This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/OtKLPaAsu0TSKxVTheZYE45uIv4.roa File: OtKLPaAsu0TSKxVTheZYE45uIv4.roa (raw, json) Hash identifier: sV369+wKHa03W+MYhzuJvYumzEqh+GOUryRtR9pnkWE= Subject key identifier: 3A:D2:8B:3D:A0:2C:BB:44:D2:2B:15:53:85:E6:58:13:8E:6E:22:FE Certificate issuer: /CN=07bb5bfa64b0d5d18a3061a9869b1ca57172eaba Certificate serial: 019B7F1508C15471090E929609DF02ECAFF4 Authority key identifier: 07:BB:5B:FA:64:B0:D5:D1:8A:30:61:A9:86:9B:1C:A5:71:72:EA:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/OtKLPaAsu0TSKxVTheZYE45uIv4.roa Signing time: Fri 02 Jan 2026 14:20:43 +0000 ROA not before: Fri 02 Jan 2026 14:20:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203815 IP address blocks: 185.155.76.0/22 maxlen: 24 2a05:b8c0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/B7tb-mSw1dGKMGGphpscpXFy6ro.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/B7tb-mSw1dGKMGGphpscpXFy6ro.mft rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:08:c1:54:71:09:0e:92:96:09:df:02:ec:af:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07bb5bfa64b0d5d18a3061a9869b1ca57172eaba Validity Not Before: Jan 2 14:20:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3ad28b3da02cbb44d22b155385e658138e6e22fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f0:7a:56:b6:9c:46:1f:e9:b4:11:29:c6:ce: b4:21:35:65:85:da:e2:05:20:8d:27:94:a6:61:3d: 1c:8c:d5:3d:ca:79:80:1c:b7:e0:53:bb:8e:c4:b1: d7:06:d6:76:17:06:eb:af:de:69:bb:d6:75:a5:43: 14:79:53:ae:90:fc:6e:f8:2b:d1:e7:dc:78:33:04: 48:88:3f:24:e3:6a:80:33:a4:2a:39:9a:59:92:75: 98:fb:df:70:54:0a:b6:d6:15:56:96:33:e2:57:56: 5c:e8:24:52:b7:96:2f:97:96:0e:fb:00:b5:2d:8a: d1:f2:43:dc:cb:57:88:47:66:c1:22:bc:8c:7c:a9: d6:f2:37:9d:7f:b1:dc:55:dd:79:c5:2c:59:06:2e: df:4e:a3:29:3d:38:f4:58:b1:16:64:86:e0:41:9d: f9:29:32:87:fb:53:d0:07:ed:27:58:ec:ca:46:dd: 7c:08:cd:cd:ef:e0:0f:98:43:5d:1a:cd:36:8c:6d: 5c:13:15:e7:c0:2d:cf:ce:4c:66:d7:7e:9c:8d:58: 48:32:c1:20:eb:63:f9:ef:25:c5:1a:1f:9b:45:6d: 8a:d5:72:be:db:74:42:66:a0:34:5f:d3:c4:eb:3a: 4e:f4:d4:7e:e5:d9:d9:a4:5f:3c:fe:d1:5e:0d:49: a9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D2:8B:3D:A0:2C:BB:44:D2:2B:15:53:85:E6:58:13:8E:6E:22:FE X509v3 Authority Key Identifier: keyid:07:BB:5B:FA:64:B0:D5:D1:8A:30:61:A9:86:9B:1C:A5:71:72:EA:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/OtKLPaAsu0TSKxVTheZYE45uIv4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/B7tb-mSw1dGKMGGphpscpXFy6ro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.155.76.0/22 IPv6: 2a05:b8c0::/29 