This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/565065-da4d-4cbe-9061-8781c4fe011f/1/OVsUoxEtxyTTB3CH6rWuhP437mU.roa File: OVsUoxEtxyTTB3CH6rWuhP437mU.roa (raw, json) Hash identifier: P0yBt6sR2yHKOBO0qE1XSEoJWsr0+vXlRnCO2zi8DpU= Subject key identifier: 39:5B:14:A3:11:2D:C7:24:D3:07:70:87:EA:B5:AE:84:FE:37:EE:65 Certificate issuer: /CN=85bcb81dcd3f29318f403b8481be44ec1ff5502e Certificate serial: 019B7D5C25AD4E2D63240D145863AADFC7E9 Authority key identifier: 85:BC:B8:1D:CD:3F:29:31:8F:40:3B:84:81:BE:44:EC:1F:F5:50:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hby4Hc0_KTGPQDuEgb5E7B_1UC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/565065-da4d-4cbe-9061-8781c4fe011f/1/OVsUoxEtxyTTB3CH6rWuhP437mU.roa Signing time: Fri 02 Jan 2026 06:19:09 +0000 ROA not before: Fri 02 Jan 2026 06:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3190 IP address blocks: 5.11.0.0/21 maxlen: 21 185.90.40.0/22 maxlen: 22 2a00:ebc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/565065-da4d-4cbe-9061-8781c4fe011f/1/hby4Hc0_KTGPQDuEgb5E7B_1UC4.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/565065-da4d-4cbe-9061-8781c4fe011f/1/hby4Hc0_KTGPQDuEgb5E7B_1UC4.mft rsync://rpki.ripe.net/repository/DEFAULT/hby4Hc0_KTGPQDuEgb5E7B_1UC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:25:ad:4e:2d:63:24:0d:14:58:63:aa:df:c7:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85bcb81dcd3f29318f403b8481be44ec1ff5502e Validity Not Before: Jan 2 06:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=395b14a3112dc724d3077087eab5ae84fe37ee65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:69:1e:9c:f9:c0:fe:14:23:35:69:1b:38:22: 2c:06:c4:f4:d9:e5:bb:db:61:fa:2a:1b:45:35:ca: 76:21:f1:37:ee:9d:90:ad:69:db:39:bd:cb:7d:dc: da:d4:c0:35:e4:2f:4c:ed:dd:b8:b9:33:d4:9b:be: 0c:56:07:e1:dd:dc:8c:24:63:4b:2e:4b:0a:9f:d1: 77:2a:54:85:37:37:60:88:3b:87:31:a6:29:46:ee: 47:cd:6e:c4:35:a6:52:8a:e0:b9:88:80:6c:cf:7e: d9:3e:06:ba:22:d2:b6:27:74:1d:50:55:6e:3b:7c: 02:87:48:9b:59:33:6a:61:6c:75:87:43:a1:c1:28: 5e:c5:97:54:f1:61:d8:65:03:82:bc:23:8b:58:46: 8b:7b:b1:65:d2:b4:ad:8e:53:03:cf:d7:9e:1b:2c: a2:4f:f9:d4:9d:3c:bb:ce:6b:26:eb:95:f1:a6:b8: 68:ff:d9:ce:d1:c4:f0:81:83:5d:39:c6:a1:cf:ac: fb:82:91:06:10:8d:16:df:2b:2e:55:45:ed:59:79: 5a:bf:f9:42:f0:f2:f6:7f:84:66:49:18:d7:8c:c1: e6:08:76:ab:5e:70:b1:66:47:2b:7c:50:fc:51:65: 2c:39:d3:7e:17:a3:50:6b:66:04:e5:e8:ad:7e:e7: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5B:14:A3:11:2D:C7:24:D3:07:70:87:EA:B5:AE:84:FE:37:EE:65 X509v3 Authority Key Identifier: keyid:85:BC:B8:1D:CD:3F:29:31:8F:40:3B:84:81:BE:44:EC:1F:F5:50:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hby4Hc0_KTGPQDuEgb5E7B_1UC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/565065-da4d-4cbe-9061-8781c4fe011f/1/OVsUoxEtxyTTB3CH6rWuhP437mU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/565065-da4d-4cbe-9061-8781c4fe011f/1/hby4Hc0_KTGPQDuEgb5E7B_1UC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.11.0.0/21 