This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0JpPOVHq8rsDG8Zys-m6xk1bMpE.roa File: 0JpPOVHq8rsDG8Zys-m6xk1bMpE.roa (raw, json) Hash identifier: HmRDw0t/83g0dwu0k/AxUaQb1hEceu6J/L0GnIkCXQ0= Subject key identifier: D0:9A:4F:39:51:EA:F2:BB:03:1B:C6:72:B3:E9:BA:C6:4D:5B:32:91 Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Certificate serial: 019B7E3949001A3943E00F0B53C92D9A17D2 Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0JpPOVHq8rsDG8Zys-m6xk1bMpE.roa Signing time: Fri 02 Jan 2026 10:20:41 +0000 ROA not before: Fri 02 Jan 2026 10:20:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400039 IP address blocks: 163.5.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.mft rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:49:00:1a:39:43:e0:0f:0b:53:c9:2d:9a:17:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb Validity Not Before: Jan 2 10:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d09a4f3951eaf2bb031bc672b3e9bac64d5b3291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:90:90:f3:7e:cf:c0:f3:0e:30:41:69:3e:d1: 4c:2f:35:75:85:c4:45:e6:7f:28:4c:e7:0b:f9:61: e5:9c:40:1a:ed:1b:c6:f4:8e:72:6a:f4:2e:d2:80: c9:6a:00:d2:bc:28:33:0a:da:90:19:21:c0:71:3b: 04:41:2c:7f:4e:b4:ac:d8:94:16:79:7d:66:bb:1d: d9:98:ca:52:d2:1f:88:18:7b:6c:0c:11:21:62:58: b6:40:5d:14:12:40:99:a1:75:b2:e0:60:12:5c:72: 0d:87:5e:a8:22:70:a6:01:3f:65:99:12:9b:05:c1: 58:fb:fd:e2:b8:db:65:6d:a7:9e:46:f7:fb:05:65: b2:63:bb:61:11:c7:9f:ae:4b:a6:2a:0b:e8:2d:ca: 15:ac:7b:4e:6a:b5:aa:9d:56:a6:40:0a:8d:0a:99: 7c:ff:57:ab:91:b6:0b:af:f8:07:59:e2:3e:c3:b7: f3:40:61:c8:4b:7e:5a:08:0b:7f:1e:52:72:a3:f0: 2f:fa:b1:c7:28:f4:88:de:c5:cf:7e:e9:20:bf:c9: 9b:39:9b:b7:08:b4:89:a9:9e:e8:61:99:f4:31:b3: 91:1a:3c:76:ac:41:2d:6f:8f:4e:9d:8a:9d:57:b7: 18:cd:32:bf:df:ed:87:5c:ba:a4:93:f1:e1:fb:bc: 7c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9A:4F:39:51:EA:F2:BB:03:1B:C6:72:B3:E9:BA:C6:4D:5B:32:91 X509v3 Authority Key Identifier: keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/0JpPOVHq8rsDG8Zys-m6xk1bMpE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.5.167.0/24 Signature Algorithm: sha256WithRSAEncryption 38:77:de:07:d6:89:77:ad:3b:57:3b:5f:66:97:d4:8d:74:f9: 2e:44:70:90:3d:8f:f7:93:bc:58:d6:a7:53:fd:fa:52:37:7a: 05:b7:1c:68:e4:64:98:61:7a:2e:55:eb:d8:1a:fc:1b:2d:c9: cb:75:87:ed:ab:da:6f:8f:1e:10:b2:46:1e:5f:f4:f9:b3:d4: ca:21:9d:28:26:54:db:8f:d3:a5:97:73:09:ca:f8:48:f7:8c: 59:ef:25:dc:d2:2b:c0:de:a1:75:eb:d9:61:c3:86:b5:8a:38: af:39:0d:09:ba:ed:35:c5:6b:cd:6d:f9:20:98:01:09:45:6c: 01:ba:94:98:33:83:5e:07:01:04:0b:e9:90:3c:07:13:8e:4e: 29:b2:de:94:79:da:be:73:e6:53:e6:f6:76:f5:59:cc:78:c4: 99:7a:b7:54:5a:82:55:6a:af:06:be:ef:b7:51:cb:77:dd:c6: 08:a9:8b:b6:4c:ba:4f:89:84:9b:28:6e:d0:62:2e:f8:9f:cb: de:7a:88:49:64:71:ac:34:6c:a8:12:b8:52:70:84:b4:6a:31: d4:82:76:a0:12:08:7c:3b:b9:50:5c:be:7e:d7:fd:44:3d:04: ab:a8:56:7a:ce:d3:e1:1c:2b:21:62:8a:3c:f8:05:7c:e4:28: 05:89:4d:80 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OUkAGjlD4A8LU8ktmhfSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjZTg1MWI2ZGQ1ZDM2NGVlMTllMGIzODIwMWIzZThkZjI2 MjRiY2IwHhcNMjYwMTAyMTAyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDlhNGYzOTUxZWFmMmJiMDMxYmM2NzJiM2U5YmFjNjRkNWIzMjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZCQ837PwPMOMEFpPtFMLzV1hcRF 5n8oTOcL+WHlnEAa7RvG9I5yavQu0oDJagDSvCgzCtqQGSHAcTsEQSx/TrSs2JQW eX1mux3ZmMpS0h+IGHtsDBEhYli2QF0UEkCZoXWy4GASXHINh16oInCmAT9lmRKb BcFY+/3iuNtlbaeeRvf7BWWyY7thEcefrkumKgvoLcoVrHtOarWqnVamQAqNCpl8 /1erkbYLr/gHWeI+w7fzQGHIS35aCAt/HlJyo/Av+rHHKPSI3sXPfukgv8mbOZu3 CLSJqZ7oYZn0MbORGjx2rEEtb49OnYqdV7cYzTK/3+2HXLqkk/Hh+7x8vwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNCaTzlR6vK7AxvGcrPpusZNWzKRMB8GA1UdIwQY MBaAFAzoUbbdXTZO4Z4LOCAbPo3yYkvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMt OWZlOTQxMDhmZjAxLzEvMEpwUE9WSHE4cnNERzhaeXMtbTZ4azFiTXBFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9kMDJkZmItOTY3My00OWE4LTk3MWMtOWZlOTQxMDhmZjAx LzEvRE9oUnR0MWROazdobmdzNElCcy1qZkppUzhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAowWnMA0G CSqGSIb3DQEBCwUAA4IBAQA4d94H1ol3rTtXO19ml9SNdPkuRHCQPY/3k7xY1qdT /fpSN3oFtxxo5GSYYXouVevYGvwbLcnLdYftq9pvjx4QskYeX/T5s9TKIZ0oJlTb j9Oll3MJyvhI94xZ7yXc0ivA3qF169lhw4a1ijivOQ0Juu01xWvNbfkgmAEJRWwB upSYM4NeBwEEC+mQPAcTjk4pst6Uedq+c+ZT5vZ29VnMeMSZerdUWoJVaq8Gvu+3 Uct33cYIqYu2TLpPiYSbKG7QYi74n8veeohJZHGsNGyoErhScIS0ajHUgnagEgh8 O7lQXL5+1/1EPQSrqFZ6ztPhHCshYoo8+AV85CgFiU2A -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:00 2026 by rpki-client