This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/Ooo27uikwPKyN38Vc6E5PiPp16o.roa File: Ooo27uikwPKyN38Vc6E5PiPp16o.roa (raw, json) Hash identifier: ysIkELBvjUmxilhHd/e1/CduTTEPJwJqPubCz95v0Yk= Subject key identifier: 3A:8A:36:EE:E8:A4:C0:F2:B2:37:7F:15:73:A1:39:3E:23:E9:D7:AA Certificate issuer: /CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba Certificate serial: 019B7E389E4894E35354B9FFCD4A18C4F539 Authority key identifier: 1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/Ooo27uikwPKyN38Vc6E5PiPp16o.roa Signing time: Fri 02 Jan 2026 10:19:58 +0000 ROA not before: Fri 02 Jan 2026 10:19:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200451 IP address blocks: 84.207.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.mft rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 12:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:9e:48:94:e3:53:54:b9:ff:cd:4a:18:c4:f5:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fe90fde9784a91d93a7a2af59d4d043f1171fba Validity Not Before: Jan 2 10:19:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3a8a36eee8a4c0f2b2377f1573a1393e23e9d7aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:02:0a:0d:6d:9a:77:d4:57:ca:54:ab:2e:b9: 5c:7f:ca:5c:9e:ca:c3:28:50:66:a3:58:5a:fd:fe: 8e:f0:8c:1e:fc:40:3a:8a:74:da:aa:ed:d4:13:8d: b5:4f:d0:c5:36:63:30:1a:60:b0:11:49:e0:57:d7: ab:22:4c:bc:20:27:21:f6:ce:c6:7c:c5:0a:df:16: 5b:05:c0:39:e7:4b:3a:9f:0c:e3:c8:4e:6d:74:c6: 2c:28:3a:47:f9:01:80:4c:4d:3f:b7:a7:ed:78:b0: 7f:7c:94:35:04:6a:ee:df:2d:0b:b5:66:8c:8d:86: c2:7e:e5:7c:8d:d0:b4:b8:ea:82:34:1a:f0:76:3f: 2e:d4:5c:c5:d7:ff:1b:3e:1c:ed:4a:9c:18:7d:05: 13:c4:fa:02:18:e5:83:37:f6:71:d0:1c:f6:20:ca: 1a:27:36:2c:aa:57:5f:8c:fd:ee:f9:c8:18:8c:f4: db:19:4f:e5:c3:d8:62:73:94:40:15:ab:70:d5:8a: 93:53:17:93:4c:69:57:7d:34:96:82:b2:88:c4:51: 61:13:a7:31:34:72:78:a0:d0:6d:4c:0d:c5:29:72: 16:a4:46:fa:43:bc:3a:79:a4:d2:25:8b:38:21:7c: 7b:95:c4:ab:49:ac:cb:4f:0b:f5:b2:9f:eb:53:d3: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8A:36:EE:E8:A4:C0:F2:B2:37:7F:15:73:A1:39:3E:23:E9:D7:AA X509v3 Authority Key Identifier: keyid:1F:E9:0F:DE:97:84:A9:1D:93:A7:A2:AF:59:D4:D0:43:F1:17:1F:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/Ooo27uikwPKyN38Vc6E5PiPp16o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/a945f7-53b3-4db5-ae04-23772e7f92e3/1/H-kP3peEqR2Tp6KvWdTQQ_EXH7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.207.213.