185.90.40.0/22 IPv6: 2a00:ebc0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:a7:b0:6e:14:56:f4:e9:06:65:53:24:c4:57:05:53:60:91: 0f:75:51:b2:e4:d6:89:d3:e1:89:07:08:99:28:40:0c:7e:8b: 8f:db:69:8c:04:8c:c3:b3:75:56:8a:58:db:f7:73:b8:ed:37: 96:28:92:d9:78:0d:a0:fc:7a:b4:ac:ef:be:c1:b0:13:de:2e: 2a:50:0e:c3:d4:ba:41:6a:cb:af:da:3c:9c:08:d2:cb:9d:1c: 03:50:96:b2:0c:0a:56:00:65:05:8f:ab:41:6d:96:3c:9d:fd: f3:3b:d5:32:ff:ea:cd:87:5e:51:ef:61:92:9c:c7:54:26:d5: f2:af:80:53:2f:52:70:fb:b4:49:75:28:a9:f1:39:b9:01:22: 0f:06:2b:2e:2a:47:8f:0a:f0:27:33:c3:37:dd:cc:f7:98:ea: 92:88:74:47:0f:ab:d3:fb:ef:ca:fa:98:ce:df:a3:d4:92:4b: 80:74:dc:7d:8f:eb:59:f0:13:a9:c1:72:bc:fd:2a:1a:9b:79: 65:54:ca:2b:17:d7:c5:f5:44:0e:ea:ce:0b:ee:62:72:99:e1: 8b:ec:30:9f:93:51:50:f0:e8:48:77:23:5a:a5:5b:1d:77:29: 8f:d7:19:17:aa:4d:9b:c6:f9:c2:4a:8c:64:ba:9b:f7:78:e9: b2:84:45:53 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9XCWtTi1jJA0UWGOq38fpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YmNiODFkY2QzZjI5MzE4ZjQwM2I4NDgxYmU0NGVjMWZm NTUwMmUwHhcNMjYwMTAyMDYxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTViMTRhMzExMmRjNzI0ZDMwNzcwODdlYWI1YWU4NGZlMzdlZTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GkenPnA/hQjNWkbOCIsBsT02eW7 22H6KhtFNcp2IfE37p2QrWnbOb3Lfdza1MA15C9M7d24uTPUm74MVgfh3dyMJGNL LksKn9F3KlSFNzdgiDuHMaYpRu5HzW7ENaZSiuC5iIBsz37ZPga6ItK2J3QdUFVu O3wCh0ibWTNqYWx1h0OhwShexZdU8WHYZQOCvCOLWEaLe7Fl0rStjlMDz9eeGyyi T/nUnTy7zmsm65Xxprho/9nO0cTwgYNdOcahz6z7gpEGEI0W3ysuVUXtWXlav/lC 8PL2f4RmSRjXjMHmCHarXnCxZkcrfFD8UWUsOdN+F6NQa2YE5eitfuf+nQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFDlbFKMRLcck0wdwh+q1roT+N+5lMB8GA1UdIwQY MBaAFIW8uB3NPykxj0A7hIG+ROwf9VAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJ5NEhjMF9LVEdQUUR1RWdiNUU3Ql8xVUM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi81NjUwNjUtZGE0ZC00Y2JlLTkwNjEt ODc4MWM0ZmUwMTFmLzEvT1ZzVW94RXR4eVRUQjNDSDZyV3VoUDQzN21VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi81NjUwNjUtZGE0ZC00Y2JlLTkwNjEtODc4MWM0ZmUwMTFm LzEvaGJ5NEhjMF9LVEdQUUR1RWdiNUU3Ql8xVUM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDBQsAAwQC uVooMA0EAgACMAcDBQAqAOvAMA0GCSqGSIb3DQEBCwUAA4IBAQAOp7BuFFb06QZl UyTEVwVTYJEPdVGy5NaJ0+GJBwiZKEAMfouP22mMBIzDs3VWiljb93O47TeWKJLZ eA2g/Hq0rO++wbAT3i4qUA7D1LpBasuv2jycCNLLnRwDUJayDApWAGUFj6tBbZY8 nf3zO9Uy/+rNh15R72GSnMdUJtXyr4BTL1Jw+7RJdSip8Tm5ASIPBisuKkePCvAn M8M33cz3mOqSiHRHD6vT++/K+pjO36PUkkuAdNx9j+tZ8BOpwXK8/Soam3llVMor F9fF9UQO6s4L7mJymeGL7DCfk1FQ8OhIdyNapVsddymP1xkXqk2bxvnCSoxkupv3 eOmyhEVT -----END CERTIFICATE-----Generated at Tue Feb 10 04:53:16 2026 by rpki-client