This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/OPshUbvRxnu2cOvF72jldWwS_Dk.roa File: OPshUbvRxnu2cOvF72jldWwS_Dk.roa (raw, json) Hash identifier: FbfJcZ2J90a8MMP4ntINJRMl73qpMIWcPCenGxqdmuE= Subject key identifier: 38:FB:21:51:BB:D1:C6:7B:B6:70:EB:C5:EF:68:E5:75:6C:12:FC:39 Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Certificate serial: 019B7BA54312C230F5A66AA92B73DB7FE5B4 Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/OPshUbvRxnu2cOvF72jldWwS_Dk.roa Signing time: Thu 01 Jan 2026 22:19:46 +0000 ROA not before: Thu 01 Jan 2026 22:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13213 IP address blocks: 136.144.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.mft rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:43:12:c2:30:f5:a6:6a:a9:2b:73:db:7f:e5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926 Validity Not Before: Jan 1 22:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=38fb2151bbd1c67bb670ebc5ef68e5756c12fc39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:33:bc:ad:fa:0a:b6:63:78:82:db:a0:51:2c: ed:71:aa:66:e1:44:b0:d0:ee:db:c7:d2:1e:5c:d9: c5:91:0c:0f:d7:d6:94:16:4c:c8:bd:61:b6:dc:73: 64:8b:9c:91:ed:cb:32:71:36:c1:66:5e:96:12:93: 4f:56:cf:b8:b2:4a:20:14:df:c7:2d:7a:a2:2b:69: 02:4d:3d:e5:c1:4b:6e:91:d3:8b:7a:26:43:e7:6c: 3b:64:58:fc:37:0c:58:0d:f4:4f:e1:14:99:ed:b5: 7e:82:3a:97:6d:55:1e:1d:bc:2f:d7:e6:e5:49:35: 87:d6:2f:67:39:34:3c:5a:86:d8:3c:79:76:03:ce: ba:8d:b4:79:35:ae:9f:f7:fb:59:79:bc:b5:75:8e: 24:a4:cc:72:88:99:52:bd:13:74:b7:46:4b:bb:4c: 6c:fe:22:f1:8d:5f:76:46:6e:24:7c:15:fb:f3:d1: 02:47:00:10:d2:8e:d1:f4:e0:75:5e:2b:75:08:b0: 41:4c:6b:9c:31:af:a1:3e:48:9a:92:c9:29:2a:87: 1c:53:f3:9d:c0:d3:2d:24:91:cf:bc:e1:38:48:6c: 04:ad:f6:06:7a:26:ba:c9:64:b0:29:4d:2d:83:ff: 01:a1:44:9f:3f:dd:44:f1:4a:54:25:6e:72:29:d8: 0e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FB:21:51:BB:D1:C6:7B:B6:70:EB:C5:EF:68:E5:75:6C:12:FC:39 X509v3 Authority Key Identifier: keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/OPshUbvRxnu2cOvF72jldWwS_Dk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.144.40.0/24 Signature Algorithm: sha256WithRSAEncryption ba:02:3a:46:0a:ae:14:48:a9:04:8b:0a:09:b1:02:a1:59:28: 55:a9:6b:cc:8f:8b:d7:21:6e:05:d8:c2:38:19:7e:0d:11:de: a3:bd:c0:28:a1:18:a7:2f:5a:cb:74:5f:af:de:24:90:a0:a1: 49:3b:52:c3:01:fe:91:9c:53:74:bb:d6:70:7e:ff:89:ee:8a: d4:b7:10:b7:03:57:6a:c1:5e:cd:84:c5:6f:14:d6:48:f7:a0: ab:1c:d0:2f:42:bf:c5:ed:da:09:10:48:bf:6e:06:56:f7:4a: e8:76:82:ed:15:7d:1a:d6:c4:2a:7d:bc:5d:69:8b:90:17:37: 06:0a:50:3f:46:84:d2:c1:7e:d2:48:50:ef:c1:6e:0a:e8:ce: 3f:1b:6e:ba:90:e4:c2:8a:1b:f5:92:e0:5c:89:1c:63:cf:65: 4f:83:68:9b:5b:65:3e:85:a5:26:a5:32:3d:64:a4:b3:3d:7b: ef:0b:e8:e4:96:7e:75:77:f3:29:f6:7a:ff:7c:39:6b:fe:26: 12:51:47:51:48:f2:ca:7a:bf:77:0f:0d:3c:de:a3:16:a5:78: 76:6d:c0:2f:77:93:b6:03:f2:3f:16:3d:9b:14:ba:19:64:95: 76:5c:57:a3:26:79:08:a1:ec:82:6e:cc:a3:65:4a:3c:df:45: a3:f1:6f:51 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pUMSwjD1pmqpK3Pbf+W0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl MGI5MjYwHhcNMjYwMTAxMjIxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOGZiMjE1MWJiZDFjNjdiYjY3MGViYzVlZjY4ZTU3NTZjMTJmYzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DO8rfoKtmN4gtugUSztcapm4USw 0O7bx9IeXNnFkQwP19aUFkzIvWG23HNki5yR7csycTbBZl6WEpNPVs+4skogFN/H LXqiK2kCTT3lwUtukdOLeiZD52w7ZFj8NwxYDfRP4RSZ7bV+gjqXbVUeHbwv1+bl STWH1i9nOTQ8WobYPHl2A866jbR5Na6f9/tZeby1dY4kpMxyiJlSvRN0t0ZLu0xs /iLxjV92Rm4kfBX789ECRwAQ0o7R9OB1Xit1CLBBTGucMa+hPkiakskpKoccU/Od wNMtJJHPvOE4SGwErfYGeia6yWSwKU0tg/8BoUSfP91E8UpUJW5yKdgOgwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDj7IVG70cZ7tnDrxe9o5XVsEvw5MB8GA1UdIwQY MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt NzM4NTZhZjQ5ZjNlLzEvT1BzaFVidlJ4bnUyY092RjcyamxkV3dTX0RrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAiJAoMA0G CSqGSIb3DQEBCwUAA4IBAQC6AjpGCq4USKkEiwoJsQKhWShVqWvMj4vXIW4F2MI4 GX4NEd6jvcAooRinL1rLdF+v3iSQoKFJO1LDAf6RnFN0u9Zwfv+J7orUtxC3A1dq wV7NhMVvFNZI96CrHNAvQr/F7doJEEi/bgZW90rodoLtFX0a1sQqfbxdaYuQFzcG ClA/RoTSwX7SSFDvwW4K6M4/G266kOTCihv1kuBciRxjz2VPg2ibW2U+haUmpTI9 ZKSzPXvvC+jkln51d/Mp9nr/fDlr/iYSUUdRSPLKer93Dw083qMWpXh2bcAvd5O2 A/I/Fj2bFLoZZJV2XFejJnkIoeyCbsyjZUo830Wj8W9R -----END CERTIFICATE-----Generated at Mon Jan 19 19:58:01 2026 by rpki-client