This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e54104-00c3-495e-a86c-07f3fbf4d13c/1/OEf2lBJ_RBqJMmsQzdnnofJeh48.roa File: OEf2lBJ_RBqJMmsQzdnnofJeh48.roa (raw, json) Hash identifier: abuHlrBHXQkdM8/st+VwX7SzQ7cIYRuXZP6BjEevqBs= Subject key identifier: 38:47:F6:94:12:7F:44:1A:89:32:6B:10:CD:D9:E7:A1:F2:5E:87:8F Certificate issuer: /CN=ce64917fc3b51db8ae0e5bbcd3a6094c0341e92d Certificate serial: 019BAE42D61BD19D988FFA36F795DED524D3 Authority key identifier: CE:64:91:7F:C3:B5:1D:B8:AE:0E:5B:BC:D3:A6:09:4C:03:41:E9:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmSRf8O1HbiuDlu806YJTANB6S0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e54104-00c3-495e-a86c-07f3fbf4d13c/1/OEf2lBJ_RBqJMmsQzdnnofJeh48.roa Signing time: Sun 11 Jan 2026 18:12:54 +0000 ROA not before: Sun 11 Jan 2026 18:12:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215878 IP address blocks: 194.156.28.0/22 maxlen: 22 2a12:51c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e54104-00c3-495e-a86c-07f3fbf4d13c/1/zmSRf8O1HbiuDlu806YJTANB6S0.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/e54104-00c3-495e-a86c-07f3fbf4d13c/1/zmSRf8O1HbiuDlu806YJTANB6S0.mft rsync://rpki.ripe.net/repository/DEFAULT/zmSRf8O1HbiuDlu806YJTANB6S0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:42:d6:1b:d1:9d:98:8f:fa:36:f7:95:de:d5:24:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce64917fc3b51db8ae0e5bbcd3a6094c0341e92d Validity Not Before: Jan 11 18:12:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3847f694127f441a89326b10cdd9e7a1f25e878f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a3:f4:4b:ad:67:ad:c3:be:f8:32:9d:a1:f6: 30:50:7e:1c:f2:7a:6a:26:ae:d3:08:ab:9c:45:92: 96:8f:30:a8:b6:97:47:4b:8a:be:6f:44:29:e0:17: 59:f6:a3:b6:c2:df:13:24:e0:48:2c:99:aa:c2:6f: fc:30:8d:65:13:4d:f6:72:10:95:2d:d7:95:56:3c: 32:37:e6:3c:f1:1b:45:84:e9:7c:c0:f8:2b:e7:a5: 5e:12:bb:94:13:cc:5e:7f:5a:a0:b2:6d:8a:b1:f9: 2d:07:44:2a:4d:ab:d2:0f:c5:58:c6:fa:06:13:2b: 34:94:6c:0f:10:81:dc:0f:4f:cb:87:a2:51:b2:aa: 2c:17:b9:e6:2f:77:98:37:18:d3:96:ee:d2:0c:16: 66:4e:10:90:08:f5:de:0b:13:d4:3b:67:87:c1:2c: 75:f6:c1:7e:c7:a5:f4:5c:55:54:99:30:95:c2:81: 81:69:94:ea:8e:1c:5e:14:59:fd:d2:2e:4e:4a:28: 9c:09:e6:bd:d5:a2:dd:da:00:bb:e5:8f:80:2f:e9: 6e:d9:77:f2:46:2a:ac:4e:22:16:69:72:15:dd:dc: f6:77:07:f5:74:8a:92:d6:cf:d6:8d:eb:6b:36:2a: d0:25:d4:3c:94:b3:27:a2:d0:fe:69:7e:1b:47:df: d8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:47:F6:94:12:7F:44:1A:89:32:6B:10:CD:D9:E7:A1:F2:5E:87:8F X509v3 Authority Key Identifier: keyid:CE:64:91:7F:C3:B5:1D:B8:AE:0E:5B:BC:D3:A6:09:4C:03:41:E9:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmSRf8O1HbiuDlu806YJTANB6S0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e54104-00c3-495e-a86c-07f3fbf4d13c/1/OEf2lBJ_RBqJMmsQzdnnofJeh48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e54104-00c3-495e-a86c-07f3fbf4d13c/1/zmSRf8O1HbiuDlu806YJTANB6S0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.156.28.0/22 