This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/oXxloD6njLTbPU8cd4uQW4D9yL0.roa File: oXxloD6njLTbPU8cd4uQW4D9yL0.roa (raw, json) Hash identifier: jZodZWVBC3KPHbgCzoujj4oDNgC3Pjsq3788f/bPMYU= Subject key identifier: A1:7C:65:A0:3E:A7:8C:B4:DB:3D:4F:1C:77:8B:90:5B:80:FD:C8:BD Certificate issuer: /CN=ff80b7710b139844275c9de9c8e764eb642e18c3 Certificate serial: 019B7F1597EA7D2F8D84730E343BCCAFAA2F Authority key identifier: FF:80:B7:71:0B:13:98:44:27:5C:9D:E9:C8:E7:64:EB:64:2E:18:C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4C3cQsTmEQnXJ3pyOdk62QuGMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/oXxloD6njLTbPU8cd4uQW4D9yL0.roa Signing time: Fri 02 Jan 2026 14:21:20 +0000 ROA not before: Fri 02 Jan 2026 14:21:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205718 IP address blocks: 185.229.156.0/22 maxlen: 22 2a09:eb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/_4C3cQsTmEQnXJ3pyOdk62QuGMM.crl rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/_4C3cQsTmEQnXJ3pyOdk62QuGMM.mft rsync://rpki.ripe.net/repository/DEFAULT/_4C3cQsTmEQnXJ3pyOdk62QuGMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:97:ea:7d:2f:8d:84:73:0e:34:3b:cc:af:aa:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff80b7710b139844275c9de9c8e764eb642e18c3 Validity Not Before: Jan 2 14:21:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a17c65a03ea78cb4db3d4f1c778b905b80fdc8bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:21:43:5e:4e:76:50:9b:76:52:02:fe:97: 87:4e:9c:ce:4b:c4:2b:19:b4:2d:63:20:20:2b:0d: 0b:24:83:00:ba:fa:61:49:58:70:1d:b8:d9:33:b0: 18:72:4b:71:20:4d:9a:2e:5e:13:90:1d:b8:8e:79: 3d:2e:5d:28:bc:27:2b:aa:01:e0:78:30:d2:a1:9f: 79:e6:9f:80:92:1d:8f:9b:78:63:d6:5d:db:96:25: 6a:4c:75:f8:dc:f1:b3:bd:3c:c6:33:9a:54:97:65: f6:d2:b1:61:2c:e0:dd:fc:9f:ed:e5:37:0e:36:ac: 80:a5:44:a3:03:bb:f5:2f:f9:ff:a2:47:67:e8:1b: 17:7f:8c:39:b5:5e:9a:5c:ce:79:35:f4:d2:37:4f: 75:f7:31:60:21:e9:82:11:69:c7:97:e4:07:9c:74: 62:d4:b4:13:56:a2:7f:9a:94:87:94:d0:d3:0d:44: 20:c0:83:59:7b:8a:84:4d:d1:c9:8d:32:0e:88:dc: 0f:a6:18:1e:56:56:3b:5a:92:27:38:e4:c5:64:a7: 5c:0f:25:d2:99:21:bd:5f:06:21:36:e5:28:e4:ee: 5e:06:9b:b3:f2:ee:2d:24:40:15:0b:99:5a:c0:d1: b1:30:61:21:8d:3a:e6:f5:bf:a9:cd:16:fa:d6:d6: 37:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7C:65:A0:3E:A7:8C:B4:DB:3D:4F:1C:77:8B:90:5B:80:FD:C8:BD X509v3 Authority Key Identifier: keyid:FF:80:B7:71:0B:13:98:44:27:5C:9D:E9:C8:E7:64:EB:64:2E:18:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4C3cQsTmEQnXJ3pyOdk62QuGMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/oXxloD6njLTbPU8cd4uQW4D9yL0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f8a0a5-b185-49a5-85ad-133eff78442b/1/_4C3cQsTmEQnXJ3pyOdk62QuGMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.156.0/22 