This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/o-iJD6qSKBcMDFIpOFvRxAvVB68.roa File: o-iJD6qSKBcMDFIpOFvRxAvVB68.roa (raw, json) Hash identifier: h1nVK1njqo5/GGkuCAVn8ZtCHKNzAogi9mgaa3QkB+Y= Subject key identifier: A3:E8:89:0F:AA:92:28:17:0C:0C:52:29:38:5B:D1:C4:0B:D5:07:AF Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f Certificate serial: 019B7B35BDA625DC5FF2EA06066D1D79A82C Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/o-iJD6qSKBcMDFIpOFvRxAvVB68.roa Signing time: Thu 01 Jan 2026 20:17:58 +0000 ROA not before: Thu 01 Jan 2026 20:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41940 IP address blocks: 194.60.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:bd:a6:25:dc:5f:f2:ea:06:06:6d:1d:79:a8:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f Validity Not Before: Jan 1 20:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3e8890faa9228170c0c5229385bd1c40bd507af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f1:95:e2:bb:ce:62:91:a6:4b:c8:d6:f4:32: d1:91:9d:be:21:ff:75:f6:41:89:72:f0:8c:17:fe: 3e:0e:08:c1:36:eb:37:9f:4c:ae:71:32:5a:c7:ea: d2:31:f7:39:df:b6:e1:8a:90:40:72:00:14:00:cb: c3:1f:32:34:5e:2a:d6:a6:40:6e:9f:b5:e5:14:00: bf:8c:83:e0:6f:d6:8a:0c:e4:63:16:6d:b6:4b:9c: c6:70:e6:f1:20:d6:1f:46:ee:b0:00:b6:b2:85:0b: 11:59:df:bb:5f:e9:fc:41:5e:6c:3b:8e:2c:5b:f4: 00:46:2d:9d:f4:6d:a2:de:af:93:8d:73:6a:d1:2b: ab:4f:03:d8:d5:ad:a3:cb:e9:02:d8:ca:23:d3:2c: 1e:2f:e3:ec:2c:df:88:a3:c7:78:e1:9e:ac:d3:86: ec:e0:8e:59:0f:d7:f9:de:29:37:66:38:d1:7d:86: 56:79:1e:d7:2a:08:dd:d7:43:5c:b1:7e:02:5b:e4: 95:82:20:72:0e:03:e3:62:ba:84:d1:a6:a2:2f:48: d7:ab:f5:e8:b5:92:7b:ba:1c:d2:51:53:b5:b6:5c: 6c:2e:ac:57:9b:33:c2:87:4e:44:fd:92:84:3c:e4: 8c:35:dc:80:c6:57:1b:6a:09:2a:14:69:96:f6:ac: 70:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E8:89:0F:AA:92:28:17:0C:0C:52:29:38:5B:D1:C4:0B:D5:07:AF X509v3 Authority Key Identifier: keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/o-iJD6qSKBcMDFIpOFvRxAvVB68.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.60.77.0/24 Signature Algorithm: sha256WithRSAEncryption bc:fa:ce:fb:c0:38:1b:ce:c3:f2:3d:4b:6f:1b:82:50:1a:e0: d9:e0:18:24:36:40:d2:ea:fd:f8:f1:ee:c2:9d:69:0a:0f:79: ef:3e:18:77:e2:29:5b:ac:ff:fa:54:dd:0a:e3:ff:d9:d6:6d: 20:14:40:e9:79:28:b9:55:63:ce:46:87:65:be:2b:3c:3b:69: 79:d0:0a:79:0a:ce:23:86:d9:ba:09:c3:4f:9e:78:9c:2f:82: 8d:9e:9a:c3:d9:80:8c:71:64:1b:df:7d:ab:19:c1:fb:08:8e: c9:f8:fc:76:86:52:f2:59:ac:bf:2a:35:6f:f4:aa:27:80:f4: e2:bd:7c:41:e1:bd:84:cd:bb:5f:9e:be:df:05:48:5d:3e:c3: 3c:af:46:40:7e:a9:0a:c7:5a:d0:bd:0b:ea:1e:d0:86:23:b2: 2c:81:bf:0e:f3:99:33:c8:5b:1f:d2:c4:05:b6:65:38:7a:ab: ec:9a:36:f3:f4:21:eb:ce:ee:5a:74:ad:a7:1d:02:3d:1b:24: 49:36:47:df:b8:9d:42:e7:63:89:9c:6e:c4:74:86:e0:ba:8e: 72:37:c4:5a:c4:db:4a:9b:a7:9b:9b:a1:e6:a0:53:34:e0:74: 67:6b:85:56:b7:f7:76:23:d0:87:57:ce:7e:7d:8c:3e:d1:ad: bf:6b:02:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nb2mJdxf8uoGBm0deagsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNzE0MzhlMjNjZTkyNWU2NmMyNTk5ODEyMjFiNWI2ODNh MmYwOGYwHhcNMjYwMTAxMjAxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2U4ODkwZmFhOTIyODE3MGMwYzUyMjkzODViZDFjNDBiZDUwN2FmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPGV4rvOYpGmS8jW9DLRkZ2+If91 9kGJcvCMF/4+DgjBNus3n0yucTJax+rSMfc537bhipBAcgAUAMvDHzI0XirWpkBu n7XlFAC/jIPgb9aKDORjFm22S5zGcObxINYfRu6wALayhQsRWd+7X+n8QV5sO44s W/QARi2d9G2i3q+TjXNq0SurTwPY1a2jy+kC2Moj0yweL+PsLN+Io8d44Z6s04bs 4I5ZD9f53ik3ZjjRfYZWeR7XKgjd10NcsX4CW+SVgiByDgPjYrqE0aaiL0jXq/Xo tZJ7uhzSUVO1tlxsLqxXmzPCh05E/ZKEPOSMNdyAxlcbagkqFGmW9qxwnwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKPoiQ+qkigXDAxSKThb0cQL1QevMB8GA1UdIwQY MBaAFFJxQ44jzpJeZsJZmBIhtbaDovCPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW5GRGppUE9rbDVtd2xtWUVpRzF0b09pOEk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84MDY5MTctYWY2Yi00ZTFlLTg3NzMt OWFkMDM1NDc0MTE0LzEvby1pSkQ2cVNLQmNNREZJcE9GdlJ4QXZWQjY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84MDY5MTctYWY2Yi00ZTFlLTg3NzMtOWFkMDM1NDc0MTE0 LzEvVW5GRGppUE9rbDVtd2xtWUVpRzF0b09pOEk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjxNMA0G CSqGSIb3DQEBCwUAA4IBAQC8+s77wDgbzsPyPUtvG4JQGuDZ4BgkNkDS6v348e7C nWkKD3nvPhh34ilbrP/6VN0K4//Z1m0gFEDpeSi5VWPORodlvis8O2l50Ap5Cs4j htm6CcNPnnicL4KNnprD2YCMcWQb332rGcH7CI7J+Px2hlLyWay/KjVv9KongPTi vXxB4b2Ezbtfnr7fBUhdPsM8r0ZAfqkKx1rQvQvqHtCGI7Isgb8O85kzyFsf0sQF tmU4eqvsmjbz9CHrzu5adK2nHQI9GyRJNkffuJ1C52OJnG7EdIbguo5yN8RaxNtK m6ebm6HmoFM04HRna4VWt/d2I9CHV85+fYw+0a2/awLy -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:53 2026 by rpki-client