IPv6: 2a12:51c0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:48:a7:b8:e8:3e:b4:31:ee:d5:ce:f8:8a:4c:ef:0c:1e:79: 68:18:eb:7d:db:2e:38:fe:ae:85:a3:26:89:c9:77:f2:a1:18: 75:a8:1b:df:74:4a:9b:6f:fc:87:16:56:62:c0:00:42:e6:0b: 4f:4d:00:33:08:09:c1:af:9a:fa:9c:ef:9f:86:a2:22:cf:a5: 08:75:7c:17:d7:27:09:2b:e4:f2:52:ec:10:d0:80:dd:e7:16: 51:1e:b8:6c:b2:13:9f:ad:f7:a5:9a:0b:7c:64:b0:5d:99:af: 31:32:29:1c:b0:99:9d:b5:dc:f4:bf:20:0c:4b:e4:27:27:05: c7:bb:1d:c0:0c:dd:90:75:e1:e9:23:cc:12:12:fc:84:62:79: 90:d8:51:f4:a8:c0:46:e0:71:7a:a3:eb:7f:7e:83:d6:a0:87: 35:b0:18:6a:72:12:43:5f:06:d4:95:ba:4f:a6:13:63:01:d7: f3:cf:a6:27:4d:ab:fd:a2:51:40:69:af:bd:6e:95:60:33:e8: 60:e4:48:fa:0c:29:f3:20:8b:cb:22:34:af:90:9f:78:64:47: a5:06:af:0f:6c:fc:09:2c:8f:dd:b1:5a:27:6e:d3:51:04:55: 08:61:fd:63:a5:24:44:e1:a2:f2:94:31:c0:b8:fc:30:cb:47: ea:31:60:7b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZuuQtYb0Z2Yj/o295Xe1STTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNjQ5MTdmYzNiNTFkYjhhZTBlNWJiY2QzYTYwOTRjMDM0 MWU5MmQwHhcNMjYwMTExMTgxMjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODQ3ZjY5NDEyN2Y0NDFhODkzMjZiMTBjZGQ5ZTdhMWYyNWU4NzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqP0S61nrcO++DKdofYwUH4c8npq Jq7TCKucRZKWjzCotpdHS4q+b0Qp4BdZ9qO2wt8TJOBILJmqwm/8MI1lE032chCV LdeVVjwyN+Y88RtFhOl8wPgr56VeEruUE8xef1qgsm2KsfktB0QqTavSD8VYxvoG Eys0lGwPEIHcD0/Lh6JRsqosF7nmL3eYNxjTlu7SDBZmThCQCPXeCxPUO2eHwSx1 9sF+x6X0XFVUmTCVwoGBaZTqjhxeFFn90i5OSiicCea91aLd2gC75Y+AL+lu2Xfy RiqsTiIWaXIV3dz2dwf1dIqS1s/WjetrNirQJdQ8lLMnotD+aX4bR9/YvwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFDhH9pQSf0QaiTJrEM3Z56HyXoePMB8GA1UdIwQY MBaAFM5kkX/DtR24rg5bvNOmCUwDQektMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvem1TUmY4TzFIYml1RGx1ODA2WUpUQU5CNlMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9lNTQxMDQtMDBjMy00OTVlLWE4NmMt MDdmM2ZiZjRkMTNjLzEvT0VmMmxCSl9SQnFKTW1zUXpkbm5vZkplaDQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9lNTQxMDQtMDBjMy00OTVlLWE4NmMtMDdmM2ZiZjRkMTNj LzEvem1TUmY4TzFIYml1RGx1ODA2WUpUQU5CNlMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwpwcMA0E AgACMAcDBQAqElHAMA0GCSqGSIb3DQEBCwUAA4IBAQBsSKe46D60Me7VzviKTO8M HnloGOt92y44/q6FoyaJyXfyoRh1qBvfdEqbb/yHFlZiwABC5gtPTQAzCAnBr5r6 nO+fhqIiz6UIdXwX1ycJK+TyUuwQ0IDd5xZRHrhsshOfrfelmgt8ZLBdma8xMikc sJmdtdz0vyAMS+QnJwXHux3ADN2QdeHpI8wSEvyEYnmQ2FH0qMBG4HF6o+t/foPW oIc1sBhqchJDXwbUlbpPphNjAdfzz6YnTav9olFAaa+9bpVgM+hg5Ej6DCnzIIvL IjSvkJ94ZEelBq8PbPwJLI/dsVonbtNRBFUIYf1jpSRE4aLylDHAuPwwy0fqMWB7 -----END CERTIFICATE-----Generated at Mon Feb 9 20:45:40 2026 by rpki-client