This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/66676a-3bac-4b6d-a638-96cd42f0f95b/1/OzTQl093nPuHgvb4uJ0q61uAdgo.roa File: OzTQl093nPuHgvb4uJ0q61uAdgo.roa (raw, json) Hash identifier: hmpXzU1F+pG+U/TeV3XVItayY49E8Q1T8eDs1027tKg= Subject key identifier: 3B:34:D0:97:4F:77:9C:FB:87:82:F6:F8:B8:9D:2A:EB:5B:80:76:0A Certificate issuer: /CN=52eb03d211996e99a49e3c3f9ce4b3f2a15723c5 Certificate serial: 019B7F12CC71452DF64DFF3E8C8125D94084 Authority key identifier: 52:EB:03:D2:11:99:6E:99:A4:9E:3C:3F:9C:E4:B3:F2:A1:57:23:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UusD0hGZbpmknjw_nOSz8qFXI8U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/66676a-3bac-4b6d-a638-96cd42f0f95b/1/OzTQl093nPuHgvb4uJ0q61uAdgo.roa Signing time: Fri 02 Jan 2026 14:18:17 +0000 ROA not before: Fri 02 Jan 2026 14:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47267 IP address blocks: 91.199.17.0/24 maxlen: 24 185.182.160.0/22 maxlen: 22 185.182.160.0/24 maxlen: 24 185.182.161.0/24 maxlen: 24 185.182.162.0/24 maxlen: 24 185.182.163.0/24 maxlen: 24 2001:67c:69c::/48 maxlen: 48 2a0f:eb80::/32 maxlen: 32 2a0f:eb80::/44 maxlen: 44 2a0f:eb80::/48 maxlen: 48 2a0f:eb80:1::/48 maxlen: 48 2a0f:eb80:a::/48 maxlen: 48 2a0f:eb80:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/66676a-3bac-4b6d-a638-96cd42f0f95b/1/UusD0hGZbpmknjw_nOSz8qFXI8U.crl rsync://rpki.ripe.net/repository/DEFAULT/48/66676a-3bac-4b6d-a638-96cd42f0f95b/1/UusD0hGZbpmknjw_nOSz8qFXI8U.mft rsync://rpki.ripe.net/repository/DEFAULT/UusD0hGZbpmknjw_nOSz8qFXI8U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:12:cc:71:45:2d:f6:4d:ff:3e:8c:81:25:d9:40:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52eb03d211996e99a49e3c3f9ce4b3f2a15723c5 Validity Not Before: Jan 2 14:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3b34d0974f779cfb8782f6f8b89d2aeb5b80760a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:65:c9:93:99:07:5e:9e:2e:55:7c:75:f2: 29:df:70:1f:65:01:98:5c:1a:09:80:94:0e:82:79: b3:97:5f:b8:35:08:e9:6c:d9:28:c1:97:1e:a5:f1: 77:32:3e:2f:27:35:16:aa:98:a3:f2:99:9f:ba:6d: be:18:31:a6:20:9d:42:69:e9:0b:d2:19:82:09:79: d6:71:3b:fa:e2:23:0d:bf:40:02:00:b7:9f:63:23: 99:35:14:23:9e:2c:a3:0c:9f:6c:33:72:af:fd:77: 84:b3:7b:91:46:27:02:23:05:ff:f4:94:5b:39:f7: 66:32:05:92:23:33:92:7a:76:4c:22:d6:eb:5d:9c: f8:71:65:8f:c5:61:15:40:99:24:78:c8:f9:75:e8: e8:b0:34:d5:ef:4d:8d:49:02:5f:1c:ee:69:03:2f: 41:17:86:73:cb:b0:16:93:27:82:6e:03:71:b9:fb: c0:a0:5c:11:0d:0c:bf:53:e6:66:98:3a:b0:d5:f4: 9e:2f:50:91:5d:fb:1f:27:fc:1a:e2:e5:55:ec:87: 3b:74:ae:37:c7:5b:42:ca:b6:24:61:d0:25:cd:15: c5:bb:47:58:92:8c:7a:24:d1:1f:36:22:92:b7:d8: 8e:85:3e:42:4b:3d:16:3b:e4:5e:43:1f:c2:4a:37: 3f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:34:D0:97:4F:77:9C:FB:87:82:F6:F8:B8:9D:2A:EB:5B:80:76:0A X509v3 Authority Key Identifier: keyid:52:EB:03:D2:11:99:6E:99:A4:9E:3C:3F:9C:E4:B3:F2:A1:57:23:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UusD0hGZbpmknjw_nOSz8qFXI8U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66676a-3bac-4b6d-a638-96cd42f0f95b/1/OzTQl093nPuHgvb4uJ0q61uAdgo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66676a-3bac-4b6d-a638-96cd42f0f95b/1/UusD0hGZbpmknjw_nOSz8qFXI8U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.17.0/24 185.182.160.0/22 IPv6: 2001:67c:69c::/48 2a0f:eb80::/32 Signature Algorithm: sha256WithRSAEncryption 23:6e:70:10:2b:57:07:b7:77:03:c5:18:1a:9f:dc:7c:b2:c9: ea:94:57:e0:6a:0a:02:28:ca:d5:4a:1f:c9:08:12:0b:50:e1: 84:bc:2b:2f:d8:85:cd:e0:07:4c:7e:a1:1f:1a:35:95:70:5e: 9f:e0:4e:96:92:45:20:1f:66:40:b8:df:34:5b:da:a3:53:a4: 24:36:be:ee:db:9f:f0:17:10:fc:6c:b7:96:4e:a8:7a:9c:09: bc:1a:96:60:a1:1f:0f:0c:90:b1:79:35:be:bc:cc:79:a2:9b: f6:49:b1:a2:25:e3:56:1b:fd:36:a8:7c:19:7c:1b:97:22:57: 2c:cb:86:ef:2a:d2:02:1e:e0:bb:b3:e2:92:3f:6b:48:56:cc: c8:db:88:1c:57:9e:50:7a:6e:14:45:39:a9:9e:42:78:09:55: f8:d8:dc:b2:66:40:de:54:40:a1:f7:a4:7b:76:82:ba:17:4b: 68:13:83:eb:04:8a:e0:09:cb:2b:4e:a6:64:ef:04:4e:fc:1a: 61:19:76:94:d7:f5:ee:3f:b6:8c:29:73:9c:95:c7:ff:6f:b7: bd:2a:06:6d:80:6e:8e:ab:fc:ed:50:60:88:8b:59:9d:52:d9: 24:54:8c:d8:ea:dc:06:bc:bc:16:a6:ff:93:76:88:20:55:50: b7:4f:2b:24 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt/EsxxRS32Tf8+jIEl2UCEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZWIwM2QyMTE5OTZlOTlhNDllM2MzZjljZTRiM2YyYTE1 NzIzYzUwHhcNMjYwMTAyMTQxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYjM0ZDA5NzRmNzc5Y2ZiODc4MmY2ZjhiODlkMmFlYjViODA3NjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFxlyZOZB16eLlV8dfIp33AfZQGY XBoJgJQOgnmzl1+4NQjpbNkowZcepfF3Mj4vJzUWqpij8pmfum2+GDGmIJ1CaekL 0hmCCXnWcTv64iMNv0ACALefYyOZNRQjniyjDJ9sM3Kv/XeEs3uRRicCIwX/9JRb OfdmMgWSIzOSenZMItbrXZz4cWWPxWEVQJkkeMj5dejosDTV702NSQJfHO5pAy9B F4Zzy7AWkyeCbgNxufvAoFwRDQy/U+ZmmDqw1fSeL1CRXfsfJ/wa4uVV7Ic7dK43 x1tCyrYkYdAlzRXFu0dYkox6JNEfNiKSt9iOhT5CSz0WO+ReQx/CSjc/EQIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFDs00JdPd5z7h4L2+LidKutbgHYKMB8GA1UdIwQY MBaAFFLrA9IRmW6ZpJ48P5zks/KhVyPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXVzRDBoR1picG1rbmp3X25PU3o4cUZYSThVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC82NjY3NmEtM2JhYy00YjZkLWE2Mzgt OTZjZDQyZjBmOTViLzEvT3pUUWwwOTNuUHVIZ3ZiNHVKMHE2MXVBZGdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC82NjY3NmEtM2JhYy00YjZkLWE2MzgtOTZjZDQyZjBmOTVi LzEvVXVzRDBoR1picG1rbmp3X25PU3o4cUZYSThVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQAW8cRAwQC ubagMBYEAgACMBADBwAgAQZ8BpwDBQAqD+uAMA0GCSqGSIb3DQEBCwUAA4IBAQAj bnAQK1cHt3cDxRgan9x8ssnqlFfgagoCKMrVSh/JCBILUOGEvCsv2IXN4AdMfqEf GjWVcF6f4E6WkkUgH2ZAuN80W9qjU6QkNr7u25/wFxD8bLeWTqh6nAm8GpZgoR8P DJCxeTW+vMx5opv2SbGiJeNWG/02qHwZfBuXIlcsy4bvKtICHuC7s+KSP2tIVszI 24gcV55Qem4URTmpnkJ4CVX42NyyZkDeVECh96R7doK6F0toE4PrBIrgCcsrTqZk 7wRO/BphGXaU1/XuP7aMKXOclcf/b7e9KgZtgG6Oq/ztUGCIi1mdUtkkVIzY6twG vLwWpv+TdoggVVC3Tysk -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:40 2026 by rpki-client