This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/oBnAGTOyECz3qOvMpZNgO6Ho4ao.roa File: oBnAGTOyECz3qOvMpZNgO6Ho4ao.roa (raw, json) Hash identifier: I5TS3LqyPe4PYtzp6IqjKbzYqpbpCZWL4keNAsLcZ+k= Subject key identifier: A0:19:C0:19:33:B2:10:2C:F7:A8:EB:CC:A5:93:60:3B:A1:E8:E1:AA Certificate issuer: /CN=44a31be35b3274f2cb857e5af3568b685a89127d Certificate serial: 019B7F15D96D65068FF57DE565BE3A76A152 Authority key identifier: 44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/oBnAGTOyECz3qOvMpZNgO6Ho4ao.roa Signing time: Fri 02 Jan 2026 14:21:36 +0000 ROA not before: Fri 02 Jan 2026 14:21:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25191 IP address blocks: 195.26.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d9:6d:65:06:8f:f5:7d:e5:65:be:3a:76:a1:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44a31be35b3274f2cb857e5af3568b685a89127d Validity Not Before: Jan 2 14:21:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a019c01933b2102cf7a8ebcca593603ba1e8e1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f1:9f:94:c5:27:a3:1a:3f:ff:16:25:41:78: 0b:71:df:6a:79:bd:63:7e:c2:33:1c:a8:90:9f:9f: 4a:d9:0c:ef:05:26:ed:64:5d:36:0a:f2:12:b5:9a: 44:c8:27:43:9c:d1:53:29:ec:bc:10:35:d1:a9:2b: 6c:62:8d:de:71:99:70:51:3b:9e:a4:f4:e9:2b:1f: 02:1b:c5:1e:74:3d:26:e5:57:98:43:fb:32:15:fc: 32:96:9e:be:ff:ed:4b:ac:2b:bd:71:6e:58:62:58: 5c:df:ed:7c:86:de:3b:10:fc:31:70:13:a2:f0:09: 27:a2:93:9b:e6:52:04:83:17:09:3b:d4:50:5d:d8: a2:65:cd:98:de:b4:33:df:d2:e4:0a:10:41:d2:d9: 44:09:a0:e7:03:9c:bf:f1:33:50:ef:ee:7a:85:b7: 79:0f:5a:ae:16:53:dd:5c:c9:e7:9f:a6:e7:54:32: 51:94:36:68:e4:36:fb:de:08:ce:db:a1:8f:52:60: d7:a0:b5:1e:d2:6b:44:2b:85:55:33:b1:a0:2c:c4: 68:38:a6:ff:cb:71:f4:4b:d9:54:f9:49:bb:27:cf: 2c:cc:2e:ba:97:84:b1:0d:62:61:8e:50:f7:d3:0c: 1e:95:11:6a:da:cb:2e:74:5a:56:4b:c6:c2:20:c3: 81:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:19:C0:19:33:B2:10:2C:F7:A8:EB:CC:A5:93:60:3B:A1:E8:E1:AA X509v3 Authority Key Identifier: keyid:44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/oBnAGTOyECz3qOvMpZNgO6Ho4ao.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.26.24.0/24 Signature Algorithm: sha256WithRSAEncryption 39:6d:13:ad:e5:cc:bf:0e:e7:3e:b6:dc:1f:db:33:68:72:19: d8:48:fe:82:ee:75:3c:bf:4e:b7:e5:0d:ac:a5:f8:cf:66:88: c5:e3:68:3c:98:51:f0:d3:6c:c2:18:14:f5:ce:71:08:b4:06: 90:98:91:2e:16:be:24:ac:86:d5:4e:ee:15:4c:ef:d2:54:9e: 15:19:ce:75:ad:84:06:46:e1:37:f6:47:11:f0:d0:27:09:44: 14:36:e5:11:45:30:94:2d:4e:09:df:68:b0:43:4a:21:53:51: d8:19:cc:5d:4c:85:fe:c4:2a:47:f5:0c:f5:8b:4a:66:66:35: fe:42:f2:c5:60:ca:2e:f1:02:96:ef:c9:71:ca:77:72:98:d5: fb:de:52:45:0a:61:c5:16:e7:3d:b7:83:f5:5b:21:e8:52:c8: 84:8a:dc:8c:28:15:48:7e:61:42:53:eb:55:5e:0f:ea:96:04: 4d:2e:15:39:81:b7:60:6d:ce:de:c9:3f:0b:44:35:b9:07:7e: 91:9b:87:1a:37:ca:23:76:65:54:6f:07:85:12:4b:71:cf:60: f4:31:06:69:e8:d5:aa:dd:d3:44:c6:5b:3d:c1:40:c6:31:aa: 21:aa:4f:2a:c0:5f:97:7c:48:ac:a1:f1:1e:8c:4f:87:04:b7: 9f:76:b6:a2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FdltZQaP9X3lZb46dqFSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0YTMxYmUzNWIzMjc0ZjJjYjg1N2U1YWYzNTY4YjY4NWE4 OTEyN2QwHhcNMjYwMTAyMTQyMTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDE5YzAxOTMzYjIxMDJjZjdhOGViY2NhNTkzNjAzYmExZThlMWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfGflMUnoxo//xYlQXgLcd9qeb1j fsIzHKiQn59K2QzvBSbtZF02CvIStZpEyCdDnNFTKey8EDXRqStsYo3ecZlwUTue pPTpKx8CG8UedD0m5VeYQ/syFfwylp6+/+1LrCu9cW5YYlhc3+18ht47EPwxcBOi 8AknopOb5lIEgxcJO9RQXdiiZc2Y3rQz39LkChBB0tlECaDnA5y/8TNQ7+56hbd5 D1quFlPdXMnnn6bnVDJRlDZo5Db73gjO26GPUmDXoLUe0mtEK4VVM7GgLMRoOKb/ y3H0S9lU+Um7J88szC66l4SxDWJhjlD30wwelRFq2ssudFpWS8bCIMOBqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKAZwBkzshAs96jrzKWTYDuh6OGqMB8GA1UdIwQY MBaAFESjG+NbMnTyy4V+WvNWi2haiRJ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUktNYjQxc3lkUExMaFg1YTgxYUxhRnFKRW4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9hODZkZmItMTIwNC00N2UzLWFkNzYt YWU3NzI3OTQ5NDQ1LzEvb0JuQUdUT3lFQ3ozcU92TXBaTmdPNkhvNGFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9hODZkZmItMTIwNC00N2UzLWFkNzYtYWU3NzI3OTQ5NDQ1 LzEvUktNYjQxc3lkUExMaFg1YTgxYUxhRnFKRW4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwxoYMA0G CSqGSIb3DQEBCwUAA4IBAQA5bROt5cy/Duc+ttwf2zNochnYSP6C7nU8v0635Q2s pfjPZojF42g8mFHw02zCGBT1znEItAaQmJEuFr4krIbVTu4VTO/SVJ4VGc51rYQG RuE39kcR8NAnCUQUNuURRTCULU4J32iwQ0ohU1HYGcxdTIX+xCpH9Qz1i0pmZjX+ QvLFYMou8QKW78lxyndymNX73lJFCmHFFuc9t4P1WyHoUsiEityMKBVIfmFCU+tV Xg/qlgRNLhU5gbdgbc7eyT8LRDW5B36Rm4caN8ojdmVUbweFEktxz2D0MQZp6NWq 3dNExls9wUDGMaohqk8qwF+XfEisofEejE+HBLefdrai -----END CERTIFICATE-----Generated at Mon Feb 9 23:55:30 2026 by rpki-client