This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/OCEiEUZpQX4IfkDXndiYKVx7Rgk.roa File: OCEiEUZpQX4IfkDXndiYKVx7Rgk.roa (raw, json) Hash identifier: xLtEsQO8UdeepjNku1qAfZc3+09x5R6wQp3loe3bF74= Subject key identifier: 38:21:22:11:46:69:41:7E:08:7E:40:D7:9D:D8:98:29:5C:7B:46:09 Certificate issuer: /CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced Certificate serial: 019B7BA3799F3A65511E2B49FD8A7C653175 Authority key identifier: A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/OCEiEUZpQX4IfkDXndiYKVx7Rgk.roa Signing time: Thu 01 Jan 2026 22:17:49 +0000 ROA not before: Thu 01 Jan 2026 22:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213758 IP address blocks: 2a0c:f686::/32 maxlen: 44 2a0c:f686:10::/44 maxlen: 44 2a0c:f686:40::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.mft rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:79:9f:3a:65:51:1e:2b:49:fd:8a:7c:65:31:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced Validity Not Before: Jan 1 22:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=382122114669417e087e40d79dd898295c7b4609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b2:ef:49:20:16:0d:89:40:38:ce:69:c9:33: 91:03:c4:9d:d0:62:f2:0b:21:12:46:56:a4:fc:54: 96:d9:72:5b:ed:b1:98:90:9d:bf:99:f4:59:5d:34: 36:da:f8:06:a7:1e:3e:f6:17:53:85:4a:69:04:46: 15:55:dd:ee:3d:35:00:65:cd:0a:62:b1:7a:bb:52: e8:69:03:fb:3d:85:0f:e6:4e:78:72:e8:aa:85:07: f8:12:37:cc:64:23:91:57:10:0b:50:5e:ab:60:24: 5f:39:6b:ab:a5:8f:ec:81:f8:ce:2c:23:dd:16:43: 1e:4a:bd:4c:f9:83:f5:d4:2a:06:52:e9:22:4c:5b: e6:15:c0:7f:03:e1:67:f5:03:f0:2d:6f:87:72:d6: e2:d6:4d:2a:06:f3:4c:63:26:15:fc:1e:96:cd:40: 94:4c:10:7e:27:ce:32:f2:fe:b1:d3:0e:5f:2f:ac: 1d:b1:0f:5a:3d:6c:8f:36:cb:1b:2f:0f:99:01:bf: 77:45:d7:b5:45:51:3f:04:99:4e:ca:ec:0d:ab:8a: c8:4d:3e:de:ac:54:7f:0a:91:af:05:1b:52:ba:88: 67:94:8a:bc:ba:8f:12:bd:3e:b8:2d:2b:86:ba:64: a2:63:f7:83:d2:1c:80:c5:7c:b3:d8:db:fa:5b:35: f7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:21:22:11:46:69:41:7E:08:7E:40:D7:9D:D8:98:29:5C:7B:46:09 X509v3 Authority Key Identifier: keyid:A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/OCEiEUZpQX4IfkDXndiYKVx7Rgk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0c:f686::/32 Signature Algorithm: sha256WithRSAEncryption 4d:61:50:3b:3b:b9:e9:71:4d:12:c7:8a:86:08:e0:e4:82:54: 21:7d:7a:a2:de:c6:f3:af:70:17:a3:40:b5:60:e3:15:a7:fd: 45:49:b7:30:ac:70:e7:8b:cd:90:63:f8:60:e5:4e:25:28:20: 5d:3c:96:ea:93:b7:18:05:38:b0:da:06:7d:6c:ef:50:bd:56: 33:28:70:fc:2d:52:46:a8:7a:a9:c3:74:47:1a:f5:1f:b5:8f: 98:b9:46:7f:34:d0:47:25:d7:22:78:9c:35:f1:9e:9d:93:63: a4:10:d1:09:5d:51:ff:61:7c:a0:7e:27:16:46:4d:9d:8b:12: 7e:ed:48:b6:f7:19:9a:31:95:92:b3:6c:63:d2:a7:0d:42:bc: ee:10:f0:5e:07:7a:46:45:79:c2:01:09:d0:96:34:e4:b2:94: 3d:71:1b:91:76:83:b4:42:4e:65:8c:a3:8f:1e:c4:7f:0c:ad: 53:df:63:d8:7f:a2:8d:20:84:f9:cc:21:1e:2e:23:5e:d8:4a: 6a:05:14:cc:cb:78:15:e7:c7:91:d8:d9:74:b2:32:c2:3d:e0: 17:10:70:34:52:a7:7b:2c:53:87:f7:94:14:b0:a4:be:10:0f: 57:3c:1e:85:74:2c:aa:82:7d:5f:a2:00:5b:eb:67:09:b8:08: c0:82:9f:b0 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7o3mfOmVRHitJ/Yp8ZTF1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwN2Y2ZTJiNjBjYTQ2NDcwMGRkOGUyOGZiYTBkYWFkYzJj NDBjZWQwHhcNMjYwMTAxMjIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODIxMjIxMTQ2Njk0MTdlMDg3ZTQwZDc5ZGQ4OTgyOTVjN2I0NjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7LvSSAWDYlAOM5pyTORA8Sd0GLy CyESRlak/FSW2XJb7bGYkJ2/mfRZXTQ22vgGpx4+9hdThUppBEYVVd3uPTUAZc0K YrF6u1LoaQP7PYUP5k54cuiqhQf4EjfMZCORVxALUF6rYCRfOWurpY/sgfjOLCPd FkMeSr1M+YP11CoGUukiTFvmFcB/A+Fn9QPwLW+Hctbi1k0qBvNMYyYV/B6WzUCU TBB+J84y8v6x0w5fL6wdsQ9aPWyPNssbLw+ZAb93Rde1RVE/BJlOyuwNq4rITT7e rFR/CpGvBRtSuohnlIq8uo8SvT64LSuGumSiY/eD0hyAxXyz2Nv6WzX31QIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFDghIhFGaUF+CH5A153YmClce0YJMB8GA1UdIwQY MBaAFKB/bitgykZHAN2OKPug2q3CxAztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0g5dUsyREtSa2NBM1k0by02RGFyY0xFRE8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hN2NlOWUtMTBmYy00YmRhLTgzOGIt YmNiNzI0YmMyNjg0LzEvT0NFaUVVWnBRWDRJZmtEWG5kaVlLVng3UmdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy9hN2NlOWUtMTBmYy00YmRhLTgzOGItYmNiNzI0YmMyNjg0 LzEvb0g5dUsyREtSa2NBM1k0by02RGFyY0xFRE8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgz2hjAN BgkqhkiG9w0BAQsFAAOCAQEATWFQOzu56XFNEseKhgjg5IJUIX16ot7G869wF6NA tWDjFaf9RUm3MKxw54vNkGP4YOVOJSggXTyW6pO3GAU4sNoGfWzvUL1WMyhw/C1S Rqh6qcN0Rxr1H7WPmLlGfzTQRyXXInicNfGenZNjpBDRCV1R/2F8oH4nFkZNnYsS fu1ItvcZmjGVkrNsY9KnDUK87hDwXgd6RkV5wgEJ0JY05LKUPXEbkXaDtEJOZYyj jx7EfwytU99j2H+ijSCE+cwhHi4jXthKagUUzMt4FefHkdjZdLIywj3gFxBwNFKn eyxTh/eUFLCkvhAPVzwehXQsqoJ9X6IAW+tnCbgIwIKfsA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:03:19 2026 by rpki-client