This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/O8lEz7sldAMhunBtL_QvQBqIbrI.roa File: O8lEz7sldAMhunBtL_QvQBqIbrI.roa (raw, json) Hash identifier: 488oi+kEZqq5MbyjdFs6r3n7GNIWUeZpbUJcwVjpzZg= Subject key identifier: 3B:C9:44:CF:BB:25:74:03:21:BA:70:6D:2F:F4:2F:40:1A:88:6E:B2 Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511 Certificate serial: 019B7C8020825FDD922174AD1B1D2DF4989A Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/O8lEz7sldAMhunBtL_QvQBqIbrI.roa Signing time: Fri 02 Jan 2026 02:18:50 +0000 ROA not before: Fri 02 Jan 2026 02:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51964 IP address blocks: 81.52.185.0/24 maxlen: 32 2a01:ce80::/26 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.mft rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:20:82:5f:dd:92:21:74:ad:1b:1d:2d:f4:98:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511 Validity Not Before: Jan 2 02:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3bc944cfbb25740321ba706d2ff42f401a886eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6c:94:5c:1f:e9:d8:60:a4:e6:72:3c:76:59: ba:ac:bb:8b:a5:72:52:79:ff:47:b2:27:6d:81:e1: cb:32:f7:bb:99:e7:11:b6:1b:a5:b9:cd:34:79:d4: 3c:0f:f2:8d:0b:7b:5c:36:03:ae:78:f1:a6:19:62: 08:60:38:e1:bd:83:b7:0c:ed:57:99:df:5f:3f:d1: 2a:44:f7:ad:ff:00:9b:3e:4a:d1:cc:64:94:25:31: 83:ba:35:05:ca:1a:6f:fd:55:ba:9a:a2:0a:4a:10: 11:22:85:30:9a:ac:82:26:c9:2e:07:c3:9a:99:56: c1:0d:b5:2f:95:d4:25:b0:7d:e5:03:bd:2c:f7:2a: da:ba:38:5b:6b:4a:03:6b:c0:86:03:f2:c2:0c:4c: 63:18:38:38:24:12:d1:eb:de:98:22:82:ba:2e:40: 9e:e0:3a:03:ff:a1:b3:14:d3:db:4a:01:0c:f4:03: a8:37:b7:38:09:f3:91:b3:95:85:be:4c:4f:ec:45: 42:44:74:86:32:33:b2:ed:a6:37:a9:72:0c:7a:b1: 2a:b3:86:bb:93:ef:dd:4d:73:29:35:13:91:c6:69: e4:2a:2f:de:5f:52:72:82:98:a5:d3:8b:9d:f3:cc: 51:02:7d:3e:db:ee:8b:6b:42:09:8b:cc:fc:d4:7c: f8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C9:44:CF:BB:25:74:03:21:BA:70:6D:2F:F4:2F:40:1A:88:6E:B2 X509v3 Authority Key Identifier: keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/O8lEz7sldAMhunBtL_QvQBqIbrI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.52.185.0/24 IPv6: 2a01:ce80::/26 Signature Algorithm: sha256WithRSAEncryption 88:72:14:cb:67:a9:d0:fc:0a:63:8c:ad:28:73:3e:d3:58:28: 4b:a9:1a:0b:bd:88:da:91:43:4f:96:79:5e:e4:06:c1:7c:35: 10:56:83:72:bd:8b:c8:b3:79:45:28:47:cf:f8:eb:63:b0:a7: f3:ef:0a:40:6a:3a:79:74:ad:c2:de:64:45:94:c9:c7:8d:01: d8:d1:5b:53:61:7e:56:0d:91:fd:30:93:76:94:4f:45:fd:9a: 6c:e1:cb:e5:3d:e1:fe:f6:5f:e2:fa:9c:5b:c7:80:51:8c:90: 7e:7b:4f:4d:66:ae:7f:06:b9:30:db:ac:be:70:74:96:07:d5: 5c:f7:68:25:9a:4c:1d:98:f9:de:d9:3d:1c:76:fb:53:e3:8d: c3:9e:6b:2c:c0:6a:f4:a7:49:bb:2b:d7:a2:ff:0f:66:f4:fa: db:19:51:fb:a4:33:0b:cc:21:88:9b:34:c3:4b:e6:36:d8:76: 4a:e5:aa:fa:09:a7:27:b5:05:b2:68:35:7f:4c:e4:85:2d:e6: ce:70:a5:23:5e:e1:8f:9d:be:b6:07:d1:c4:c7:f8:80:b6:4d: 43:12:bb:37:a0:5c:f8:d5:04:0e:ae:9c:4c:37:b4:1b:f0:cb: cf:90:73:97:5e:cb:1b:a4:75:9e:05:29:1f:00:d8:72:39:d7: 93:bb:00:40 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8gCCCX92SIXStGx0t9JiaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh MTA1MTEwHhcNMjYwMTAyMDIxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYmM5NDRjZmJiMjU3NDAzMjFiYTcwNmQyZmY0MmY0MDFhODg2ZWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2yUXB/p2GCk5nI8dlm6rLuLpXJS ef9HsidtgeHLMve7mecRthuluc00edQ8D/KNC3tcNgOuePGmGWIIYDjhvYO3DO1X md9fP9EqRPet/wCbPkrRzGSUJTGDujUFyhpv/VW6mqIKShARIoUwmqyCJskuB8Oa mVbBDbUvldQlsH3lA70s9yraujhba0oDa8CGA/LCDExjGDg4JBLR696YIoK6LkCe 4DoD/6GzFNPbSgEM9AOoN7c4CfORs5WFvkxP7EVCRHSGMjOy7aY3qXIMerEqs4a7 k+/dTXMpNRORxmnkKi/eX1Jygpil04ud88xRAn0+2+6La0IJi8z81Hz4TwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDvJRM+7JXQDIbpwbS/0L0AaiG6yMB8GA1UdIwQY MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt NDU5MzVmNTA2YTEyLzEvTzhsRXo3c2xkQU1odW5CdExfUXZRQnFJYnJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAUTS5MA0E AgACMAcDBQYqAc6AMA0GCSqGSIb3DQEBCwUAA4IBAQCIchTLZ6nQ/ApjjK0ocz7T WChLqRoLvYjakUNPlnle5AbBfDUQVoNyvYvIs3lFKEfP+OtjsKfz7wpAajp5dK3C 3mRFlMnHjQHY0VtTYX5WDZH9MJN2lE9F/Zps4cvlPeH+9l/i+pxbx4BRjJB+e09N Zq5/Brkw26y+cHSWB9Vc92glmkwdmPne2T0cdvtT443DnmsswGr0p0m7K9ei/w9m 9PrbGVH7pDMLzCGImzTDS+Y22HZK5ar6CacntQWyaDV/TOSFLebOcKUjXuGPnb62 B9HEx/iAtk1DErs3oFz41QQOrpxMN7Qb8MvPkHOXXssbpHWeBSkfANhyOdeTuwBA -----END CERTIFICATE-----Generated at Fri Jan 23 15:09:22 2026 by rpki-client