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:3e:38:1d:34:5b:82:78:99:f4:98:0e:47:3b:2e:89:a1:3c: 6b:08:b5:26:b3:4c:ff:4c:87:da:94:19:39:b8:46:15:38:33: 4b:a9:4a:fc:5d:b1:be:c8:33:2c:ae:13:c0:20:d5:e5:c5:09: 8e:6a:e4:95:46:ee:4b:e4:08:27:ce:7b:8e:32:60:93:b4:f7: 62:f5:af:be:bf:a1:c7:24:71:c4:60:60:99:b6:b5:e1:ca:8d: ec:9f:42:bc:0a:06:55:d7:2f:13:77:fc:a7:58:a5:36:f3:c3: 5a:c0:c6:03:dc:38:46:a4:95:80:1b:d0:cc:88:d9:03:5c:eb: 60:ed:8b:74:0d:2d:9a:5a:32:44:6c:25:f5:80:22:45:50:77: b9:c1:9f:4a:a0:2c:8d:30:5d:6a:f1:14:73:7f:e5:9f:3b:b6: 14:97:fe:45:a5:ab:f3:7f:10:e6:6f:80:66:fd:9e:6c:3e:3f: 8f:41:bf:99:6d:cb:68:ea:69:7c:90:bd:60:26:a7:3f:ee:5c: bb:6f:63:1f:6f:88:3c:84:15:f3:88:3c:37:27:5d:f8:54:b5: 8b:93:d0:3c:fb:1f:ee:15:7e:f1:31:a3:63:7d:6b:98:e5:80: a5:81:3a:f6:82:27:46:c9:40:11:5e:8e:5e:4a:bd:b2:50:c9: ec:03:9d:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OJ5IlONTVLn/zUoYxPU5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmZTkwZmRlOTc4NGE5MWQ5M2E3YTJhZjU5ZDRkMDQzZjEx NzFmYmEwHhcNMjYwMTAyMTAxOTU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYThhMzZlZWU4YTRjMGYyYjIzNzdmMTU3M2ExMzkzZTIzZTlkN2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgIKDW2ad9RXylSrLrlcf8pcnsrD KFBmo1ha/f6O8Iwe/EA6inTaqu3UE421T9DFNmMwGmCwEUngV9erIky8ICch9s7G fMUK3xZbBcA550s6nwzjyE5tdMYsKDpH+QGATE0/t6fteLB/fJQ1BGru3y0LtWaM jYbCfuV8jdC0uOqCNBrwdj8u1FzF1/8bPhztSpwYfQUTxPoCGOWDN/Zx0Bz2IMoa JzYsqldfjP3u+cgYjPTbGU/lw9hic5RAFatw1YqTUxeTTGlXfTSWgrKIxFFhE6cx NHJ4oNBtTA3FKXIWpEb6Q7w6eaTSJYs4IXx7lcSrSazLTwv1sp/rU9MU8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDqKNu7opMDysjd/FXOhOT4j6deqMB8GA1UdIwQY MBaAFB/pD96XhKkdk6eir1nU0EPxFx+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSC1rUDNwZUVxUjJUcDZLdldkVFFRX0VYSDdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9hOTQ1ZjctNTNiMy00ZGI1LWFlMDQt MjM3NzJlN2Y5MmUzLzEvT29vMjd1aWt3UEt5TjM4VmM2RTVQaVBwMTZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9hOTQ1ZjctNTNiMy00ZGI1LWFlMDQtMjM3NzJlN2Y5MmUz LzEvSC1rUDNwZUVxUjJUcDZLdldkVFFRX0VYSDdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVM/VMA0G CSqGSIb3DQEBCwUAA4IBAQBLPjgdNFuCeJn0mA5HOy6JoTxrCLUms0z/TIfalBk5 uEYVODNLqUr8XbG+yDMsrhPAINXlxQmOauSVRu5L5AgnznuOMmCTtPdi9a++v6HH JHHEYGCZtrXhyo3sn0K8CgZV1y8Td/ynWKU288NawMYD3DhGpJWAG9DMiNkDXOtg 7Yt0DS2aWjJEbCX1gCJFUHe5wZ9KoCyNMF1q8RRzf+WfO7YUl/5FpavzfxDmb4Bm /Z5sPj+PQb+Zbcto6ml8kL1gJqc/7ly7b2Mfb4g8hBXziDw3J134VLWLk9A8+x/u FX7xMaNjfWuY5YClgTr2gidGyUARXo5eSr2yUMnsA53y -----END CERTIFICATE-----Generated at Thu Feb 5 13:55:01 2026 by rpki-client