This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/55OoBUFOM9TPPI-OW3WxlpfgGa0.roa File: 55OoBUFOM9TPPI-OW3WxlpfgGa0.roa (raw, json) Hash identifier: ou1iN6OdQpzMZzlgWVrt2SECYX2pZ/j1SqKBwaQnptk= Subject key identifier: E7:93:A8:05:41:4E:33:D4:CF:3C:8F:8E:5B:75:B1:96:97:E0:19:AD Certificate issuer: /CN=85b919a3feb0ec966299ff0fae8defcb415e22fe Certificate serial: 019B7EA6CEE810E0B06390B6021AFBFB4E64 Authority key identifier: 85:B9:19:A3:FE:B0:EC:96:62:99:FF:0F:AE:8D:EF:CB:41:5E:22:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbkZo_6w7JZimf8Pro3vy0FeIv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/55OoBUFOM9TPPI-OW3WxlpfgGa0.roa Signing time: Fri 02 Jan 2026 12:20:19 +0000 ROA not before: Fri 02 Jan 2026 12:20:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49974 IP address blocks: 37.35.96.0/22 maxlen: 22 37.35.100.0/24 maxlen: 24 37.35.101.0/24 maxlen: 24 37.35.102.0/24 maxlen: 24 37.35.103.0/24 maxlen: 24 45.157.164.0/22 maxlen: 22 185.18.0.0/22 maxlen: 22 213.5.32.0/21 maxlen: 21 2001:67c:238::/48 maxlen: 48 2a00:9540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/hbkZo_6w7JZimf8Pro3vy0FeIv4.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/hbkZo_6w7JZimf8Pro3vy0FeIv4.mft rsync://rpki.ripe.net/repository/DEFAULT/hbkZo_6w7JZimf8Pro3vy0FeIv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:ce:e8:10:e0:b0:63:90:b6:02:1a:fb:fb:4e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b919a3feb0ec966299ff0fae8defcb415e22fe Validity Not Before: Jan 2 12:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e793a805414e33d4cf3c8f8e5b75b19697e019ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a3:d7:7f:55:e6:e5:b1:62:b2:84:2a:41:8d: ad:7a:fd:d4:4b:d7:3e:c5:4c:94:76:16:0f:14:ca: 12:a1:9b:8b:28:4f:88:d3:68:ca:ed:83:72:4f:a6: 5f:83:2f:3a:43:34:0e:9d:88:33:2a:24:25:bd:41: 99:40:1e:4f:ae:2d:dd:94:bf:2f:da:f3:3f:0d:89: 2d:c3:14:d7:0b:a3:9e:87:65:bc:6a:79:76:46:3e: 86:19:32:d2:ff:15:ee:5c:61:12:e5:f6:00:27:39: 11:21:7a:c6:9e:e9:56:6a:b4:17:40:f0:93:81:0a: 59:23:70:e2:41:64:f7:a7:8f:bd:05:74:fb:37:92: 0c:c8:90:71:d4:e7:05:2c:91:c3:07:89:f9:69:55: b9:f1:6a:bc:d6:3c:47:f2:8e:51:b0:d6:c6:26:82: dc:01:20:f0:2e:ce:9d:28:b8:46:14:39:12:42:68: 3e:48:65:f6:ca:87:6c:4a:37:ec:1c:e0:1b:03:1d: 8d:2f:db:72:59:9f:f1:af:7e:d9:0f:90:97:0d:8f: df:6a:da:33:a4:04:29:74:05:c8:ce:ac:ea:78:20: 8c:ee:94:c2:70:98:f5:09:c0:b4:f5:9f:45:eb:6d: f8:8a:f5:b8:49:52:a0:4e:84:eb:ce:07:54:83:79: ee:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:93:A8:05:41:4E:33:D4:CF:3C:8F:8E:5B:75:B1:96:97:E0:19:AD X509v3 Authority Key Identifier: keyid:85:B9:19:A3:FE:B0:EC:96:62:99:FF:0F:AE:8D:EF:CB:41:5E:22:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbkZo_6w7JZimf8Pro3vy0FeIv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/55OoBUFOM9TPPI-OW3WxlpfgGa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5e0f5a-c6e7-43e8-bb21-47dc08d7e3ba/1/hbkZo_6w7JZimf8Pro3vy0FeIv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.35.96.0/21 