This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/oOCEdl18ApazsLr9oW3-hDtAacY.roa File: oOCEdl18ApazsLr9oW3-hDtAacY.roa (raw, json) Hash identifier: a86oY7wjZz2Dhj/N/W2mY4vwh1YYVreTExq6exYWPOc= Subject key identifier: A0:E0:84:76:5D:7C:02:96:B3:B0:BA:FD:A1:6D:FE:84:3B:40:69:C6 Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Certificate serial: 019B8835FAD6A2DD01666E5D5D25B0844960 Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/oOCEdl18ApazsLr9oW3-hDtAacY.roa Signing time: Sun 04 Jan 2026 08:53:17 +0000 ROA not before: Sun 04 Jan 2026 08:53:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55154 IP address blocks: 31.170.55.0/24 maxlen: 24 37.49.145.0/24 maxlen: 24 94.74.173.0/24 maxlen: 24 109.203.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.mft rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:88:35:fa:d6:a2:dd:01:66:6e:5d:5d:25:b0:84:49:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7 Validity Not Before: Jan 4 08:53:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a0e084765d7c0296b3b0bafda16dfe843b4069c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2d:c1:48:f0:61:93:9e:c8:41:68:ac:c5:3b: a5:97:17:ac:5f:8e:ce:8a:d7:d8:eb:f9:cb:4a:8a: 66:0e:c0:92:95:ca:5b:61:72:3e:17:9f:1e:b4:84: a4:f8:39:62:6c:8e:04:72:10:12:a3:c5:96:8c:cb: c7:8c:af:2d:97:06:e1:eb:bf:d1:67:7a:e1:0d:d9: f2:1f:2c:76:90:72:24:aa:b9:6a:05:d0:bf:89:20: 9c:b1:b1:0b:fe:cb:8d:6f:59:d5:92:67:bc:4c:74: 60:94:f4:5e:48:35:60:18:4f:ad:3f:d9:6b:60:f1: 9b:c2:c2:21:b7:ff:28:51:d0:c3:2a:20:d9:41:68: 73:65:4d:98:5c:c1:dd:32:26:1e:1f:c9:dd:4e:47: e9:2a:ba:6d:d6:7b:1e:62:8e:5a:8f:4f:d3:de:79: 6d:38:47:30:6f:99:61:64:65:63:46:e1:cc:7c:aa: d4:8b:ca:cd:56:84:68:f3:28:7c:31:8e:66:14:80: 06:b9:69:bb:94:0e:bb:fb:31:56:42:77:26:a6:12: 96:da:91:47:20:9a:d1:b5:6f:07:00:f2:d0:9e:11: 03:c4:ec:42:2d:78:e1:e6:b4:d0:dd:30:d6:13:fa: 88:e2:90:9c:f8:22:93:d9:8c:74:97:85:ff:36:07: 05:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E0:84:76:5D:7C:02:96:B3:B0:BA:FD:A1:6D:FE:84:3B:40:69:C6 X509v3 Authority Key Identifier: keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/oOCEdl18ApazsLr9oW3-hDtAacY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.170.55.0/24 37.49.145.0/24 94.74.173.0/24 109.203.180.0/22 Signature Algorithm: sha256WithRSAEncryption 69:73:3c:43:8c:67:b8:4c:88:ad:e5:d4:53:76:97:23:70:00: 75:85:27:2d:32:93:45:e2:ed:5d:72:24:54:af:66:8e:02:22: 00:f9:ee:8e:64:5a:3b:9a:9d:5e:97:e7:6f:85:e9:5a:25:8d: 3b:44:aa:ab:75:23:ad:ee:58:9a:86:7a:43:04:8a:20:fe:37: c3:34:34:26:de:ec:04:db:a1:88:26:f6:70:5f:49:d0:e7:83: 74:9d:07:96:d6:1b:38:3d:82:fa:06:8f:6b:0a:3b:5d:74:ff: 83:bc:67:7b:5f:ae:a8:ac:35:81:76:10:93:88:aa:3a:f9:07: 7e:d2:c6:e4:85:dc:36:b4:2c:c9:58:bd:b6:ac:ff:72:45:5f: be:79:5c:b3:45:bc:f3:52:a5:77:44:fc:c7:f8:0d:9b:e0:32: 8e:7e:15:de:6c:d6:f8:1f:ae:c5:34:c8:3d:d0:7d:e7:84:23: a9:37:7f:8d:d1:e1:84:61:6f:ad:cc:97:67:fe:7a:c4:57:7f: 64:1b:9f:70:bf:cc:82:b5:d2:fe:c3:99:be:9c:92:2c:2c:6d: 9e:bd:72:ec:69:05:b7:b1:b7:2c:c4:b4:cc:bc:b7:a5:89:02: a4:5d:14:e3:6c:12:8f:c2:37:67:13:c5:5a:9e:9b:4a:f7:7c: d8:2c:4e:48 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZuINfrWot0BZm5dXSWwhElgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2MDQ3NWViZTdmMDdkNzQxNTNjYjFjY2EzMzhjMTZkODAx ZjQ1ZjcwHhcNMjYwMTA0MDg1MzE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMGUwODQ3NjVkN2MwMjk2YjNiMGJhZmRhMTZkZmU4NDNiNDA2OWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuy3BSPBhk57IQWisxTullxesX47O itfY6/nLSopmDsCSlcpbYXI+F58etISk+DlibI4EchASo8WWjMvHjK8tlwbh67/R Z3rhDdnyHyx2kHIkqrlqBdC/iSCcsbEL/suNb1nVkme8THRglPReSDVgGE+tP9lr YPGbwsIht/8oUdDDKiDZQWhzZU2YXMHdMiYeH8ndTkfpKrpt1nseYo5aj0/T3nlt OEcwb5lhZGVjRuHMfKrUi8rNVoRo8yh8MY5mFIAGuWm7lA67+zFWQncmphKW2pFH IJrRtW8HAPLQnhEDxOxCLXjh5rTQ3TDWE/qI4pCc+CKT2Yx0l4X/NgcFeQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFKDghHZdfAKWs7C6/aFt/oQ7QGnGMB8GA1UdIwQY MBaAFNYEdevn8H10FTyxzKM4wW2AH0X3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2Mt NDk2ZjhlYmIyZDYxLzEvb09DRWRsMThBcGF6c0xyOW9XMy1oRHRBYWNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81MmViYWUtZTAwNi00Nzc4LWFjM2MtNDk2ZjhlYmIyZDYx LzEvMWdSMTYtZndmWFFWUExITW96akJiWUFmUmZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAH6o3AwQA JTGRAwQAXkqtAwQCbcu0MA0GCSqGSIb3DQEBCwUAA4IBAQBpczxDjGe4TIit5dRT dpcjcAB1hSctMpNF4u1dciRUr2aOAiIA+e6OZFo7mp1el+dvhelaJY07RKqrdSOt 7liahnpDBIog/jfDNDQm3uwE26GIJvZwX0nQ54N0nQeW1hs4PYL6Bo9rCjtddP+D vGd7X66orDWBdhCTiKo6+Qd+0sbkhdw2tCzJWL22rP9yRV++eVyzRbzzUqV3RPzH +A2b4DKOfhXebNb4H67FNMg90H3nhCOpN3+N0eGEYW+tzJdn/nrEV39kG59wv8yC tdL+w5m+nJIsLG2evXLsaQW3sbcsxLTMvLeliQKkXRTjbBKPwjdnE8VanptK93zY LE5I -----END CERTIFICATE-----Generated at Wed Jan 21 07:46:32 2026 by rpki-client