This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/oIjvZ5LFpREEoQ8CBQGoijsn0Nc.roa File: oIjvZ5LFpREEoQ8CBQGoijsn0Nc.roa (raw, json) Hash identifier: M99QhtER9HJAO8F9G3t/LufEuGbqke6cpdVhyWm1xXw= Subject key identifier: A0:88:EF:67:92:C5:A5:11:04:A1:0F:02:05:01:A8:8A:3B:27:D0:D7 Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318 Certificate serial: 019B7C135A7AC71C13C2D265EDC588504A2F Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/oIjvZ5LFpREEoQ8CBQGoijsn0Nc.roa Signing time: Fri 02 Jan 2026 00:20:01 +0000 ROA not before: Fri 02 Jan 2026 00:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 23470 IP address blocks: 45.88.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.mft rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:5a:7a:c7:1c:13:c2:d2:65:ed:c5:88:50:4a:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318 Validity Not Before: Jan 2 00:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a088ef6792c5a51104a10f020501a88a3b27d0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0d:ab:35:e4:47:b9:47:ad:5d:4c:3b:9d:78: 8a:9e:20:2b:7b:10:e2:90:d8:d7:87:37:63:4e:fd: 16:46:bc:0c:7e:34:1a:27:0d:d4:4c:bc:14:d1:51: e6:1b:55:4b:f9:20:ab:cf:83:f6:93:29:20:5d:ae: e3:c5:da:3c:0e:26:ff:cf:e4:3e:a5:47:04:69:01: e5:60:dc:f2:00:4c:dd:86:eb:e1:d4:93:d2:e6:1d: 35:94:17:e6:51:41:07:17:96:e5:f6:3a:fe:d9:44: 74:fe:54:e6:07:9b:89:cc:84:0a:c4:a8:51:d6:c1: b3:3b:41:da:7a:26:a6:d3:de:8e:4a:10:aa:15:83: d2:e5:fa:ea:8c:fa:18:8a:2e:5d:1c:23:9e:09:a3: 74:fd:b6:e3:bb:a2:b8:0c:19:7e:22:8f:36:f0:0a: ed:f5:cb:f7:9f:04:e6:08:98:17:38:ba:e6:59:d5: 00:c7:2a:bb:85:92:36:15:31:11:d0:0c:0e:61:d4: e5:6c:24:10:c9:7b:7f:20:bb:b3:eb:5e:bf:86:eb: 94:2d:fd:6c:9a:6d:d4:10:2f:65:ca:6c:d5:fc:c2: b5:c8:62:a0:17:ec:8f:92:d8:4a:bc:b8:82:39:0e: bc:8a:ac:6b:f1:c0:cf:b7:df:b1:dd:49:ea:72:a8: 85:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:88:EF:67:92:C5:A5:11:04:A1:0F:02:05:01:A8:8A:3B:27:D0:D7 X509v3 Authority Key Identifier: keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/oIjvZ5LFpREEoQ8CBQGoijsn0Nc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.186.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:35:be:53:8a:dc:b9:84:11:71:ee:d8:3d:a7:72:f3:9b:56: ab:9c:df:b1:e4:88:48:b0:4a:51:36:fc:f1:f4:9a:d9:29:22: 94:7f:1e:55:e3:82:cc:fa:71:f0:18:20:6a:08:7d:33:0d:dc: dd:51:86:7e:9e:5c:3f:17:d4:43:57:b1:57:29:b2:34:a3:05: 31:be:9c:e3:ef:c1:0b:a4:d1:49:fc:db:39:e0:f7:c4:86:f7: 92:33:e5:d2:17:fb:f6:e2:a4:b8:a2:a9:3e:9e:fc:05:7f:4c: a4:c7:0e:32:8b:d6:17:1e:2d:5f:fc:7a:7a:99:0a:71:e4:9c: 5b:5b:0f:ec:1e:7b:74:c1:84:bd:aa:29:15:7b:58:32:4d:38: 11:ae:bf:da:b0:a3:a5:a8:85:36:f6:f2:a2:96:c2:e7:b2:5d: 80:cb:d7:e5:6a:5c:ac:b6:83:5f:03:91:ff:ca:16:95:7d:4f: 9e:52:49:fe:0a:55:7e:4a:78:6a:ff:12:71:e2:cd:5e:75:a8: f1:a5:74:b2:c8:48:ec:82:7b:a1:ad:61:8c:8f:24:83:6f:d7: 6e:10:f4:76:6f:78:84:16:94:2d:e0:55:ab:5d:20:a5:52:1c: 00:9a:91:54:08:e6:c5:6e:29:a1:34:31:92:09:40:c3:55:e1: dd:91:a8:e5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E1p6xxwTwtJl7cWIUEovMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMWMxMTY1OGQyMDQxZWFmMjUwMmZlNTQwOGVkNDkzYmJk NGYzMTgwHhcNMjYwMTAyMDAyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDg4ZWY2NzkyYzVhNTExMDRhMTBmMDIwNTAxYTg4YTNiMjdkMGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnA2rNeRHuUetXUw7nXiKniArexDi kNjXhzdjTv0WRrwMfjQaJw3UTLwU0VHmG1VL+SCrz4P2kykgXa7jxdo8Dib/z+Q+ pUcEaQHlYNzyAEzdhuvh1JPS5h01lBfmUUEHF5bl9jr+2UR0/lTmB5uJzIQKxKhR 1sGzO0Haeiam096OShCqFYPS5frqjPoYii5dHCOeCaN0/bbju6K4DBl+Io828Art 9cv3nwTmCJgXOLrmWdUAxyq7hZI2FTER0AwOYdTlbCQQyXt/ILuz616/huuULf1s mm3UEC9lymzV/MK1yGKgF+yPkthKvLiCOQ68iqxr8cDPt9+x3UnqcqiFmwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKCI72eSxaURBKEPAgUBqIo7J9DXMB8GA1UdIwQY MBaAFI4cEWWNIEHq8lAv5UCO1JO71PMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjIt NjMzNDhjZGJmMDI0LzEvb0lqdlo1TEZwUkVFb1E4Q0JRR29panNuME5jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjItNjMzNDhjZGJmMDI0 LzEvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVi6MA0G CSqGSIb3DQEBCwUAA4IBAQCcNb5Tity5hBFx7tg9p3Lzm1arnN+x5IhIsEpRNvzx 9JrZKSKUfx5V44LM+nHwGCBqCH0zDdzdUYZ+nlw/F9RDV7FXKbI0owUxvpzj78EL pNFJ/Ns54PfEhveSM+XSF/v24qS4oqk+nvwFf0ykxw4yi9YXHi1f/Hp6mQpx5Jxb Ww/sHnt0wYS9qikVe1gyTTgRrr/asKOlqIU29vKilsLnsl2Ay9flalystoNfA5H/ yhaVfU+eUkn+ClV+Snhq/xJx4s1edajxpXSyyEjsgnuhrWGMjySDb9duEPR2b3iE FpQt4FWrXSClUhwAmpFUCObFbimhNDGSCUDDVeHdkajl -----END CERTIFICATE-----Generated at Thu Jan 8 09:23:45 2026 by rpki-client