This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/OUk4bgGC3OCebo2r3JX7kFSxVtw.roa File: OUk4bgGC3OCebo2r3JX7kFSxVtw.roa (raw, json) Hash identifier: 3wGYjxsZ43jN+PMrritKLslUAurQFB46XPi5qVQJ22Y= Subject key identifier: 39:49:38:6E:01:82:DC:E0:9E:6E:8D:AB:DC:95:FB:90:54:B1:56:DC Certificate issuer: /CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e Certificate serial: 019B7BA31DA87E0017773CC985CC67465161 Authority key identifier: 16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/OUk4bgGC3OCebo2r3JX7kFSxVtw.roa Signing time: Thu 01 Jan 2026 22:17:26 +0000 ROA not before: Thu 01 Jan 2026 22:17:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 62.112.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.mft rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:1d:a8:7e:00:17:77:3c:c9:85:cc:67:46:51:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e Validity Not Before: Jan 1 22:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3949386e0182dce09e6e8dabdc95fb9054b156dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:2f:33:cf:3d:f9:dc:e7:0e:ea:6e:71:7a: 55:23:36:38:9c:db:24:c3:f2:53:6d:ee:5c:df:63: 19:f5:dc:a2:ff:9d:16:ee:73:14:04:df:87:d8:6e: f8:ff:8f:b7:1c:a0:ec:ff:46:21:74:b8:b7:7d:a4: a6:01:ff:9e:55:40:fe:fd:29:30:a1:1a:e5:ae:34: 4d:c1:dc:8e:ad:70:dd:12:98:bb:36:b7:51:eb:30: 82:9f:a5:44:f8:8a:3e:d6:41:d5:45:ae:dc:15:0d: fa:6d:af:52:63:a2:27:59:25:12:13:e6:c3:33:0e: 8a:13:7a:3c:da:18:7b:2c:f9:c6:b0:6f:dd:8d:6b: 3c:00:59:3c:c2:13:ed:09:53:5e:2b:b4:58:57:3c: 94:ca:e4:84:0f:25:b0:7c:74:e8:2a:52:42:2b:f1: 99:e5:f5:0f:28:de:3c:44:32:4b:33:e8:3c:7d:d9: b6:a8:1a:0f:4c:db:25:ea:14:22:f3:74:a6:6a:9b: 2b:be:82:c9:93:6c:0e:4d:fb:81:a1:db:9d:15:9b: 5c:89:51:02:72:2b:e4:34:20:2d:c1:e0:d4:b1:60: 9d:25:8d:b3:ae:e7:69:3d:58:24:e1:f3:f2:a0:93: 34:01:00:04:2c:d9:fc:84:79:bb:ae:55:f6:68:e3: 1c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:49:38:6E:01:82:DC:E0:9E:6E:8D:AB:DC:95:FB:90:54:B1:56:DC X509v3 Authority Key Identifier: keyid:16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/OUk4bgGC3OCebo2r3JX7kFSxVtw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.112.207.0/24 Signature Algorithm: sha256WithRSAEncryption c5:6c:d7:d1:ab:1b:dc:4e:81:99:22:b5:9f:d4:32:d8:68:8e: 90:11:50:a8:e6:f0:b1:38:9b:4f:17:61:22:5f:2a:85:22:a3: 96:c5:0d:c1:db:7d:25:23:84:dd:3b:03:5e:69:ce:b0:9a:06: c3:d9:96:54:be:e6:5b:62:41:29:63:16:67:32:bb:1c:b9:ba: ad:34:51:bf:e6:d0:9a:b7:fe:88:a9:52:6e:14:9e:96:19:f8: 80:71:4e:06:ad:2c:82:74:5e:ee:f4:54:c6:47:c3:7d:b4:e3: d2:3f:ce:d7:e2:d6:46:81:a8:89:f9:e3:6e:15:de:62:fb:4e: a5:6a:d0:77:d7:52:e2:fb:e7:21:81:3b:27:b5:f8:72:43:cf: 11:fb:4c:d1:15:a1:3d:fa:39:63:2c:21:69:41:44:ca:b2:56: a0:02:11:07:bb:f0:da:0a:ae:bf:ee:ff:a8:b3:06:42:02:b5: 99:29:48:fa:5d:8e:da:de:04:38:3d:2e:f9:f4:82:40:d5:07: 42:ca:06:e2:36:c5:a8:cb:ea:15:05:ba:ce:d7:8e:b8:4a:eb: 08:70:72:ff:a5:f5:b5:79:66:31:60:81:96:a1:41:ba:48:2c: 7a:98:b7:dc:53:f5:16:be:cd:34:cd:cd:47:68:df:a7:78:a4: 2d:58:30:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7ox2ofgAXdzzJhcxnRlFhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2NmFmYzUxYzkyMmZkODQyZmVjNWIwY2JiZDI2ZWJkYmQx YTE2MWUwHhcNMjYwMTAxMjIxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTQ5Mzg2ZTAxODJkY2UwOWU2ZThkYWJkYzk1ZmI5MDU0YjE1NmRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8YvM889+dznDupucXpVIzY4nNsk w/JTbe5c32MZ9dyi/50W7nMUBN+H2G74/4+3HKDs/0YhdLi3faSmAf+eVUD+/Skw oRrlrjRNwdyOrXDdEpi7NrdR6zCCn6VE+Io+1kHVRa7cFQ36ba9SY6InWSUSE+bD Mw6KE3o82hh7LPnGsG/djWs8AFk8whPtCVNeK7RYVzyUyuSEDyWwfHToKlJCK/GZ 5fUPKN48RDJLM+g8fdm2qBoPTNsl6hQi83SmapsrvoLJk2wOTfuBodudFZtciVEC civkNCAtweDUsWCdJY2zrudpPVgk4fPyoJM0AQAELNn8hHm7rlX2aOMcrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFDlJOG4Bgtzgnm6Nq9yV+5BUsVbcMB8GA1UdIwQY MBaAFBZq/FHJIv2EL+xbDLvSbr29GhYeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm1yOFVja2lfWVF2N0ZzTXU5SnV2YjBhRmg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84OGM0NTQtY2JhYS00M2ZkLWIzYzEt MTNiOTExMGNlMjBjLzEvT1VrNGJnR0MzT0NlYm8ycjNKWDdrRlN4VnR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy84OGM0NTQtY2JhYS00M2ZkLWIzYzEtMTNiOTExMGNlMjBj LzEvRm1yOFVja2lfWVF2N0ZzTXU5SnV2YjBhRmg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPnDPMA0G CSqGSIb3DQEBCwUAA4IBAQDFbNfRqxvcToGZIrWf1DLYaI6QEVCo5vCxOJtPF2Ei XyqFIqOWxQ3B230lI4TdOwNeac6wmgbD2ZZUvuZbYkEpYxZnMrscubqtNFG/5tCa t/6IqVJuFJ6WGfiAcU4GrSyCdF7u9FTGR8N9tOPSP87X4tZGgaiJ+eNuFd5i+06l atB311Li++chgTsntfhyQ88R+0zRFaE9+jljLCFpQUTKslagAhEHu/DaCq6/7v+o swZCArWZKUj6XY7a3gQ4PS759IJA1QdCygbiNsWoy+oVBbrO1464SusIcHL/pfW1 eWYxYIGWoUG6SCx6mLfcU/UWvs00zc1HaN+neKQtWDDs -----END CERTIFICATE-----Generated at Fri Jan 9 21:26:59 2026 by rpki-client