This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/08f671-3c35-450a-a90e-2cce9600660f/1/oZ_sRUkhzcnvo9UxHydsIIFowVA.roa File: oZ_sRUkhzcnvo9UxHydsIIFowVA.roa (raw, json) Hash identifier: M/9VTdKWiax6Tcg6atFhpgUR3/6F+N0ZZUqwIPzeqz8= Subject key identifier: A1:9F:EC:45:49:21:CD:C9:EF:A3:D5:31:1F:27:6C:20:81:68:C1:50 Certificate issuer: /CN=4bcd72d6cb385a3a33c6c8fe5459c686a6849509 Certificate serial: 019B7910378401B6E87C844EE849E0254DC3 Authority key identifier: 4B:CD:72:D6:CB:38:5A:3A:33:C6:C8:FE:54:59:C6:86:A6:84:95:09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S81y1ss4Wjozxsj-VFnGhqaElQk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/08f671-3c35-450a-a90e-2cce9600660f/1/oZ_sRUkhzcnvo9UxHydsIIFowVA.roa Signing time: Thu 01 Jan 2026 10:17:44 +0000 ROA not before: Thu 01 Jan 2026 10:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5398 IP address blocks: 45.91.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/08f671-3c35-450a-a90e-2cce9600660f/1/S81y1ss4Wjozxsj-VFnGhqaElQk.crl rsync://rpki.ripe.net/repository/DEFAULT/75/08f671-3c35-450a-a90e-2cce9600660f/1/S81y1ss4Wjozxsj-VFnGhqaElQk.mft rsync://rpki.ripe.net/repository/DEFAULT/S81y1ss4Wjozxsj-VFnGhqaElQk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:37:84:01:b6:e8:7c:84:4e:e8:49:e0:25:4d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bcd72d6cb385a3a33c6c8fe5459c686a6849509 Validity Not Before: Jan 1 10:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a19fec454921cdc9efa3d5311f276c208168c150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d7:25:70:f7:58:c3:f0:e2:b4:c9:e2:61:98: c8:1c:53:0b:ed:d0:c0:b5:12:59:93:25:ec:f9:aa: ad:ad:41:47:b8:65:72:56:ed:d0:67:16:be:f6:01: 68:c4:b4:2f:24:81:65:19:d2:cf:03:06:58:c8:b9: 39:e3:d4:d7:b7:85:1d:77:23:f1:24:1f:82:aa:08: 02:9f:e0:e6:c9:e6:2c:a9:32:10:7a:44:f5:8c:63: 87:ff:a4:2e:dd:60:b0:d4:3b:32:da:e3:bd:13:a6: 13:8d:72:5f:c4:06:fa:f7:b5:63:35:7c:52:81:01: a5:ba:6b:48:4f:b6:eb:c3:0c:72:72:66:f7:1b:1e: 02:77:b6:e9:e3:53:74:9b:4c:b2:13:5a:9a:1d:7e: 2a:54:5d:b7:29:b9:cb:ff:6a:76:28:aa:97:78:65: ae:2b:7e:bc:e4:f0:c7:cc:a4:c5:01:2e:20:cc:7d: 73:e5:ac:ad:95:8b:32:20:12:4c:c7:0d:76:0a:c7: e0:1d:02:6b:3d:47:99:67:63:a5:06:53:1e:e1:e6: d3:ef:ff:e4:80:b0:b1:6f:68:26:f5:1d:d0:2f:62: 94:e4:5b:3f:ca:c4:8e:20:41:fd:b7:ac:8c:b7:42: 4d:66:b1:04:56:17:a0:c0:25:a2:a0:92:6a:07:c6: d6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9F:EC:45:49:21:CD:C9:EF:A3:D5:31:1F:27:6C:20:81:68:C1:50 X509v3 Authority Key Identifier: keyid:4B:CD:72:D6:CB:38:5A:3A:33:C6:C8:FE:54:59:C6:86:A6:84:95:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S81y1ss4Wjozxsj-VFnGhqaElQk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/08f671-3c35-450a-a90e-2cce9600660f/1/oZ_sRUkhzcnvo9UxHydsIIFowVA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/08f671-3c35-450a-a90e-2cce9600660f/1/S81y1ss4Wjozxsj-VFnGhqaElQk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.91.228.0/24 