This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/OroJQKCq7I4yVcFTm6lWNUxxqrw.roa File: OroJQKCq7I4yVcFTm6lWNUxxqrw.roa (raw, json) Hash identifier: nDA5smDMOF4n6Nj5rxqPI/iYhWZmpnNfYaYuSp7sOUs= Subject key identifier: 3A:BA:09:40:A0:AA:EC:8E:32:55:C1:53:9B:A9:56:35:4C:71:AA:BC Certificate issuer: /CN=f9c9e0305cfed5794448732a8b0bd8427450d813 Certificate serial: 019B7EA7280FBBDD3C1983EF7011FC4A48B6 Authority key identifier: F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/OroJQKCq7I4yVcFTm6lWNUxxqrw.roa Signing time: Fri 02 Jan 2026 12:20:42 +0000 ROA not before: Fri 02 Jan 2026 12:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.76.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.mft rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:28:0f:bb:dd:3c:19:83:ef:70:11:fc:4a:48:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f9c9e0305cfed5794448732a8b0bd8427450d813 Validity Not Before: Jan 2 12:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3aba0940a0aaec8e3255c1539ba956354c71aabc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ee:94:14:f2:53:51:60:ef:fc:eb:7f:dd:c8: cc:2e:1a:09:b8:54:2e:d5:16:f0:4c:e6:d4:48:2b: 5f:95:79:2f:da:b6:89:39:cd:4e:8f:37:6a:6e:b3: 0b:6e:04:64:21:0e:78:94:b7:00:e7:f7:dd:02:e9: 2c:76:d7:77:87:df:72:c6:05:4e:0c:00:f1:c0:79: d7:e7:a5:b9:ee:57:79:d4:aa:c0:40:5d:ed:bf:a9: 4a:d5:7c:4c:f5:4d:dc:62:6d:55:58:fc:e0:34:3b: 3a:94:a0:f1:b2:80:1c:98:98:3c:7d:30:31:12:7d: 62:4e:71:ac:79:eb:4d:f0:59:27:24:1d:61:6b:5c: 8c:81:62:54:39:c7:f5:8a:58:aa:0e:3b:8c:2e:0f: e8:8e:39:7a:19:88:19:48:bd:e0:6d:9e:ca:51:30: 5d:fd:ef:b3:0c:2a:34:9e:e3:8d:54:91:ef:83:48: b2:5f:49:7f:1e:0f:95:b4:d3:6c:4f:ac:7d:f3:08: 74:c0:7a:1d:ff:72:15:88:da:8e:92:92:25:3a:5c: e9:ca:1c:16:8b:f5:a5:c0:63:b8:73:78:8c:b0:da: cd:e0:84:12:6a:5f:a9:43:d7:b3:5f:d3:5b:82:cd: 68:dc:12:0e:e2:9a:ec:8f:dc:2f:60:87:39:94:4e: 4f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:BA:09:40:A0:AA:EC:8E:32:55:C1:53:9B:A9:56:35:4C:71:AA:BC X509v3 Authority Key Identifier: keyid:F9:C9:E0:30:5C:FE:D5:79:44:48:73:2A:8B:0B:D8:42:74:50:D8:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cngMFz-1XlESHMqiwvYQnRQ2BM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/OroJQKCq7I4yVcFTm6lWNUxxqrw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/36190d-1c6c-48c6-a414-2fbb208ad182/1/1-cngMFz-1XlESHMqiwvYQnRQ2BM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.76.38.