This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/OLM8rEIbQLm-mhf083sHPA1vezE.roa File: OLM8rEIbQLm-mhf083sHPA1vezE.roa (raw, json) Hash identifier: eeeVPvGHr6jUSKOltuDwskpQGg614WlG4/Y753adIhs= Subject key identifier: 38:B3:3C:AC:42:1B:40:B9:BE:9A:17:F4:F3:7B:07:3C:0D:6F:7B:31 Certificate issuer: /CN=c2fd2c74ad6fae2ddd0f6e9c39fde831893ae6f9 Certificate serial: 019B797F25AEA1D088845770766BBFB67E4D Authority key identifier: C2:FD:2C:74:AD:6F:AE:2D:DD:0F:6E:9C:39:FD:E8:31:89:3A:E6:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/OLM8rEIbQLm-mhf083sHPA1vezE.roa Signing time: Thu 01 Jan 2026 12:18:54 +0000 ROA not before: Thu 01 Jan 2026 12:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39729 IP address blocks: 185.110.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.crl rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.mft rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:25:ae:a1:d0:88:84:57:70:76:6b:bf:b6:7e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c2fd2c74ad6fae2ddd0f6e9c39fde831893ae6f9 Validity Not Before: Jan 1 12:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38b33cac421b40b9be9a17f4f37b073c0d6f7b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:af:20:df:f4:b3:35:cb:0b:6a:f3:ae:25:a9: a2:a2:81:fe:d3:32:68:70:70:24:82:49:1c:6d:e6: 6e:d6:4f:84:b3:8c:97:3a:ae:81:70:5f:b1:2a:9e: ba:07:93:7d:93:68:ff:fb:74:51:e8:73:3c:49:4a: e0:a8:ce:52:53:63:d4:f5:39:01:47:fa:a3:30:d3: f3:c4:0c:61:27:78:4e:b1:bd:9e:b5:c4:bc:cd:23: da:a6:54:db:e4:5d:6e:8d:29:2d:c9:b0:b8:4e:c0: f2:4a:4c:04:80:4a:04:77:e4:f3:7f:32:17:e3:97: 2e:96:52:07:f2:1d:7a:d5:c3:d3:fe:98:16:a2:d8: 19:ec:38:cc:6f:30:f7:1a:a7:b2:d9:50:bc:4e:4f: 46:c6:3f:e9:e9:91:50:dc:76:dc:0a:f4:60:35:4d: 3d:f0:ec:0e:4a:4d:b7:21:b3:f2:88:9d:61:4a:7a: b2:94:d5:68:85:10:45:df:b2:45:64:b2:da:1f:f3: 7e:9d:c3:db:4d:81:2b:fa:e6:7c:91:54:09:63:85: ab:04:d9:53:5c:d5:38:80:70:f8:bc:7e:13:a8:c3: 06:69:15:de:61:3c:c9:38:f5:66:e4:72:c4:1f:8b: 30:7e:e4:d4:2b:8b:fe:5c:12:ed:1f:c2:71:56:49: d1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B3:3C:AC:42:1B:40:B9:BE:9A:17:F4:F3:7B:07:3C:0D:6F:7B:31 X509v3 Authority Key Identifier: keyid:C2:FD:2C:74:AD:6F:AE:2D:DD:0F:6E:9C:39:FD:E8:31:89:3A:E6:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wv0sdK1vri3dD26cOf3oMYk65vk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/OLM8rEIbQLm-mhf083sHPA1vezE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/542603-5462-4b8d-8bc4-535cc0c102f0/1/wv0sdK1vri3dD26cOf3oMYk65vk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.110.66.0/23 