Signature Algorithm: sha256WithRSAEncryption 50:9b:af:72:2c:e7:1a:59:35:15:5f:5c:26:ac:ba:62:39:63: 65:de:11:fc:85:6b:5c:ae:f7:59:65:57:82:d2:5a:55:bf:f3: fb:0d:69:a4:14:61:b9:f0:12:73:e2:7f:b0:da:c4:a3:50:8f: 6f:b5:bb:a2:fc:d1:35:16:8f:ed:95:4e:b4:d2:33:7c:de:56: df:f7:a1:2b:be:96:e9:7f:04:b9:a2:d4:75:ce:bb:81:c6:85: 1a:43:1f:80:ba:02:88:40:ae:8a:9a:13:5e:00:ee:8c:e8:9e: 49:a6:34:34:70:02:9b:c6:89:fb:43:bc:67:f9:ce:13:62:25: b3:24:50:63:0f:fb:a9:52:c5:35:fa:4d:f4:64:43:12:dc:8c: b1:c3:e8:dd:75:24:55:85:c2:e5:9a:d1:76:16:f1:50:b2:2a: 4c:a0:31:6d:4c:1e:bd:46:e3:8e:1f:1c:f0:07:6b:1e:66:4c: e6:b0:c7:5b:60:a6:83:09:67:67:11:8c:13:6d:96:f2:92:53: 98:d5:68:dd:61:0d:26:6b:20:dc:90:fd:7d:6c:83:f5:ab:f2: 7a:51:93:cd:71:df:eb:5e:6c:25:1b:e0:33:e8:82:a5:4e:78: 38:a1:4a:8d:b6:06:be:a1:91:ab:7f:20:05:d8:b9:21:77:ed: e9:be:ed:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EDeEAbbofIRO6EngJU3DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiY2Q3MmQ2Y2IzODVhM2EzM2M2YzhmZTU0NTljNjg2YTY4 NDk1MDkwHhcNMjYwMTAxMTAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTlmZWM0NTQ5MjFjZGM5ZWZhM2Q1MzExZjI3NmMyMDgxNjhjMTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9clcPdYw/DitMniYZjIHFML7dDA tRJZkyXs+aqtrUFHuGVyVu3QZxa+9gFoxLQvJIFlGdLPAwZYyLk549TXt4UddyPx JB+CqggCn+DmyeYsqTIQekT1jGOH/6Qu3WCw1Dsy2uO9E6YTjXJfxAb697VjNXxS gQGlumtIT7brwwxycmb3Gx4Cd7bp41N0m0yyE1qaHX4qVF23KbnL/2p2KKqXeGWu K3685PDHzKTFAS4gzH1z5aytlYsyIBJMxw12CsfgHQJrPUeZZ2OlBlMe4ebT7//k gLCxb2gm9R3QL2KU5Fs/ysSOIEH9t6yMt0JNZrEEVhegwCWioJJqB8bWlQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKGf7EVJIc3J76PVMR8nbCCBaMFQMB8GA1UdIwQY MBaAFEvNctbLOFo6M8bI/lRZxoamhJUJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzgxeTFzczRXam96eHNqLVZGbkdocWFFbFFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8wOGY2NzEtM2MzNS00NTBhLWE5MGUt MmNjZTk2MDA2NjBmLzEvb1pfc1JVa2h6Y252bzlVeEh5ZHNJSUZvd1ZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS8wOGY2NzEtM2MzNS00NTBhLWE5MGUtMmNjZTk2MDA2NjBm LzEvUzgxeTFzczRXam96eHNqLVZGbkdocWFFbFFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVvkMA0G CSqGSIb3DQEBCwUAA4IBAQBQm69yLOcaWTUVX1wmrLpiOWNl3hH8hWtcrvdZZVeC 0lpVv/P7DWmkFGG58BJz4n+w2sSjUI9vtbui/NE1Fo/tlU600jN83lbf96Ervpbp fwS5otR1zruBxoUaQx+AugKIQK6KmhNeAO6M6J5JpjQ0cAKbxon7Q7xn+c4TYiWz JFBjD/upUsU1+k30ZEMS3Iyxw+jddSRVhcLlmtF2FvFQsipMoDFtTB69RuOOHxzw B2seZkzmsMdbYKaDCWdnEYwTbZbyklOY1WjdYQ0mayDckP19bIP1q/J6UZPNcd/r XmwlG+Az6IKlTng4oUqNtga+oZGrfyAF2Lkhd+3pvu1L -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:18 2026 by rpki-client