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:25:ff:c9:8c:fc:42:48:c3:7b:28:73:03:b8:80:4c:a0:07: 00:9e:f1:f3:f4:5d:d0:79:17:40:85:3e:79:1c:08:e9:f9:53: e7:6d:fd:96:c6:a5:2f:da:5f:86:5f:db:7e:44:55:a2:47:84: 5e:9a:88:7e:3a:ec:91:29:2d:c5:74:f3:ec:52:a3:ef:b2:38: cd:b8:5b:73:19:8d:38:ab:5d:55:a8:00:4f:44:cd:c0:19:fb: 73:7a:7f:bf:8e:72:64:ae:d8:f6:f4:ef:2e:e9:3b:6b:8e:36: 68:fc:e7:5f:18:76:c9:62:bb:e1:b4:02:76:4a:61:58:ed:bc: 83:2f:20:e6:8c:cf:51:22:df:d3:d7:0c:fd:74:5d:8a:6a:3e: 1c:d4:ec:2f:ed:47:bf:53:5a:33:16:9e:bc:8a:84:d1:37:5b: 23:f6:d2:90:fb:ad:8b:42:10:bb:80:26:22:8c:6d:10:1d:d7: 88:be:c4:a9:4b:c7:b1:1c:d3:73:43:9f:29:6c:ba:1c:1f:c6: 69:e7:df:8d:1e:28:30:04:fd:36:e8:d5:7a:6d:a5:a0:20:1a: 6a:16:68:6e:49:fc:94:24:8f:cb:57:e4:88:77:31:ff:ec:ed: 45:16:f4:ad:29:be:ea:40:1c:a7:c2:2f:da:39:7d:d4:9e:4a: 27:0c:47:be -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt+pygPu908GYPvcBH8Ski2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5YzllMDMwNWNmZWQ1Nzk0NDQ4NzMyYThiMGJkODQyNzQ1 MGQ4MTMwHhcNMjYwMTAyMTIyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYWJhMDk0MGEwYWFlYzhlMzI1NWMxNTM5YmE5NTYzNTRjNzFhYWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+6UFPJTUWDv/Ot/3cjMLhoJuFQu 1RbwTObUSCtflXkv2raJOc1OjzdqbrMLbgRkIQ54lLcA5/fdAuksdtd3h99yxgVO DADxwHnX56W57ld51KrAQF3tv6lK1XxM9U3cYm1VWPzgNDs6lKDxsoAcmJg8fTAx En1iTnGseetN8FknJB1ha1yMgWJUOcf1iliqDjuMLg/ojjl6GYgZSL3gbZ7KUTBd /e+zDCo0nuONVJHvg0iyX0l/Hg+VtNNsT6x98wh0wHod/3IViNqOkpIlOlzpyhwW i/WlwGO4c3iMsNrN4IQSal+pQ9ezX9Nbgs1o3BIO4prsj9wvYIc5lE5PywIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFDq6CUCgquyOMlXBU5upVjVMcaq8MB8GA1UdIwQY MBaAFPnJ4DBc/tV5REhzKosL2EJ0UNgTMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1jbmdNRnotMVhsRVNITXFpd3ZZUW5SUTJCTS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0 LTJmYmIyMDhhZDE4Mi8xL09yb0pRS0NxN0k0eVZjRlRtNmxXTlV4eHFydy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMzcvMzYxOTBkLTFjNmMtNDhjNi1hNDE0LTJmYmIyMDhhZDE4 Mi8xLzEtY25nTUZ6LTFYbEVTSE1xaXd2WVFuUlEyQk0uY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5TCYw DQYJKoZIhvcNAQELBQADggEBAB4l/8mM/EJIw3socwO4gEygBwCe8fP0XdB5F0CF PnkcCOn5U+dt/ZbGpS/aX4Zf235EVaJHhF6aiH467JEpLcV08+xSo++yOM24W3MZ jTirXVWoAE9EzcAZ+3N6f7+OcmSu2Pb07y7pO2uONmj8518Ydsliu+G0AnZKYVjt vIMvIOaMz1Ei39PXDP10XYpqPhzU7C/tR79TWjMWnryKhNE3WyP20pD7rYtCELuA JiKMbRAd14i+xKlLx7Ec03NDnylsuhwfxmnn340eKDAE/Tbo1XptpaAgGmoWaG5J /JQkj8tX5Ih3Mf/s7UUW9K0pvupAHKfCL9o5fdSeSicMR74= -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:03 2026 by rpki-client