This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/ctOHMPnfIdx6PydfkKnZ5gEcKQQ.roa File: ctOHMPnfIdx6PydfkKnZ5gEcKQQ.roa (raw, json) Hash identifier: qIj8QWfTmVSnfJJaltVtP4eb6W2W+l0cJ03A7Or6XNY= Subject key identifier: 72:D3:87:30:F9:DF:21:DC:7A:3F:27:5F:90:A9:D9:E6:01:1C:29:04 Certificate issuer: /CN=e37e5ff123ea7d2e83ce27520c987d037e649d03 Certificate serial: 019BFEEEF0113110705296F55F9049176E13 Authority key identifier: E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/ctOHMPnfIdx6PydfkKnZ5gEcKQQ.roa Signing time: Tue 27 Jan 2026 10:10:30 +0000 ROA not before: Tue 27 Jan 2026 10:10:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48927 IP address blocks: 178.215.228.0/22 maxlen: 24 178.215.228.0/24 maxlen: 24 178.215.229.0/24 maxlen: 24 178.215.230.0/24 maxlen: 24 178.215.231.0/24 maxlen: 24 2a0d:5440::/29 maxlen: 48 2a0d:5440::/48 maxlen: 48 2a0d:5440:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.crl rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.mft rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:ee:f0:11:31:10:70:52:96:f5:5f:90:49:17:6e:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e37e5ff123ea7d2e83ce27520c987d037e649d03 Validity Not Before: Jan 27 10:10:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72d38730f9df21dc7a3f275f90a9d9e6011c2904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5f:2a:0d:45:af:44:83:7b:63:53:42:d4:f7: 94:4f:2a:ca:7e:38:12:d9:08:9f:c7:2d:d6:90:67: 88:26:c5:a8:2c:b2:a5:60:11:63:0e:e6:79:a6:6b: 20:92:08:35:2c:cc:32:c7:b3:ae:51:4a:12:52:40: a5:86:4f:c8:2c:a5:0f:a1:9b:67:e1:df:00:52:a8: db:49:0a:9a:f2:61:6a:34:6c:5f:a3:a6:ab:8f:63: 2c:c6:0f:ec:5f:62:6a:95:fa:50:0d:1e:c3:2c:60: 6c:c6:21:c5:da:42:48:6d:bf:12:40:ef:a6:c4:35: 28:47:0b:17:c9:5d:de:ea:d6:06:64:c0:da:eb:f0: 82:f6:96:d8:a8:65:9a:0a:b1:5e:8f:5f:c0:4f:2f: fa:db:44:de:f7:04:9f:37:7d:51:83:99:60:b3:a1: 82:e0:f8:96:9b:a4:65:e1:73:f1:85:f4:9a:0f:1d: ba:2f:b0:51:4d:d9:33:c3:6e:8a:5c:00:cf:01:61: ce:58:22:f9:0e:46:58:4b:c9:5f:73:25:ac:01:92: e2:a3:92:39:26:61:30:d9:47:0d:50:2c:0e:29:2c: 4d:ac:e2:52:05:f3:6d:73:ba:36:a4:14:c3:c2:a0: b0:48:b7:33:d9:9a:26:3d:ca:0c:cb:88:22:e9:7f: 4a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D3:87:30:F9:DF:21:DC:7A:3F:27:5F:90:A9:D9:E6:01:1C:29:04 X509v3 Authority Key Identifier: keyid:E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/ctOHMPnfIdx6PydfkKnZ5gEcKQQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.215.228.0/22 IPv6: 2a0d:5440::/29 Signature Algorithm: sha256WithRSAEncryption 