Signature Algorithm: sha256WithRSAEncryption 52:7d:f0:03:40:97:a9:f5:21:88:bb:de:7a:48:b6:bb:17:76: b7:01:0c:a8:b8:ff:ff:9d:77:ef:60:65:d6:6b:14:af:a9:f7: cc:8b:b6:66:cb:20:55:06:86:51:e3:1a:b2:73:92:1f:2f:ef: 89:6c:fa:d2:9f:cb:25:f9:86:e9:83:17:d6:03:a5:98:d6:0c: 9d:97:f6:7f:b3:ab:62:ae:5e:d0:4b:11:0e:6a:62:a2:65:16: 45:b1:55:43:b6:49:c0:26:c3:76:c1:74:94:c0:7d:6c:b1:1b: d2:a4:8b:2b:42:4d:2d:42:e2:1a:cf:d6:99:04:a8:68:db:2b: 83:7c:d5:e4:b2:66:d4:f4:95:07:7d:f0:7f:d8:45:0a:02:86: 82:30:00:fe:31:17:4d:20:28:3f:27:03:df:37:04:14:e2:66: a8:af:02:2f:a3:34:3f:2a:86:b5:18:54:c1:65:fd:e2:49:28: 5f:f7:2b:88:78:35:c8:6d:7d:90:13:02:ae:c2:a0:f3:4f:79: dc:a9:94:fa:dd:6f:72:96:3e:29:30:32:b7:3f:22:3e:59:c2: 5a:f8:0e:4c:13:3e:3d:77:0c:fc:6f:9d:91:86:05:32:61:0d: ff:b3:1f:25:ef:cc:47:38:01:65:4c:66:f7:44:63:e2:79:06: f3:65:0d:e1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fyWuodCIhFdwdmu/tn5NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyZmQyYzc0YWQ2ZmFlMmRkZDBmNmU5YzM5ZmRlODMxODkz YWU2ZjkwHhcNMjYwMTAxMTIxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOGIzM2NhYzQyMWI0MGI5YmU5YTE3ZjRmMzdiMDczYzBkNmY3YjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAra8g3/SzNcsLavOuJamiooH+0zJo cHAkgkkcbeZu1k+Es4yXOq6BcF+xKp66B5N9k2j/+3RR6HM8SUrgqM5SU2PU9TkB R/qjMNPzxAxhJ3hOsb2etcS8zSPaplTb5F1ujSktybC4TsDySkwEgEoEd+TzfzIX 45cullIH8h161cPT/pgWotgZ7DjMbzD3Gqey2VC8Tk9Gxj/p6ZFQ3HbcCvRgNU09 8OwOSk23IbPyiJ1hSnqylNVohRBF37JFZLLaH/N+ncPbTYEr+uZ8kVQJY4WrBNlT XNU4gHD4vH4TqMMGaRXeYTzJOPVm5HLEH4swfuTUK4v+XBLtH8JxVknR9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDizPKxCG0C5vpoX9PN7BzwNb3sxMB8GA1UdIwQY MBaAFML9LHStb64t3Q9unDn96DGJOub5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd3Ywc2RLMXZyaTNkRDI2Y09mM29NWWs2NXZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NDI2MDMtNTQ2Mi00YjhkLThiYzQt NTM1Y2MwYzEwMmYwLzEvT0xNOHJFSWJRTG0tbWhmMDgzc0hQQTF2ZXpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS81NDI2MDMtNTQ2Mi00YjhkLThiYzQtNTM1Y2MwYzEwMmYw LzEvd3Ywc2RLMXZyaTNkRDI2Y09mM29NWWs2NXZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuW5CMA0G CSqGSIb3DQEBCwUAA4IBAQBSffADQJep9SGIu956SLa7F3a3AQyouP//nXfvYGXW axSvqffMi7ZmyyBVBoZR4xqyc5IfL++JbPrSn8sl+YbpgxfWA6WY1gydl/Z/s6ti rl7QSxEOamKiZRZFsVVDtknAJsN2wXSUwH1ssRvSpIsrQk0tQuIaz9aZBKho2yuD fNXksmbU9JUHffB/2EUKAoaCMAD+MRdNICg/JwPfNwQU4maorwIvozQ/Koa1GFTB Zf3iSShf9yuIeDXIbX2QEwKuwqDzT3ncqZT63W9ylj4pMDK3PyI+WcJa+A5MEz49 dwz8b52RhgUyYQ3/sx8l78xHOAFlTGb3RGPieQbzZQ3h -----END CERTIFICATE-----Generated at Tue Jan 27 17:54:00 2026 by rpki-client