45.157.164.0/22 185.18.0.0/22 213.5.32.0/21 IPv6: 2001:67c:238::/48 2a00:9540::/32 Signature Algorithm: sha256WithRSAEncryption 74:9d:24:b5:51:45:52:c6:75:41:a7:f4:ca:11:ef:c8:dc:30: 40:ff:66:b9:ef:6d:30:b1:5c:ee:39:19:8e:9c:8f:9e:60:1d: 3a:ff:e2:db:34:2c:76:cc:96:b3:8a:14:1b:f3:f4:b4:a9:ca: 0b:7e:c3:0d:3a:34:17:22:7e:f9:43:2c:99:85:7e:df:b4:f5: b2:7a:cc:bb:f2:a3:32:e9:71:6d:67:77:6c:44:2f:34:11:b0: 08:a2:8b:09:9d:2d:21:d7:5b:5d:aa:a0:9a:ef:2b:7d:3c:95: 21:11:a0:6a:32:25:15:9a:6f:2b:f6:c0:7b:d7:ec:f4:65:30: 55:58:1e:59:52:a8:99:59:aa:cb:9c:63:b3:82:ce:ed:47:20: 87:b6:36:bf:f3:86:cc:0f:db:12:c0:81:4a:f5:ad:d2:d4:5d: 73:63:0a:48:c4:a6:29:bc:99:2a:37:f3:26:7b:52:69:be:39: 84:2a:83:d2:de:40:61:67:a9:72:87:07:c2:82:06:59:0d:22: 93:46:68:91:2b:6e:5f:f8:35:45:94:b3:18:3b:c5:f9:a4:60: 49:00:d3:71:fc:db:d6:1e:35:a0:5a:b3:f9:b7:6a:c8:60:b6: 34:3b:3a:10:fd:43:d6:f7:06:f3:93:83:c5:9a:d6:04:9c:0c: b9:ba:88:f8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt+ps7oEOCwY5C2Ahr7+05kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjkxOWEzZmViMGVjOTY2Mjk5ZmYwZmFlOGRlZmNiNDE1 ZTIyZmUwHhcNMjYwMTAyMTIyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzkzYTgwNTQxNGUzM2Q0Y2YzYzhmOGU1Yjc1YjE5Njk3ZTAxOWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaPXf1Xm5bFisoQqQY2tev3US9c+ xUyUdhYPFMoSoZuLKE+I02jK7YNyT6Zfgy86QzQOnYgzKiQlvUGZQB5Pri3dlL8v 2vM/DYktwxTXC6Oeh2W8anl2Rj6GGTLS/xXuXGES5fYAJzkRIXrGnulWarQXQPCT gQpZI3DiQWT3p4+9BXT7N5IMyJBx1OcFLJHDB4n5aVW58Wq81jxH8o5RsNbGJoLc ASDwLs6dKLhGFDkSQmg+SGX2yodsSjfsHOAbAx2NL9tyWZ/xr37ZD5CXDY/fatoz pAQpdAXIzqzqeCCM7pTCcJj1CcC09Z9F6234ivW4SVKgToTrzgdUg3nuCwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFOeTqAVBTjPUzzyPjlt1sZaX4BmtMB8GA1UdIwQY MBaAFIW5GaP+sOyWYpn/D66N78tBXiL+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJrWm9fNnc3SlppbWY4UHJvM3Z5MEZlSXY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81ZTBmNWEtYzZlNy00M2U4LWJiMjEt NDdkYzA4ZDdlM2JhLzEvNTVPb0JVRk9NOVRQUEktT1czV3hscGZnR2EwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy81ZTBmNWEtYzZlNy00M2U4LWJiMjEtNDdkYzA4ZDdlM2Jh LzEvaGJrWm9fNnc3SlppbWY4UHJvM3Z5MEZlSXY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAeBAIAATAYAwQDJSNgAwQC LZ2kAwQCuRIAAwQD1QUgMBYEAgACMBADBwAgAQZ8AjgDBQAqAJVAMA0GCSqGSIb3 DQEBCwUAA4IBAQB0nSS1UUVSxnVBp/TKEe/I3DBA/2a5720wsVzuORmOnI+eYB06 /+LbNCx2zJazihQb8/S0qcoLfsMNOjQXIn75QyyZhX7ftPWyesy78qMy6XFtZ3ds RC80EbAIoosJnS0h11tdqqCa7yt9PJUhEaBqMiUVmm8r9sB71+z0ZTBVWB5ZUqiZ WarLnGOzgs7tRyCHtja/84bMD9sSwIFK9a3S1F1zYwpIxKYpvJkqN/Mme1JpvjmE KoPS3kBhZ6lyhwfCggZZDSKTRmiRK25f+DVFlLMYO8X5pGBJANNx/NvWHjWgWrP5 t2rIYLY0OzoQ/UPW9wbzk4PFmtYEnAy5uoj4 -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:18 2026 by rpki-client