3a:b1:40:ff:3a:1e:1f:44:6b:96:17:17:8b:13:33:52:8c:9a: 4e:82:09:6e:3b:9d:5f:12:4d:8e:6d:bd:eb:c9:4d:f8:07:60: 4e:82:fa:d8:0d:25:23:27:9a:6d:d0:ac:fb:ac:9d:dd:96:39: 28:48:85:cb:6d:23:af:f3:93:7b:3c:1e:cb:43:7d:04:22:73: 4e:49:9f:6d:b4:f9:3f:d8:8e:f7:89:cc:39:0d:0e:09:da:e7: e7:fa:89:72:f8:9f:c6:b1:43:65:5c:e2:b6:36:17:27:f4:6d: 83:1d:f2:96:f4:13:e8:cc:db:05:05:77:77:23:42:d0:ce:84: b5:05:76:be:8f:fe:61:aa:be:ec:f4:77:dc:66:01:d2:c6:bd: b4:1f:ba:c3:33:8d:5e:40:03:f7:fc:1c:ea:f7:a3:36:fc:b7: be:00:2b:59:86:ff:b8:ab:4f:98:28:61:e1:6d:65:dd:f2:9d: ec:81:e7:38:51:7c:80:d6:39:07:f0:52:a8:47:30:e0:59:f1: 76:6e:4a:c0:f9:25:c1:a5:88:63:5e:39:11:3a:62:08:3a:30: ba:53:61:06:51:17:6b:c3:17:12:4f:57:16:34:f2:35:ef:33: f7:83:54:13:37:38:74:64:b3:37:2b:d8:5c:61:b9:42:bb:64: 68:42:2b:0d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZv+7vARMRBwUpb1X5BJF24TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzN2U1ZmYxMjNlYTdkMmU4M2NlMjc1MjBjOTg3ZDAzN2U2 NDlkMDMwHhcNMjYwMTI3MTAxMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmQzODczMGY5ZGYyMWRjN2EzZjI3NWY5MGE5ZDllNjAxMWMyOTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApV8qDUWvRIN7Y1NC1PeUTyrKfjgS 2Qifxy3WkGeIJsWoLLKlYBFjDuZ5pmsgkgg1LMwyx7OuUUoSUkClhk/ILKUPoZtn 4d8AUqjbSQqa8mFqNGxfo6arj2Msxg/sX2JqlfpQDR7DLGBsxiHF2kJIbb8SQO+m xDUoRwsXyV3e6tYGZMDa6/CC9pbYqGWaCrFej1/ATy/620Te9wSfN31Rg5lgs6GC 4PiWm6Rl4XPxhfSaDx26L7BRTdkzw26KXADPAWHOWCL5DkZYS8lfcyWsAZLio5I5 JmEw2UcNUCwOKSxNrOJSBfNtc7o2pBTDwqCwSLcz2ZomPcoMy4gi6X9KrQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHLThzD53yHcej8nX5Cp2eYBHCkEMB8GA1UdIwQY MBaAFON+X/Ej6n0ug84nUgyYfQN+ZJ0DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDM1ZjhTUHFmUzZEemlkU0RKaDlBMzVrblFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9kZmMxMGMtZjg4OS00NTVhLTgyYTAt YjMwNDA4OTQ4Y2NlLzEvY3RPSE1QbmZJZHg2UHlkZmtLblo1Z0VjS1FRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9kZmMxMGMtZjg4OS00NTVhLTgyYTAtYjMwNDA4OTQ4Y2Nl LzEvNDM1ZjhTUHFmUzZEemlkU0RKaDlBMzVrblFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCstfkMA0E AgACMAcDBQMqDVRAMA0GCSqGSIb3DQEBCwUAA4IBAQA6sUD/Oh4fRGuWFxeLEzNS jJpOggluO51fEk2Obb3ryU34B2BOgvrYDSUjJ5pt0Kz7rJ3dljkoSIXLbSOv85N7 PB7LQ30EInNOSZ9ttPk/2I73icw5DQ4J2ufn+oly+J/GsUNlXOK2Nhcn9G2DHfKW 9BPozNsFBXd3I0LQzoS1BXa+j/5hqr7s9HfcZgHSxr20H7rDM41eQAP3/Bzq96M2 /Le+ACtZhv+4q0+YKGHhbWXd8p3sgec4UXyA1jkH8FKoRzDgWfF2bkrA+SXBpYhj XjkROmIIOjC6U2EGURdrwxcST1cWNPI17zP3g1QTNzh0ZLM3K9hcYblCu2RoQisN -----END CERTIFICATE-----Generated at Mon Feb 2 09:40:26 2026 by rpki-client