Signature Algorithm: sha256WithRSAEncryption 05:b0:c4:de:51:4f:76:8a:32:94:e5:9c:27:42:b0:4d:bd:ab: 7e:26:91:65:d8:85:3c:10:8f:a9:c7:46:6b:f1:7c:72:2d:46: 52:7c:82:0b:af:d6:38:05:b4:3a:3c:c0:93:70:39:b5:b7:ca: c3:1b:d8:a7:68:2e:25:0f:17:f0:f2:95:14:48:b7:ff:18:29: 37:d0:a0:88:19:20:f9:7f:7f:29:3b:14:9f:f9:65:75:64:ab: cb:13:d1:8e:a7:b6:72:0b:01:21:26:6f:0f:8b:51:70:52:6c: 62:f2:25:38:b9:63:6f:95:9c:38:f8:97:33:b3:4b:a0:18:df: bd:1d:06:93:ca:34:29:22:8c:11:cb:6a:eb:f0:e4:3d:89:e8: be:22:d1:7a:75:94:35:75:33:14:59:06:f3:db:da:4a:6b:98: e2:d2:a1:9f:e3:ae:d6:b0:60:fb:45:22:e6:d2:3a:05:c5:f4: 92:9d:94:b0:e6:09:84:4c:7b:29:5b:77:7d:b2:de:d6:42:17: 29:f9:3e:7e:ff:0d:e5:d4:4a:09:bf:ba:4f:5c:c5:c5:bd:c1: 50:b0:d6:e3:28:6b:f0:52:a4:9b:04:66:30:b6:0a:1c:b8:9e: 1c:8a:a5:30:ba:71:4a:63:8c:5a:df:df:75:ec:11:75:3a:b9: 1d:2e:9e:fc -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FQjBVHEJDpKWCd8C7K/0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3YmI1YmZhNjRiMGQ1ZDE4YTMwNjFhOTg2OWIxY2E1NzE3 MmVhYmEwHhcNMjYwMTAyMTQyMDQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYWQyOGIzZGEwMmNiYjQ0ZDIyYjE1NTM4NWU2NTgxMzhlNmUyMmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfB6VracRh/ptBEpxs60ITVlhdri BSCNJ5SmYT0cjNU9ynmAHLfgU7uOxLHXBtZ2Fwbrr95pu9Z1pUMUeVOukPxu+CvR 59x4MwRIiD8k42qAM6QqOZpZknWY+99wVAq21hVWljPiV1Zc6CRSt5Yvl5YO+wC1 LYrR8kPcy1eIR2bBIryMfKnW8jedf7HcVd15xSxZBi7fTqMpPTj0WLEWZIbgQZ35 KTKH+1PQB+0nWOzKRt18CM3N7+APmENdGs02jG1cExXnwC3Pzkxm136cjVhIMsEg 62P57yXFGh+bRW2K1XK+23RCZqA0X9PE6zpO9NR+5dnZpF88/tFeDUmpbQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDrSiz2gLLtE0isVU4XmWBOObiL+MB8GA1UdIwQY MBaAFAe7W/pksNXRijBhqYabHKVxcuq6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjd0Yi1tU3cxZEdLTUdHcGhwc2NwWEZ5NnJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hY2ZkOTgtYjczNi00OWY0LWE2NjAt ZjkwOGQyMTcxOGY3LzEvT3RLTFBhQXN1MFRTS3hWVGhlWllFNDV1SXY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9hY2ZkOTgtYjczNi00OWY0LWE2NjAtZjkwOGQyMTcxOGY3 LzEvQjd0Yi1tU3cxZEdLTUdHcGhwc2NwWEZ5NnJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZtMMA0E AgACMAcDBQMqBbjAMA0GCSqGSIb3DQEBCwUAA4IBAQAFsMTeUU92ijKU5ZwnQrBN vat+JpFl2IU8EI+px0Zr8XxyLUZSfIILr9Y4BbQ6PMCTcDm1t8rDG9inaC4lDxfw 8pUUSLf/GCk30KCIGSD5f38pOxSf+WV1ZKvLE9GOp7ZyCwEhJm8Pi1FwUmxi8iU4 uWNvlZw4+Jczs0ugGN+9HQaTyjQpIowRy2rr8OQ9iei+ItF6dZQ1dTMUWQbz29pK a5ji0qGf467WsGD7RSLm0joFxfSSnZSw5gmETHspW3d9st7WQhcp+T5+/w3l1EoJ v7pPXMXFvcFQsNbjKGvwUqSbBGYwtgocuJ4ciqUwunFKY4xa39917BF1OrkdLp78 -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:36 2026 by rpki-client