IPv6: 2a09:eb40::/32 Signature Algorithm: sha256WithRSAEncryption 14:ba:e3:7d:59:c5:55:84:c8:b3:14:af:f5:35:b7:8f:12:2e: 4d:01:fa:a4:28:31:d5:d0:1c:4e:87:c5:93:f9:0f:15:e5:a6: 44:e6:e8:9a:ff:14:6b:d8:9b:59:89:e2:99:0c:30:e9:66:77: 48:2b:7d:9b:a1:82:c5:08:df:02:bd:58:a9:d1:4f:96:7d:cf: eb:53:ec:5d:69:ac:56:15:68:be:44:a8:80:0b:d4:a6:1c:98: 8d:e7:88:f8:a3:3b:69:0c:eb:03:59:21:c7:ff:39:4c:d4:17: de:15:f1:49:6a:27:df:5b:0d:7f:2e:31:69:72:5b:76:b5:38: f2:1a:7a:e1:ad:18:1a:06:c9:d8:e0:de:36:1d:a7:18:39:ec: bd:48:34:7a:fa:c9:03:c0:dc:50:8f:a2:f0:b4:a7:67:ce:4b: 91:c2:e6:f9:18:47:bc:ba:d5:02:ac:0e:ef:60:2e:c2:52:99: ef:7c:af:d3:e7:a3:64:e9:46:b8:d6:af:15:f8:f9:7a:7c:e2: 7f:09:c5:fb:c4:eb:f5:7a:73:b5:b3:99:8c:ac:ab:14:ea:72: ad:5c:ee:de:57:63:3f:89:ff:10:0d:9c:c2:a2:c9:9e:c9:b6: cd:04:a6:de:30:7d:c8:b9:8d:de:2c:f3:13:e7:c6:19:08:38: 5a:13:26:79 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FZfqfS+NhHMONDvMr6ovMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmODBiNzcxMGIxMzk4NDQyNzVjOWRlOWM4ZTc2NGViNjQy ZTE4YzMwHhcNMjYwMTAyMTQyMTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTdjNjVhMDNlYTc4Y2I0ZGIzZDRmMWM3NzhiOTA1YjgwZmRjOGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6YhQ15OdlCbdlIC/peHTpzOS8Qr GbQtYyAgKw0LJIMAuvphSVhwHbjZM7AYcktxIE2aLl4TkB24jnk9Ll0ovCcrqgHg eDDSoZ955p+Akh2Pm3hj1l3bliVqTHX43PGzvTzGM5pUl2X20rFhLODd/J/t5TcO NqyApUSjA7v1L/n/okdn6BsXf4w5tV6aXM55NfTSN0919zFgIemCEWnHl+QHnHRi 1LQTVqJ/mpSHlNDTDUQgwINZe4qETdHJjTIOiNwPphgeVlY7WpInOOTFZKdcDyXS mSG9XwYhNuUo5O5eBpuz8u4tJEAVC5lawNGxMGEhjTrm9b+pzRb61tY3XQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKF8ZaA+p4y02z1PHHeLkFuA/ci9MB8GA1UdIwQY MBaAFP+At3ELE5hEJ1yd6cjnZOtkLhjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzRDM2NRc1RtRVFuWEozcHlPZGs2MlF1R01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9mOGEwYTUtYjE4NS00OWE1LTg1YWQt MTMzZWZmNzg0NDJiLzEvb1h4bG9ENm5qTFRiUFU4Y2Q0dVFXNEQ5eUwwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9mOGEwYTUtYjE4NS00OWE1LTg1YWQtMTMzZWZmNzg0NDJi LzEvXzRDM2NRc1RtRVFuWEozcHlPZGs2MlF1R01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCueWcMA0E AgACMAcDBQAqCetAMA0GCSqGSIb3DQEBCwUAA4IBAQAUuuN9WcVVhMizFK/1NbeP Ei5NAfqkKDHV0BxOh8WT+Q8V5aZE5uia/xRr2JtZieKZDDDpZndIK32boYLFCN8C vVip0U+Wfc/rU+xdaaxWFWi+RKiAC9SmHJiN54j4oztpDOsDWSHH/zlM1BfeFfFJ aiffWw1/LjFpclt2tTjyGnrhrRgaBsnY4N42HacYOey9SDR6+skDwNxQj6LwtKdn zkuRwub5GEe8utUCrA7vYC7CUpnvfK/T56Nk6Ua41q8V+Pl6fOJ/CcX7xOv1enO1 s5mMrKsU6nKtXO7eV2M/if8QDZzCosmeybbNBKbeMH3IuY3eLPMT58YZCDhaEyZ5 -----END CERTIFICATE-----Generated at Mon Feb 9 23:54:33 2026 by rpki-client