This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/OD1vu1xvYZtuVSOWeWsoiRek5JE.roa File: OD1vu1xvYZtuVSOWeWsoiRek5JE.roa (raw, json) Hash identifier: wh893NwS229KIBxcphoahE5rVlzAGosMJTAhq3iAiRg= Subject key identifier: 38:3D:6F:BB:5C:6F:61:9B:6E:55:23:96:79:6B:28:89:17:A4:E4:91 Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da Certificate serial: 019B7B35CAAE170F41BAD7FC9551B876EB50 Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/OD1vu1xvYZtuVSOWeWsoiRek5JE.roa Signing time: Thu 01 Jan 2026 20:18:01 +0000 ROA not before: Thu 01 Jan 2026 20:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205655 IP address blocks: 185.211.11.0/24 maxlen: 24 2a0b:60c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.mft rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 11:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ca:ae:17:0f:41:ba:d7:fc:95:51:b8:76:eb:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da Validity Not Before: Jan 1 20:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=383d6fbb5c6f619b6e552396796b288917a4e491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:5d:f9:32:85:b8:c6:b9:57:7f:c1:a4:76: e3:f7:85:a4:1e:83:e2:48:35:77:1e:af:9b:8b:72: 10:8c:cd:44:b7:dd:4e:24:47:9f:26:be:f5:3d:88: c1:dd:f7:df:5d:07:14:60:d9:da:27:d0:4e:64:0f: 9f:52:53:c2:da:16:2f:33:bb:14:e9:d7:7e:3f:11: fc:b4:96:16:61:f5:1c:b3:02:8e:10:63:98:5c:60: d2:f2:55:88:9e:28:19:75:63:fd:07:33:ee:07:a0: 3e:c8:00:21:61:bc:d9:f1:3d:cf:d0:48:cf:44:a2: 46:c3:83:5e:54:e1:b9:a0:db:ad:d9:de:42:2a:80: df:a9:8a:95:3b:e5:cd:be:80:c5:6e:6e:2d:11:4d: 1c:56:dd:92:45:b4:8d:11:6e:b7:27:6a:66:cf:46: 6a:b6:ad:4e:0f:df:26:d5:85:bb:8e:eb:c4:5b:9e: c8:35:0a:73:f3:5b:de:65:bd:24:7c:4b:4a:e7:19: 43:aa:1d:8a:3c:11:51:ad:1c:c7:71:17:23:64:8a: 37:83:a5:2d:98:08:26:20:96:aa:3a:3d:86:74:c2: 11:21:e9:0e:50:15:81:db:d9:fb:25:51:02:80:25: 21:dd:4f:26:f9:f8:27:2c:e1:d5:7e:ec:de:82:1b: dc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3D:6F:BB:5C:6F:61:9B:6E:55:23:96:79:6B:28:89:17:A4:E4:91 X509v3 Authority Key Identifier: keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/OD1vu1xvYZtuVSOWeWsoiRek5JE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.211.11.0/24 IPv6: 2a0b:60c0::/29 Signature Algorithm: sha256WithRSAEncryption 8b:87:ed:52:d0:11:13:7b:35:97:33:e4:b8:99:98:e6:11:c1: a1:e4:92:c6:99:0b:07:15:ba:9c:65:33:77:a9:26:50:e2:a7: af:54:05:88:6b:a8:33:fc:b0:ad:7b:7f:bc:34:51:cf:7a:1e: 6f:e5:46:4a:46:2e:84:e1:6c:4a:13:8e:b7:f9:c9:10:af:ac: ba:5d:7d:58:db:63:03:71:25:71:c3:68:45:b1:13:95:cc:f4: 23:3c:14:eb:3d:24:3d:f2:37:f2:65:1a:ba:da:25:8b:d7:ca: 95:45:f4:b6:a7:3e:64:3b:2f:28:27:46:7d:45:49:39:61:b7: 6a:40:16:84:15:c3:72:89:15:02:da:9c:56:69:14:83:f2:20: 50:e0:e9:c0:94:5e:ed:02:fa:4c:da:c0:ed:c8:6a:e2:a6:43: ff:49:10:42:0b:6d:91:84:3e:3e:01:52:86:87:eb:5f:67:54: f3:a8:cb:60:78:19:09:e6:d8:7a:17:c0:62:9f:39:f6:09:49: 4d:16:8b:ea:75:3a:93:e3:da:be:41:ab:69:76:1e:7d:5e:74: 6c:ea:eb:3e:cc:e0:ed:97:6d:58:13:34:3d:ba:43:d3:b5:32: 2f:98:13:39:8c:74:17:c7:c0:b6:4e:12:50:a6:c1:58:6f:14: 22:bb:f9:26 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt7NcquFw9Butf8lVG4dutQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxNjhlMzZiYTU3N2VkNDdlNjkyODcyOTY5MTk5MWU0ZTdm MjM1ZGEwHhcNMjYwMTAxMjAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODNkNmZiYjVjNmY2MTliNmU1NTIzOTY3OTZiMjg4OTE3YTRlNDkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuFd+TKFuMa5V3/BpHbj94WkHoPi SDV3Hq+bi3IQjM1Et91OJEefJr71PYjB3fffXQcUYNnaJ9BOZA+fUlPC2hYvM7sU 6dd+PxH8tJYWYfUcswKOEGOYXGDS8lWInigZdWP9BzPuB6A+yAAhYbzZ8T3P0EjP RKJGw4NeVOG5oNut2d5CKoDfqYqVO+XNvoDFbm4tEU0cVt2SRbSNEW63J2pmz0Zq tq1OD98m1YW7juvEW57INQpz81veZb0kfEtK5xlDqh2KPBFRrRzHcRcjZIo3g6Ut mAgmIJaqOj2GdMIRIekOUBWB29n7JVECgCUh3U8m+fgnLOHVfuzeghvc+QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDg9b7tcb2GbblUjlnlrKIkXpOSRMB8GA1UdIwQY MBaAFOFo42uld+1H5pKHKWkZkeTn8jXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFdqamE2VjM3VWZta29jcGFSbVI1T2Z5TmRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85YTI5N2QtY2VlNS00YzkzLWIyNTgt Y2I0YmFiZTlkYzhmLzEvT0QxdnUxeHZZWnR1VlNPV2VXc29pUmVrNUpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny85YTI5N2QtY2VlNS00YzkzLWIyNTgtY2I0YmFiZTlkYzhm LzEvNFdqamE2VjM3VWZta29jcGFSbVI1T2Z5TmRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAudMLMA0E AgACMAcDBQMqC2DAMA0GCSqGSIb3DQEBCwUAA4IBAQCLh+1S0BETezWXM+S4mZjm EcGh5JLGmQsHFbqcZTN3qSZQ4qevVAWIa6gz/LCte3+8NFHPeh5v5UZKRi6E4WxK E463+ckQr6y6XX1Y22MDcSVxw2hFsROVzPQjPBTrPSQ98jfyZRq62iWL18qVRfS2 pz5kOy8oJ0Z9RUk5YbdqQBaEFcNyiRUC2pxWaRSD8iBQ4OnAlF7tAvpM2sDtyGri pkP/SRBCC22RhD4+AVKGh+tfZ1TzqMtgeBkJ5th6F8Binzn2CUlNFovqdTqT49q+ Qatpdh59XnRs6us+zODtl21YEzQ9ukPTtTIvmBM5jHQXx8C2ThJQpsFYbxQiu/km -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:57 2026 by rpki-client