This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/OOJMBaohfAJtoaGfViSbNNl9tHs.roa File: OOJMBaohfAJtoaGfViSbNNl9tHs.roa (raw, json) Hash identifier: TsNtHeqpgFzEN9B4Asf3Nh5jNwpYNPvKU0zra1vNHMw= Subject key identifier: 38:E2:4C:05:AA:21:7C:02:6D:A1:A1:9F:56:24:9B:34:D9:7D:B4:7B Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Certificate serial: 019BB13D794B12CD03081C8EA6E4CFCD916B Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/OOJMBaohfAJtoaGfViSbNNl9tHs.roa Signing time: Mon 12 Jan 2026 08:05:54 +0000 ROA not before: Mon 12 Jan 2026 08:05:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9304 IP address blocks: 87.229.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b1:3d:79:4b:12:cd:03:08:1c:8e:a6:e4:cf:cd:91:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Validity Not Before: Jan 12 08:05:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38e24c05aa217c026da1a19f56249b34d97db47b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cd:a1:44:65:51:3f:2f:b4:a1:fc:98:8c:99: e7:3d:ed:f8:33:6e:9a:8e:2d:41:23:c7:1d:be:d3: 0d:14:db:0b:77:3e:b3:65:f0:28:d6:ff:8d:df:3f: b8:6a:a6:8b:34:0f:c1:c3:4d:48:57:ab:a8:30:a5: fe:d1:d2:8c:79:e8:1a:75:d8:79:55:5c:9b:9f:c3: 4d:1b:5c:69:45:30:32:51:e9:3d:c1:1b:87:24:0d: 3c:bc:07:23:d0:27:de:1c:ab:50:a5:f3:30:92:5d: b4:a6:2a:d5:76:d3:55:08:1d:91:3d:9a:90:bd:d6: b7:14:6a:eb:14:59:70:cf:d2:e6:26:98:54:3e:8e: 5b:e3:15:95:18:bd:2e:80:5b:50:80:16:02:84:c5: a7:c2:27:8d:ad:0e:e9:8d:06:31:09:c3:51:d2:e7: ae:1b:b8:7c:a6:1e:c0:8e:f0:c4:61:99:a6:5c:ea: 13:ff:54:e1:ea:b3:8b:9e:51:5e:44:cb:09:58:15: 92:21:7a:1b:90:2e:6d:77:d9:c8:2d:24:7d:5a:76: 59:7f:43:e6:cb:f4:f9:4f:e7:88:04:43:f0:5b:a7: 09:a4:27:0c:12:c1:a5:05:85:57:8a:39:47:99:f1: 9a:5a:35:5a:b7:56:5a:1c:2c:89:2d:27:78:ad:fb: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E2:4C:05:AA:21:7C:02:6D:A1:A1:9F:56:24:9B:34:D9:7D:B4:7B X509v3 Authority Key Identifier: keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/OOJMBaohfAJtoaGfViSbNNl9tHs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.229.23.0/24 Signature Algorithm: sha256WithRSAEncryption 43:48:32:cc:2d:bd:23:e1:ac:d0:81:9d:76:5c:a6:95:34:10: 28:66:10:1c:15:0f:80:89:57:cb:fe:ae:2c:fd:d7:8d:fa:21: 82:26:60:bc:ea:7d:13:70:38:c8:34:73:bf:0d:94:63:95:25: 32:7b:41:bc:04:2b:13:f9:90:aa:c9:de:a9:d3:b4:02:37:00: 1f:4c:33:25:7f:af:4b:e1:7f:6b:a6:b2:ed:40:72:86:f6:7e: ec:7c:1e:04:b5:fd:ad:9b:a9:92:40:b4:90:f2:71:25:64:ee: ed:9e:b5:c9:d7:78:1b:75:8c:8e:8b:be:8c:e2:f1:6b:b1:74: b7:34:4f:b5:8f:35:2a:82:cf:ab:3a:58:5e:b3:66:d0:7d:e6: c4:b6:e3:17:ba:23:58:ae:45:d9:92:ed:3c:dd:ee:0b:df:07: 5b:6c:65:53:fe:62:f2:ff:c6:a7:4b:6f:2c:44:2b:f5:7b:16: f8:fa:5e:2d:97:01:cb:2d:04:bf:91:e1:90:63:e3:1c:e5:3b: 45:7d:6e:a8:1d:99:64:b2:a2:98:8d:97:a6:ba:5a:ae:35:e7: 20:9f:52:f0:f9:14:6f:61:4c:64:09:ff:60:d2:c5:ac:a0:f8: b5:a0:ff:0e:11:0a:ad:02:89:cf:f3:ac:c6:a4:d3:d0:e8:9a: d5:84:7c:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZuxPXlLEs0DCByOpuTPzZFrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2 NDI0OTcwHhcNMjYwMTEyMDgwNTU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOGUyNGMwNWFhMjE3YzAyNmRhMWExOWY1NjI0OWIzNGQ5N2RiNDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs82hRGVRPy+0ofyYjJnnPe34M26a ji1BI8cdvtMNFNsLdz6zZfAo1v+N3z+4aqaLNA/Bw01IV6uoMKX+0dKMeegaddh5 VVybn8NNG1xpRTAyUek9wRuHJA08vAcj0CfeHKtQpfMwkl20pirVdtNVCB2RPZqQ vda3FGrrFFlwz9LmJphUPo5b4xWVGL0ugFtQgBYChMWnwieNrQ7pjQYxCcNR0ueu G7h8ph7AjvDEYZmmXOoT/1Th6rOLnlFeRMsJWBWSIXobkC5td9nILSR9WnZZf0Pm y/T5T+eIBEPwW6cJpCcMEsGlBYVXijlHmfGaWjVat1ZaHCyJLSd4rfvqkQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDjiTAWqIXwCbaGhn1YkmzTZfbR7MB8GA1UdIwQY MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt OTU5M2E0ODhhZmNjLzEvT09KTUJhb2hmQUp0b2FHZlZpU2JOTmw5dEhzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV+UXMA0G CSqGSIb3DQEBCwUAA4IBAQBDSDLMLb0j4azQgZ12XKaVNBAoZhAcFQ+AiVfL/q4s /deN+iGCJmC86n0TcDjINHO/DZRjlSUye0G8BCsT+ZCqyd6p07QCNwAfTDMlf69L 4X9rprLtQHKG9n7sfB4Etf2tm6mSQLSQ8nElZO7tnrXJ13gbdYyOi76M4vFrsXS3 NE+1jzUqgs+rOlhes2bQfebEtuMXuiNYrkXZku083e4L3wdbbGVT/mLy/8anS28s RCv1exb4+l4tlwHLLQS/keGQY+Mc5TtFfW6oHZlksqKYjZemulquNecgn1Lw+RRv YUxkCf9g0sWsoPi1oP8OEQqtAonP86zGpNPQ6JrVhHye -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:36 2026 by rpki-client