This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/OfQeP38YLp0H-vHTzOU-QIF2dU0.roa File: OfQeP38YLp0H-vHTzOU-QIF2dU0.roa (raw, json) Hash identifier: +bXd+URu/u2uHwGSmr3/gE7IFl9z0b4rIn3DtAlbhwU= Subject key identifier: 39:F4:1E:3F:7F:18:2E:9D:07:FA:F1:D3:CC:E5:3E:40:81:76:75:4D Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a Certificate serial: 019B7FF169A2C51A04F021D3FD8CBFF40364 Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/OfQeP38YLp0H-vHTzOU-QIF2dU0.roa Signing time: Fri 02 Jan 2026 18:21:26 +0000 ROA not before: Fri 02 Jan 2026 18:21:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47447 IP address blocks: 193.160.223.0/24 maxlen: 24 193.168.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:69:a2:c5:1a:04:f0:21:d3:fd:8c:bf:f4:03:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a Validity Not Before: Jan 2 18:21:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=39f41e3f7f182e9d07faf1d3cce53e408176754d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d7:e4:9b:78:c7:24:fa:e5:23:4f:00:48:9c: 7e:a2:be:a0:1f:d9:7a:ba:f3:e5:fc:2b:4e:b7:c5: eb:3d:04:f2:71:33:51:09:a6:a8:f6:3a:8a:9d:35: 18:47:bb:db:8e:64:cb:dd:22:d5:71:9d:c4:a9:0b: 2c:bc:a6:ee:6e:f5:e4:d4:c0:b9:e2:42:9b:53:df: 2b:48:63:df:46:2c:a1:b7:3d:a7:95:9f:30:fd:44: 29:2a:c4:65:6a:28:77:62:48:69:16:32:db:58:14: ec:2e:23:c8:ec:d0:62:fc:c9:47:32:fc:9c:7e:23: f2:44:06:2c:bb:51:25:f8:0b:99:9a:d4:cb:49:99: 10:62:e3:86:c7:30:ed:e7:64:d4:c3:9c:a1:8a:3a: db:ad:87:70:e5:33:9f:bd:b8:37:87:21:09:40:f4: e2:be:9d:f0:ad:07:03:c3:d7:70:27:1e:8a:9f:ee: f9:f3:83:bf:49:c9:4e:49:57:8a:e0:78:96:7a:9e: fa:ae:4d:21:27:4d:44:44:c5:55:f1:78:a2:05:2f: e8:ff:da:03:94:23:1d:6a:b8:8e:2e:98:91:22:3d: a6:11:67:38:06:d5:4e:27:ed:4d:de:74:d6:d8:6a: aa:80:42:3e:ab:fe:5d:fc:94:db:8d:47:62:d0:e9: b2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F4:1E:3F:7F:18:2E:9D:07:FA:F1:D3:CC:E5:3E:40:81:76:75:4D X509v3 Authority Key Identifier: keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/OfQeP38YLp0H-vHTzOU-QIF2dU0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.160.223.0/24 193.168.201.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:6b:c2:ee:41:88:3c:4c:f8:75:b3:5b:f4:f0:28:1c:09:16: 5b:fe:78:6c:12:4d:51:4d:92:66:b7:8a:80:08:c8:45:b8:2a: 5d:fa:5b:5c:2d:61:e4:7d:51:f3:f6:fe:b1:44:44:57:68:53: b5:31:eb:d3:a1:0c:6b:52:80:a9:50:61:5e:39:84:25:7f:ca: 88:c3:02:04:99:de:41:8a:e0:73:24:de:57:d2:a7:53:0f:e5: 81:0a:cc:c2:75:6b:2b:98:a1:52:ae:8e:54:6d:5e:c9:34:be: 85:79:09:a2:d0:d4:bd:60:60:d9:ad:cc:14:b1:93:d4:82:b8: e2:a6:2e:98:db:fd:84:71:6f:78:41:45:fa:3a:a0:3c:41:78: 81:d2:84:7c:f8:3a:24:5a:cc:5a:5b:03:9c:63:75:c0:dd:33: c9:ec:78:c4:93:50:b1:15:62:fc:ad:3b:83:b7:b1:8d:35:3a: 30:ca:5e:94:a6:62:24:cf:ad:7a:32:20:30:fb:b9:86:26:9b: b4:e6:7c:7b:62:23:62:86:27:7c:b3:33:9c:a8:6c:88:a3:7f: 41:eb:36:b7:b1:1d:fb:e2:d2:2e:d2:17:47:ac:01:c0:d2:a9: 4a:0c:34:d8:3f:35:80:31:59:f5:c1:cb:09:a2:33:1e:a5:17: 68:58:d8:f4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/8WmixRoE8CHT/Yy/9ANkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk ZjM1NGEwHhcNMjYwMTAyMTgyMTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOWY0MWUzZjdmMTgyZTlkMDdmYWYxZDNjY2U1M2U0MDgxNzY3NTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytfkm3jHJPrlI08ASJx+or6gH9l6 uvPl/CtOt8XrPQTycTNRCaao9jqKnTUYR7vbjmTL3SLVcZ3EqQssvKbubvXk1MC5 4kKbU98rSGPfRiyhtz2nlZ8w/UQpKsRlaih3YkhpFjLbWBTsLiPI7NBi/MlHMvyc fiPyRAYsu1El+AuZmtTLSZkQYuOGxzDt52TUw5yhijrbrYdw5TOfvbg3hyEJQPTi vp3wrQcDw9dwJx6Kn+7584O/SclOSVeK4HiWep76rk0hJ01ERMVV8XiiBS/o/9oD lCMdariOLpiRIj2mEWc4BtVOJ+1N3nTW2GqqgEI+q/5d/JTbjUdi0OmygQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDn0Hj9/GC6dB/rx08zlPkCBdnVNMB8GA1UdIwQY MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt MjBlMTk3ODBjYjJlLzEvT2ZRZVAzOFlMcDBILXZIVHpPVS1RSUYyZFUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwaDfAwQA wajJMA0GCSqGSIb3DQEBCwUAA4IBAQBra8LuQYg8TPh1s1v08CgcCRZb/nhsEk1R TZJmt4qACMhFuCpd+ltcLWHkfVHz9v6xRERXaFO1MevToQxrUoCpUGFeOYQlf8qI wwIEmd5BiuBzJN5X0qdTD+WBCszCdWsrmKFSro5UbV7JNL6FeQmi0NS9YGDZrcwU sZPUgrjipi6Y2/2EcW94QUX6OqA8QXiB0oR8+DokWsxaWwOcY3XA3TPJ7HjEk1Cx FWL8rTuDt7GNNTowyl6UpmIkz616MiAw+7mGJpu05nx7YiNihid8szOcqGyIo39B 6za3sR374tIu0hdHrAHA0qlKDDTYPzWAMVn1wcsJojMepRdoWNj0 -----END CERTIFICATE-----Generated at Mon Jan 19 14:37:21 2026 by rpki-client