk8UGMoVCavvOQztOg55++9E+JUfupIeznCK3gfdxGUvo hhVBwOJaPzU1DrjunDNp2TmQzZuSfDcUMy/aC0Tzu3ORTEzPcXQzbmPLOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKBuhPWU6Mu0U5UDpD6uM7le1xtFMB8GA1UdIwQY MBaAFHnQ2FZ2Sj/uZL4U8KSfWaaGUoXRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWREWVZuWktQLTVrdmhUd3BKOVpwb1pTaGRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS80M2UzMDktNzVjNS00ZjQwLTlkYjMt ZjJiYjY5ZTc1ZTc0LzEvb0c2RTlaVG95N1JUbFFPa1BxNHp1VjdYRzBVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS80M2UzMDktNzVjNS00ZjQwLTlkYjMtZjJiYjY5ZTc1ZTc0 LzEvZWREWVZuWktQLTVrdmhUd3BKOVpwb1pTaGRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwRzwMA0G CSqGSIb3DQEBCwUAA4IBAQBhsy8KLGh4NU7O5GEXB7KXQtgXKfzVwtbRkUS+PL1S liK4n8huVjHvXZyFDS5F1GHHY/pzlnVwtDy2uNW5MA/HqZhvu9eVorD5RfLWRMK+ vKC91v3pEch9DJDWNuVIV/naA0+KC/WnwiNZteXlXl94BtzkqQXSKFjMaorYnHML dRu79XWkjxKse0cwO+eS2KqmGbRKXLM4Dz+VXUZfPfLTAPBtA7koOTd9iotv4d71 2LT1xHwFSZinUEKe1RtebgGB3anZN2wcB1dBsPKVqydwC6DpITUIjlggUT8VBGtr Df4IbLh6oymwC/ijNRnKURgVf9g0z3rEzIQL5/Pgs2w6 -----END CERTIFICATE-----Generated at Mon Jan 19 11:50:20 2026 by rpki-client